URLhaus Database

You are currently viewing the URLhaus database entry for https://allerorts.de/oii/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634469
URL: https://allerorts.de/oii/?1
URL Status:Offline
Host: allerorts.de
Date added:2023-05-16 19:08:25 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 20:45:11 UTC to abuse{at}space[dot]net)
Takedown time:2 days, 0 hours, 15 minutes Poor (down since 2023-05-18 21:00:31 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Iswqmpey.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Jgfsldid.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dVirustotal results 28.81% 
2023-05-18Pwvbwts.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.56%
2023-05-18Fqzbnw.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fn/a 
2023-05-18Uhls.jsjs 10f759e97a48df574fc941e1fdddf412b2e5a598d13829c47c202527d7d36ee6n/a 
2023-05-18Edce.jsjs f1cd10870a25ff5450774a8498966cb5bddf350a269b79fee66a198f6cf3b7a6n/a Quakbot
2023-05-18Gcoubd.jsjs 81d46bf6cc71d927906bc2a9ae29103ed6a1d3f01599e9736dd016267c874521Virustotal results 11.86% Quakbot
2023-05-18Sojzi.jsjs f74f3f66b468e91f7060adfeff51f084fd09fb44b5d93a66ce1b2cccdd016bdcVirustotal results 25.42% Quakbot
2023-05-18Mgznoez.jsjs 093f4994d50fb15a657ced4731d4109a45ae410dbe91554d201d3ad2c44501acn/a 
2023-05-18Qefai.jsjs f0071ab8efac63f43a57e5ce10cebfd8f2d18f0b8df63002a484d4acdc24b4dfn/a Quakbot
2023-05-18Fdvxnois.jsjs 16cf6bcb57e5b6fbd88357c73a7c2e1fea2c60e1facf1122d4f6d9ef672f908cVirustotal results 31.03% Quakbot
2023-05-18Mmwnazf.jsjs 15abbc922de384ed273fbc1a2e831ab1024bff793998f2cea3c69abd68a85566n/a 
2023-05-18Jbeccziu.jsjs fecdae98fff4b89aadb8c35ded8061bdaa126fc12f3fd482cbcecd53246c1c0an/a Quakbot
2023-05-17Aoyis.jsjs c5a390d1bf67c2241e5a9cb33cab3e83b41d4319c494c9f15d864cff3015e95dVirustotal results 15.52% Quakbot
2023-05-17Llcbxebx.jsjs 16e669d4d5391d00940846a4f52891c84d175cd3dabd4f776ef0b2b352c4f2c2n/a Quakbot
2023-05-17Edrdrr.jsjs 98e65224d86b8f3b2be7f45d6b5bc6711e25eba8a298bf06d24ad94bfa8b2089n/a Quakbot
2023-05-17Riert.jsjs d1a4226b93ce7e197a1d0a500323d097493998ae6d92816b4793bac2150218f2Virustotal results 27.12% Quakbot
2023-05-17Nhadrv.jsjs 8fe6b80c39f345411e663560d164edb44cbf0ad7ba4914ba79f02bb403348f27n/a Quakbot
2023-05-17Ufcat.jsjs ea84f700c5132b793e8bbc20dd9383bd71e86ffe8be7ec16ec7fd5ada9cfb33en/a 
2023-05-17Webnfvw.jsjs 13efc71a96ea0798a6aeb84648203015bcb7facd2057f2ace6b06a6b12b56d78n/a Quakbot
2023-05-17Hrgzmhn.jsjs a611f1c8a58b1c1ab176291789d3bfea6dd163927aa4a7e76d08bf9fefe8f3f0n/a 
2023-05-17Vfmcjiju.jsjs 023b04be8dc9cbedc484b814b6d77d720671d11cb9146c23b1250ab7ada041bfn/a Quakbot
2023-05-17Kvyv.jsjs 95953d04045abbdba5db71544b629015ce1000381f0cc86f60082b6d5d0d83fan/a Quakbot
2023-05-17Jpiffis.jsjs e68705fd4c3a31f996af329591610f6eeca4b22a6dd6fc5ebe5f776952df19c6n/a Quakbot
2023-05-17Yjiiv.jsjs b2ba73664805b16bb812f2fae02abf2ad5329a019ef8b406efef418e4b9e3e2fn/a Quakbot
2023-05-17Lfqv.jsjs 11a57ddc38329bba4a2943c2f40a2b22691f16320795a60a3bc85502b29b5f74n/a Quakbot
2023-05-16Qnigxdy.jsjs 24489110b69a56ce9b3f82febfe6b392f1ad64869cf9abacc6f7f1ba5ca7f957n/a Quakbot
2023-05-16Xmukz.jsjs 8fc39b2f107a2fdcefa5591fc41270f23c10197beb4777f5531c26909626cea9n/a Quakbot