URLhaus Database

You are currently viewing the URLhaus database entry for https://ca2solution.it/ol/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634451
URL: https://ca2solution.it/ol/?1
URL Status:Offline
Host: ca2solution.it
Date added:2023-05-16 19:08:13 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 19:09:19 UTC to abuse{at}serverplan[dot]com)
Takedown time:2 days, 1 hours, 51 minutes Poor (down since 2023-05-18 21:01:14 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Itywb.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Qzoairik.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.56%
2023-05-18Vshal.jsjs 19de1e7475e9ca39814dcf729ec9a3935118a383a1db6aeb6162c323c2d9958dn/a 
2023-05-18Syvuei.jsjs d3c173c2dfa25e646847bc107890d76906c807bf85968b5dd9e96044a7729b2fn/a Quakbot
2023-05-18Cshqyook.jsjs 753569ed5b6539685798c9810e39b6c67eab5c08103e0c79d4cc2f1c16cd8ac4n/a 
2023-05-18Zzvxgb.jsjs 3fe82998dbbd1b56d6f2bf670fec8d276ac794d97facd50002a2cae0c1f41b02n/a Quakbot
2023-05-18Uhct.jsjs a7559adb58fb8ca343a880d3a323c7307621cf7e95fee410922b0ee0d24d8bc7Virustotal results 31.03% Quakbot
2023-05-18Ijyvbz.jsjs 41d25fd2c9445a58f5ae64b05b6042873508bfb85efe4b1b00c3c1b03c4f930bVirustotal results 27.59% 
2023-05-18Ppry.jsjs 53d2ace5dfd9b4384bcefcc9b7e2c0b6701053df124573ad3dc1044ca98e8398Virustotal results 32.20% Quakbot
2023-05-18Evnwern.jsjs c82de2729716408ddf8dadbc7c96d591774e13040bd782c4b2f6f56ee2b039d5Virustotal results 30.51% Quakbot
2023-05-18Udhjn.jsjs b243ce7f5b24e6eab35ff99fcc718064f5897388b337460b05226b50e50b7dfen/a Quakbot
2023-05-17Gonp.jsjs 875bccb572b756073e35cf697abde47c18a8fc4156b093bd6d229ef766faed99Virustotal results 28.57% Quakbot
2023-05-17Qkgflhb.jsjs d1a4226b93ce7e197a1d0a500323d097493998ae6d92816b4793bac2150218f2Virustotal results 27.12% Quakbot
2023-05-17Mppkz.jsjs 7c13bc2d2d42fdea47cb32e74e359fa9939073a81098e801e04a6daaee5e9ff3n/a Quakbot
2023-05-17Zyodepl.jsjs a0c936769d05f511e808dc9d178d44c1b60779ae7ad0e7424e520b2e75ce335cn/a Quakbot
2023-05-17Ticlqwr.jsjs a4fb26b40f74df15f85f6ee98f0faab524e9434e8469ea400fb9e1d4a53e6505Virustotal results 28.81% Quakbot
2023-05-17Nqsaj.jsjs 6be55c4c2824a4cd16aaf9002adae153b6156ce58174febfd162d82dff7ba019n/a Quakbot
2023-05-17Qtgvjlat.jsjs 81d46bf6cc71d927906bc2a9ae29103ed6a1d3f01599e9736dd016267c874521Virustotal results 11.86% Quakbot
2023-05-17Sicdoul.jsjs e90a83b63ded96ef671ed3692c8983df0d5845adeef9c03bbbacc8a34cc8db79n/a Quakbot
2023-05-17Cablwncz.jsjs 2570cf55120f499263bb8841172328a59101385bd1804bb919458e9bf167319bn/a Quakbot
2023-05-17Mcmhras.jsjs 09063a6a9a5fc901987e0b23dfa6b3808b9466bfc9d38f2ff4e372b127b53ceen/a Quakbot
2023-05-17Ggcwbsde.jsjs 99ce059b8b57c516874dfacba6a07662cfe19069dae3117dc33d2b02551faa8dn/a 
2023-05-17Nlsuk.jsjs c8d6a47031f191f43b4e41c0f94fd9f9011f5abfc4b82845947d53a7b4cb6ed2n/a Quakbot
2023-05-17Nsoxbgu.jsjs 7b9995e097ee089aeb6d6abe7cab74f9b8f2738849b17991e800b48d5b010ea0n/a Quakbot
2023-05-17Wclk.jsjs f93f6f4b8b54336957d94bd1a25cd2b3af38eb20fe864f8e9962886b5a927b81n/a Quakbot
2023-05-16Ujmq.jsjs d5451bb84694069ff7b21ad4e9b412952b839b3d99c65ad39b71c2dd050c8bb8n/a 
2023-05-16Fmuodoe.jsjs 92480c59958ed88a03877e5ddba63d0c5c257c558529c25bbf7f656e73fcfabfn/a 
2023-05-16Osnr.jsjs a0e56b06c2608982e4bf3078d906451eb51cfa72251daa79b8028d920597f0d8n/a Quakbot
2023-05-16Tiytpiog.jsjs f63411089c3e3f10c2f8bee544044f37e76f42c4423aac429f4317e55f7971e4n/a Quakbot