URLhaus Database

You are currently viewing the URLhaus database entry for https://rodarejeki.org/spsf/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634599
URL: https://rodarejeki.org/spsf/?1
URL Status:Offline
Host: rodarejeki.org
Date added:2023-05-16 19:13:13 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 19:14:16 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 3 hours, 20 minutes Poor (down since 2023-05-18 22:34:37 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Wqip.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Cpvrx.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Slxvxbnf.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Sqimisk.jsjs 96dde4bd84b4587ebd78fe55704e2a953c13709682fe49d523db4879a3afcdd6n/a 
2023-05-18Nixep.jsjs 307a3ef8bc1930af1d46fc60bac9820950e278feee14f7a931ac745613568698Virustotal results 23.73% Quakbot
2023-05-18Zdoamju.jsjs 0107042269a76269dd71d3dc19e72a1759d421cbf33b9758b94f08c93f0989e6Virustotal results 32.20% 
2023-05-18Xpzdyjf.jsjs f9a03e213a2bf36d23d4a6877af8261834b3049ed458410c5e8b4c6da00e2383Virustotal results 27.12% Quakbot
2023-05-18Inmk.jsjs 4763068a93fa58650c7a913bb253b59fb9f5f7da3d041d28302d9d1b4d301008Virustotal results 27.12% Quakbot
2023-05-18Nuaei.jsjs 0d83b17da8e3318b0fe3004f0ee17572790abab90c15278d5d57ac951953fe5an/a Quakbot
2023-05-18Ipgooixt.jsjs 576d767be1b5ee880a56263521aef9366435f9ff583a68aebc426d7da2c02e2aVirustotal results 29.82% Quakbot
2023-05-18Nfgsq.jsjs 9da26f54018ef7b69e7ca172d1ef9d1de643acee030e0b25c66a5f27867c8833Virustotal results 26.67% Quakbot
2023-05-18Hnjrt.jsjs b246dc6bd29b7f7bf62fa6cfdb10a17053bed892c03b79d0328d384cf96f799an/a 
2023-05-18Qcyvioe.jsjs a5540977a0c0c5a143b8a2c6f71919f2181988f29747374bd66cbcebd4eb7b11n/a Quakbot
2023-05-17Tqqgw.jsjs 0727eef30bd3d52541c3e05de818415c77f77ce68db06ea425431972136cf8c7Virustotal results 32.20% Quakbot
2023-05-17Oweekge.jsjs 0e8413c3fd2b87cd2139ba54c718d6b9f305a8bf33d41f05aaaa2639ccde842cn/a Quakbot
2023-05-17Bwdrixa.jsjs 0c1a4acb8216ade3632625958fc7427a5f996f5570d05d649a0e49be5e748ee9Virustotal results 27.12% Quakbot
2023-05-17Qyyonn.jsjs 32786105579d9ee90c2b3e3c5c1aa115af93c9931e8629901c02b41150fa1636Virustotal results 27.59% Quakbot
2023-05-17Qavxpz.jsjs f37d3c915b896922eed07327ecc8b944fcab1445d20c02c26c5aab8d91473b45n/aQuakbot
2023-05-17Dkvuqrm.jsjs c56be3ec9c7d01ede485ea9edabc332ef3aa01f6ab679c4eb6231e1db79db675n/a Quakbot
2023-05-17Sfosbtb.jsjs 7412f06e8a29a69410cda5aeb46d0cde764b7d10dc7e0e7ad7246b8dd49dd68fn/a 
2023-05-17Rziuqc.jsjs 3ec529046e580c785cb7350fe4e831f212a08678d23ee7223962cb747bff68b3n/a Quakbot
2023-05-17Cxkgsk.jsjs bdc720b7bc99bff4cf8f816da69b44e4ac46ab52b0bc6d35e18de17ab753e7f8n/a Quakbot
2023-05-17Pwbw.jsjs f737045e836b6fd281ffe292471af45638c89eb9233d9ee61fc5ee69ce797bafn/a 
2023-05-17Vbde.jsjs 944b6e10b2e5c99ad81aa06cbd5a37e01f0584a7bf4c590bcb210486782f20c3n/a Quakbot
2023-05-17Ypillsp.jsjs a5f0d49c12881b7145d7a378f3fbd170bb0d8c30293535ec99e3fe9a9a8abeddn/a Quakbot
2023-05-17Acwbc.jsjs bab6a02ca9f39430a6f3b1597ada68dbf0f1550966c43bbf39f2ae354efeea4dn/a Quakbot
2023-05-17Iryg.jsjs 8997e173c9162dfd44b0e09c404f9c8635e12914dc24c5bb1fbae2dabda95d71n/a Quakbot
2023-05-16Sgji.jsjs c4df8b63f2bc8c1b01ee49802f228f31920b5b30c7b435a1f25f07d751938cfan/a 
2023-05-16Ghxbb.jsjs e34b6dd1fcebc86d9a4219a34f71bc82c6cb691bb00debcb69648cb120ef0285n/a Quakbot
2023-05-16Dhiqud.jsjs ec661dfb711e786f32050c9b8099a41d469cfc504469eabd099c7e019e1d54aen/a Quakbot