URLhaus Database

You are currently viewing the URLhaus database entry for https://trade-bull.net/poda/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634639
URL: https://trade-bull.net/poda/?1
URL Status:Offline
Host: trade-bull.net
Date added:2023-05-16 19:14:18 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 19:15:38 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 3 hours, 33 minutes Poor (down since 2023-05-18 22:49:21 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Ysfagesm.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Byar.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Suyl.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dVirustotal results 28.81% 
2023-05-18Nmeua.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 29.09% 
2023-05-18Uafrbir.jsjs 6be55c4c2824a4cd16aaf9002adae153b6156ce58174febfd162d82dff7ba019n/a Quakbot
2023-05-18Zxab.jsjs 0d025c1350cd713034b5b581118f5b7a71d0ba2551cc2321adbd286c8493fa25n/a Quakbot
2023-05-18Fsbla.jsjs def1eebe55f3bc428d1f39ef2f6c7d61a64a48dcc71389a348eefbb797e07653n/a 
2023-05-18Mxjgag.jsjs 3938ff8a3f26ca0c121f461afcbf7394844e31d1fb9e68757fd98de2a4b3238bVirustotal results 23.08% 
2023-05-18Iybhhm.jsjs b3c3f0880fe1ebd5b9f5146a8164da0834ee29a37e5a1cd8e534efe15c786daen/a Quakbot
2023-05-18Fkzki.jsjs 1126eb773737ce63bcc031813a3893e30dcc5b6a0f018496a3e0106fdf1783d5n/a Quakbot
2023-05-18Envsj.jsjs 0ae16f66866567a01f4af47c0c7b2e49d1e54eba4e457b2de97f88c48016cedcVirustotal results 30.51% Quakbot
2023-05-18Taerzyz.jsjs 0f8aac75339d21d38c89f545a30c35990759d0f0123017fad73ed0c8ce34b51cVirustotal results 25.86% 
2023-05-18Kmjmos.jsjs c2b560cbbb7dc30cad06a2a6b715f07591269b172bde5101a639fbb04e4dd9cfVirustotal results 27.12% 
2023-05-17Hrfdwyq.jsjs 6637cd86cb6d1780d474d49c347f8accc08a24f73ec7d212ecaa591e370d7e1dn/a 
2023-05-17Xrxeaz.jsjs 5526b208f51ee2b6adbf6b588401d5c1e058973988c16897fef27cdf25f2a51an/a Quakbot
2023-05-17Zjjqj.jsjs deeae69c4717d775bf5fa189632028d3bea8fff66b068f15bb1c163430d3fb84Virustotal results 28.81% 
2023-05-17Enhamox.jsjs c2b44422f7f4e7dc1cd2abeab300413b55a00cd9d34fda7542a467dd852bafb4Virustotal results 27.59% Quakbot
2023-05-17Emqfdh.jsjs 828ab9b198ace6540bab66d12bff28bf5b11bb1258df06ae467240d2ff175f1bn/a 
2023-05-17Goru.jsjs 6ee195c06baf35069572750e08cf581ee2a7a59c0b75faff8c5284a839f34ee6n/a 
2023-05-17Qcgiadon.jsjs dcc8efb65ccaf6b0cd07db9cd251cf300009fa732e31a2c5f82885c94ac24912n/a Quakbot
2023-05-17Qwgtvzpd.jsjs bbca163833cf9418d75be8d26e600c813c20016333ff894d24c1bb2c9e36c71dn/a 
2023-05-17Ryilb.jsjs 00d93dfd15ecc3c8051fcbc592bb24ae22b6579912bcfa5169b85d4224a0f705n/a Quakbot
2023-05-17Najjoukn.jsjs 23d5bacf2cb7cd29fbbda624e09e7c584520606fc83f71fcb3a08eeafd5b3751n/a Quakbot
2023-05-17Hgqc.jsjs 772dcc2361893ab8d8ac49982e23f2b1bbaf73f1a20179d9118e5bf9c6d6077bn/a Quakbot
2023-05-17Dprrbaha.jsjs cdad8d2f4f47afb73cdfed8c301e45f893f99bab3e754b1b9aed56b1247a251fn/a Quakbot
2023-05-17Mafpq.jsjs 9ad2747e63fc768cfd3486442fe16daf00ae2354bef90315e32239fb2495fadfn/a Quakbot
2023-05-17Phsfr.jsjs 661217033f2f635cb83b655d01ae3464963ffdd5e42d31049ce43f6ab1dc2693n/a Quakbot
2023-05-16Idfcro.jsjs 95be85e2d40a64e3be04f12405faf88562b1a01c49e35f93810cc1015f6df643n/a 
2023-05-16Luyihg.jsjs 6893772b4a89dbfd69dbbe1ee971d8d47f9696aa9eb074f26d59bbf8531e0a1dn/a Quakbot
2023-05-16Zanhgvxf.jsjs d4edbc0f98e90df44fd647348a6f972877f7bd58b5372d5e0b800c3b492c84f4n/a Quakbot