URLhaus Database

You are currently viewing the URLhaus database entry for https://grupodatacore.com/ca/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634129
URL: https://grupodatacore.com/ca/?1
URL Status:Offline
Host: grupodatacore.com
Date added:2023-05-16 13:42:07 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:43:26 UTC to abuse{at}bluehost[dot]com)
Takedown time:2 days, 7 hours, 53 minutes Poor (down since 2023-05-18 21:36:33 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Plgqd.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Ikncjps.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Muwwbugc.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Czlewc.jsjs 2c103ff52f60eb9da1d93a992fb9aa7f1bb30f1bc5ace0b1c824b5470dac19fan/a 
2023-05-18Zjux.jsjs d4048bb4d8d517078d21db74a0238b8f0696dbad0bfb9cecbe0dad5e3a89bb47Virustotal results 30.51% Quakbot
2023-05-18Uflbrg.jsjs b7c08519c7c42c933959411b973cf0045693335de503ec8af7235576bf7ece66Virustotal results 28.81% 
2023-05-18Cbjxrwe.jsjs f7b76f7e79498990be74945924e01e7f53e3b42e5be51e93dd0c4c7a5ecb47d3Virustotal results 27.12% Quakbot
2023-05-18Ofbjwke.jsjs 1bff54d9504766a1b23df7d6c83ffbf3db9ac0d0cc9ded739c34a0f1114f5717Virustotal results 27.12% Quakbot
2023-05-18Ralhbx.jsjs d5e6e30f18f2d0670de3202c27c125583667cb6be60aee992f59e72d23eed864Virustotal results 30.51% Quakbot
2023-05-18Eolmofpu.jsjs 5ed6c54055399ee6ffdf3adfc06337fb1dfa9ee1a6c1766091b74c1ebe2ebda1Virustotal results 27.59% Quakbot
2023-05-18Sqbmdas.jsjs 7fc4905fb7d4a1e1c931e869fdfaabceabbdbf242ca9e35ff7178f74e6f7b207Virustotal results 25.42% Quakbot
2023-05-18Pjtqtueq.jsjs 3657123d41437d5c2c4b48b03e14153b367398907ae10d30021c974941a5b64cVirustotal results 32.20% Quakbot
2023-05-17Psqbuqy.jsjs 4fd5f473b0f97c7dcf4a244234c780051bb0e3c316acbb18b7f959a6663c9454Virustotal results 22.41% 
2023-05-17Vejc.jsjs 4de3c0071371884b0a2e8815554e19a2c0d89112e1bd9bc512d30aa306d3f0a9n/a Quakbot
2023-05-17Dxgpfvlo.jsjs e5c5a60b175cb60af996c9c06d7956eb02b365460e950ac7662bb4ea5c87d9c0n/a Quakbot
2023-05-17Tseyba.jsjs 8506e3c5de62fa6173656a51f4f41a0986ccb9fa55bea9cfcb878c6df2bd88c7n/a Quakbot
2023-05-17Indaxits.jsjs 8c2547beb9fb406c4a16f82f423ebe7c1ad3223e438fa0b061c7cc13133a635an/a Quakbot
2023-05-17Anzqsu.jsjs bb62ccf9fa803df4844b790350de975a1f8ea136f9334e3563a5e8ecf4d9b601Virustotal results 25.42% 
2023-05-17Kazxyiht.jsjs 36032c143a4485946e82aa6aab03ac420e5589d6c74224bd71b3b6bc62b6dfecn/a 
2023-05-17Edwf.jsjs 56f98c1c97e1453ff995b3a13557d14600aba57f58f3537688826daeba157151n/a Quakbot
2023-05-17Piutfn.jsjs 3c39de1cdb595f8d1822395bd3cf9c81743a1b303cf7188cf41f49bf8c0005c7n/a Quakbot
2023-05-17Atjz.jsjs 0178502f90d5d221470a871ae1b60eaf1ff6921134eda783dad9dc2d7c4d685an/a Quakbot
2023-05-17Xpqkynr.jsjs 914ad5b4ea5e43d332b9682d7a4ed071a469512eefba47ac9a31a1df255ae500n/a Quakbot
2023-05-17Erly.jsjs decb3dcaf2239b72566830d7bf6fc115f829ada48e0d59522773f770033c508en/a 
2023-05-17Ubsbw.jsjs c8ee51fa78ea9c4220771b98a6096b1e189b5344e427d7229e56d8a1dc2ba265n/a Quakbot
2023-05-17Zkys.jsjs 0f678e7eda202576ed08f18f78766dd70f34b34d329556a5e1385b5b01dabd7an/a Quakbot
2023-05-17Cyxnvnxb.jsjs 7ade0b70ad6b384b471ee45e551078557543dc24c18b8275b7eb276aa3c6c066n/a Quakbot
2023-05-16Xyjykbi.jsjs c8df2b9cdd4e0c1fc17aec411043404f1a12dc918058a47af8887601fa44e8e9n/a Quakbot
2023-05-16Gcaswjep.jsjs 399fd7b2727c4f6839ecaaf523edd617377b673d55ad9a98ac6d9e4184a6bb21n/a Quakbot
2023-05-16Gtriqwpl.jsjs dcd106d022e5e429236d1c35a48c92684e60b37c67103763360f359e768abc5cn/a Quakbot
2023-05-16Edij.jsjs c8f82d554871f8b1cdcda0402ddff95f4a03460bc1656c93ea4493ffa20ae708n/a Quakbot
2023-05-16Lhptxq.jsjs f710ba3961e1e3c47bedb98e7ce4b4ecefd1d70d4da580ca5aa959d850ccaa27n/a Quakbot
2023-05-16Kkni.jsjs f398a664e232090f5408b08dd124a8b5552eff5c9b6c6ef3b3f1856ff9bf3ee2n/a Quakbot
2023-05-16Agdhnz.jsjs 7e8a351587f9b045f0a7e4bf23dd21fb2ded0a81487a659848e2c383e0fc9eben/a