URLhaus Database

You are currently viewing the URLhaus database entry for https://ghadmoshrek.com/en/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634236
URL: https://ghadmoshrek.com/en/?1
URL Status:Offline
Host: ghadmoshrek.com
Date added:2023-05-16 13:42:24 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:43:44 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 7 hours, 39 minutes Poor (down since 2023-05-18 21:22:56 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Zscon.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Bdzvy.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Bhazl.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Wmstzphd.jsjs 9b92e321a3421ba352044d2a066511fd903d5d580b0b414161307c2be7de1596n/a 
2023-05-18Onvykncj.jsjs e5e55c026d33a226eeaecaec0b1f0e887452329d55151ca363f093722745e770n/a Quakbot
2023-05-18Wzobevx.jsjs 93492712919e0adee85ebe16363f99eb8fdbfe7f055f8645bf21322ce803cc13n/a Quakbot
2023-05-18Frzl.jsjs 9da26f54018ef7b69e7ca172d1ef9d1de643acee030e0b25c66a5f27867c8833Virustotal results 26.67% Quakbot
2023-05-18Oanai.jsjs 08a4ded15b1b100031a7d4d5816c32a45f5bf29a74bb677f99634db21d3cd646Virustotal results 11.86% 
2023-05-18Pfmrpi.jsjs fab89deda2e8de1afcdf4d43b713652dab42ebcad6b4eddcd3b225188a7e3078n/a Quakbot
2023-05-18Biriji.jsjs 90d7044e2b3c6695b8ce4be887d9fedf198e2631c47d77093e427bbdc2ff19fdVirustotal results 29.82% Quakbot
2023-05-18Eeqxg.jsjs 6cc345a8ad3df8d8da07821f31095f9c217201e0065038c5bb7e15aae14a9035n/a 
2023-05-18Rgrkuzz.jsjs f32e1256022a37c93429f2df0c87540583119ca913c038a1bce835786a3891a9Virustotal results 27.12% Quakbot
2023-05-17Fvoblw.jsjs deeae69c4717d775bf5fa189632028d3bea8fff66b068f15bb1c163430d3fb84Virustotal results 28.81% 
2023-05-17Joossg.jsjs 20336fdfef9d5684dd6055ff838104e334316b82122b0a12b809b529b1a66cefn/a Quakbot
2023-05-17Vqark.jsjs b5e43b4ccd0107bcf4e8ce081135f2adb345ba3df9a4df5637d3cd9e08b43ba8Virustotal results 21.15% Quakbot
2023-05-17Kczf.jsjs e3086e125c0def5547c4247942eaf8cdeb0e4e581562f9cef5e20b6978761c61Virustotal results 32.76% Quakbot
2023-05-17Jdrdtvk.jsjs 0eb9fa07ffbdae465ca7afa7b68b6b38311315046844cd6ac97c9e3b77d5fe99n/a Quakbot
2023-05-17Zoisitj.jsjs 023250d4f9af49d2f7968647280c712aff55b6146a5a06b7b302bab288a405baVirustotal results 29.31% Quakbot
2023-05-17Qrfhdg.jsjs 9079446bd4c7bd26e207e6897766f15bb65c2e6bd4802d253ec23072dff72e4fVirustotal results 27.12% 
2023-05-17Sjwuaop.jsjs e84b4920d25503f9505dfe8813b964551aa485cc176eb30dc5ac5e46dd5d56bbn/a Quakbot
2023-05-17Zibgzl.jsjs 40b864e83d597fe8a9f4e5c80914aa879a21be759317f9d6c59bbec2f6ebdd7cn/a Quakbot
2023-05-17Kemr.jsjs febfdfefd10888ce312a58714d621a8423a8997287926eff4bc3136ac579883dn/a Quakbot
2023-05-17Xsoksukk.jsjs 13999314fa35c584beee3ca9593c9ee6bf66dcb8a2ca29a2f4d75dd6e794b49an/a 
2023-05-17Eyoyqm.jsjs b8dab67cb9d539f1be67681f07a297a9469dd6245451a706430fb76d74efda16n/a Quakbot
2023-05-17Iuyltirk.jsjs 7c12528716258f255a99a3595b032a0398c1874dd1e4f67d4a891af038eb6ddbn/a Quakbot
2023-05-17Ifanno.jsjs 0edb7e0db2d0a378efba2123273943f8f55b67a0d52080a2301ff33a498f8acdn/a Quakbot
2023-05-17Vludqokg.jsjs d332dc3ed52f8652383af942f1e588d221f197c4b7aa2e86f773187e31a3cad8n/a Quakbot
2023-05-16Vqpl.jsjs a1ff60971d38df5d3f40b8394f350235e0296fa0262e61b15e73d14cfa857c27n/a Quakbot
2023-05-16Sqrhzfda.jsjs e617e01ea9cc95aaa7755d4b355f6a79862e92406ebd6dc37e504bd12a8063f3n/a 
2023-05-16Gkhjnqq.jsjs 41f484ca8aa89aacd6a1ae47d8342aa728662074b6473e2693f8a8ba91602e1dn/a 
2023-05-16Ozhwzlz.jsjs 57bac4eaa2e04cd53a317e8c83963786145f2c86025ccd912d08ed1b1ed997e5n/a Quakbot
2023-05-16Fucjf.jsjs b9b673008416831754bb528ef0397757234a6c466083afa94c7ab788d33640a6n/a Quakbot
2023-05-16Uoumj.jsjs 2b8aa41d49384eb7a4376bee13f928ee5774c3802ddc292adabe02841460bb01n/a 
2023-05-16Dgtvor.jsjs 33f0c242692fdd3587f0a189a5c4c6968e8363bd0b276f7e402658f5dfa319e9n/a Quakbot