URLhaus Database

You are currently viewing the URLhaus database entry for https://jbloperating.com/dtm/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634546
URL: https://jbloperating.com/dtm/?1
URL Status:Offline
Host: jbloperating.com
Date added:2023-05-16 19:11:11 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 19:12:10 UTC to abuse{at}hostgator[dot]com)
Takedown time:2 days, 3 hours, 44 minutes Poor (down since 2023-05-18 22:56:40 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Izyolb.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Rhlvr.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Svegbf.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Ifajfm.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dn/a 
2023-05-18Zcmsfc.jsjs 3c55d89d269d20d6852bd0da433091d1fb247c736acddefdf23c414213857e73Virustotal results 31.03% Quakbot
2023-05-18Zdgla.jsjs d772a62298f946a1a964db9c0e6aa23473d6590e013fb3056502ad74b75a046fn/a Quakbot
2023-05-18Ljxlxggr.jsjs a23cf11c2f986f5d2412a9c98d50dad0b0a02cd2dbbd6fdb1eb47c20cb7dd2bbn/a Quakbot
2023-05-18Zqscid.jsjs 4422126c61949a9848ddc759de968eb699c5364973a271dc9aac631121591d13Virustotal results 27.12% Quakbot
2023-05-18Eutjl.jsjs 9f9b7a0d9944437dbf0052fad1d08898979bd6c9a9d937a98cea3c757a5f15d0Virustotal results 27.59% 
2023-05-18Lqyukz.jsjs 4f9c04f40501ff342f07c66108d89ffff23f8fa85ac574a2829cd65a757aeacfn/a Quakbot
2023-05-18Cshece.jsjs c1b685d3448c37f78c922a2a19a51272e6cba29bcc9f50ae1266bc064074f257Virustotal results 16.95% Quakbot
2023-05-18Xfctb.jsjs c6712a15900f7986ac9ad350dec34f50284b50e708bdeb42e320d99659f8d46fn/a Quakbot
2023-05-18Thru.jsjs 80f6fd82b28ccaacb151e0447865a17ab4711eefd8ab38eb96bff981a7077a9eVirustotal results 28.81% 
2023-05-17Hqgh.jsjs e70a77365ffdf3f446781b46a826a0796adf73d479c783efd6763a7d83aec549n/a 
2023-05-17Unolvpeo.jsjs 85341f4b78166b2b1fe18125caf6a187b8c29c45ce7ef3956530cfd4bd6591e0Virustotal results 8.62% Quakbot
2023-05-17Zswwlapl.jsjs 266bfb248bbfb5fafc879d0a26c731499ccb3de4c57b64ce4b3a3fc6f836b93bVirustotal results 25.42% Quakbot
2023-05-17Fewgjmy.jsjs b76a46e9b0db483e342c390f25663222fee2e67cb7670205636c7ee748850b86n/a Quakbot
2023-05-17Hwso.jsjs 783e0a457afb1237e0956e6ff847bfcdb49ee23036f51b4621b534f54d67112cn/a Quakbot
2023-05-17Sege.jsjs b96c9289fab9b7759ba3dd4ea2b84064aa296457443d10064d033d225609b55dVirustotal results 23.73% Quakbot
2023-05-17Fycccfbf.jsjs c28a0689fa744ad9aa6b9113d992a9fc9d303cf30f2b622975fb5e9a82ac02e6Virustotal results 25.42% Quakbot
2023-05-17Envelj.jsjs 9870cd613d29a8d53c9b381f6802e5de42bd39a63e98977a429c512704b86235n/a 
2023-05-17Fqfem.jsjs 9d91274383c33c61994c2172aabee92e89b50b3b9b6f82663ff292af8c98d344n/a Quakbot
2023-05-17Pimcwg.jsjs 67ad999551ee6309d6e817f373644746a2da75cdb2d40839572d7de1d31984e1n/a Quakbot
2023-05-17Ygufcs.jsjs b67c5928995d1520784cee567580fcab5f2f6b834f2d6936b10ede546dd047e7n/a Quakbot
2023-05-17Fvoltv.jsjs 68bf79d124e442cb9dec61032dcb26e6bf41ab7fe0b754e7903996e51e9dd5ban/a Quakbot
2023-05-17Oggpjwk.jsjs 02f5aa53cee3140f5c6c4ae5c6951c33dea9a2d6be6792d4eb2fa9a0cea9a701n/a Quakbot
2023-05-16Wikq.jsjs 62c78677a2a2c96ee979c65f9038a82d07262cbb8d1bedb8832cbc9f41b7de2en/a Quakbot
2023-05-16Xzztbmo.jsjs 0f8019e31d86b873fab8986ab8361afb815cdf21b8b75a30cb82d456584d516bn/a Quakbot
2023-05-16Wffcec.jsjs 409d856a896aa8b8e8c4ae4a8e9ec2e56b2faa33457d85e49615990cf21f40aan/a Quakbot
2023-05-16Odncem.jsjs 60be71648d5cc13b3cec064a3e4d13c4f564195e78e5362881971e7ab70f4719n/a Quakbot