URLhaus Database

You are currently viewing the URLhaus database entry for https://barreraselec.com/erv/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634140
URL: https://barreraselec.com/erv/?1
URL Status:Offline
Host: barreraselec.com
Date added:2023-05-16 13:42:08 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:43:39 UTC to abuse{at}hostgator[dot]com)
Takedown time:2 days, 7 hours, 28 minutes Poor (down since 2023-05-18 21:11:39 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Ilad.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Ehpabai.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Ltkat.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Onhvucyk.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Vpyci.jsjs 9b92e321a3421ba352044d2a066511fd903d5d580b0b414161307c2be7de1596n/a 
2023-05-18Sbww.jsjs 9b64ae131a9769a5a9c68d07ec022e6c1bb857b911fd3e4ba914453db7e4b317Virustotal results 25.42% Quakbot
2023-05-18Ogwdlhf.jsjs e378d6c2c0b5f5ad7404ae59dc73fb118bbc687f0b78b8526939d18e1a151bban/a 
2023-05-18Bcspyd.jsjs 029c7e0d1aaf9b325f8d1adf729b367d04954a895d6c1988c91f700855d91db6n/a Quakbot
2023-05-18Vojjptd.jsjs c66769c1beccde8a71bc20172ba3978dfa20fa8e27c21976b94c10327af6d4caVirustotal results 27.12% Quakbot
2023-05-18Qofd.jsjs 1f3d3d34fcd02bfbd9eba7becc4eb01342dffb209af4971f9df25374411cd1a7Virustotal results 28.81% Quakbot
2023-05-18Kviw.jsjs 7fdeda1296a36cffb37a03dca1e25125b27333e53ead2391247d2790dffd0e7aVirustotal results 32.20% Quakbot
2023-05-18Nhsmg.jsjs e1f86c377a5fb822c6704735ae1fc4f80bddbea822ee597fe99762e575e05ba2Virustotal results 25.86% Quakbot
2023-05-18Lvsy.jsjs 6b01b5522683c655f6e33fc4ecfa2ef55bae886a543ba306b61dd976a892fe96n/a 
2023-05-18Vrdzn.jsjs bcf9e05bff1a4453dbe187a142eddb6857e41bbaf3869f7ddc598b6ddca0d276Virustotal results 26.32% 
2023-05-17Uywcldj.jsjs 43783ef70654df6b8b4c8d132454112d675abe8da1b8cacb358490d7b2159998n/a Quakbot
2023-05-17Faydw.jsjs 973858251132d0779245a2e9dd301914a73702dadb9512759bce343a0fa1cb23n/a Quakbot
2023-05-17Hdsw.jsjs 023250d4f9af49d2f7968647280c712aff55b6146a5a06b7b302bab288a405baVirustotal results 29.31% Quakbot
2023-05-17Rvyy.jsjs a3b99e8c39ad9b207f02de2422a94864986aae304adc635dc0cda1b27ac9e322n/a 
2023-05-17Bxifm.jsjs ccdaaebf2ae2ce525ab5ccf2b4d74cf6b58e7d9515c21c0d46e2b8e0709eefb6n/a Quakbot
2023-05-17Xfre.jsjs 55ba4dfbf0eeacaace5287a51196c8d2e3c7ae79a65fd07a27fd6024ca40bc13Virustotal results 16.95% Quakbot
2023-05-17Ghhl.jsjs 64b83f23408d2a7227fa4c862e4bafcc65ec650c57113690f264fd64d4b9bfcen/a Quakbot
2023-05-17Ccmwt.jsjs d0a8f6776c170e07b706f8fdbc5136c07fc171907f4de4b125ee010f7a58e008n/a Quakbot
2023-05-17Ildvbilq.jsjs 5a74441f7e760f6d2744e20c1e9eb0d149ca7cc805225f62ca015ccdd77c00d9n/a Quakbot
2023-05-17Ebzlt.jsjs 3ba6678876fb0d21c8a1a851e440a3eb6a80df7311a2304b39e04edb9e29688fn/a Quakbot
2023-05-17Jlogfl.jsjs 93cf0a5a9c2039e503d0962afd8681f570044a4237b05bd10e415e0c89767344n/a Quakbot
2023-05-17Mdmdexpp.jsjs 56e4c5eb24c95460237c7043a2a91d90d0148c737ccb624158a8d6faddc8bc3bn/a Quakbot
2023-05-17Ctog.jsjs 3f0796f904b007fbc841e7a5378dae4b6f550bfb417e2d2f75a96d2676ba057dn/a Quakbot
2023-05-17Wgzo.jsjs caf92c6cd1bd5e957a6a95b57fbf2f1bdc5927fed22ed82fe47ce375f11c542cn/a Quakbot
2023-05-16Oufazu.jsjs e2f1a39022df042e830157145192c15f59169c1e88282526168707c9fba2dac8n/a Quakbot
2023-05-16Hbmt.jsjs 05663ad39dfeda24faa8346bea9fd50ab233fd48ad65d0b1ce058ee8fd584054n/a 
2023-05-16Gexjktb.jsjs ac4e9700a209c7ecd332ba0888c354ffb08d3c5ada63cf43baf2911e8a51e626n/a 
2023-05-16Fbvydcdu.jsjs 61c43cc4afddc5865662012fd628b82f491293b1b3f4816dea3dd2911c13dfb0n/a Quakbot
2023-05-16Jfoc.jsjs c5ae3e9e0baf7d5bc01b67a85291c7f2b47296243afbd9fff3fc45bf379905e3n/a Quakbot
2023-05-16Vdqlhd.jsjs fc04f06f15a3bf905f46eae16de9f0c9b41bd314c249316b13ceeed250c89856n/a Quakbot
2023-05-16Umllljbr.jsjs 9865971738ee229c9e90dad16ceb53cc49c3e683f6712b51abfbaf895d765828n/a