URLhaus Database

You are currently viewing the URLhaus database entry for https://gasak88.com/taei/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634143
URL: https://gasak88.com/taei/?1
URL Status:Offline
Host: gasak88.com
Date added:2023-05-16 13:42:08 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:17:09 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 9 hours, 9 minutes Poor (down since 2023-05-18 22:53:25 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Fenjhpg.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Jifme.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Psjxzt.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Qnrnkkq.jsjs 01804d6a67cb3105327964f67f654d679b7d1fab4b59dbe855063767fc0bfd80n/a 
2023-05-18Qfcmoxb.jsjs 34af4640c3591095a1562606faa096b2cab669c17859f8b99df4321999b17373Virustotal results 22.41% Quakbot
2023-05-18Dvezm.jsjs 78416fcca7554fb3cc440610418511210e0dc5abcebf75ace7c1ef65d4d29216Virustotal results 25.42% Quakbot
2023-05-18Udfizveq.jsjs b3c3f0880fe1ebd5b9f5146a8164da0834ee29a37e5a1cd8e534efe15c786daen/a Quakbot
2023-05-18Aadag.jsjs b96c9289fab9b7759ba3dd4ea2b84064aa296457443d10064d033d225609b55dVirustotal results 23.73% Quakbot
2023-05-18Jbzs.jsjs f33a199b902aff95c3dede5cbfe632298042593120c23bc925987f2dcdcfce53n/a Quakbot
2023-05-18Bihbim.jsjs 813efe88246132a445789b21b1536bd94263cd9a8c7623d7b96a9e5ac755d470Virustotal results 31.03% Quakbot
2023-05-18Jnkx.jsjs 4779dbaf4f01d866b1dd6a2cdeb855c53a82951952ba41e9af73be849bc9116bn/a Quakbot
2023-05-18Bjunklf.jsjs 8b2b3c3498bea970b5883a908b36e4437b9809a010cf2df44004264d33d66dbdVirustotal results 11.86% Quakbot
2023-05-18Wqrr.jsjs 35a99626b0db91409ed1ac874964033c1490a20549ae611e95fa7f81dbd98d44n/a Quakbot
2023-05-17Fmkedqnn.jsjs 32b63b6f4ee01c7737a32e2bfd61aca2c688fdbd79e9455010a3a5506954ff0aVirustotal results 24.14% 
2023-05-17Mnfma.jsjs 91f2349ddffafc85ec07721077d9d38a2ab0376beaf588950fe98bb16d3218efn/a Quakbot
2023-05-17Wxre.jsjs 0a976cddfcc0bc1b5776cc8cce0d9d1c9fbddfee4017434169358a45936d3ab5Virustotal results 27.12% Quakbot
2023-05-17Vbls.jsjs 0c7c96dd589f0bc1676f7af1371bc70cbf50d310293d070ff8e1fef3df4533f9Virustotal results 24.14% 
2023-05-17Grzcivnd.jsjs 61ef6ef0f9ddc3b6d4b8201a85d35c7ce79058c5ccbb5ccb51e68f15898a3bf9n/a Quakbot
2023-05-17Zxbyyxva.jsjs a5ad0d19dd6ae50f16dc5be1921c43a887aba5ab8dae04acbea417a5cd62d61cVirustotal results 26.32% Quakbot
2023-05-17Iuecgnci.jsjs d112f357338680817dc9cfe7ce64d7ab03de74008f16c43f1ef94b38bd159af8n/a Quakbot
2023-05-17Hzjgmzf.jsjs d91ac6be91276c304c8cb633a878193c366e7ab948eb5d9deb532c0ddeebe5ben/a Quakbot
2023-05-17Vkdxzyno.jsjs b163d138535f35db11e5c9875614f6720fdd28665d4ad5e137a663aa663c5b45n/a Quakbot
2023-05-17Wcdjtf.jsjs 462e133129d5691e1a4c1f850c781444e94ad7a4b454c9c1b73e1e60fed20fb3n/a Quakbot
2023-05-17Aqqocio.jsjs 9c79c8f5e5b5c12a6583d2aad9055b36a7a394c3f5085ebbb60610437b8099b4n/a 
2023-05-17Heglxmmv.jsjs e5a717c7873e2600a960a0318c4f4a5d905139c983b4cb403b822fc7595fa18bn/a Quakbot
2023-05-17Asqowa.jsjs 359150384b79f6f00b413e35570578fe3bc19ee3734a4c3323b1589937f49f66n/a 
2023-05-17Aajpj.jsjs 7dc00abda4cfb4f2c494ce2797525ce9b555aeac6f57e92d01e9707679c8fe77n/a Quakbot
2023-05-16Ovawj.jsjs b852cc020ecafca2785eb3aebffaa10ca771cb8d685ca026dcaac4a77fdb0354n/a 
2023-05-16Oejjg.jsjs 518abba42e4a739344d70bd3c89d63bd0b40a963655164f90fd88eda34ec563fn/a Quakbot
2023-05-16Oqxkhku.jsjs 236dd80ffefd9b600b17846abc46eb39fc2bf5d966e89b9ad22cbd9fecd247bfn/a 
2023-05-16Hghoovb.jsjs e1a40b3c4998f8bbeb876e6ed88da759ad634bd8cc390acca3cf9b5016562803n/a Quakbot
2023-05-16Qgevcu.jsjs 4f8276232faae0488617f63c12568e436883ca2332512e8ba51d52b3ec2caa09n/a Quakbot
2023-05-16Ruoqmu.jsjs 0714b8d91d430084d48f6a2d73b64f60ff5a67240a794e327d8a5043c554e3bdn/a Quakbot
2023-05-16Awpwmv.jsjs 457474a360d09c2633af24047a63d0d7f7f378e5d572bef031336b81096cba3cn/a