URLhaus Database

You are currently viewing the URLhaus database entry for https://spartanpapers.co.uk/ma/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634259
URL: https://spartanpapers.co.uk/ma/?1
URL Status:Offline
Host: spartanpapers.co.uk
Date added:2023-05-16 13:42:28 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:45:28 UTC to abuse{at}godaddy[dot]com)
Takedown time:2 days, 9 hours, 5 minutes Poor (down since 2023-05-18 22:50:53 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Oznv.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Krwlc.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Bntcmhr.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Lyikjxfj.jsjs c4b5395d80cc732e7fcb5c7e1c17d5a5c84db1caca566a1c0e792891b4f7662bn/a 
2023-05-18Mdwi.jsjs 72495f905e654ea365738e7e3ac93200be27ad81df4327197c8d1a1427209a25n/a Quakbot
2023-05-18Axwcmqzo.jsjs 09f9e4d8ef85ba407416a7d168207db81c2000eabea300624e17d81f58bd0b18Virustotal results 31.03% Quakbot
2023-05-18Ploohcs.jsjs af020f4121ed33dba057c101c7d8fb714a2c96c883601c63acf7dc505818a5a6Virustotal results 27.12% Quakbot
2023-05-18Jdtoc.jsjs 07c7eed20a0deee08f2f4bcdaa5a1b077e9c5d50c6b1219c4082c3d54afc1349n/a Quakbot
2023-05-18Lfpaa.jsjs 586fe07a69bfe8b72088da7156e3feb75ac24d66ef99584f203b73fe30f08076Virustotal results 28.07% Quakbot
2023-05-18Kjfgn.jsjs b5e43b4ccd0107bcf4e8ce081135f2adb345ba3df9a4df5637d3cd9e08b43ba8Virustotal results 21.15% Quakbot
2023-05-18Imwsbwxc.jsjs 076515d52f5219c37701ac4b38e72e4f6a809dffce463343615c3fb079c9ec89Virustotal results 26.67% Quakbot
2023-05-18Foto.jsjs 819e1677a9b83e3e2c5f43d5b2dc0f2f54147bd8257c067505fb818330efc68an/a 
2023-05-17Ahtpq.jsjs 2bcfc438cf9c0a4f72832a134f6709c7596645ff3d738abe3b2fd53250ed50f9Virustotal results 22.41% Quakbot
2023-05-17Kxceuxtz.jsjs 72b50fe52615ed2facfe5a1517ed75f7ba6d2d98e26968645dd646186fa5fef9Virustotal results 24.14% Quakbot
2023-05-17Uevsdbmx.jsjs 5195290a6bfe72d1709c08345d0210181ab60e363339796ef44c05a17d9c03dan/a 
2023-05-17Ivtxt.jsjs 5848de38e1e0698b0e24ebe9bf6c45ef062f0f7d7dd7444e4a32d6731d5802aen/a Quakbot
2023-05-17Zxstht.jsjs b76a46e9b0db483e342c390f25663222fee2e67cb7670205636c7ee748850b86n/a Quakbot
2023-05-17Bdnrdaog.jsjs 399c7eece18438ba4f325cfc3863d0603d1237732a310fa2124a136ff2a335afn/a Quakbot
2023-05-17Xzevk.jsjs 0204463c040334db593942c0e48063d6f6df33cbfba1fdbf8bfe51aa0bf83372n/a Quakbot
2023-05-17Kbsvwu.jsjs 60378661d20cb40dd91ac2eb35fdb5eaeaed21add29b978288071436fd8b3164n/a Quakbot
2023-05-17Phxgm.jsjs 63f19b3bb228fb98a8deb631a4c65b926f927cf67f5e9deaa7db6e5e4a2caee3n/a Quakbot
2023-05-17Vvggkcnc.jsjs faa5055e9196f4d01be6fc875f43c6168fe4379552988b86d4260d627d3f138dn/a 
2023-05-17Qrtgkz.jsjs a66d9872166c297d648a31aa58d19e5977da5adc7f20b17c7292f5610dec88cfn/a 
2023-05-17Gksnbuk.jsjs 70e06dc5c9b8b96570c719df25c8bbfdfed5eb90e59f6d7225e3f1e3f06892a9n/a 
2023-05-17Bqsvbk.jsjs 2bf45bedaf1734656689aff6c658faec94f8e245a607b590ffa81a36b5b68d66n/a Quakbot
2023-05-17Znegdhu.jsjs 0b17c03d7fa6570380820ff990b4aeec09d61b939b813a62d7f115f5a2129757n/a Quakbot
2023-05-17Onzxm.jsjs 92690437c94f0b6e950f66616c927dc367ad88343b8ef927c1ce84fa7ea12528n/a Quakbot
2023-05-17Asxio.jsjs 1d07ceab6748247031f629d905687785c53b415fafaf308eb2a4deb8e36b0b11n/a Quakbot
2023-05-16Tsuvs.jsjs 8180d814df06a50337550fa2e2bfaeb596643f9edb2d6e7e3b887d3a109769d8n/a Quakbot
2023-05-16Otggvlw.jsjs 349abaec3f33175cb70e1d2e50cd05fccd7b6d90d6b6f62abfac803443e40471n/a Quakbot
2023-05-16Vuqqzzmi.jsjs ca1dfab08d6f7249c7abca4a19ae159ebbf7c8ed4ae46847cd64a1989af76f0en/a Quakbot
2023-05-16Pvxunw.jsjs 651e844b8d706f0d95f5d0077906aad75a1bb6d6e41f51d07ee31222eb05518dn/a Quakbot
2023-05-16Ltxnpm.jsjs 8310a119cd4e6782ec185a19d7ac54d065e52e61a3aa2e5c9bb8e2e52664b756n/a Quakbot
2023-05-16Wfpv.jsjs 0660a3399adcd94eb6fd15bf5ba6f455baa18b372913e29f4a5c25be8ba13c1dn/a Quakbot