URLhaus Database

You are currently viewing the URLhaus database entry for https://slotpaten88.com/tn/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634610
URL: https://slotpaten88.com/tn/?1
URL Status:Offline
Host: slotpaten88.com
Date added:2023-05-16 19:13:24 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 19:14:29 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 3 hours, 20 minutes Poor (down since 2023-05-18 22:34:39 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Onxi.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Bkmlf.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Pvabx.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Shwzyq.jsjs dca1ba4908a916e7dc3547b112a3529dce82141963ada2366387bc87376fadafn/a 
2023-05-18Jjacvyyv.jsjs 31bfb0e9f32a6891aa3b4bb9c1caeefec664295de95b74eccecf9eb67a2b84cbn/a Quakbot
2023-05-18Mqsjowp.jsjs 4763068a93fa58650c7a913bb253b59fb9f5f7da3d041d28302d9d1b4d301008Virustotal results 27.12% Quakbot
2023-05-18Raodkw.jsjs d7efcadce017eaba7ee055cac3f1fb9842bd54107fb46729f546ede523c09e5an/a Quakbot
2023-05-18Bwckf.jsjs ca3503a47ca92c4d7ffd385bf6501e373e48cae6b42c99b3a1d08f7478278c12n/a Quakbot
2023-05-18Vghbth.jsjs a7559adb58fb8ca343a880d3a323c7307621cf7e95fee410922b0ee0d24d8bc7Virustotal results 31.03% Quakbot
2023-05-18Lksj.jsjs 8f360ef4554f315b708ec9a47229a77553d9764d491faaae0340e0e552551077Virustotal results 27.12% 
2023-05-18Dtym.jsjs 7f4b255930c48f8c5845c7ee4b70176ed27fac14ad26798578fbdaf327bc1157n/a Quakbot
2023-05-18Bxjtj.jsjs b76a46e9b0db483e342c390f25663222fee2e67cb7670205636c7ee748850b86n/a Quakbot
2023-05-18Lqxkm.jsjs c408bd9762412a5776d177862b5ac082170428db1332d9ba6c28929b506a4858Virustotal results 33.90% 
2023-05-17Atzboc.jsjs b1580417444140f2311d1f0098c4af6163f27ee7fc99281c6c6904870fdd88e3Virustotal results 27.12% Quakbot
2023-05-17Dfcbcj.jsjs 72495f905e654ea365738e7e3ac93200be27ad81df4327197c8d1a1427209a25n/a Quakbot
2023-05-17Vlbrmu.jsjs 7fdeda1296a36cffb37a03dca1e25125b27333e53ead2391247d2790dffd0e7aVirustotal results 32.20% Quakbot
2023-05-17Snwmumlg.jsjs 9d9924b0f0e33e1b74db34d25035395c2f29b1c29926ab16bfec2e29f30c8b81Virustotal results 27.12% Quakbot
2023-05-17Rxctxv.jsjs 7aabd12a63a4289e6a5f5fc62d866ed2ade8e917a6f2d203bdfd37c0f87ab265n/a Quakbot
2023-05-17Ycikf.jsjs 2936b6742f1d05f0f4625a1582b4bb5e44cf16340984eb0eaf2118709e5f7933n/a 
2023-05-17Uoujcegu.jsjs f3f5b182d275d4c04caa73e7abc7c40748f810123832c294c35b3b4bf997ea3en/a 
2023-05-17Vzvvx.jsjs abe21bbcb111e7b747142ea8ff943b4d9ed1fc6c3047e9a7e5396a693540ab9bn/a 
2023-05-17Hdzx.jsjs 204572300e59ff35ded2b84db4ea70c1f07b505e168d5363d4684032ea69398dn/a Quakbot
2023-05-17Hocixss.jsjs 574a61a31d438f9dbbfec884d487e0cab0e60deebecb800ef34110e0d8c6338en/a Quakbot
2023-05-17Vizpn.jsjs 20be235f500c1fef8914301bdd74c3eb5b5ffef97ade086f1b5dd434632eda3cn/a Quakbot
2023-05-17Zgao.jsjs cca4a63a19022bc8cf16f1e4880b45288d715c850aa902313c8e6c6c6bd589d5n/a 
2023-05-17Riem.jsjs 8bdd3782d2dee167576bac42ec5ec52c233487ec3747f514927eddc6727780f3n/a Quakbot
2023-05-16Fyjhtqbs.jsjs ff1b4f01e9d3c0af073cc617f7eb49bb301678d94f08eea79b1c76b604ce83d7n/a Quakbot
2023-05-16Lbuveti.jsjs a0d850df5b0364f9d1077fd7016a2e698ec0d14bba7c61ad27389643d26e7351n/a 
2023-05-16Oygot.jsjs 9e9470b2390df7abc2761d8864d93e18403e26fa96300aa3cb25b2bd53e5afc2n/a Quakbot
2023-05-16Hejhs.jsjs dd1181276d733800a0eac128e188a884085b57abcf98394ab62006fbb9f56bf6n/a Quakbot