URLhaus Database

You are currently viewing the URLhaus database entry for https://ramqprofessionnel.com/as/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634186
URL: https://ramqprofessionnel.com/as/?1
URL Status:Offline
Host: ramqprofessionnel.com
Date added:2023-05-16 13:42:15 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:44:23 UTC to abuse{at}hostgator[dot]com)
Takedown time:2 days, 7 hours, 35 minutes Poor (down since 2023-05-18 21:19:55 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Yzvny.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Hupmz.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Xasjb.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Dwvgok.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dn/a 
2023-05-18Lvboka.jsjs 5c57b539392768e2e9e8490f11f6528d81875b4aae44e11319d0a94af50b1f00n/a Quakbot
2023-05-18Muqr.jsjs 3b3714312b9a47880e50308268338b4ce72011e082b2bb4bd94f2fbe7f738e56Virustotal results 26.79% Quakbot
2023-05-18Rycnws.jsjs b65cfc5c1f188f590ab7d7d6a20d1ea638a086a9be61e3442b6ea9388fda3c0cn/a Quakbot
2023-05-18Lbkpv.jsjs 269dec903e55df2babe1cb8bb498ac7fe56d2a079cdf89c2d5c354b7a8fa1250n/a Quakbot
2023-05-18Jkyckbz.jsjs 6637cd86cb6d1780d474d49c347f8accc08a24f73ec7d212ecaa591e370d7e1dn/a 
2023-05-18Mazk.jsjs 75203d83c417a2bcd9a5298c46ac9c2befe4e75e7e2c40722c7b8f59a2232c98Virustotal results 27.12% Quakbot
2023-05-18Nncbpy.jsjs c1058b3e90189dda6f009ff9980c9a284c196414c7682ef914862f8964b9950dVirustotal results 31.03% Quakbot
2023-05-18Avyoyc.jsjs 621b5cf40077c9b8235e3525da2dea7b28a80029ac3f7ee7477d78c780f4b8c7n/a Quakbot
2023-05-17Cucfmsi.jsjs 17dcb0baeee21444da6b254c7dcd1d98989c6a0c089b8d79530a2c2a83dc34d3n/a 
2023-05-17Ufyraaw.jsjs e0a76560e4dfa1a02a0ed9070737950e644f0b851388f7a580a8c384ba1ae3aaVirustotal results 28.81% 
2023-05-17Ebhntniy.jsjs 8f5bae7c3310650dc125b9223695f4a40a6d1394f6f6f9dff466a3e53099ba7en/a Quakbot
2023-05-17Lkbugp.jsjs d25526dc27feb5e67f938d4b403a9dad1250e9bad80e8f4d66a22d696dacc328Virustotal results 32.20% 
2023-05-17Kgpipam.jsjs 8d8b15db563271d51b6caabd1d280fdd09e2262383534714503ad6903b1dd6fcVirustotal results 31.03% Quakbot
2023-05-17Pcsmy.jsjs 321c1a3f14a23d2a9aa660e3c3d41d7c92fbba4788fc20057ac697e402248405n/a Quakbot
2023-05-17Bwjwbain.jsjs 9fb9192d902b2bec0253263ac7de12696284a3203d04c735faf491c94c94ed32n/a Quakbot
2023-05-17Pbvwfngg.jsjs 9be436ae8d8612af572358c0394b27e9c751e6f50b2597c2b7ae636e99088255n/a 
2023-05-17Tzothien.jsjs d145fc3a1cf646f3a0341524d51473f0266fade9b163ce32889f27fc129e4593n/a Quakbot
2023-05-17Pykuwhi.jsjs b66633ea737137021184b0c3420b651c4ac5d54f09fecbb35dfca8f3a9d361c4n/a Quakbot
2023-05-17Vakd.jsjs d11a21d0c7c22542160157a88136b036bfaedb808444d86c942d23a86159275cn/a 
2023-05-17Dthapf.jsjs d1786ba81bc5963393e2b9ddf773039be7e3b98f98a09fc7903d6206854f6b1bn/a Quakbot
2023-05-17Rlvc.jsjs 64810499a01839250cbd0e54faff64349f5f1d2fa7d6a8b4ff68fffd5b34f964n/a 
2023-05-17Axgouv.jsjs 35880ead2107d2af878cd51f3f91fc99a008c8dc3714c35d9f88e1951affc1abn/a Quakbot
2023-05-17Iqsxv.jsjs a52d0597fb1dd945eae542ade8741f7c24f73f607cd3453909e24f8ab31e3e87n/a Quakbot
2023-05-16Uovbsw.jsjs ab2447665b27b1f9935e50ca448ce3f613a8a4281e9a763ae6d28c8ce5cda7fan/a 
2023-05-16Esflwbc.jsjs 97509f5b9b0c08be6d11e288139cff748357d809c7c9d962460c2cccb5c926aan/a Quakbot
2023-05-16Zyxetp.jsjs 86348724e933188741a31db4c07c38a3117e1e7e90a61f820cc527adf58e614en/a Quakbot
2023-05-16Byawob.jsjs fa873fb9503171092d5b93974792b38e42da820ddf7859c55fbf72bd073ba46en/a Quakbot
2023-05-16Rdntteau.jsjs 8c1c4f5af20a879ef3e1661b7201797644ecb0f4480bbddd2e2d3fd36d7853d5n/a Quakbot
2023-05-16Ozchbrfm.jsjs cfc9c89bcfb499a65ae73851305964af2eff65ee6f21aa6be09eb4a278623783n/a Quakbot
2023-05-16Jzitit.jsjs f864ff0d604d1fc7de71cd82decc1b0543c6d027abf9c2dcd4a6f6ba3da769f3n/a Quakbot