URLhaus Database

You are currently viewing the URLhaus database entry for https://antisnoringdevicesonline.com/suaa/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634726
URL: https://antisnoringdevicesonline.com/suaa/?1
URL Status:Offline
Host: antisnoringdevicesonline.com
Date added:2023-05-16 21:52:12 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:53:12 UTC to abuse{at}hostgator[dot]com)
Takedown time:1 day, 23 hours, 38 minutes Poor (down since 2023-05-18 21:31:45 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Hmiqpjw.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Aybqqb.jsjs ad46d9e926002702a34aa4f7d482f7eb7157d8717454cde840269666ac984c6fn/a 
2023-05-18Odnski.jsjs fdcc0d42dad0044c61df13f5468218d0d4311c94d427c557267a228da128040en/a 
2023-05-18Daqgyj.jsjs 9e158a8d22dc98e3ae057267f1f3abc2cabc910f829c052269762460d602479aVirustotal results 25.86% Quakbot
2023-05-18Wsklwv.jsjs 1a6bded230cdd64243a37dd3ca94385ac9f1c4794e054250311bd99f2564c83eVirustotal results 25.42% Quakbot
2023-05-18Mifaykz.jsjs 32710b418e9ddc449d0548590b62ac23975ad6efba53cc55cb1551326e182cb9Virustotal results 33.90% Quakbot
2023-05-18Fjklqvuk.jsjs ceb8cce48cb241bf1dbcb587ed7d6d8d4c9fdeb5f87bea993602228464eaf9a5Virustotal results 11.86% Quakbot
2023-05-18Vdzb.jsjs 0b38200ce89d27eea5fb23346b4015cb585d0af5fd4f176a7c9bdb20ae369a4eVirustotal results 25.42% Quakbot
2023-05-18Ganslfw.jsjs 5ca41989b791311510cc85281b20f28cd72d2554b2a862f47d9a9ac5ba9a70f9Virustotal results 25.00% Quakbot
2023-05-18Fdinrom.jsjs aa29c7434c1bdbe52fd461a295dac0931392a0852902d70bd91693bedfc48375Virustotal results 31.03% 
2023-05-17Sfrbi.jsjs 0e8413c3fd2b87cd2139ba54c718d6b9f305a8bf33d41f05aaaa2639ccde842cn/a Quakbot
2023-05-17Urfu.jsjs 3bc2c76bd30c4f67c56425ecd3201a7bd43655778be5fee4b7a2f72478c57d5fVirustotal results 26.67% Quakbot
2023-05-17Qsowlx.jsjs 0901cf7055bc662e98c048f651a2daa00fc1cec5bc745c6a25f315d5c31dc4dfVirustotal results 25.42% Quakbot
2023-05-17Pifj.jsjs 0c1a4acb8216ade3632625958fc7427a5f996f5570d05d649a0e49be5e748ee9Virustotal results 27.12% Quakbot
2023-05-17Uvwgo.jsjs bc08bfae3a441cb9485634aeda5f5ae4cbbe5e36cd98ce7b2812cd62ed4e5034Virustotal results 25.42% 
2023-05-17Peekps.jsjs 41004cb0d270673cab3af5cab1a87b9c6c88fd3a43f9a28494997c13652781c0Virustotal results 35.59% Quakbot
2023-05-17Lirwmq.jsjs f0dad7e39dd98158fd3e2a3bcd4bc2dd96da1a8f382aef725da975d51bd63a04n/a Quakbot
2023-05-17Qrkuieul.jsjs 95b2a4ff2ef67e48038e6f2e14eca6e096e6f2c9b33c7ebdb589616b8e732024n/a Quakbot
2023-05-17Nuybs.jsjs 04470435780eaa7e727a822f95594e4b8876388559c50fa06fbf049a97c67fffn/a 
2023-05-17Qxoymwzb.jsjs 33aafe8ac9877c3f99bc3b86b5b28f4881b0f64a176afecfab61753da728e803n/a Quakbot
2023-05-17Gevcaqbn.jsjs bca19e0fa656b468fd4d8b22eb89c5311564375889d575e3e8ee84b0954a5867n/a Quakbot
2023-05-17Fxfd.jsjs 1b6c6800056c98863af924a6ddc2fd8f81f5a5989399198982aa33b3ee86a951n/a Quakbot
2023-05-17Zvhzdjw.jsjs 16433e2b0cc6382d6f7bb4d5d5a20ffea9ad760bc841840f44de15f5c64288c8n/a Quakbot
2023-05-17Zgzonz.jsjs 838de935cb21db6ebc0965f7d39453f33689107a86d6b4d770e94a6b09db73c2n/a Quakbot
2023-05-17Pdos.jsjs c02371267087c45298c4a0ca518720f0ff66c975f9c37e63e96ea858f5539f94n/a Quakbot
2023-05-16Zwzz.jsjs e7613146662b0286d99e5594bd621f06df75360af306beaee2e831d25cd27b03n/a Quakbot