URLhaus Database

You are currently viewing the URLhaus database entry for https://hichambellihi.com/rasp/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634205
URL: https://hichambellihi.com/rasp/?1
URL Status:Offline
Host: hichambellihi.com
Date added:2023-05-16 13:42:19 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:44:42 UTC to abuse{at}hostgator[dot]com)
Takedown time:2 days, 7 hours, 27 minutes Poor (down since 2023-05-18 21:11:44 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Xbekls.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Vbjs.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Ipbob.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcn/a
2023-05-18Vvszrsz.jsjs c1460321f81f5ddaf0e6965fdc14511326240b2d261c1e2c98e92f73eb1accd4n/a Quakbot
2023-05-18Teznnqoo.jsjs 1d2471f7acbab8882ea6f628275c501f0f81e0aeab5ee16537702bd849e8ba6bn/a Quakbot
2023-05-18Tjsw.jsjs 15284b1502dbf4c84ff0c772b1ae8788a56987a2e9cda8ba27208e57da59e8a0n/a Quakbot
2023-05-18Gkypif.jsjs f3cf1988e5b288b64fc34cf15045d67a4fcd2c9c61549510e3df907ea1f61cf8Virustotal results 27.12% Quakbot
2023-05-18Frhfpp.jsjs 3833419abb83fe2369255a23b3fa983e65047ca005c0dee0d772efbdbf8ee75fn/a Quakbot
2023-05-18Lybwau.jsjs 6c9b5539e5f1f1b4e1d609c95278f2b4bd4386f4efc315a332648f1467d2b94aVirustotal results 23.73% Quakbot
2023-05-18Efnzje.jsjs 9d55c860ce682edea5933b6e9e441703b00b9880087fafd62ecedabf0665836dVirustotal results 32.20% Quakbot
2023-05-17Dtbjj.jsjs 576d80e7bad2be3b3f4ddb0ccbe067bceabbc990bb96e11007cc74c2d6ad7bean/a Quakbot
2023-05-17Euiygjw.jsjs fe6c3afc81fba017285089bb2240464e993b83edbf51755fe47e70d5ce454558Virustotal results 22.64% Quakbot
2023-05-17Wxwgw.jsjs 9dc74a47b57fcd85200f975b411792401c29e5d1ac2806f4efca47c4fbc00eben/a Quakbot
2023-05-17Botg.jsjs 33f33ebc5ae78bdbf3a9afc064c64f1121c0214e1305d5567232cbc8779ab8c3n/a Quakbot
2023-05-17Gnglubi.jsjs ba77ea0ae3afe4582d390d1930a3792bde2ba411df7e3c05ae156306c5cd46e4n/a Quakbot
2023-05-17Tpmnrrv.jsjs c5a390d1bf67c2241e5a9cb33cab3e83b41d4319c494c9f15d864cff3015e95dVirustotal results 15.52% Quakbot
2023-05-17Snbuahjh.jsjs e90a83b63ded96ef671ed3692c8983df0d5845adeef9c03bbbacc8a34cc8db79n/a Quakbot
2023-05-17Ylvv.jsjs c1058b3e90189dda6f009ff9980c9a284c196414c7682ef914862f8964b9950dn/a Quakbot
2023-05-17Eqwwljp.jsjs 32f4bcc9cf9d7a0de18fc2ad687692675309fc19a97698519489e0d31b596287n/a Quakbot
2023-05-17Spvnpm.jsjs 9ce73441efc0d3e63ddde97baf7b98c28de618a0cbdfc19800529e426db11023n/a Quakbot
2023-05-17Drygrcpf.jsjs d7338d7092353a9d7624fb8689784979c4849118dde78e3c0cfea3a725d6671cn/a Quakbot
2023-05-17Keysl.jsjs 4e38840242a86ab7f9c60a3f1678bb2b98ac74c02b9e1b8a6f85f2872a8e2611n/a 
2023-05-17Osfor.jsjs dc80f6ecc8b327199c1def03cbe98c981db8a0de38ea7c84a3ced700d2381413n/a 
2023-05-17Eknv.jsjs be6c9e5dc8879a5c4bcd88c51a46a785e1389d2f5dc7aeb065c6eb3de96b41ean/a Quakbot
2023-05-16Bekugdj.jsjs 40682151a575398a15cde759b1d6dc23a0c5d5479b8f75208645e063c99344bbn/a Quakbot
2023-05-16Decddx.jsjs 02813ab977594858acfb2f94cc2802c6552e359cda7076548f663f5925e8bce2n/a Quakbot
2023-05-16Xcohogw.jsjs a5242e013a906e5c9b3c2b6c3fc776fc08e0a8141f6978a992cb5a525d99f644n/a Quakbot
2023-05-16Hufvbnk.jsjs fcff80f1b8fba38f4065a0178489e8310b5b3a43baeafe90f5f135bbe6cda874n/a Quakbot
2023-05-16Ppvcevy.jsjs 03134c184b8d92b41e8e5c455390c13e8a484ede9f1ff87221e9817e91b80196n/a Quakbot
2023-05-16Hsag.jsjs 7216c2fc3c291f68abee0c2ce1e9172f086e33a3fee74acd20c5bd524d5fc83bn/a Quakbot