URLhaus Database

You are currently viewing the URLhaus database entry for https://123mkv.dev/iia/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634220
URL: https://123mkv.dev/iia/?1
URL Status:Offline
Host: 123mkv.dev
Date added:2023-05-16 13:42:21 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:44:58 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 9 hours, 12 minutes Poor (down since 2023-05-18 22:57:13 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Epysty.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Nxaw.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Ogobmao.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dn/a 
2023-05-18Yonbgn.jsjs 14ce409dfb31225a9aa73965aca14ef09852a03cf69033bf2deac2a816796a31n/a 
2023-05-18Sjfacz.jsjs abab065bf35d31ff71f44feed5659074ee381a93862817826b7b884996333700Virustotal results 25.86% Quakbot
2023-05-18Wnnr.jsjs 559259d8417125f8b762aadbb8a48b34058c7ee430dbe672ad8c7bc3fb919103Virustotal results 25.42% Quakbot
2023-05-18Pmkhujzg.jsjs 99ad6e2718d4fa53c8b3e7479802548afcde5a374d0563ab49ffb0405d8e435an/a Quakbot
2023-05-18Odwrtw.jsjs d72be2d3e9fcadaa237d2573ff95eacd51e973b70514465c8d57e7cd957769b2n/a Quakbot
2023-05-18Djsiyfwi.jsjs 8c4f0c45a34f4cd509c3354346e0db29fbbe4bd099e2b67de6abc88dde35081aVirustotal results 25.00% 
2023-05-18Adydaeew.jsjs 5c02cc26158109b9e14b2601be5848cda11477e56c521a791dfdc4081366da0bVirustotal results 26.67% Quakbot
2023-05-18Rwoix.jsjs 5195290a6bfe72d1709c08345d0210181ab60e363339796ef44c05a17d9c03dan/a 
2023-05-17Qdgnfec.jsjs 2a893ca454c8da14c3b8682420a27dee70132a6fc3dc8975c4ff49a12a7c64d6Virustotal results 27.12% 
2023-05-17Rlkjfn.jsjs 749721b74088db119de7bccbe5cea0c9486f42bb570461ff262c5ed324b4ca16n/a 
2023-05-17Njchyitl.jsjs 6debfe0d45ae5dd2dc9622ccd7c9480a487bacf847087e1fc8c10ca87a65e7a2Virustotal results 27.59% Quakbot
2023-05-17Imljvtln.jsjs 4ec189841fea600476bff49f643d0877dcdc3e3050e54e56abc5a7c492ed00dbn/a Quakbot
2023-05-17Fmyx.jsjs f7141b5e0f8768e0c1d39b6da886c311b1ba7a4a1db8d4efe2c936270bc2f0c8Virustotal results 26.32% 
2023-05-17Hlvajcxe.jsjs d072c0958caad1a6504236a0de9defd899adf9e6deedeb1cdeba1e72229b29d8Virustotal results 31.03% Quakbot
2023-05-17Lwwh.jsjs 2148fe2b647b8aa1006957e65de07d42e631ced18a21aa3d1aef1ad5d22ffae2n/a Quakbot
2023-05-17Tchate.jsjs 0eb36df6ac7e73e53c148166b06b5c1bc80d6a92c1718e19711dfd219c02ffd2n/a Quakbot
2023-05-17Ejkhsfrt.jsjs d6efd2352dda67c5018318682181452e080bc69611211e05d65719065d9ad2b8n/a Quakbot
2023-05-17Mzxxdshe.jsjs 78558e4fa6c57463cf39e4a1871e06826b516b303720cb46c3c7095aeb414107n/a 
2023-05-17Hijstz.jsjs 9f0f7cedea1b812e62625b57ae793f3a38a49bb6ffb5252ac2ca6d1262af346fn/a Quakbot
2023-05-17Ruerztmd.jsjs d59ab4a3f3cc8771d1924ef16d07439a09da37e0697edb2ad6f3f636b69cfb90n/a Quakbot
2023-05-17Fscyc.jsjs 9763fd723b31908d9bd326a7319d1ec8bd487af2f7db3795658df6af6aa59caan/a Quakbot
2023-05-17Niwa.jsjs 51b8e79000db22758c01f7e76fac58a8528e28139fee15b3e3b95a479e353879n/a Quakbot
2023-05-16Psytu.jsjs 0be6f3d27ba38d6bc49690230f026de4fe64fc90fc206ce40a1418a4555d8de2n/a 
2023-05-16Dibcg.jsjs ced06ac60727797a4a1a9b391aca003a1e2c879c5d906d914e234a1784746484n/a Quakbot
2023-05-16Nehvgdnk.jsjs 5b3c7049cfe2bbbc6e7e79d30a1fba8594acc9c52f3e8a3361c609cb7bcf31b1n/a Quakbot
2023-05-16Ilazhyd.jsjs db1aada07f9a87adda80ab6d260c6427c8e5d710ca50d439c52cba5bc39453d7n/a Quakbot
2023-05-16Jdszzyhd.jsjs 55cf8d5c4972b154f746738d3aff9c80efaccc880d04739506f3382cce31bcden/a 
2023-05-16Ypiy.jsjs b82783432551a7430baa1abb8d14dd98d8bb60b3bc959dcbc7badf1c0fe50fb5n/a Quakbot
2023-05-16Plrmyr.jsjs f640d56b2bbc8aef140c761a7c780b5b64fc026bddd47f7518016e22b2364cb0n/a Quakbot
2023-05-16Wgswary.jsjs c07f6d193a3a0ee29c048a418968a48b2d3a6227ac0e7609be298767c23cbbe8n/a Quakbot