URLhaus Database

You are currently viewing the URLhaus database entry for https://batsamco.com/sde/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2633999
URL: https://batsamco.com/sde/?1
URL Status:Offline
Host: batsamco.com
Date added:2023-05-16 13:14:51 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:17:50 UTC to abuse{at}hostgator[dot]com)
Takedown time:2 days, 8 hours, 10 minutes Poor (down since 2023-05-18 21:28:38 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Oobijdtd.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Pbwastpk.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Ajzlpz.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Owqtd.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Eirbz.jsjs 5d7f117d56aea8e70b5a3df7a5c641e90d0b127b81ee903d2f0d8a469c5c1ccfn/a 
2023-05-18Skiubu.jsjs 58b0e516ec4c36b4a0582314a01bc968a5e3a7acce646abe2179ef5adde91a24Virustotal results 27.12% Quakbot
2023-05-18Dvwya.jsjs a99deed91507b2e0aa98b17753892aa733b12eed707f493c38359420a3a4f109Virustotal results 25.42% Quakbot
2023-05-18Yazxs.jsjs f51bc0d7dd86e4e6db698538eca1063e4e4936ee3f57c669e347f143576749d9Virustotal results 30.51% Quakbot
2023-05-18Caggmhzg.jsjs 5b081d8987954ca182f1f9c83eb5c24851ef6647e29f84c5fde150d826531e53Virustotal results 26.32% 
2023-05-18Xlax.jsjs 928de378e1b8690de67deab709ed80da406ac542daf31e7c5859f02c0b9a4240n/a Quakbot
2023-05-18Zqurkxqq.jsjs 0107042269a76269dd71d3dc19e72a1759d421cbf33b9758b94f08c93f0989e6Virustotal results 31.03% 
2023-05-18Gahpjg.jsjs 009f072fec4afeeb62ee51fc61e387113eecca3d907b9784a9e4b79ca0c64ddan/a 
2023-05-17Praf.jsjs ad9d5d545cd208607067a384f752e68873813a4863a25840901805e6778a5f43n/a 
2023-05-17Srjq.jsjs 1eaeb0800e5cf78a2590fb2ea6859c5f0bb66ad09354a079964ab9c7e6381781Virustotal results 32.20% Quakbot
2023-05-17Qjvlti.jsjs bfbec36fede661575f19295dcf1df9ba2fa3f0ca817dd9cc5efbd152f86a999dVirustotal results 23.73% Quakbot
2023-05-17Ivgvhyz.jsjs cb46274d330ebea266c559fd5e391bd171816f40b8a0d960dbacf22c23a94ea3Virustotal results 30.51% Quakbot
2023-05-17Msxzt.jsjs c7f9d6c56a28ecc44744a1c617778af39179d5869bca0ccd518016eae401078en/a Quakbot
2023-05-17Hftkqpjk.jsjs cb2b2c5c8e0ff33bbc082310f5ad09305fb6f7b7e6d660efa2c02393341d6fd3n/a 
2023-05-17Qlvdq.jsjs c419bc2833e48f8f26166ef911d3915be8fd0619ac6a0e0638813a4404df6979Virustotal results 25.42% 
2023-05-17Wyipx.jsjs 6003ec795de91a5d5a9a9abb15e037b5f4dcd8cbf43bac5330005fdda61c603an/a Quakbot
2023-05-17Fzthx.jsjs 1aea63ab2bf4400e0017981d4a336fa2d111dcaa49f14460941b66249a3e3880n/a Quakbot
2023-05-17Fyhokn.jsjs d662c74a7d2ef5dada88b410230023efb9c6132cd32cd510fb7dd7f07c34e709n/a Quakbot
2023-05-17Nwpm.jsjs f67b55a3c47594492a9e5445d55bb96301f4c7d9aa4c49f3e1a6fff4f06d0e3en/a Quakbot
2023-05-17Auyt.jsjs 82a7cdc761f1b4d494f2bd457616588a807238e796ad1f5c1722aa307062dd50n/a 
2023-05-17Yljdcqc.jsjs ea0785f5b5f23187dc0791f5e1801f66f8525ad7469759f57d26bc4944b38964n/a Quakbot
2023-05-17Pbvc.jsjs 56b4bfb7b1b88d9d7395d1c12d700fca7629bf79eeecee6bb7e7fe1510cc65f7n/a Quakbot
2023-05-17Ajvgg.jsjs 029a9124b1210ba87d49cbe6b58bc6bf8421b2f75007664695e57029c57b91acn/a Quakbot
2023-05-16Ihbohqy.jsjs 05ed728e16bc1630588b9df9fe1a5d136b25502002917cac0cab4b3fbc76d359n/a 
2023-05-16Mrpd.jsjs c160e17aabf0ffdbe03e015a0fff78272a267d55789b19def9c712d3fb475db8n/a Quakbot
2023-05-16Alwjxmlb.jsjs da90094b49fe61dc2eb44467a760da092184d89eca1040d3dfb6ef67ad303fdcn/a 
2023-05-16Zlwagovd.jsjs 8ffc611c2cd49b2d2e4832bb2276014c324fb24687afb160d6dc9f138a0798a2n/a Quakbot
2023-05-16Kjgtkcw.jsjs a097bed8eb4aa91892bb67ac9f6937a37fe41d7e2976d14cd0b60a6470b9436fn/a Quakbot
2023-05-16Ibnertb.jsjs f5d48fd6058a346ca694e649084e673df76e3a672cc1ea729cc50c4700e32d83n/a Quakbot
2023-05-16Cexi.jsjs 0fbe1e91ab9e11676ec2d490249e64d5d9ce2df82648849f17298b0505b5a326n/a Quakbot