URLhaus Database

You are currently viewing the URLhaus database entry for https://tctradingfx.com/ab/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634271
URL: https://tctradingfx.com/ab/?1
URL Status:Offline
Host: tctradingfx.com
Date added:2023-05-16 13:42:30 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:45:38 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 7 hours, 27 minutes Poor (down since 2023-05-18 21:13:24 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Fddnony.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Qmfwu.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Koxndlxw.jsjs 89f330eaf23bcde1dad5f2f5a9a602556d20611769d851405c2fb3a0c7a89ef3n/a 
2023-05-18Jovktolz.jsjs ff50e9d6bada1c148165cd94d8242cd7c0651692a508bbec763046c0ad17be90Virustotal results 32.20% Quakbot
2023-05-18Bqnnby.jsjs 35c35c65a46137ab025bfda60be1ea1c10a10b9cae6e337415b9c7b2ebd3df3en/a Quakbot
2023-05-18Ngrwlmu.jsjs 3e80a8823bae07e1aca749a62a6da2c57f0f80ebb6d4a8cd1be2ea749d3af45cVirustotal results 17.24% Quakbot
2023-05-18Ugbbz.jsjs b207edc0255d1a287ff3c8f2e769e9540966bfb78068188cac44e1c350f704a4n/a 
2023-05-18Xpdhtqxo.jsjs 6a2662394ca0402750ab97d8fe3a3010858b9dd07c373ce3b2579f8f0b13364eVirustotal results 27.59% Quakbot
2023-05-18Cmkuyl.jsjs a7559adb58fb8ca343a880d3a323c7307621cf7e95fee410922b0ee0d24d8bc7Virustotal results 31.03% Quakbot
2023-05-18Edtzhtgo.jsjs f44e30ffb57afcf688c00896ca7384786ee3ede05210094b66c6d9d6c83675e9Virustotal results 18.52% Quakbot
2023-05-18Knhswgff.jsjs 9fc93269f064d50db15333e3dbcf15dccb35094dc51bedfc465ba99ce6a37953n/a Quakbot
2023-05-17Jqgnws.jsjs 8eec4b2ca78d1d8b62a875c3a6b16a0a9053aeaf65f1e6cca22000629ab71432Virustotal results 27.12% Quakbot
2023-05-17Mocypzpx.jsjs f7bc14c8c137444d5d046f1c1304ca9eb96509ce61adeffaa967dc07f21c17d7n/a Quakbot
2023-05-17Qmtmqfc.jsjs 6fc84f16bba8f14130cc061d7ab41c424fdccd71398b2bd8c1f4300ffffe8912n/a Quakbot
2023-05-17Alyh.jsjs 655729ffaa1d79b40a1df6017495f362432d5497a1c79b18220fdcc46d21f2aen/a 
2023-05-17Ykmygtl.jsjs f2a2ace114103a041e79ed5165b96ac32d3595aaa0c8f1ff92533be7728179a4n/a 
2023-05-17Ltwhcl.jsjs a2f17ffca655028bf5663349090771ded5e0eac6f65e71d0fc151816a2dc7342Virustotal results 23.73% 
2023-05-17Tcxkd.jsjs 4de3c0071371884b0a2e8815554e19a2c0d89112e1bd9bc512d30aa306d3f0a9n/a Quakbot
2023-05-17Zvqu.jsjs e940c614ce1422ea87345a9a6b8d7df243bd5c663ed85822d980c5dd3ba04f3en/a Quakbot
2023-05-17Szoow.jsjs 999ac1c53a94c103f42978bf790ff99a381178c03f4480087eb25363973f68f2n/a 
2023-05-17Vlcruw.jsjs 425dbc6389d167c9461c8170c3d6cbf3755f7d604433c4a57ab39852f0f90ab5n/a Quakbot
2023-05-17Ebri.jsjs a9e1534b5b9c1cec2c5809969810a3114d32192011dd30fc172b6947739ac5bfn/a 
2023-05-17Kyejkm.jsjs 7e6bca916dcbb056454315ee3eb199c0b3868491e7cef062fd45d115e4540188n/a Quakbot
2023-05-17Seyme.jsjs 0d598802839e986694a12ec22377f7a0ce478e317c520cda5d513db9e053eb8an/a Quakbot
2023-05-17Yera.jsjs 6d6711d710940e3a5c81af1ee5fb51b5cd0e07ca1895816e90a0def4c9753546n/a Quakbot
2023-05-16Focthmp.jsjs 47e42b3b40ff0bb61ff70173049dadfbb0cc736ab01db5a953a30ff9e5a9927cn/a Quakbot
2023-05-16Axklkj.jsjs 1d6bba261fed26e1a92a6b81b7562bc932b948fb8fd791ced27003d8066b98ean/a Quakbot
2023-05-16Utvzfwfl.jsjs 57fcf2ff2c809d444cc4a25f9d1d9cc6c73b8245a6ccadb1fd7abb6c97e07a83n/a Quakbot
2023-05-16Rnlybbcb.jsjs 1861b2a14dfb3c13108de20c3dc50d26b1d77768312aa3bc3c64bbd2bf7a22f7n/a Quakbot
2023-05-16Bcbizvul.jsjs 605ebf1bcd921e2dc80c292c43d5bc00789ad5b6310007c8b67d76e6815d1da4n/a Quakbot
2023-05-16Gnco.jsjs 232a8d3713a00509e8ab33f117c2968de21d1d7d5f122d4827384e69d0f9619dn/a Quakbot
2023-05-16Jijsb.jsjs 5331ff7ae7b4e8748e0a4f33459a0d09ba3ef9383e9e85c0126ccf16f194239bn/a Quakbot