URLhaus Database

You are currently viewing the URLhaus database entry for https://globeartecrafts.com/us/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634183
URL: https://globeartecrafts.com/us/?1
URL Status:Offline
Host: globeartecrafts.com
Date added:2023-05-16 13:42:14 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:44:20 UTC to abuse{at}hostgator[dot]com)
Takedown time:2 days, 7 hours, 37 minutes Poor (down since 2023-05-18 21:22:14 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Wnsu.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Zwmf.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Jjlw.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Tdnmgl.jsjs 83ac5e2e7a5679355f46ab7791a480cb6a18aa3e86331d062bfc7360a5c060c3n/a 
2023-05-18Buuvw.jsjs 83a6906128b93fb8777e46c5a7c736321ce2cabe58ece643b53dd9884a1c6c77n/a Quakbot
2023-05-18Jhgx.jsjs 0f979704b112aec8ec69c28f0075d45f2ed1aa14ddaa3effca523aaba13f0a6fVirustotal results 25.86% Quakbot
2023-05-18Lszgrj.jsjs 1226b64c5cdc915647f5412f5ca66ffeb7ac2c6e7787e3f38195da88b68ca12en/a Quakbot
2023-05-18Zhldavi.jsjs a4633a3bade267edfd4e6171fb238320ca7b8fc6ce56403954409c8af38c4ca5Virustotal results 27.12% 
2023-05-18Hskwysfi.jsjs fc35a5a51f420de2456b7dcb8c59dfcfc4a5a995abb8201286aa81cd0c391508n/a Quakbot
2023-05-18Mvragbo.jsjs 9ed630b44354fa9a5b12648e092b487dbecee08d6aad53bf5d2695dbea9b9cc6Virustotal results 32.20% Quakbot
2023-05-18Jeerrka.jsjs a957652292b9f2b69f858cd1f3221d9c4ae8b165a295b91459fd2bf2eedce715Virustotal results 25.86% Quakbot
2023-05-18Utuvbaul.jsjs 90854b60ab6b30c83f8839a6d1977dc7968771625bc4a6751d30fa1ff505912bVirustotal results 27.12% Quakbot
2023-05-18Rqcmbk.jsjs f093b882b8fd4a20a6b626c96af959ed31285d4cd57354e4cf7de124fb062b81Virustotal results 30.51% Quakbot
2023-05-17Wmupuh.jsjs 9695d2ed6261eeebd78cdc70e45105cb68ff36705197941a93e942a4f861ab3eVirustotal results 25.42% Quakbot
2023-05-17Dejzliq.jsjs 75203d83c417a2bcd9a5298c46ac9c2befe4e75e7e2c40722c7b8f59a2232c98Virustotal results 27.12% Quakbot
2023-05-17Njfuks.jsjs 2177d925f10e2cd3a5d175b8e14d8faa7413f6cd18da6fc7832edca35cdb5aadVirustotal results 25.42% 
2023-05-17Ncikelru.jsjs a23cf11c2f986f5d2412a9c98d50dad0b0a02cd2dbbd6fdb1eb47c20cb7dd2bbn/a Quakbot
2023-05-17Tqvmqh.jsjs 4199aea159f7829cacce2dcf979b07474ecef8f9e346c83817680cf1cccae1b3n/a Quakbot
2023-05-17Vqqmxa.jsjs 3b3714312b9a47880e50308268338b4ce72011e082b2bb4bd94f2fbe7f738e56Virustotal results 15.38% Quakbot
2023-05-17Hwarcqam.jsjs 2a38d5dd759f5e13e433429b8fbed42e9b1fa7de9f671bf87d0739862847c16an/aQuakbot
2023-05-17Whpwsi.jsjs f4fb9e206467712813d87a31c0ea3285bf1a5ad9658839ca77ac0a61dcbf0693n/a Quakbot
2023-05-17Hyaqnvf.jsjs 6ec02151fafc1cd2dac041fc3459f6a5dc108a32229c8e40f283b0c076c8a3d7n/a Quakbot
2023-05-17Bjsed.jsjs 80216c47a711049852a2fda092d52976a3da2c200403f8615d88438a4e02e60en/a 
2023-05-17Flzumq.jsjs e7d390eb8f0a696103f00d0a6e2b19f599e5a9ee8a4885546206d5c7c6b616b9n/a 
2023-05-17Aumf.jsjs 5289443cfec25d72450a662cb66b1e480b348e5bbc18d1dd4ca5de691e65cb5an/a 
2023-05-17Fjeyklmv.jsjs c499407b6b60d0fb936bae911ae8bc3de1a043450a0a4725423ddcf26f3237f3n/a Quakbot
2023-05-16Dget.jsjs 6177be85e0004450f650f104187f5d95bda1867e41dd90936e0cbb04dc31f20en/a Quakbot
2023-05-16Tpwsynkr.jsjs e7706a06eb95d74317ad34723705639eee6828af5c2d57585625e6e9e0c5599cn/a Quakbot
2023-05-16Evsh.jsjs d4655a79cad34a9cbfaf7b17b38f35eb73486afe931b38c4714b9d408b326d4an/a Quakbot
2023-05-16Dnxlzplu.jsjs 12f07369dfa1172dc7b6a2149dc314dab513275a15eb0a8b817286f837847f70n/a Quakbot
2023-05-16Jgicgt.jsjs 8babb7a45eccb16ec25a4b829f686da1ed2c3333755c730f35bd4dad34594b76n/a Quakbot
2023-05-16Yzawucc.jsjs d8891464e714b873ebcf0053c65947f8a098053e376e0aefda5ece3eee46feccn/a Quakbot
2023-05-16Mgcuof.jsjs 3aecea0e8a359e5fbdc7f8777a1e0bb605c01e79e3ec19244ba4b732709eb6a2n/a 
2023-05-16Ltxa.jsjs 8f0f61511c71c1477b776edf04fde11d89154d2aae08d23ade652f593053fb5dn/a Quakbot