URLhaus Database

You are currently viewing the URLhaus database entry for https://axeycomprey.com/sar/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634242
URL: https://axeycomprey.com/sar/?1
URL Status:Offline
Host: axeycomprey.com
Date added:2023-05-16 13:42:25 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:45:12 UTC to abuse{at}hostgator[dot]com,eig-net-team{at}endurance[dot]com,jayanathan[dot]muhunthan{at}endurance[dot]com)
Takedown time:2 days, 9 hours, 11 minutes Poor (down since 2023-05-18 22:56:28 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Dvxxzcxs.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Htwf.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Hdjtpzw.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Ukect.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Mfnios.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dn/a 
2023-05-18Xuxe.jsjs 8d8c4bd8534253e2cff21a42c15b283cc4153787f294b1cff96737bcb303eb7fn/a 
2023-05-18Nogv.jsjs 1a6bded230cdd64243a37dd3ca94385ac9f1c4794e054250311bd99f2564c83eVirustotal results 25.42% Quakbot
2023-05-18Lweudq.jsjs 5155a314d6e44ed6eb4d65e80d368d8bcd4e8674e293bce8d712b03395d22f6fVirustotal results 11.86% Quakbot
2023-05-18Xecdfgrz.jsjs 51351bc77c5c23de367e4fdd74a87fd4ea6a100dd396c2f78dde57c715543f3dVirustotal results 27.12% Quakbot
2023-05-18Felkpai.jsjs e29a41a9d60625c8b7ab2e66896cd279af26a9abe095095e8f71d39a518717dbn/a 
2023-05-18Vskrkzti.jsjs 321c1a3f14a23d2a9aa660e3c3d41d7c92fbba4788fc20057ac697e402248405n/a Quakbot
2023-05-18Awowh.jsjs a45416e3d9aa47760feeee7375be42c3748b04b0d9c6c573bf4db2cfa07929b5n/a 
2023-05-18Nwrhc.jsjs 655729ffaa1d79b40a1df6017495f362432d5497a1c79b18220fdcc46d21f2aen/a 
2023-05-18Imsakddu.jsjs a957652292b9f2b69f858cd1f3221d9c4ae8b165a295b91459fd2bf2eedce715Virustotal results 25.86% Quakbot
2023-05-17Mrwj.jsjs 0f84fb63f382f7d5fa07382924a980e68a9af465c630f026b8dbfeb5a804c7ffVirustotal results 29.82% Quakbot
2023-05-17Wrzkolhy.jsjs c98276273a209f91c3e1637785f0f3e59d5724b05ee395f9f32ae11ee5e8679cn/a Quakbot
2023-05-17Odstmrt.jsjs b93e7c1a5d378e99de142cb47319276288120a8138977edf98875c43822f6d86Virustotal results 31.03% Quakbot
2023-05-17Nucb.jsjs e5f9fc33236b5ba2988d71e8585b3802d96cde07263ae499ce6ac56cc9db183an/a Quakbot
2023-05-17Hrhwztl.jsjs e90a83b63ded96ef671ed3692c8983df0d5845adeef9c03bbbacc8a34cc8db79n/a Quakbot
2023-05-17Htfceqd.jsjs 2878ea27fb0bf41510c5a442c350ea2d31a71ee4c1532dcabf74f79b9aa1b3f4n/a Quakbot
2023-05-17Dlbkfc.jsjs 3f81d638187365133a7541ec95cc8cdedd33693b4fd6331e5fddb2281147b873n/a Quakbot
2023-05-17Hwmu.jsjs 23ff2d19742aef25dc891c99b8c2602b15536c22818e998595806a5b6488404cn/a Quakbot
2023-05-17Jmknjcp.jsjs aa3b444e464ff7cb0310aac630e22b321cd9e96929e71781c8b105d91f903823n/a Quakbot
2023-05-17Dpllfj.jsjs e1bdf3cc3a233bc3181572ae80cf6460f6ca58dbcafdf4bde5f6200d6ec0653cn/a Quakbot
2023-05-17Xsezg.jsjs 676852be4f15fd0f8d9d51f597f06b8283e7bed8d691ce75b2211061540970e0n/a 
2023-05-17Llxubkz.jsjs f6b1df426b830ea1dcfb71ec81254991cad159d68b5e4d8d0dab07e42af3ba60n/a Quakbot
2023-05-17Yzcxrom.jsjs 362df4482a12b03d8f5bf01c5585539a5bc8ed8a7a32c4b8649a46abf2aa0fc6n/a Quakbot
2023-05-17Lxfrwc.jsjs b0e3359e34073770afec7a4e9aa25e8469e0fff50f8741f5d64461ea0207d551n/a 
2023-05-16Rpjszm.jsjs bb6b809afb59ec560e02e715c3dc2b61508d6923b83e239982c28c8be9f26e69n/a Quakbot
2023-05-16Iixcbtf.jsjs d32fa4718aa6880a7628f8375bd5d23a96363204a0bdd860a4948c973d088c64n/a 
2023-05-16Ffqf.jsjs 5d23a49ea1ea3d6250f14f179d9270f576b104356e5c53fcac94776f8f29617bn/a 
2023-05-16Ksogz.jsjs 77d95947400c2ed54c7dcc327c50bfc1555c5c2d76d9cca2fae5e24b772dec92n/a Quakbot
2023-05-16Qpelt.jsjs 9b658ec602685eefe433eb43bb533beccbc5c8799b8df31474c8d779b0eeb9e2n/a Quakbot
2023-05-16Zyult.jsjs b3e208f3cf00011162df334980eb4fa44a2ea9c822b02c321cc0e606fdda7729n/a Quakbot
2023-05-16Xadhckk.jsjs df66404c10cd4d2ffd95e975bc7fcebb227cf81c704de089818b5eeffa105007n/a Quakbot