URLhaus Database

You are currently viewing the URLhaus database entry for https://ideasexchangemart.com/eitx/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634313
URL: https://ideasexchangemart.com/eitx/?1
URL Status:Offline
Host: ideasexchangemart.com
Date added:2023-05-16 13:42:36 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:43:24 UTC to abuse{at}hostgator[dot]com)
Takedown time:2 days, 7 hours, 18 minutes Poor (down since 2023-05-18 21:02:04 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Xfnegwj.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Pwde.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Injcr.jsjs 8a8ee8f938d1bc07d05352b294802363331cec6d22ec1021295d2a3dafe1ee34n/a 
2023-05-18Cnjxih.jsjs 2072042cbdf8458366261756217da566a1b8d6cf4b24541a37d71c44c07c7fdeVirustotal results 25.42% Quakbot
2023-05-18Qgslytcm.jsjs 502aa2d56dbba3e18971b863336aff4b696a67a0935ca0cc3d9186a3c2c8550bVirustotal results 32.20% Quakbot
2023-05-18Xwtvxm.jsjs 6e98b0ad9b6fe81e7dde4a5e76cddfdc25b19695ca702e4faf95f45dfc5a65e4Virustotal results 11.86% 
2023-05-18Vwcgo.jsjs 4bc76e07bcd4d492a60a7464d0a8d6c204b4744fac7ea6748a6b673c6ff31cc5n/a Quakbot
2023-05-18Oaei.jsjs 97961abc6b3628852a890d9f074e8095b28bd2f9f186169b33981286e6f0529cn/a Quakbot
2023-05-18Owwn.jsjs 73abfbef5c169e5239c78d4c04f3d18f7f72490c2ca0cbbb33d92cac9675dd16Virustotal results 27.12%Quakbot
2023-05-18Ajkpmdz.jsjs c426bcba8c0bf1790fa05cb78d763ad67bedd1b1bc3eec6b4902700e097a1a0fVirustotal results 24.14% Quakbot
2023-05-18Iyqwzq.jsjs 53b3144d6c4d4163d5317d32d6bfcc11069a721edc167234c3599a6e2aae5274Virustotal results 25.42% Quakbot
2023-05-17Vudzirog.jsjs b4bbe3eb6f77c745b1c296728e15c69c6b766df2aa51d6d745ce4e5fee415e06n/a 
2023-05-17Gvbh.jsjs 0d6511ddb8cf97d9967367c983015cc45c5ea8c7ae68416f28625637be59caabn/a Quakbot
2023-05-17Qkcit.jsjs 57924347ed17b5b79fa35f9c3f130733079566dd527de61c8d1691c0e4f0a7f2Virustotal results 27.12% Quakbot
2023-05-17Ufojdj.jsjs 17da932080db984c8594c50184bd0cfde690ed29cc7cd73f3136474e2cae191cVirustotal results 32.20% Quakbot
2023-05-17Cinsehs.jsjs fecdae98fff4b89aadb8c35ded8061bdaa126fc12f3fd482cbcecd53246c1c0an/a Quakbot
2023-05-17Xowzfyh.jsjs a357a8a9b62674cff6660b76659f4cd36ccd979d44937371bde57235d81c392en/a Quakbot
2023-05-17Saoih.jsjs 482b7c299dee3be25a3be3b76fb1498df5fc3e081d157b3734fa41fd8fbb5cccn/a Quakbot
2023-05-17Sdbolf.jsjs 116338238e16d6dda35d23c45c46540b367f45322501f9dbcccdb2435be535cen/a Quakbot
2023-05-17Phkidrw.jsjs 009b92d65146c00590475f94cc81532a76a8339daf71be427f6ecf7b7b528e29n/a Quakbot
2023-05-17Rtxyujg.jsjs 25494da9ceb81c490dd903177d657be7667b9d434fd7e9c8b6da9d2357f3dc42n/a 
2023-05-17Clsoda.jsjs 803f8176d5410b99212eb69becf6307582b23e07052ae40494d1f0daa8ae94e8n/a Quakbot
2023-05-17Dpiaojr.jsjs deac7a35475d5eb812f576f184857fdd2aa814b87a294a470dd77e8db2d50a7bn/a Quakbot
2023-05-17Ahpvbu.jsjs a9d58e8c30603a88b615df14f0a7b2b842620f18bfd2202e0d50ecd99048bc08n/a Quakbot
2023-05-17Sorblf.jsjs abaf637c1fbea0cf9c5c3430ce6294dd91392c3c2cc789f3b571e9ac67dd3bden/a Quakbot
2023-05-17Izip.jsjs 57955c594102de72bbb53a0eb1844161024755273a8092da42e5484fd25b7035n/a Quakbot
2023-05-16Raczuhid.jsjs f4065de93165c08bc05564cc38d44c6796812ae864c07e988d273ac4a4178fa7n/a Quakbot
2023-05-16Olefys.jsjs 6f48cac00c66cd2606471672f1911e370a70c0bcd91bad6915a1e99cfec236c8n/a Quakbot
2023-05-16Ftnczfjw.jsjs 629217ec7b3b26cd2c65701a5e94f14214a2631712abea4440cbc27cb6b60f01n/a Quakbot
2023-05-16Dfuswbkx.jsjs c491e50efae271e97a31f7ac6734b9f939906aff8ee43c4a0d85129575485b27n/a Quakbot
2023-05-16Toifqsao.jsjs f718fb00998c01cf48c5e9b4ae84335c16b0a517179007ee7637768a908b9fe6n/a 
2023-05-16Owtm.jsjs ed19bba961004597658a83fe1f724b2765a2343cf5a9bc45407de21d4bf0314an/a Quakbot
2023-05-16Nfrlwy.jsjs 17f81573bf0d7939aff4f015861047c0a699b68d7df9b5302cb3b3706dff5ab1n/a Quakbot