URLhaus Database

You are currently viewing the URLhaus database entry for https://leathertexbd.com/tla/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634545
URL: https://leathertexbd.com/tla/?1
URL Status:Offline
Host: leathertexbd.com
Date added:2023-05-16 19:11:11 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 19:12:09 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 3 hours, 34 minutes Poor (down since 2023-05-18 22:46:27 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Cgyrvpw.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Wrmldca.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Nbtufy.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Ojfb.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Mfdkgh.jsjs a7818c41cf1cb43ad09bb9b2d657004e01b9ac79e086e8e3ad136a559dc7290fn/a 
2023-05-18Vrlzh.jsjs 5e2610a338e8ef5c3c882966366fdd36d988d79233ad84071b96fe04a7ea18cbVirustotal results 30.51% Quakbot
2023-05-18Gakxui.jsjs cca9ae0f45d9d362a7e18d9f86ed7a18a1340c3f3d4811c7a2ddc658408bd496n/a 
2023-05-18Xhaagiee.jsjs d5310c601c98c90eb1149ea53a24b05711bab888bf14ec14f88d5c7bb5dd59ban/a 
2023-05-18Nzfzvhvq.jsjs c73f356c704556ac74d752c91963fe6a1c7273b77027b218016b83f03ca878eaVirustotal results 27.59% 
2023-05-18Kklwr.jsjs 7217ae2adc382459d109d0ca1135074318d85578de92f3c231dd520402b6d647Virustotal results 27.12% Quakbot
2023-05-18Hxxlt.jsjs 8475cb42b6b2c974e37378cf11491570a83f194a37e5ebbc50add4a5677d6d72Virustotal results 25.42% 
2023-05-18Xztxmq.jsjs 9d55c860ce682edea5933b6e9e441703b00b9880087fafd62ecedabf0665836dVirustotal results 32.20% Quakbot
2023-05-18Kapsqtb.jsjs 9dc74a47b57fcd85200f975b411792401c29e5d1ac2806f4efca47c4fbc00eben/a Quakbot
2023-05-17Ejesof.jsjs 257dab59e71c1109ffbf0b4ee1568df9566b886ee56301a089577a0fbec29fe4Virustotal results 8.62% 
2023-05-17Ccokjwi.jsjs 9aa3958dd376fcd792957165b53999bc05bdb411a0ea61e30b7787e1a7cdfbf0n/a Quakbot
2023-05-17Oqblp.jsjs 0727eef30bd3d52541c3e05de818415c77f77ce68db06ea425431972136cf8c7Virustotal results 32.20% Quakbot
2023-05-17Ysioiyly.jsjs a5f3d5a1dd9f57238b6a528792a0d6043f93289be9f4e2760c3549006c132bf8n/a Quakbot
2023-05-17Eyqewia.jsjs 7fc4905fb7d4a1e1c931e869fdfaabceabbdbf242ca9e35ff7178f74e6f7b207Virustotal results 25.42% Quakbot
2023-05-17Qmdeigdf.jsjs 724461f309ab96d511ced805b91951db475a6c036216777c4f4570a3ce7fbac5n/a Quakbot
2023-05-17Nmdlpqpy.jsjs ba77ea0ae3afe4582d390d1930a3792bde2ba411df7e3c05ae156306c5cd46e4n/a Quakbot
2023-05-17Bkbbusk.jsjs 83d5e28f322d49af03b60981d61af542c0113c7fa2d354726a5bdc15e3405a09n/a Quakbot
2023-05-17Swkah.jsjs 98873a4f9b58c3bc3676bcd63c1593a29b3059fb552e1e52e6a00aacd0749b36n/a Quakbot
2023-05-17Zdtlpumv.jsjs 437734dc5437da783d9e7135ad33853f0761f05f7d093974b5dd77c6f719ce02n/a Quakbot
2023-05-17Ouljr.jsjs 49f09c4ea5bea5bcc607599fc694bf467cc2adaa57aabb6e7732b46672465b03n/a Quakbot
2023-05-17Xepy.jsjs d186118589ad8e0df39753bb6258eb0c59126fe2a593fa0c4b6193b9b2d882aan/a Quakbot
2023-05-17Zupq.jsjs 4dd6895a8d3fc7fd08a5d75646eb0f82f3234c0973324894f0a5ef0e82a3662an/a Quakbot
2023-05-17Fiifu.jsjs 3cb701c2420753e17a582b106e1a83c9157e78364364d071ff31b50561267eb5n/a Quakbot
2023-05-16Lzyqwd.jsjs 77da5cfc8118e195478a83cc8383ace628605a437b11c03d6db170f1855816fcn/a Quakbot
2023-05-16Ufpy.jsjs ba4e0483efbfdc4acd838066b704ded893e84d905e81b85f1d66c74f78e45c8an/a Quakbot
2023-05-16Hlcdan.jsjs 8259b29dd8a351429a92888af4b5d15b634c79be04042d62473407162844e480n/a Quakbot
2023-05-16Rehk.jsjs 9a88178d4f2ea6c3afb067b2d80c7a8c3acf2b4c2374c7e78d0ea26e6b10d749n/a Quakbot