URLhaus Database

You are currently viewing the URLhaus database entry for https://restoranvelikaskadarlija.com/anq/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634235
URL: https://restoranvelikaskadarlija.com/anq/?1
URL Status:Offline
Host: restoranvelikaskadarlija.com
Date added:2023-05-16 13:42:23 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:45:07 UTC to abuse{at}oriontelekom[dot]rs)
Takedown time:2 days, 7 hours, 36 minutes Poor (down since 2023-05-18 21:22:03 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Awhaeo.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 23.73% 
2023-05-18Vomfw.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Frrw.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Zdgyambd.jsjs f8214979cbccba555698a0dde5b0048640eb1ea364948cf8b27c594f558c203bn/a 
2023-05-18Vyle.jsjs 5f98b59055620e884f40e504321e65af6a6ff2e7eff1035ff136dc57e98e0cb1Virustotal results 25.86% Quakbot
2023-05-18Yxgkuctg.jsjs 9fc93269f064d50db15333e3dbcf15dccb35094dc51bedfc465ba99ce6a37953n/a Quakbot
2023-05-18Eufme.jsjs 77a97bbae92dc7a7845ded72bd28a849a3c41c2912628816d93ff4b9a27ed45fVirustotal results 32.20% Quakbot
2023-05-18Veibljed.jsjs 4aa5d2a8e1f14eda407f7f6020bae48610ad7ecca61519bca8d513c840e454dfVirustotal results 25.42% Quakbot
2023-05-18Agpnx.jsjs 32786105579d9ee90c2b3e3c5c1aa115af93c9931e8629901c02b41150fa1636Virustotal results 27.59% Quakbot
2023-05-18Qgdcdxc.jsjs 7f96290dff45385bfd8340f07e433e56831a66a593d5472a2ef8da6d665f355bn/a Quakbot
2023-05-18Ussaq.jsjs fe6c3afc81fba017285089bb2240464e993b83edbf51755fe47e70d5ce454558Virustotal results 22.64% Quakbot
2023-05-18Ecsgpza.jsjs 9b64ae131a9769a5a9c68d07ec022e6c1bb857b911fd3e4ba914453db7e4b317Virustotal results 25.42% Quakbot
2023-05-18Wxxdu.jsjs 7a4ab56c0029ea06eceabbc4e8b9f005b37b97d1ea376ed3db95729269780e17n/a Quakbot
2023-05-17Gvkys.jsjs 215820e48ebfa9dbcba7260a2176ccbb21df119cff17a8389f165811c8e3664bVirustotal results 31.03% Quakbot
2023-05-17Bzuvbpa.jsjs c82de2729716408ddf8dadbc7c96d591774e13040bd782c4b2f6f56ee2b039d5Virustotal results 30.51% Quakbot
2023-05-17Hvojykd.jsjs 2a38d5dd759f5e13e433429b8fbed42e9b1fa7de9f671bf87d0739862847c16aVirustotal results 26.67%Quakbot
2023-05-17Fuusfvw.jsjs ad3a510115f62b2cdabc978db56cb5d93c372bcf45b52fa39d4d125e1cae3caen/a Quakbot
2023-05-17Zxam.jsjs 39ac88782d43b40c56cd7245203211f747e986908f13072c8d6d6caede0ef79en/a 
2023-05-17Sebrjbpx.jsjs f2a2ace114103a041e79ed5165b96ac32d3595aaa0c8f1ff92533be7728179a4n/a 
2023-05-17Cyzqgsgl.jsjs a1f08963f5715bb8830f2ea036c6be1f8a5f34bc8a6bc799c36611f79e54b14dn/a Quakbot
2023-05-17Ixsbn.jsjs deeae69c4717d775bf5fa189632028d3bea8fff66b068f15bb1c163430d3fb84n/a 
2023-05-17Retdc.jsjs 318e5ee1bc11d4bde4669815910cd5d7bbd1374f9a84f358c7657fb39db96facn/a Quakbot
2023-05-17Rlzicwah.jsjs e88cb311067622a93163871c052c111275b3f488aa24952de763b199b39b0e8cn/a Quakbot
2023-05-17Blmf.jsjs 2319e8b105a167cf2af35ddf059aaaedd8a24a9f508855dd9c63cc03787d3656n/a Quakbot
2023-05-17Laasrrqs.jsjs 0b7c04a500bd868540fbd47e055fc110bfba74217ba5de39cfc7f084c4b31b0cn/a Quakbot
2023-05-17Nwxddwqj.jsjs 92180f9d2b4f4c2dd3ce049663145e0b85694964ac37b07d5c740414db274b7fn/a Quakbot
2023-05-17Payujv.jsjs bf986166d76301d8ba213009076f3fddd3e2356127c4bdf6d6e1883ce8249c2an/a Quakbot
2023-05-16Xzofsdtt.jsjs 796035c4eb3bee11170b2194460065befc24e7c008c1a071248b95c1f758f0f6n/a 
2023-05-16Pcfschko.jsjs 714ecca98c47ae1d8e91f50546be75a5a010e5327616e35da78b0f1af07bfefdn/a Quakbot
2023-05-16Qvtzkwif.jsjs 18a13a51164638d6dbf48f347cb9622e311db3e145679ee98dd70d19350e3e4cn/a 
2023-05-16Isvko.jsjs 9752f8e18ea9de542bdf37b4a5caa2c439bb498a94861e68103b97160de79631n/a Quakbot
2023-05-16Rmlx.jsjs 6c5035f15f30dcff9c3ffa572013b1872e63d2c4dc35c5a4860757dcc80faac6n/a Quakbot
2023-05-16Fhowkj.jsjs c16a95750270c262ff87db971c372e9b50a8853b5d52c8f9b8b61a7fe243c06bn/a 
2023-05-16Wrhwuxw.jsjs 308dc6972e8ba97bbdde58af0ba145ab1240bc5d7d5734c7ba6a37ae6ac7e3aen/a Quakbot