URLhaus Database

You are currently viewing the URLhaus database entry for https://sumberuang88.com/ari/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634621
URL: https://sumberuang88.com/ari/?1
URL Status:Offline
Host: sumberuang88.com
Date added:2023-05-16 19:14:12 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-17 15:28:08 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 2 hours, 50 minutes Poor (down since 2023-05-18 22:06:06 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Bclqt.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Zqmo.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Ipke.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Fkvwfa.jsjs 2078cab423e1e341398ea2b0de468ff820296db88735650168b91df67c30d9ebn/a 
2023-05-18Ewtv.jsjs 03cdab834b6a7165627af8e82df4d52dde740aa3481625a88ef76e122b7b2894n/a Quakbot
2023-05-18Xsby.jsjs 2072042cbdf8458366261756217da566a1b8d6cf4b24541a37d71c44c07c7fdeVirustotal results 25.42% Quakbot
2023-05-18Jfqhou.jsjs 0b8b2630460c4baa473d458c5dfe165acc6e1cd41d684697d22599bce6fcf623n/a Quakbot
2023-05-18Edjucn.jsjs d188bb106c47296a6f358dc69226ce3c9b48abe1399e7cf924fc4afa813b1505Virustotal results 30.00% 
2023-05-18Xuhhwhvn.jsjs 657ba945eb9c34584fcdaaaf316636af2fcddf21425ff248bf2de46d55dc8147n/a Quakbot
2023-05-18Phlyq.jsjs f6d73eed4ee4cb252294f53568ea49c055a4a65267b79e8491ace852655d5575Virustotal results 27.59% Quakbot
2023-05-18Vifmsf.jsjs 4a5bb0d1af42aabd643a23c518cbc77c4a2931fab8d180bbad1c0ea815f5954an/a Quakbot
2023-05-18Ylyeui.jsjs 403516fd88c6e48a70d5ab2c1e966024e8e46c5403dcaa8dbb3b56774715cf30Virustotal results 25.86% Quakbot
2023-05-18Wdrcijv.jsjs af1b94948c602627bf551b38dae50d6be3c349f5b15e7fe1d2a792e047809553Virustotal results 28.81% Quakbot
2023-05-17Lxfh.jsjs 9c3ce9878a22fffcee6c677d536eef828546dc7592693cd8be968e6235ceb49fn/a Quakbot
2023-05-17Jacvchh.jsjs d5cf74860b7b3a07c522d435a8360406d7c4a5575bd34a1244d8d0c1426bdb61n/a Quakbot
2023-05-17Mhpqzm.jsjs 44d23f66a1f4b2d201da3bd9764d30d67431194d1ffbbc0ee587ea63d892dee1n/a Quakbot
2023-05-17Uvhl.jsjs 32805d4a1cf5298234803410351824aacdf3ae591f390289a3ae325ad6e77e1en/a Quakbot
2023-05-17Wjzslp.jsjs e1f86c377a5fb822c6704735ae1fc4f80bddbea822ee597fe99762e575e05ba2Virustotal results 25.86% Quakbot
2023-05-17Hosbdeaz.jsjs 8f29c702a43f99c1cfc18167ff61035ac4068757aba92e0eb5e9dde5ad72a0cdn/a Quakbot
2023-05-17Lhfpf.jsjs 0e25617826028c9c923e8c43bd3703a15b229bd0e01dcc0566f72004618215a0n/a Quakbot
2023-05-17Fpvxf.jsjs e8240ef7b27ded92aa09efcc1b3dad5b70193cf3bde85f28e155f66712c12689n/a Quakbot
2023-05-17Lbrlxbb.jsjs 99b98cdc9cdc7568aafc316c770a3c92d60bb2fe981de7793dc1c727ce9f824fn/a Quakbot
2023-05-17Wayx.jsjs 9c1a8d66181733af8511f2b87920cf367fdb4063bbf3a637381dcd1d1235cd9an/a Quakbot
2023-05-17Fsay.jsjs b569a67b2fa63d8c93f2ea7fe59a7ca16a3e650fef539470bf05e3a6755836b7n/a Quakbot
2023-05-17Auvnoi.jsjs d3454f226163020b2c40fc12680f79408395a94a3ba28bca235af0f5bd696291n/a Quakbot
2023-05-17Jbcape.jsjs 46460f0f7fac7fe86f7e0ce4ce77bf9a87268f8e993b47699f902ec4a3dc58den/a Quakbot
2023-05-16Wispja.jsjs 93de5e955e604c4b531a7cebdc68005ef4daace042e55c20fafa4d20cd70dc68n/a Quakbot
2023-05-16Pqzmjd.jsjs 4e6c9851b929935e54479c039401560b77c33e4df1425d2b2de6575f1600f1c5n/a Quakbot
2023-05-16Yjnhhcly.jsjs c8d99b708308f8551da33466b6f07248fde3a82804618d088a9f34e222e2ab6en/a Quakbot
2023-05-16Wjgpn.jsjs 5768c27f7340d3b28b20fe6c1b5f19bbbe65253ebe4b9fad422bc1e608def50dn/a Quakbot