URLhaus Database

You are currently viewing the URLhaus database entry for https://vikasitaconnect.com/atuu/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634633
URL: https://vikasitaconnect.com/atuu/?1
URL Status:Offline
Host: vikasitaconnect.com
Date added:2023-05-16 19:14:14 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 19:15:35 UTC to abuse{at}godaddy[dot]com)
Takedown time:2 days, 3 hours, 23 minutes Poor (down since 2023-05-18 22:38:52 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Lkzvw.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Xfmv.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Fvmnukfk.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021an/a 
2023-05-18Skhn.jsjs 42c81982e5f4b734f8ff57da5bebf9b6d8f79c468dd97a2b69b831657bbc8258Virustotal results 32.20% Quakbot
2023-05-18Dgef.jsjs 43b5fd987f46196b07b603e95e51b7c7676ad0784f913f1b136dcf29bb46e808n/a Quakbot
2023-05-18Zpxbg.jsjs 4fc44d998f2dd5c9dd8a2b1113af13a124201f3cd8b1f55511976b52294ef5e7Virustotal results 23.73% Quakbot
2023-05-18Sxdbdbkp.jsjs 0259d5d40b143ebaaf60af05f38a325f660c922eb6201a18e664d949c3be13a3n/a Quakbot
2023-05-18Eydob.jsjs 1a6bded230cdd64243a37dd3ca94385ac9f1c4794e054250311bd99f2564c83eVirustotal results 25.42% Quakbot
2023-05-18Fjckpbmo.jsjs f517f6e7dd7c0f029a72fe25803ac2d5c54c7abcc8e576fbf95cbe6a87759540Virustotal results 28.81% Quakbot
2023-05-18Qvrviz.jsjs 7d4c05f2b21fe02c34ffc3bc7077929482fa7cdbc01c894e2647cf6e38ab20bbn/a Quakbot
2023-05-18Ptwjurkf.jsjs ba0c34e538207bb899f624292efada218b4202e276606cdaed6e258bd29572b4Virustotal results 25.42% Quakbot
2023-05-17Cxtgh.jsjs 7001d12f0aff0c6712230ed17f0fa70b2b0f2f7f58554663f28e687b643386efVirustotal results 24.14% Quakbot
2023-05-17Jnrdt.jsjs 17da932080db984c8594c50184bd0cfde690ed29cc7cd73f3136474e2cae191cVirustotal results 32.20% Quakbot
2023-05-17Rqvyqz.jsjs 66718c6f0ac9419d7f5bb30cef5272328e503b226e7ee6157072e26782f6421fVirustotal results 16.95% Quakbot
2023-05-17Jahaqoda.jsjs b246dc6bd29b7f7bf62fa6cfdb10a17053bed892c03b79d0328d384cf96f799an/a 
2023-05-17Eszadp.jsjs 321c1a3f14a23d2a9aa660e3c3d41d7c92fbba4788fc20057ac697e402248405n/a Quakbot
2023-05-17Zbfni.jsjs 6e98b0ad9b6fe81e7dde4a5e76cddfdc25b19695ca702e4faf95f45dfc5a65e4n/a 
2023-05-17Vkheclcn.jsjs ceb34fba0cd428a9dffee10f6b9c5857bfe8e363974adecbd1c42b994a5bb36cn/a Quakbot
2023-05-17Qxizxts.jsjs e4a27492752db4f16d33fd2962a507bbf88d2a2714ae618f3dfa598bdb44db2an/a Quakbot
2023-05-17Yhzvrx.jsjs 289a0ff2ea692a1be222d7ca45cd72d752cb653cdec0fc1fcb9fb4821ecd7f82n/a Quakbot
2023-05-17Rsxhqka.jsjs 0abc6b95a4900432c3c8259da95266cb48dcf5799bb4b95d0cbd1ebf73b9e486n/a Quakbot
2023-05-17Qbtkzst.jsjs 4c6de38b02fcd8b922c47e56898d667e8864048ce463b47eac29fdef5e19bdban/a Quakbot
2023-05-17Pdlihm.jsjs b0161cb963d9d9e27eba451789724888ee7b79c23cc9af891b4b8c437970a1c9n/a Quakbot
2023-05-17Hnqgho.jsjs a78f4c677d941df354a9776084bcc2ec20e1a6c82ed27b368197ca21491ba20cn/a Quakbot
2023-05-17Pzfdzx.jsjs f6855313b75c2b837ccf9cff1684ade6585b8b9457004c94813f52f490b116c5n/a 
2023-05-16Nabmo.jsjs 0b99ad9bcf8e8b9bb8819c5349db9fb222e4af1e739c0481ac50d3656918036dn/a Quakbot
2023-05-16Ontf.jsjs 5856036f776dec13ae5389428e028a2b29280842e06c00be92d5fa0551100b0en/a Quakbot