URLhaus Database

You are currently viewing the URLhaus database entry for https://cuanselalu.net/qe/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634333
URL: https://cuanselalu.net/qe/?1
URL Status:Offline
Host: cuanselalu.net
Date added:2023-05-16 13:42:44 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 13:46:27 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 8 hours, 58 minutes Poor (down since 2023-05-18 22:45:02 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Eftlxg.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Leatytw.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Jccfph.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Yjnzddo.jsjs 65f23cfe3e7aef568faf72894b6fd0f1c6086287ac499272ed273ffd035b1a69n/a 
2023-05-18Thuwxga.jsjs a977668a0fae565adb47c6b3497b7890b99309837af7ee23f3f9c734def9ac9dn/a 
2023-05-18Urfhawy.jsjs 53b3144d6c4d4163d5317d32d6bfcc11069a721edc167234c3599a6e2aae5274Virustotal results 25.42% Quakbot
2023-05-18Sexvcxxy.jsjs f0071ab8efac63f43a57e5ce10cebfd8f2d18f0b8df63002a484d4acdc24b4dfn/a Quakbot
2023-05-18Cgrv.jsjs 2e6fa76c0870d4318d71a8defd95759f831cb88397931327f00478d853bc9525n/a Quakbot
2023-05-18Kddohh.jsjs 0ae16f66866567a01f4af47c0c7b2e49d1e54eba4e457b2de97f88c48016cedcVirustotal results 30.51% Quakbot
2023-05-18Qjfpstqd.jsjs bdc565778f51721f51d31d3a2fabe61b47bd3d921ace6ff98d7637b3cee485bcVirustotal results 22.41% Quakbot
2023-05-18Picdslhs.jsjs 24c2f222f6f2809f7c5dda15d789a41d9424dfce3714fe71bed9fbb0e077503en/a Quakbot
2023-05-18Blugwdw.jsjs 42d74e9be0d442e0bbebc6134157922913abc72510b235bfa67b53092757a2f4Virustotal results 30.51% Quakbot
2023-05-17Nwqo.jsjs c5b4c29787160ccb71f79ff6637aeac99008ef606c71a4b14629e1281f03f74aVirustotal results 22.22% 
2023-05-17Bhoz.jsjs a5e07fd19c36096b65281a4da6788fdb724e4cc4be6fae21497a969c1255a622n/a Quakbot
2023-05-17Ganl.jsjs fd32fe1312ed075ac00d30123df24382ead0744d83a1a8787e5f0303d68f70caVirustotal results 30.51% Quakbot
2023-05-17Npzfnhr.jsjs 9898858b1809b1511e09fbef76498bfa2d39365eb70958ac81ba4a0263c6e209n/a Quakbot
2023-05-17Gdentt.jsjs 0d6511ddb8cf97d9967367c983015cc45c5ea8c7ae68416f28625637be59caabn/a Quakbot
2023-05-17Rxwqwcy.jsjs 7cfdf6db2bcad8f5b911ac39a8da45e6a8bc3e53c287742c8afc09821a544c0fn/a Quakbot
2023-05-17Ktcxucwh.jsjs 0b3324b249fb9e33cb3970056ed6166b271c1f678d65d34cdff6079bbd95f2c5n/a Quakbot
2023-05-17Alyb.jsjs 8cdaa7b3660e0579ecbc509c57b310345d8953277fbcbeb1d1ae18bfe8ab0f00n/a Quakbot
2023-05-17Oqgtd.jsjs e5a3837df0a5b97cb97eda9e032951536dbe97cb45427fb936f3f9c8afbccd00n/a Quakbot
2023-05-17Tbiku.jsjs 9fe7fd14fe813f472f1b82a10de814d2765e27d13f967f65c7f9a18d3807922fn/a Quakbot
2023-05-17Mavp.jsjs fa10e5a7d1d140574d93c557113a69e10cfa002fbad792999f74d0c770a12ad5n/a 
2023-05-17Ronegaov.jsjs 0abf18f52e962a0d6e9e32dae25bab0984cae0496b9b5b785edfa702c28fa3f1n/a Quakbot
2023-05-17Bhhwnemk.jsjs 7da62e5d379f65c778e2a68fe5ed55d83c3a9c04fb7f3fcadca90ae4ae17c907n/a 
2023-05-17Eybrjzrq.jsjs c2d6f55b54e13759e22d419887b40409dc3c15bb585ff282c8788ca8ad6d049cn/a Quakbot
2023-05-16Ghnal.jsjs 5d9fd06b9f782744256a916d0ff57af3d1f919ef3cdcd4c7e6fa15481980f760n/a Quakbot
2023-05-16Ozzvbjro.jsjs f3a077c923255da305bb35289599c2607f095324d01c043631c58d7f45552d25n/a Quakbot
2023-05-16Obrx.jsjs 56ef54ae1981baef5a70b022cf339a41642f3256bf2de2cd3127fee65b475102n/a Quakbot
2023-05-16Uegud.jsjs 948bb52025fc78f646ef3021dbe946edf0034dc5ccecba99a8a3046342c21bfdn/a Quakbot
2023-05-16Dsxdbibd.jsjs 214c8b085c058fa8ce3086cba1cef0626823bd2af85a1da97c8b238189fe18ffn/a Quakbot
2023-05-16Ejjyh.jsjs ac1d49d18b960eb1b147226d954d60fe02717568e39f24e92c8b7cd036063d6an/a Quakbot
2023-05-16Qxiy.jsjs 437c4c7eb8379032d3281147aabd8db74ca2db65d28c6a5986f93d1b09dd908fn/a Quakbot
2023-05-16Bvrdlra.jsjs 49bac0cd7eeb73297d089b5d64faeeaf1585634161eb7262fc44c5f181332aban/a Quakbot