URLhaus Database

You are currently viewing the URLhaus database entry for https://sossurgical.de/td/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634629
URL: https://sossurgical.de/td/?1
URL Status:Offline
Host: sossurgical.de
Date added:2023-05-16 19:14:14 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 19:15:19 UTC to abuse{at}hostgator[dot]com)
Takedown time:2 days, 3 hours, 20 minutes Poor (down since 2023-05-18 22:35:27 UTC)
Tags:BB28 geofenced GuLoader link js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Vsedq.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dVirustotal results 27.12% 
2023-05-18Cmppe.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Fyfmw.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Ouodplkw.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Fdfp.jsjs 219ea294e9f23e7b5722573e4097444f6f48a3e78ffd8b859a0b0b950fa30cbdn/a 
2023-05-18Uotzya.jsjs db48655fea4c7f32363f5d2abad9764fe2eeb3cfdd90b8648b58a1f1ec9fc639n/a 
2023-05-18Xhcyjb.jsjs e193e117a9fdecfac181547ca4dadf85602bca2aad6bd2c6edeb2a25d45e9f91n/a 
2023-05-18Oqyfsgoy.jsjs ac2f114a6bac8df9444849169360217c9656b866153cfc42dc444cbc6b7b6e35Virustotal results 15.25% Quakbot
2023-05-18Phkyjxd.jsjs eb40b9246889e25a0aa869bfab07adf9622ef027a8ef2ca488d9926b5a39718fVirustotal results 27.12% Quakbot
2023-05-18Fqdd.jsjs 562698d61476d96d6f3b0fd847585b9c5e4d1f9eb96f8153ba577725aa0eb697Virustotal results 27.12% Quakbot
2023-05-18Euor.jsjs 7e14e82b93e7a51daf3ab028772a41e20e60a31cc1a90985cf3598206b08805cVirustotal results 25.45% 
2023-05-18Glvykmnl.jsjs 73abfbef5c169e5239c78d4c04f3d18f7f72490c2ca0cbbb33d92cac9675dd16Virustotal results 27.12%Quakbot
2023-05-18Ypzsixgo.jsjs b93e7c1a5d378e99de142cb47319276288120a8138977edf98875c43822f6d86Virustotal results 31.03% Quakbot
2023-05-18Hxlomf.jsjs ed175d3585ab2d387e6c4a9420d8aa055d62ef6670fbe83a0f66d5bfaf943a92n/a Quakbot
2023-05-17Eqik.jsjs 86f81887bb6051cb0f8b8b3d948a6e4bbff1538e986a71386da56590e614f26aVirustotal results 25.86% Quakbot
2023-05-17Jcuihtnw.jsjs aaa4050b504cc828d80b7057106a778bca86d9e00c674992ba5ee3eddf1db803n/a Quakbot
2023-05-17Gxpgofdh.jsjs 9c3ce9878a22fffcee6c677d536eef828546dc7592693cd8be968e6235ceb49fn/a Quakbot
2023-05-17Kqurcy.jsjs b4b9340a057e2f27555df973e95af7d75b991cadbf943c5f48de2cbda1e3edcdVirustotal results 29.31% Quakbot
2023-05-17Fqjjzhoa.jsjs cbc57ebccb343515692b47782246ac3ce19ae8ae335ddc9895810261d11cb663n/a Quakbot
2023-05-17Qypb.jsjs 1daf295e083f68a10f9527a63f47ad20185bc445825bbe8e6b92086996eeac2en/a Quakbot
2023-05-17Xwofxrnu.jsjs de678b4a37c6c15a808f0289a0185302b696546ff234a9c180ca99ac8bb1f313n/a GuLoader
2023-05-17Szowj.jsjs 6f1cd789e7009d05f1963a1c443685ec43e40a050d8ae769c49b203659a784bdn/a Quakbot
2023-05-17Hwjm.jsjs 0e9b46b5e47359dc7909693bace5db989747bd556082dd3e140b845d5564d066n/a Quakbot
2023-05-17Fvxloi.jsjs 01111daa5df03eb05df2dd0c18e51fdb340fbafaa6958e38694a378fe78ae94bn/a Quakbot
2023-05-17Xhtznnt.jsjs 4a04ad699fd982ef2ac30e4b6a110f5ff4f942dc8fbbb59d08489cc6a966d972n/a Quakbot
2023-05-17Fgwwp.jsjs 01e4194c22d074e9afcc085a49b89d94814895faf55a356c00e3c7cfa281848bn/a 
2023-05-17Djdy.jsjs 459dfddb3eef11d4b0a7a9a70307385c3569792fa07c39af9157fe62257ff67cn/a 
2023-05-16Qyrznhuu.jsjs c0dc5060efbd2f1ae0f70ece7375e38f9eefb6655e0eecfda89eaa03787a678dn/a Quakbot
2023-05-16Uzabo.jsjs 2facf4b9b350c887b7a3365fcd20e3ae4827c9c13bb7bda47bd13c44ddf178b5n/a Quakbot
2023-05-16Bmel.jsjs b8c9a3ccc095778db0359810dc974e6ac8455cd17fadd913ae05739486aeb404n/a Quakbot
2023-05-16Pbmpar.jsjs a429a3d6134fce5316cd3339bf7a5fb78d44cda8188186d08d3694994a909f1fn/a Quakbot