URLhaus Database

You are currently viewing the URLhaus database entry for https://optimalsolutionsonline.com/it/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634207
URL: https://optimalsolutionsonline.com/it/?1
URL Status:Offline
Host: optimalsolutionsonline.com
Date added:2023-05-16 13:42:19 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU100116552 created on 2023-05-16 13:43:08 UTC)
Takedown time:2 days, 9 hours, 4 minutes Poor (down since 2023-05-18 22:47:51 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Striq.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Kpecnyf.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Mjigsr.jsjs 7878fa8d8893c310e3f12cfb2f8792dfe905aea33cd4ac33148e1cc6cdd2d194n/a 
2023-05-18Argavr.jsjs 9fb9192d902b2bec0253263ac7de12696284a3203d04c735faf491c94c94ed32n/a Quakbot
2023-05-18Irjktnf.jsjs f65cfd45df99f110dd5e24acdcb4a032a333c2d5f289d2867feb0d7fc6aa1960n/a Quakbot
2023-05-18Oftn.jsjs 27544c60ff36a51e0dae2573402a63de5c6ae28c1c7160377a0d3787272d74bbn/a Quakbot
2023-05-18Lozakiv.jsjs 4f9c04f40501ff342f07c66108d89ffff23f8fa85ac574a2829cd65a757aeacfn/a Quakbot
2023-05-18Giojir.jsjs 34af4640c3591095a1562606faa096b2cab669c17859f8b99df4321999b17373Virustotal results 22.41% Quakbot
2023-05-18Ycukj.jsjs 724461f309ab96d511ced805b91951db475a6c036216777c4f4570a3ce7fbac5n/a Quakbot
2023-05-18Msrcpbm.jsjs 53d2ace5dfd9b4384bcefcc9b7e2c0b6701053df124573ad3dc1044ca98e8398Virustotal results 31.03% Quakbot
2023-05-17Ljvxgb.jsjs 07cd66f1c775da49daf409f335ec5d0189ba991d2e66c33b01708efe1934e0dfVirustotal results 27.12% Quakbot
2023-05-17Akjgre.jsjs 81c46b64d5ec7559ae3287d14b77e2574baf7808d818c8b6f2375da96a544c50Virustotal results 27.12% 
2023-05-17Uybqaudp.jsjs f21a9095152b5a7124af37bde4000f76717ad002ec5e40bb2b86dc71839dabeaVirustotal results 30.51% Quakbot
2023-05-17Gpzwtvym.jsjs 07d1842292aa2619ebfbb551eff5580fb24f945283f3de4298dc06f9493b6b20n/a 
2023-05-17Zugkyes.jsjs 981c8836ca3485400bc8fa7a73067986d2347ba02a058d61f1ee31be71d09a3cVirustotal results 25.42% Quakbot
2023-05-17Tedz.jsjs d188bb106c47296a6f358dc69226ce3c9b48abe1399e7cf924fc4afa813b1505Virustotal results 30.51% 
2023-05-17Mdrhgcch.jsjs 2148fe2b647b8aa1006957e65de07d42e631ced18a21aa3d1aef1ad5d22ffae2Virustotal results 29.82% Quakbot
2023-05-17Abhfmd.jsjs 798823d6f774c2380137f2e4d5c8a16ea4cec5e96284dfed0891528bdf512376n/a Quakbot
2023-05-17Ycarzfff.jsjs c0034fa218765c1282b576df14747aaaa6713655a5903f87691c0ed3bda88802n/a Quakbot
2023-05-17Bfqmb.jsjs abd1a3383288d9c9060999df23d35515dc38ef4a12245c446c36acd8a48cd785n/a Quakbot
2023-05-17Jucnch.jsjs 9dc90e28247a69af95f115421816fc50488b050b5f0313fb932b466fd929a7e2n/a Quakbot
2023-05-17Spag.jsjs 321b93d3b2e20e124ae2f7c77352a115c55d8e018ef82b1d89ea5b8ffb62d392n/a 
2023-05-17Wxeqaur.jsjs 263804c8ba9ebb703243fc98403a7b60a9b0df293772778e18d42e223bd63a6dn/a 
2023-05-16Cexolsvu.jsjs e8cc00a7cd5f78fd0150692a75194fbab62f45ab2b1ab2a5b2c982eff2d2e123n/a 
2023-05-16Dmbmzl.jsjs 25347df6d83dd8e537f224a7264aae5628eb7ef830672033611b300fe99aa454n/a 
2023-05-16Yoerlg.jsjs e9bedec0d3b0aa4f23a6a749ac845e5dff20a6696e8cdfb067f8ed3ea0d266b9n/a Quakbot
2023-05-16Ttng.jsjs 786ead22b97ce338aeb64c4d51f4da842baa55b6c6bd09cf94c76aeb862dce0cn/a 
2023-05-16Aiwsoju.jsjs 46f77af65fee02b09df1af186b6c5c9a26f06fb9d95e840585a734931e3a5fcan/a Quakbot
2023-05-16Bncjondi.jsjs 65e79499974836f1126e6f301aef9fbff3e9927f1c7deb0a2d61af65b642d07an/a Quakbot
2023-05-16Douyoz.jsjs 4fd29177211d2a961ed3a2fea45bb6796062f7370a5df841dc4a8fcc99a6a835n/a