URLhaus Database

You are currently viewing the URLhaus database entry for https://positiveleaderlab.com/hup/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634004
URL: https://positiveleaderlab.com/hup/?1
URL Status:Offline
Host: positiveleaderlab.com
Date added:2023-05-16 13:14:53 UTC
Last online:2023-05-16 14:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:17:56 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 8 hours, 15 minutes Poor (down since 2023-05-18 21:33:54 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Khfea.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Ugwbml.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Xvbt.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Jnyiogn.jsjs 89391c561a6eb0589bcdfb9bda81bd47ef6ddc32e068d9d255bbb4b5b37f5e4cn/a 
2023-05-18Jqeoes.jsjs 33f33ebc5ae78bdbf3a9afc064c64f1121c0214e1305d5567232cbc8779ab8c3n/a Quakbot
2023-05-18Wmgb.jsjs 2c402bf5ac40a8110c89bcf0f4ccd617ba22f8e8a6ca32d9949461c82540e48aVirustotal results 28.81% Quakbot
2023-05-18Hclsp.jsjs cc1399eba326d79dc397363937989a81822144dc05e184cd6d904bbf2617e9f7Virustotal results 22.41% Quakbot
2023-05-18Xefksadg.jsjs be782f3af4554ce0188bf903632e461191f0020d22f70c2760c1f9d32b21bfban/a 
2023-05-18Wdldgebn.jsjs 905a894ac3b18458a8372c05faec1cd015ea3d7f3a5d248f87684a3062f2ca5fn/a Quakbot
2023-05-18Tmrdcrut.jsjs db756aef0c52e6f31a7cb628eefe67b0cc7d656427dd2d71c87ecce62165b562Virustotal results 22.03% Quakbot
2023-05-18Tiiqt.jsjs e8a4b575211295a78e536c4a374d5538f24470f6036d3a1e5ab52f149b6a5683n/a Quakbot
2023-05-18Vlzk.jsjs 23c7e26757364f19557ee494d86b6dfc1c19e076aee18974a5443ce434459b22Virustotal results 23.73% Quakbot
2023-05-17Shqp.jsjs abc48260d90f80894b8dce196c06da33c2c84c6e28e7f70c81840bf419cf2344n/a Quakbot
2023-05-17Xzdohgrm.jsjs b243ce7f5b24e6eab35ff99fcc718064f5897388b337460b05226b50e50b7dfen/a Quakbot
2023-05-17Whfdvgcb.jsjs b87903d0aa16eb59b3bd58047ae31f7e370cc478a7b6d952e262fe4e56abb4e3Virustotal results 26.67% Quakbot
2023-05-17Fmnnx.jsjs 5ed8c2a8ffd44a6f80d52c65210bcb3ab9bbfc42a217a03db9d435fe66f68833Virustotal results 25.42% Quakbot
2023-05-17Ablt.jsjs e83bd9c4b21fcd0dac063c512259b7310762d0f7b923cba778206403e5314398n/a Quakbot
2023-05-17Wpko.jsjs e33a486361f2b596983444fdfcab380bffa678c31788687e1d8fb8e9aed9f6b0Virustotal results 32.20% Quakbot
2023-05-17Dmvt.jsjs 0b8b2630460c4baa473d458c5dfe165acc6e1cd41d684697d22599bce6fcf623n/a Quakbot
2023-05-17Erxd.jsjs 8a1f226245e5f15e87409d617437e6d102c8267d28d1bdb3f198a89620b090edn/a Quakbot
2023-05-17Hxxdivf.jsjs 44e45c975ea8243f651e5fbd133278dbe97f9d1467ffe4c8b506916259756aecn/a Quakbot
2023-05-17Qbjof.jsjs ca54504fb826d910f440b0bfaaaca3b886f2cf664c5fe3b9d8bec13f46bb9b14n/a Quakbot
2023-05-17Ykjtnz.jsjs ff8cf4266aeae0adfcf6599befc11e0677de92e789ee8b1a6902ef77b4442aaan/a Quakbot
2023-05-17Pnjvdqu.jsjs 847d2cfcb90f0442ba8cc40b29c80e655ba53e08c47b33f10ea6fee5470b386fn/a Quakbot
2023-05-17Ecosczny.jsjs decb8bca2d3ed15c2af80517509801da404443dc2c13d1edd0a1fe7f4fdacc37n/a Quakbot
2023-05-17Axjqdi.jsjs 733d542f2501169c3a6d6adca8935cd45dc1fb4e7ae3984481b91a6c67791b04n/a Quakbot
2023-05-17Zxxphvh.jsjs cf5478ff305736667a86db288c5095359c260b2275d8ac5f3b43b80964f0188dn/a Quakbot
2023-05-17Iedzff.jsjs 31ef0d27ec860c9e59d023ea928f9c9b3e143b2a40c56b31bbf2204029262908n/a Quakbot
2023-05-16Lmmyq.jsjs 2ef698e3eb5f0da0f913acf5b05f13d6b9536e8788bed7561a3d0c438df71f82n/a Quakbot
2023-05-16Jirxadmo.jsjs 5dbd2ae6968afc55e0ddde4a1204c0434a163bf52ff4b341b97646e230a983e7n/a Quakbot
2023-05-16Nwegwwu.jsjs aabd6cede5c280045f3b54af14332c0d0996f6dbaae13f7393519d556fe6c403n/a Quakbot
2023-05-16Pekkghu.jsjs 0e85fdb1ac0a6a2a08431a08292e4377eb60066217681bd56a8cc1d6890ddab3n/a Quakbot
2023-05-16Tpbhu.jsjs 442c410780b7ac9ceddee4d902383937ea90f68d319c1bb8abd4e31b158a94f4n/a Quakbot