URLhaus Database

You are currently viewing the URLhaus database entry for https://dowsa.net/snui/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634147
URL: https://dowsa.net/snui/?1
URL Status:Offline
Host: dowsa.net
Date added:2023-05-16 13:42:09 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:43:28 UTC to abuse{at}hostgator[dot]com)
Takedown time:2 days, 7 hours, 28 minutes Poor (down since 2023-05-18 21:11:35 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Eemry.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 23.73% 
2023-05-18Ncaojhvu.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Fidqezl.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Gksppfdo.jsjs b2a92316cd72070157c041a27858bc3ca3ecf054e5a84124349c88b16d52dc00n/a 
2023-05-18Arivgzn.jsjs 1382bbc235ac7b5a2dd52d131a5789c7736d4f2a5d674e59c647d3aa92091188Virustotal results 31.03% Quakbot
2023-05-18Ctnfdppm.jsjs dfa59aec9d3aea04d54bc6bcacf0f7a1fc618f9981bc4a0955947134999d2ae9n/a Quakbot
2023-05-18Tmadkqla.jsjs 00662b73e2bd3a971290d1314c7c89f0f6d0d7244ebb8fde1721be20fa50a8daVirustotal results 30.51% 
2023-05-18Wjvuozi.jsjs b1580417444140f2311d1f0098c4af6163f27ee7fc99281c6c6904870fdd88e3Virustotal results 27.12% Quakbot
2023-05-18Udfjwjz.jsjs 5c2f413b69f9b93e5bf828d8c4219af88afdfc9d6fc5d04d749815dc66cd664bVirustotal results 33.90% Quakbot
2023-05-18Otsegdnv.jsjs 83743f2158c1cfe6f65635d6a1c2aeec71545802940ab5e083fa9d3a98d650aan/a Quakbot
2023-05-18Eoqrx.jsjs ef903a00f557175fbe1af9263796fbdaad81dc6578e948729821675219196f43n/a Quakbot
2023-05-18Bmac.jsjs d188bb106c47296a6f358dc69226ce3c9b48abe1399e7cf924fc4afa813b1505Virustotal results 30.00% 
2023-05-18Gvxaz.jsjs 70cbe6d0639705257a62be9eb8da5151af27830bf379d05aaffea8a6d1f49b39n/a Quakbot
2023-05-17Icss.jsjs 819e1677a9b83e3e2c5f43d5b2dc0f2f54147bd8257c067505fb818330efc68an/a 
2023-05-17Spujx.jsjs fceef22558799ba34afb830f44f63ff2d0386112e3506a24549d220e7ab2f4d1Virustotal results 15.52% Quakbot
2023-05-17Fhua.jsjs bc85062a6ed96ba55f83637c5941ebb10dd8734a7486eb2e716a41e21578b347n/a Quakbot
2023-05-17Cgjg.jsjs f744aaa7347e22e22b0047605341e57c431a9dbcdd028ca5713a221c51107aa1n/a Quakbot
2023-05-17Mmbcsxg.jsjs 1c8c07d6d5454652a85d1673775e071cb4068ca92c83d2e45e4cf830d85e56b7n/a Quakbot
2023-05-17Mecp.jsjs 288d425513bcbc2368880669d2eb2f2b553edb8962acfb77e4a967d751235520n/a Quakbot
2023-05-17Yxxw.jsjs a23cf11c2f986f5d2412a9c98d50dad0b0a02cd2dbbd6fdb1eb47c20cb7dd2bbn/a Quakbot
2023-05-17Emhpo.jsjs 052497f9e2373c4142ce3e2898afd2a8bf324fb03a732dbc34b4a8b080a7b520n/a Quakbot
2023-05-17Uxfcicw.jsjs b551c415000c94c5a1dfc7b0e71f9ac1f8878c1c381041556a5d3daf7c41b768n/a Quakbot
2023-05-17Rrlxbs.jsjs f929ebeb1cc73523247f14138f0806cafbcec5102e75636df5a99eb66d58ebfen/a Quakbot
2023-05-17Jmmkaw.jsjs c586c2546711e282cc72a6d92ff5a11c42ab5ce3c0a91e3aef7fc31dab6cc531n/a Quakbot
2023-05-17Gsqcmib.jsjs 11c182b00f3fa8f806ee3d8b3d9fc9e2a9b2251889367dcccc7ab828624b13adn/a 
2023-05-17Qupis.jsjs 267f4712f387de5a96535b8cfc788b2849c7aced4ab83456ae92a30275dc7ed6n/a Quakbot
2023-05-17Phdvhqr.jsjs 384c461877d706bec63b71997ffc20878deca8b775a989e193df8f247465790fn/a Quakbot
2023-05-17Vilhuj.jsjs b77d44680829d7a8b2f0c2a9eff12be96305de523ceefa013715dff5a445c413n/a Quakbot
2023-05-16Yuus.jsjs efa185e4a23739a01dd6b7fb8ab3f82b19d13b2a95664cd6cecf18ba719767d5n/a Quakbot
2023-05-16Ejtu.jsjs 64ed053e3c7846b23f6e1f71d5d6b200438b5df5a3c67f57da45b5bfde7190a0n/a Quakbot
2023-05-16Xuafcwy.jsjs 48a493ea317a66bbca2f149f6ab9adc32a002e105887b808648e486f105f6295n/a Quakbot
2023-05-16Vfnqumb.jsjs 1b87d92d0b9232f799616aac76977fee19e988a1ee74bccbb41e84beeda28b43n/a 
2023-05-16Xtouo.jsjs 941ed2d6967c6e9de9386cc53d6c866a6ae1eddeb8b899f86b0021151945c0cbn/a Quakbot
2023-05-16Encjfvka.jsjs a99c62f0741af4b3dddcc690200dd3fc9dbc130989b170879e095edf819b7afan/a Quakbot