URLhaus Database

You are currently viewing the URLhaus database entry for https://book4noon.com/ieq/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634445
URL: https://book4noon.com/ieq/?1
URL Status:Offline
Host: book4noon.com
Date added:2023-05-16 19:08:13 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 19:09:13 UTC to abuse{at}bluehost[dot]com)
Takedown time:2 days, 2 hours, 24 minutes Poor (down since 2023-05-18 21:33:14 UTC)
Tags:BB28 geofenced GuLoader link js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Uqgseo.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Lriouqfh.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Xclemc.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Bayny.jsjs defe5be60395cf6e86b41153121aa8f53c38edda78e7b9443cec09357d317df2n/a 
2023-05-18Ebmbncmh.jsjs 8b2b3c3498bea970b5883a908b36e4437b9809a010cf2df44004264d33d66dbdVirustotal results 11.86% Quakbot
2023-05-18Abwkng.jsjs 3f81d638187365133a7541ec95cc8cdedd33693b4fd6331e5fddb2281147b873Virustotal results 29.31% Quakbot
2023-05-18Wntdfgsz.jsjs 55ba4dfbf0eeacaace5287a51196c8d2e3c7ae79a65fd07a27fd6024ca40bc13Virustotal results 16.95% Quakbot
2023-05-18Jeylb.jsjs f7bc14c8c137444d5d046f1c1304ca9eb96509ce61adeffaa967dc07f21c17d7n/a Quakbot
2023-05-18Caxfag.jsjs c1064ed6356f294c6981938454ee3a3712e5e63930c1554a3c1602eacbd6554dVirustotal results 25.42% 
2023-05-18Zfgzfsc.jsjs 3cc62e68f657fa870eabb640cd8e651d4ee69a242db9feadeecdbe6a0435ea99n/a Quakbot
2023-05-18Sudyit.jsjs 748288dd3065db0c33b5cd484c4347216a3780b90eedc58ea62491f9297a57d7n/a Quakbot
2023-05-18Hjkidd.jsjs b866fb32a73c9c9a6de4c2fa92651d4d8d7f72f0fe66af797867274e8a889e85n/a Quakbot
2023-05-18Cakh.jsjs f6367e6003455bd5ec09ff23726731029805bd0357bc8cd5184dfe270962601cVirustotal results 32.08% Quakbot
2023-05-17Dafkk.jsjs 35a99626b0db91409ed1ac874964033c1490a20549ae611e95fa7f81dbd98d44n/a Quakbot
2023-05-17Qmtxdszh.jsjs fb639f61394301ec51c3c82b270fa10118b12150f177db33a72560d80ad79f25n/a 
2023-05-17Xjnc.jsjs 2805dc9f718f68c7daf0cae2b00b6ed8bd0a6e3a957fcf340055a17cc4ef7ef9n/a GuLoader
2023-05-17Wfpisraf.jsjs d7c515caf105f46c900f5862443f7dccfef29b7544788a80e4bf47e410fb0106n/a 
2023-05-17Jvklre.jsjs e097747aa43ca0c5787d98ebdab3ab67fda12444d287a4a0702a670f0b2494d3Virustotal results 11.86% Quakbot
2023-05-17Fjrn.jsjs c408bd9762412a5776d177862b5ac082170428db1332d9ba6c28929b506a4858n/a 
2023-05-17Cvkqthzm.jsjs 3e31ea9bfd38c94deda13767d5f82b55906ac8a767e595d59f2fbc92588d23e3n/a Quakbot
2023-05-17Ivbba.jsjs b7cbc54ccb16d821450c690db4e9e4505eabe62c7693946b15324dba4f75bcc1n/a Quakbot
2023-05-17Qteqyijs.jsjs e794a832eec34441313a210d4a76fac66b7bcca5310c9c3bfb8fba889a0d6d11n/a Quakbot
2023-05-17Miwuv.jsjs 9576488f83de1b9367522a958b8a8983ae3314dbc27cc7a0b6168492f1bdfb52n/a Quakbot
2023-05-17Tuuyhwmm.jsjs 000c7b62529d4eb75a21345a6361086f313b514babb12b2fe9b1727ee8da75d6n/a Quakbot
2023-05-17Wzdm.jsjs b9068ca6771c9393e2c441b433bcf8eb2f048c8609f9339dabd6861f1297429dn/a Quakbot
2023-05-16Ailbpj.jsjs 3d2e9043f97cc9850048346af91fab4b43efde4246f2450bccbfa19da95912c8n/a Quakbot
2023-05-16Osawmtx.jsjs 6c620d43bf9b9794e5c265b20bdf4cfdf31e427fd645905a6f48405dec43be05n/a 
2023-05-16Idyp.jsjs 3af7ff32802244e742c8bb32c34cdd138239868c4ff25be5849c984af657c2c7n/a 
2023-05-16Kzhpt.jsjs b8ec35f71cd67f46348f48b3166c5072f03df906e7be67634268172ca11d65efn/a