URLhaus Database

You are currently viewing the URLhaus database entry for https://autobom.org/ip/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634281
URL: https://autobom.org/ip/?1
URL Status:Offline
Host: autobom.org
Date added:2023-05-16 13:42:32 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:45:48 UTC to abuse{at}hostgator[dot]com,eig-net-team{at}endurance[dot]com,jayanathan[dot]muhunthan{at}endurance[dot]com)
Takedown time:2 days, 9 hours, 0 minutes Poor (down since 2023-05-18 22:46:09 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Izsuuvr.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Zpnbf.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Hruyk.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fn/a 
2023-05-18Szdtm.jsjs f6d73eed4ee4cb252294f53568ea49c055a4a65267b79e8491ace852655d5575Virustotal results 27.59% Quakbot
2023-05-18Pejujg.jsjs f252bb947741e263a585e14d04e2ccd38b535351fa818233c9ab294b4b174275Virustotal results 28.81% Quakbot
2023-05-18Xbnu.jsjs 70a531a610e47641bb1c9aa721282178341c6ccae5578f0ba31a38cfc5cad76eVirustotal results 27.12% Quakbot
2023-05-18Cspbhm.jsjs c6acb46e483e7792474a50acd3a7ad70626f538da57050c7153b3061376b4f02n/a Quakbot
2023-05-18Qrqist.jsjs f064ddce080fc01f0b5b378227f89a1ee2f48034efc22bcdba315de07adb217eVirustotal results 28.33% Quakbot
2023-05-18Ycaqnr.jsjs fd0ca1aeb929c31a64a1ec9c5027c0c2c644161a6fe7faacf6ea8ec30ca8806an/a Quakbot
2023-05-18Kxxoht.jsjs 112fb3f4fda57d58405f842081f111d4f583c40ece7f17fd6805832360da7072Virustotal results 28.07% Quakbot
2023-05-18Pxgdpx.jsjs a7559adb58fb8ca343a880d3a323c7307621cf7e95fee410922b0ee0d24d8bc7Virustotal results 31.03% Quakbot
2023-05-17Qmoc.jsjs 288d425513bcbc2368880669d2eb2f2b553edb8962acfb77e4a967d751235520n/a Quakbot
2023-05-17Lwfgwu.jsjs 5c02cc26158109b9e14b2601be5848cda11477e56c521a791dfdc4081366da0bVirustotal results 26.67% Quakbot
2023-05-17Pfzprd.jsjs e8cadb2bfe88e91c6f0a88fbfa3c83c7cce944155ffde2920ad925df8ba77f75Virustotal results 24.56% 
2023-05-17Atetejp.jsjs aa49eea2c5b828df4f85742d3d76bc365ee6c18721795dfe567bd8be0b360d61Virustotal results 28.81% Quakbot
2023-05-17Ebphhji.jsjs be782f3af4554ce0188bf903632e461191f0020d22f70c2760c1f9d32b21bfban/a 
2023-05-17Luwrshm.jsjs 1023d2a3febc48f033a53509d7c13ab44b981e38169392d13c7ad15e12b37515n/a Quakbot
2023-05-17Eccf.jsjs 50ea4195ce44fd0c177d6c8bca4b2a4f34676b3b8cbddaa734fe11cf5a265f01n/a Quakbot
2023-05-17Dynxi.jsjs 0f8aac75339d21d38c89f545a30c35990759d0f0123017fad73ed0c8ce34b51cn/a 
2023-05-17Ropj.jsjs b92f936fe576f93f3e81182d6cfd0d2737b854a9c632b780261dbb7106d76472n/a Quakbot
2023-05-17Ymvzcqrq.jsjs 4a7ff9e61ef8c54cf77cfe81d642fd4f9c11d8f57e9711427532c96146a0526bn/a Quakbot
2023-05-17Gilsaqk.jsjs 090ac5ecc12a9be98f348a221536eaeddae86881ee7a5107ba758f676536b20dn/a Quakbot
2023-05-17Udhzp.jsjs 2af23504563b4daa439c3b3ed691e01488209ce368806184341560705f03b620n/a Quakbot
2023-05-17Bfknjp.jsjs 59dcd2481bcc14a51f97796360c8e38e843ceefa58c51285bb42b3ddf23e71dfn/a Quakbot
2023-05-17Obfmsy.jsjs 7949d7ac741073f80f5cbde4f3dded571a86c6318f1fdf7f6a6c74a37f307850n/a 
2023-05-16Poldt.jsjs 4330467247a3b0893ce9b57e75583ab061e654056aab91715c0cfb26e43b3305n/a Quakbot
2023-05-16Vlfr.jsjs a38c85f55b886774468424d3de697fdb0a5c542e8739127f8630579798c00a33n/a Quakbot
2023-05-16Svnhva.jsjs 96c30795722d143fae5bd9af6ed968c63923242924d92d97d11ab5fb45287c3dn/a Quakbot
2023-05-16Jzro.jsjs 532671aa20a7f790735f691ec0a3bf257176881b059258d3bf820dd1925f0059n/a Quakbot
2023-05-16Wwjhbt.jsjs 9a1e99a295c66c3975bde7c73bcdfd1419a1310a982e7ec3a320c49c34b5552dn/a Quakbot
2023-05-16Ewvnih.jsjs 0014022a342eb5d7e4959b16f47cb3d3e19f9ebf9e45cc6d20ea9fc24b38a1bbn/a Quakbot
2023-05-16Mbzc.jsjs 0bf83472c509ab6b0dd38f0d87aa5a9c8cf20671e86c3256b3040e118443f82an/a Quakbot
2023-05-16Mwir.jsjs 8b5f9d48176c1fc1b47d458062a72a01d35c9a9e8e77550087c5cd7f63b039e6n/a