URLhaus Database

You are currently viewing the URLhaus database entry for https://studemate.com/nu/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634626
URL: https://studemate.com/nu/?1
URL Status:Offline
Host: studemate.com
Date added:2023-05-16 19:14:13 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 19:15:20 UTC to abuse{at}hostgator[dot]com)
Takedown time:2 days, 2 hours, 2 minutes Poor (down since 2023-05-18 21:17:49 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Qwuzwg.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Xzpoyayc.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Lzithee.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Djnb.jsjs e7f49414f48f60c02d3fd4666eed1990fa42cef22983a0353e3334308bb5a428n/a 
2023-05-18Qkicdi.jsjs 03de8856a9267b9e96c1454bd5a13ff8d068076ae6a1b7ca1984367997fa981en/a Quakbot
2023-05-18Xrpdk.jsjs c1b685d3448c37f78c922a2a19a51272e6cba29bcc9f50ae1266bc064074f257Virustotal results 16.95% Quakbot
2023-05-18Reowbbm.jsjs 8aa9df652c080c1ab6754cea7be1a61ae330512a5ddbc9af51177cbeb20da8e4n/a Quakbot
2023-05-18Ehmtqfjz.jsjs 2683122550edbc50a5df311f2d51a511e7f980332b26d307f6ed2babdab38325Virustotal results 21.82% 
2023-05-18Ydfseal.jsjs 28e8b66452412d01288417d1253f85d6981dd1fe21d53dfb5cbd49822a60cdf0n/a Quakbot
2023-05-18Piehx.jsjs 5526b208f51ee2b6adbf6b588401d5c1e058973988c16897fef27cdf25f2a51an/a Quakbot
2023-05-18Oxtuh.jsjs a1f08963f5715bb8830f2ea036c6be1f8a5f34bc8a6bc799c36611f79e54b14dn/a Quakbot
2023-05-18Ixkkuo.jsjs fc437c6d702c5302119f00f15fd16ab7ac0bf3d40875a890571b0d7d670b7a71Virustotal results 18.64% Quakbot
2023-05-17Khpnun.jsjs ca9502bdc52560b18884b4483fd8adca417142d736bc92b2039511c11483e4f0n/a 
2023-05-17Btmzq.jsjs 35c35c65a46137ab025bfda60be1ea1c10a10b9cae6e337415b9c7b2ebd3df3en/a Quakbot
2023-05-17Znrjtymr.jsjs 2c6c3f6ffb898b9a29cc0a5ec84ccecf30800496946b378d5558f81798278c3aVirustotal results 32.20% Quakbot
2023-05-17Vcendwo.jsjs 53182e2434b52d11490f911c908c6c23755d667fca1a03ac5d4be2cc9b0cd61dVirustotal results 23.73% Quakbot
2023-05-17Gbgkxldc.jsjs 865abbd345425ca06fe788a0af4970d985cf2d622cd0ee375cb43dd5567afe23n/a 
2023-05-17Kmzjxdw.jsjs 569b94ae6e9101918add0cbef52c7d0516b8faf8e79f3273d7d102982c544c18n/a Quakbot
2023-05-17Knjk.jsjs ba735e7dc58d84864a263129ebf1413d5d02b3134392a46a67dea2f9fe0fc940n/a Quakbot
2023-05-17Dokko.jsjs 72b81fa81527a272029c962ea2dfc1e5064ecf37972d31d332e8de3cbfc700b1n/a Quakbot
2023-05-17Lnphmmy.jsjs e1dc4b2488ee5db6552340fe6816e145ad690adc98664ae193c860242dc64358n/a Quakbot
2023-05-17Pqjojrvc.jsjs 75316aecf36cbeb75aab326fcfc5e675327eb3ee9d77d4abb6431cf3b838f34bn/a Quakbot
2023-05-17Srvbhdpw.jsjs 3ac200bc37348a06b4d105dce63c5b3e6be7dee1f7d2cd7c6c56cfade0237a32n/a Quakbot
2023-05-17Ibvquv.jsjs cc409932b76b6edc57e1cf83867dce5d4dbfa8347e92cd3cda1a9154cfcc4bf0n/a Quakbot
2023-05-17Tpdk.jsjs aba90126cf72e85a78b68e29c090dd0c7b8ae303596603d6f779689708fcecb8n/a 
2023-05-17Vrcsquv.jsjs d715017df9eb54d6a0b3b27a5574280d38da4f2356a1faee0afa8ea9d3551164n/a Quakbot
2023-05-16Ilqhnsj.jsjs 2d3e533934b4bec0e2f7389fd2c70266abdbe51c5aa0c06ad48895eebfaa4ba2n/a Quakbot
2023-05-16Jkvucb.jsjs 4511e33710fda20f09160d1cdf04e72526c02d6755a8c6246ed0a180fb52d9abn/a Quakbot
2023-05-16Pjwcqrm.jsjs b9f698f266dc243e518fd0a1069eda8eae6d85702aa7937a5f3b7f1844aea84bn/a