URLhaus Database

You are currently viewing the URLhaus database entry for https://karvanalkhasais.com/oos/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634549
URL: https://karvanalkhasais.com/oos/?1
URL Status:Offline
Host: karvanalkhasais.com
Date added:2023-05-16 19:11:12 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 19:12:13 UTC to ocloud{at}stablepoint[dot]com)
Takedown time:2 days, 2 hours, 0 minutes Poor (down since 2023-05-18 21:12:13 UTC)
Tags:BB28 geofenced GuLoader link js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Pwtwaxdn.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Mxisp.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Gvkkmo.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Plgcwi.jsjs ec1c1483390887eb700da456b73b782b57201a4ecf94965f006529647a8f5791n/a 
2023-05-18Fsznke.jsjs 8deae0dc00f63d06da4b8491f06c909682b192af1c7ae4467703241c34a509ebn/a Quakbot
2023-05-18Rseekvkg.jsjs 71399d25c8497d7f81c87b8f5ec8d5071d8a62ac85ee254638bf8d24feccc5adn/a Quakbot
2023-05-18Pamu.jsjs 13efaa86942839a33c87960d6b95861ace793c07390276ffb3d9329cfeb07034n/a 
2023-05-18Czzunv.jsjs 0d83b17da8e3318b0fe3004f0ee17572790abab90c15278d5d57ac951953fe5an/a Quakbot
2023-05-18Kidyp.jsjs fc087bbfa79c07ccc635f8a6fd0b89dea00fce47f2c8fdd18e9a29c72d8a3bd0Virustotal results 25.42% Quakbot
2023-05-18Zkosqi.jsjs b9c9809b0db8c089d16e6f9223ed8a4e5c74ac2b18b9f60ffdfb52ab0e82ab9aVirustotal results 32.69% 
2023-05-18Dbbi.jsjs ccdaaebf2ae2ce525ab5ccf2b4d74cf6b58e7d9515c21c0d46e2b8e0709eefb6n/a Quakbot
2023-05-18Jyxz.jsjs 5195290a6bfe72d1709c08345d0210181ab60e363339796ef44c05a17d9c03dan/a 
2023-05-17Yadrsml.jsjs 8116e7914df0a4fae9adad12da668660206754557fac016131c53fcd305d537fVirustotal results 32.69% Quakbot
2023-05-17Qhcvxoa.jsjs 72495f905e654ea365738e7e3ac93200be27ad81df4327197c8d1a1427209a25n/a Quakbot
2023-05-17Dkjwu.jsjs 82cd8d7b9c35490bb2685891e16cfd099b8290ad60d557532fe6ffcdc79b6b88Virustotal results 27.12% Quakbot
2023-05-17Scbc.jsjs 07903a989b7e8631bdf7709c9f662e13388037ed84e2a225ce9707ff6d5679a7n/a Quakbot
2023-05-17Dhgg.jsjs 66a44d6ecc0bff8550c4f8fd93b40851e019bac6297339dd180d268ed9bba451n/a 
2023-05-17Vzenddvd.jsjs 1d2471f7acbab8882ea6f628275c501f0f81e0aeab5ee16537702bd849e8ba6bn/a Quakbot
2023-05-17Xdwcmlr.jsjs 4bc76e07bcd4d492a60a7464d0a8d6c204b4744fac7ea6748a6b673c6ff31cc5n/a Quakbot
2023-05-17Uqjzip.jsjs 294b64c51f30b3884a2067b27a59ddcf4f5c3284a38a7260148eca0e86061a53n/a 
2023-05-17Gyomf.jsjs 9ac768cf3025869132bdb78aad3f4505cd8dd7e5ddc218e64d6645ba8db5e4f4n/a GuLoader
2023-05-17Ullvw.jsjs d2f81f5add584412ef6fc08bd35d3597a130535a3ae1e61a7417e246a00f7fb0n/a Quakbot
2023-05-17Agqxv.jsjs 0887f6e98a9ade36776e52a7ee0cbaacb99416804419f8b455c7c2dbb1edf8d2n/a Quakbot
2023-05-17Xnlom.jsjs 85e71ea1b3dfc313274b0c0eb450f6680d8d69945c94442767ec93d4034f21cdn/a Quakbot
2023-05-17Hdigojp.jsjs ec150224ae8d56f1d81f9c63ea91fb45f234dbf6d40ed60fc00c1bca791b41b8n/a Quakbot
2023-05-17Vqrkgfc.jsjs 02713bed0b2308404e12def8dfe9a8aa18af5121a68430dd858f06a380df53dfn/a Quakbot
2023-05-17Sjzq.jsjs 917e329c90c698c38fb538ee8e41ecae94d9f18b515af0cc7977d0b5c41cef72n/a Quakbot
2023-05-16Snrke.jsjs 25c630d73d0d2882b94b7f5f9384f1080d454c7767a01ce4283cba87c35d5fcen/a Quakbot
2023-05-16Egovc.jsjs 8a812ddf93e365fd56dc15da05089969fcfeae4a114119c4b970087acb830babn/a Quakbot
2023-05-16Nsgnwdg.jsjs 160a4188a8a221b74ec2b3a679c6b9e45ed413789d10885cc4399bbbc0e08501n/a