URLhaus Database

You are currently viewing the URLhaus database entry for https://samaranpvc.com/aiuq/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634066
URL: https://samaranpvc.com/aiuq/?1
URL Status:Offline
Host: samaranpvc.com
Date added:2023-05-16 13:15:10 UTC
Last online:2023-05-18 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:18:55 UTC to abuse{at}asiatech[dot]ir)
Takedown time:1 day, 19 hours, 10 minutes Poor (down since 2023-05-18 08:29:13 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Nrtpbcuc.jsjs 1d2471f7acbab8882ea6f628275c501f0f81e0aeab5ee16537702bd849e8ba6bn/a Quakbot
2023-05-18Azrbom.jsjs 24cf08aad92d93dfabb65546276958ba1bad72825e0af1a4fe5d2a2f0d2a451fn/a Quakbot
2023-05-18Zwllvv.jsjs 60483947f59c4a843833ac5302fae111fb318dafe639770153154f7e01c2afa9n/a 
2023-05-18Svloa.jsjs 62497d1af3f04d7da40a34f39d4cb3b28e855a47c2507372bfa759e66adfa3f6Virustotal results 11.86% Quakbot
2023-05-18Skymhp.jsjs 7f96290dff45385bfd8340f07e433e56831a66a593d5472a2ef8da6d665f355bn/a Quakbot
2023-05-18Yikvqof.jsjs 47b6986c5352ef5a3ecf9cbe02d34caf8e096cb6635c958ce8dedb89540da3d8Virustotal results 26.79% Quakbot
2023-05-17Cutgci.jsjs 0e3f95cec4063907bf68a435963ea684b5f9bbcbdd4ac6337048ae70087a81fdn/a Quakbot
2023-05-17Ocgsft.jsjs 9a649ac76d537c5f4ceb023745e2fcb3a6ed8443c46ac1f2dbd7da98f0487deen/a 
2023-05-17Rwqrjp.jsjs c3f8749b256087bbe0dcc6d662f467c1d34f701e65acfb75292a72aba0657e26Virustotal results 32.20% 
2023-05-17Hoatui.jsjs ba77ea0ae3afe4582d390d1930a3792bde2ba411df7e3c05ae156306c5cd46e4n/a Quakbot
2023-05-17Xrrt.jsjs 39036c4511e84d273b38d04d99840aedb110dc45be8053c2ec9957b388b9f5b6n/a Quakbot
2023-05-17Nntt.jsjs c94ada5958b8de5bdb28cb9e98630137e3cf942a64d9cc61b76d5b7421190579n/a Quakbot
2023-05-17Wjyhjbu.jsjs f989815b8dc223b33cb513ecf690f748ddf2ef8c3a9fda757201e45095315746n/a Quakbot
2023-05-17Uywkfvto.jsjs 8620857753a5002bb4b537352c64f82e1eebdadb6fa4bfe3b740fd206abb0008n/a Quakbot
2023-05-17Zplzh.jsjs cd0f52b40d142864cc13af46417e7839152e708d92122b6fb7f58ca9539b2128n/a Quakbot
2023-05-17Tvtnd.jsjs 233c563ec7c8eb2bb7d207ee1a38a85d215f01318a66d3bcc5b0272ecab5ff28n/a Quakbot
2023-05-17Mjadli.jsjs 16d8472d2db5abec0d46a7c45dc88ec887ec40659b2dbcd139feab6200a36128n/a Quakbot
2023-05-16Rkngu.jsjs 57e3c94e277c1fd146bf26e2ec9ae106bc1fc718276b8a14973a8e4118b610f1n/a Quakbot
2023-05-16Nodhwkzu.jsjs d6fdd15ef8abcea51cb7d16a7620ff0393a88ae6b4d165951209b17e3c4aca0bn/a Quakbot
2023-05-16Pwnwqj.jsjs 0186df8a4b42dfae120b02669c92b5d34e389860dfd10d6fd0ab865bc20e1952n/a Quakbot
2023-05-16Ztdp.jsjs 5740961cb3d83540fe81cc0e762eae9143cf2fbf37207b34af95202551d3a611n/a Quakbot
2023-05-16Gcyduqp.jsjs b9b0965256c2f37079439e661d80c02e38943398fe578d72109b3d54c7383213n/a Quakbot
2023-05-16Hpzv.jsjs 6b3fd1ac61b2d06aa87d3eaace26257740d01d8b19b0cd2e87499339405dec86n/a Quakbot