URLhaus Database

You are currently viewing the URLhaus database entry for https://onlinequranforkids.com/en/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634246
URL: https://onlinequranforkids.com/en/?1
URL Status:Offline
Host: onlinequranforkids.com
Date added:2023-05-16 13:42:25 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:45:16 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 7 hours, 25 minutes Poor (down since 2023-05-18 21:10:36 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Reilabfi.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Xegng.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Bmpovt.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Pytrv.jsjs 7814bc78769b8523fd6ec8661d05753009e695e77f90d3ccc2f44140a0d1cab7n/a 
2023-05-18Rcbbekx.jsjs d072c0958caad1a6504236a0de9defd899adf9e6deedeb1cdeba1e72229b29d8Virustotal results 30.51% Quakbot
2023-05-18Xiepxh.jsjs 4fe762f3bef37ff2896345d647489f0ee60515aaf5da2c93572e1088e91adf79Virustotal results 28.81% 
2023-05-18Zssj.jsjs b5992b77eea93b7005e9637b010d0dd51ae9310c87bea9dc6eb4610e2826d1ebVirustotal results 24.14% Quakbot
2023-05-18Bsxqt.jsjs 17da932080db984c8594c50184bd0cfde690ed29cc7cd73f3136474e2cae191cVirustotal results 32.20% Quakbot
2023-05-18Sksl.jsjs b3c3f0880fe1ebd5b9f5146a8164da0834ee29a37e5a1cd8e534efe15c786daen/a Quakbot
2023-05-18Rnwuxdpp.jsjs 19c40585627ffe423ed5f0a6da7706a51a4e068323d3f9cd2f54a01d45c02af1n/a Quakbot
2023-05-18Qgtc.jsjs 1c70b83f5b4051ac542278897c3b02f334291507f01f685e95893c574241e6b2n/a Quakbot
2023-05-18Lsdm.jsjs bfbec36fede661575f19295dcf1df9ba2fa3f0ca817dd9cc5efbd152f86a999dVirustotal results 23.73% Quakbot
2023-05-18Ogtma.jsjs fbf34d1f59eea01ae0ec44fb3d7e93d4a06dad0b411065a5d6292f3ebe7081acn/a Quakbot
2023-05-17Pdesf.jsjs 7e14e82b93e7a51daf3ab028772a41e20e60a31cc1a90985cf3598206b08805cVirustotal results 25.45% 
2023-05-17Xfbgiys.jsjs fc4e17680da39bbf2dfbf388da243c919927a825eca7d8de8a39d74be04968e9Virustotal results 31.03% Quakbot
2023-05-17Tsdm.jsjs a8a8153cceaada2e2ff92961844812b0aed9cd17ebb6700ebca64bc3627c960bVirustotal results 28.81% Quakbot
2023-05-17Xdsmcp.jsjs 3302a636901e95a2eb9b66a8fdda7e3cf8997cec8749d879da126651b259557cn/a Quakbot
2023-05-17Gdmkj.jsjs 1d2471f7acbab8882ea6f628275c501f0f81e0aeab5ee16537702bd849e8ba6bn/a Quakbot
2023-05-17Ligaxtnh.jsjs 297aea95e62d09c96218bb4bced99218e69685fa46660026bd8b96cbe1a90943n/a Quakbot
2023-05-17Yjpxw.jsjs 918eea9019be2e447512703a21f4bd3c812d0a9a35ede79993abdb416ada6af9n/a Quakbot
2023-05-17Xsoocwge.jsjs 8b9d68c0f88809d17755086a738dfb2ac64f91a917a72e7677f50d19773c929bn/a Quakbot
2023-05-17Bofzkka.jsjs 92d9c0e64ebfd5024fa7d4e5c69f60dc94c0b1b50182b25bac5c3312dda76046n/a Quakbot
2023-05-17Iupidye.jsjs 7b56a5a4df9aff6d63e6cb2418ae7e19174941f1c0bc90b106f44ae8594f2fe3n/a Quakbot
2023-05-17Ycdx.jsjs 77c1991fb4ade40c2d18ac2ca5a603bce16f2ab61f9cd4fc4daecf24724027cdn/a Quakbot
2023-05-17Rnwoxhro.jsjs 8272a4209d6bc0b937b4c9fa8823271674ffedb3d07928f424731c80a9a200d9n/a Quakbot
2023-05-17Festh.jsjs dd64bcef80aa13fdfdbc83c2d0756f2a6782f799ee140b885b08ef3ccb94f565n/a Quakbot
2023-05-16Cgqg.jsjs 06a00383ef009ec848c4f60458169a13390e75c77fcd8e0a276bfbf22b7d05fan/a Quakbot
2023-05-16Nxiv.jsjs e5e95ab57802f5395f92b209bf63d3dd6fc76c7fde4782848bf62e3cfe8ca3a2n/a Quakbot
2023-05-16Efynn.jsjs cd19f34a888aef2708fb9086b0a99612119e6fd0b5e05c954320ffebc41ba273n/a 
2023-05-16Wvgk.jsjs 6c9b1fdad7e94283dfc0bb04af034c4830029e370b0b2ca85741b945efd64259n/a Quakbot
2023-05-16Juwcq.jsjs cf8e55215ebcfab75e544d07f21fa71653c42c5774d8010c3a889f5d51805a16n/a Quakbot
2023-05-16Zftutgs.jsjs d8d0244468e9fab544c394346e4f96803dcbfe63ee87b706727538ad28e6a0c2n/a 
2023-05-16Sfbxi.jsjs 13304ecaa2ad75ad7d56a6d72f5c455c4abae1e4c22fee9d6e72f1f400b8c5c2n/a Quakbot