URLhaus Database

You are currently viewing the URLhaus database entry for https://3roodq8.com/oird/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634716
URL: https://3roodq8.com/oird/?1
URL Status:Offline
Host: 3roodq8.com
Date added:2023-05-16 21:51:06 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:52:07 UTC to abuse{at}amazonaws[dot]com)
Takedown time:2 days, 0 hours, 16 minutes Poor (down since 2023-05-18 22:08:51 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Fbyxkil.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dVirustotal results 27.12% 
2023-05-18Dvio.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Hrji.jsjs f99a0945e3eaf722bc2ce83e2854bf3faae5ec5c5f8b83c7c0f9ae11998df09dn/a 
2023-05-18Sjehkke.jsjs 0b38200ce89d27eea5fb23346b4015cb585d0af5fd4f176a7c9bdb20ae369a4eVirustotal results 25.42% Quakbot
2023-05-18Slwji.jsjs ca42f27ebd7d4d5472c9652e26b5cd7d9f089e838ea85a8ac5f1c51b37e83e30n/a Quakbot
2023-05-18Qomdslbc.jsjs 906e50a48250213ff6fa64b72219e204e4f47e919757a5b1214a5e7682a44da1n/a 
2023-05-18Rebiebcf.jsjs 269dec903e55df2babe1cb8bb498ac7fe56d2a079cdf89c2d5c354b7a8fa1250n/a Quakbot
2023-05-18Jnqemm.jsjs e7958ccd8a002219ae5c0a15fe85c42f33e3433270f0ba102d597f19a494e2e8Virustotal results 27.12% 
2023-05-18Biewqgsd.jsjs 59eafea575993fa2b9b1a5a60ec2852f5cbda6491cc6c163e79d91e7fc9b1d7eVirustotal results 30.51% Quakbot
2023-05-18Rfosbs.jsjs 5c53fc6d6d29d37ae644bf3845ff851d6b03cd26eb5e411f93c26dcf018a4c35Virustotal results 25.86% Quakbot
2023-05-18Ngorowtb.jsjs 5ed6c54055399ee6ffdf3adfc06337fb1dfa9ee1a6c1766091b74c1ebe2ebda1Virustotal results 27.59% Quakbot
2023-05-17Nxgysgis.jsjs f0dad7e39dd98158fd3e2a3bcd4bc2dd96da1a8f382aef725da975d51bd63a04Virustotal results 34.48% Quakbot
2023-05-17Rsptgnm.jsjs 9c3ce9878a22fffcee6c677d536eef828546dc7592693cd8be968e6235ceb49fn/a Quakbot
2023-05-17Uvujwwb.jsjs 71122ff461bd77e00f131eb7f52d813ed7a1fdb3262bba2adb83ee04085152f9Virustotal results 34.48% 
2023-05-17Pxmrur.jsjs 0107042269a76269dd71d3dc19e72a1759d421cbf33b9758b94f08c93f0989e6Virustotal results 31.03% 
2023-05-17Ilpi.jsjs 2a95cf3c1e69da726dd11f2d5621a546ce89b168fa1cab3506197a63de008d69Virustotal results 11.86% Quakbot
2023-05-17Ourmwns.jsjs 4df2da0e1a60159c49866a7e3899e305f80766c9bae6b676bf18955d4e2ee8ecVirustotal results 15.52% Quakbot
2023-05-17Hwqgckt.jsjs c426bcba8c0bf1790fa05cb78d763ad67bedd1b1bc3eec6b4902700e097a1a0fVirustotal results 24.14% Quakbot
2023-05-17Xwxxuzum.jsjs 256b5693dd43ba9ac782255a11f52251481f5d72c27042d4b6f9bb05aed317f2n/a Quakbot
2023-05-17Yxlgpac.jsjs 3f81ccdfa74f85ee7269a2131bca00f31fa9fb4721847faa87a0f26b9042c48an/a Quakbot
2023-05-17Vsxrc.jsjs cdef8bfb436078622bbbaeda5d0fb465e9ba469da7e9819ea7d7437017cc3934n/a Quakbot
2023-05-17Lvweeioo.jsjs f46c35d9ba38c3a403f99d381bd11088ea803e3171f789f3a2800e21a4ca4df9n/a Quakbot
2023-05-17Erappe.jsjs 8a08b72abcb6538b3ffbbddb1fe373679b34bf941cf3c5ba98a1266923c72592n/a Quakbot
2023-05-17Ulxdtxi.jsjs c1d9af25520a8363ca0502c017589868eedaf3f8c9fea8bd86658095edf20012n/a Quakbot
2023-05-17Jkzon.jsjs ab66a612e25f7344f505adb4939de4b2d392092245a4a6f0c097375324bb828an/a 
2023-05-17Khrmviww.jsjs 9bda7fe6e345b8a3f02d696621c12803ffc3318f17a3d43201ced4035237b7ffn/a Quakbot
2023-05-16Dhfzv.jsjs 16a4c1ad021a757490e5ad6f3c7fc598b6d05132866e219691b5a0dccd1b9d0en/a