URLhaus Database

You are currently viewing the URLhaus database entry for https://pgqshippingline.com/fiai/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634043
URL: https://pgqshippingline.com/fiai/?1
URL Status:Offline
Host: pgqshippingline.com
Date added:2023-05-16 13:15:04 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:18:32 UTC to abuse{at}hostgator[dot]com)
Takedown time:2 days, 9 hours, 27 minutes Poor (down since 2023-05-18 22:46:19 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Vlaxasr.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Sjadf.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Rwukvj.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8n/a 
2023-05-18Loxxb.jsjs 07d1842292aa2619ebfbb551eff5580fb24f945283f3de4298dc06f9493b6b20n/a 
2023-05-18Exfuay.jsjs 5002cf2a22a794f451347414eae921d359f14704e2fc3491ec70ae29266a6ea6Virustotal results 22.03% Quakbot
2023-05-18Xcefrun.jsjs 582d7260d0c9d28291c1a5741818450399bdb826da9dfa44e69657727548f4f6Virustotal results 25.42% 
2023-05-18Ejiqflf.jsjs 80ab380263a5873a2a0e5bf0f6970a2c5a2f1bb6ced244bb881a685269c5d92cVirustotal results 15.25% Quakbot
2023-05-18Zjetlh.jsjs 15284b1502dbf4c84ff0c772b1ae8788a56987a2e9cda8ba27208e57da59e8a0n/a Quakbot
2023-05-18Zfmgyiz.jsjs 0c1a4acb8216ade3632625958fc7427a5f996f5570d05d649a0e49be5e748ee9Virustotal results 27.12% Quakbot
2023-05-18Pzqhxht.jsjs d25526dc27feb5e67f938d4b403a9dad1250e9bad80e8f4d66a22d696dacc328Virustotal results 32.20% 
2023-05-18Txftc.jsjs 79b1f8ec256643dd38b44883fae1a1c46e851db6d07560d38f8cb371756b1fa1n/a Quakbot
2023-05-18Visc.jsjs 8ef706183443d30910cb1d411aa36e657e86119ff849b6a9edef4125b752bb92Virustotal results 28.07% Quakbot
2023-05-17Kawbouui.jsjs 6f1a5f81c661643e1367ba7f42de50ede7d8841c0eb4bd7e13f5922b8a539766Virustotal results 29.31% Quakbot
2023-05-17Bsfnpmy.jsjs 657ba945eb9c34584fcdaaaf316636af2fcddf21425ff248bf2de46d55dc8147n/a Quakbot
2023-05-17Klazbp.jsjs 257dab59e71c1109ffbf0b4ee1568df9566b886ee56301a089577a0fbec29fe4Virustotal results 8.62% 
2023-05-17Oojthwsa.jsjs b0be9915846a032654d7a5cdc2488d13fd892ca71f707d67ef917a7ed79bd43fn/a 
2023-05-17Xeuatji.jsjs f2a2ace114103a041e79ed5165b96ac32d3595aaa0c8f1ff92533be7728179a4n/a 
2023-05-17Avydyhg.jsjs 0e6261c9c8d05c96074d71e8c45d5c3dbb78736803c84ec4565a0db8dd83510bn/a Quakbot
2023-05-17Nnkna.jsjs d5cf74860b7b3a07c522d435a8360406d7c4a5575bd34a1244d8d0c1426bdb61n/a Quakbot
2023-05-17Lshzjr.jsjs 0712dbb95a9dc25780c3466f995e512c952f555fa098ea15d9ffac56fb55ee32n/a 
2023-05-17Yfedtfbb.jsjs c38b6b89fd2c111dbcc86986b006fea0f07897c398552c15678efd52a1c9103cn/a 
2023-05-17Grycfd.jsjs 65f95231ccf4aa0898022316abadaa1d6f0c9244db5444c5809b4953c2736877n/a Quakbot
2023-05-17Yzpbd.jsjs 4175f98e8c3ce1e012b63379f97ebaacbc4f0b222bb8caca139243ebd6535ee3n/a Quakbot
2023-05-17Lchtreim.jsjs 50789c9913564013cd1425bbd7b9176d765d3c10ab3a9b57d5a4f19306757f80n/a Quakbot
2023-05-17Utvfbvc.jsjs 4ddec2da3b3527cd4c625b9277594ab70a9cf750c5b68a1e2b21f9a111149e15n/a Quakbot
2023-05-16Rtbeuhl.jsjs b9959a7b7e103a5f3d97f0d2dd2ba9144d7c11b1608c49377aae05a599b30af2n/a Quakbot
2023-05-16Gypg.jsjs 352066cc3b83315e99811407dd994db62559614deef5c81b68aeb727a5f49a92n/a Quakbot
2023-05-16Sdpdclfw.jsjs d178253548e77aab63485aa07ac24640348bbe28e6bdb3705faa92d36f0c7bc2n/a Quakbot
2023-05-16Niwjef.jsjs b14ca00d20545d6449d9d313ace6dbe10dc05efd545fb5ba49bfed8eb116162an/a Quakbot
2023-05-16Mhgoywi.jsjs eeeed8391e81425b8b2dab4130f8acde4f619aa6df266612cb99807ca6558764n/a Quakbot
2023-05-16Uqysuulh.jsjs 4c6c7946f44df36a50dc027032d90c2edd4612fdc0e8efe12a3beb32abe412bfn/a Quakbot
2023-05-16Sjcac.jsjs d1e03e5a80e05278fb493e5130af355ccda2a3b406fd1ae39978638c748606cdn/a Quakbot
2023-05-16Eomok.jsjs 3386bc8b50c8d3abdfc2fe1bc6a6ccc01e0fe571473edeb6317de5c049b7eda7n/a Quakbot