URLhaus Database

You are currently viewing the URLhaus database entry for https://autovanilla.com/asbr/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634741
URL: https://autovanilla.com/asbr/?1
URL Status:Offline
Host: autovanilla.com
Date added:2023-05-16 21:52:14 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:53:29 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 0 hours, 41 minutes Poor (down since 2023-05-18 22:34:49 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Cdyh.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Xgcgdij.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Wjdzp.jsjs 1c0eb9bb4114097ef2149e50f90e4eacebf2dee14129572f9a94623146d0b322n/a 
2023-05-18Vtrxjhz.jsjs 812cc57a966264823ac9c3e7a2ec885f1ade0a4a304ac4ef12554bbf9328338aVirustotal results 25.42% Quakbot
2023-05-18Ayleug.jsjs a8a8153cceaada2e2ff92961844812b0aed9cd17ebb6700ebca64bc3627c960bVirustotal results 28.81% Quakbot
2023-05-18Mkwzfo.jsjs 399c7eece18438ba4f325cfc3863d0603d1237732a310fa2124a136ff2a335afn/a Quakbot
2023-05-18Gsix.jsjs 1539b3e778af6f644e932c0910705fec144fe2bbef2f8df241b0d4bb821d0fc5Virustotal results 29.31% 
2023-05-18Bgvcoz.jsjs e83bd9c4b21fcd0dac063c512259b7310762d0f7b923cba778206403e5314398n/a Quakbot
2023-05-18Jxdbj.jsjs d2338cd0376171b31bef79e7bc05e3954d3c61c6f23184804a1a1110dafa3d36n/a 
2023-05-18Wxowu.jsjs 749721b74088db119de7bccbe5cea0c9486f42bb570461ff262c5ed324b4ca16n/a 
2023-05-18Xndvnsyn.jsjs 43783ef70654df6b8b4c8d132454112d675abe8da1b8cacb358490d7b2159998n/a Quakbot
2023-05-18Mefgh.jsjs 2ae86821ba6902bdc957f61f92f752f51c37b2620aa00688fc6affc9b9b6c9c3n/a Quakbot
2023-05-17Xkug.jsjs 3bb38fa6f98d4d9251f3db4a5374a212389305ea2079c93ed01408cb473d434dVirustotal results 15.25% Quakbot
2023-05-17Ypqtgml.jsjs 2ea57f7ed2c3148b87f87bed297e9f780f369a71667342ed01a88fc779a24eefVirustotal results 32.20% 
2023-05-17Mohkkbxl.jsjs 8475cb42b6b2c974e37378cf11491570a83f194a37e5ebbc50add4a5677d6d72Virustotal results 25.42% 
2023-05-17Zsxrdol.jsjs 7ef24e8dba41a6e1f91b0d04f772ccc6300b92293dcb30726bd5052c1e2ccca0n/a Quakbot
2023-05-17Fhskba.jsjs 8506e3c5de62fa6173656a51f4f41a0986ccb9fa55bea9cfcb878c6df2bd88c7n/a Quakbot
2023-05-17Pqgzvr.jsjs 75aba79d300dca2a11da16879bf5c0fd15d388a5926381550db24144937b72fan/a Quakbot
2023-05-17Fqaan.jsjs 32b63b6f4ee01c7737a32e2bfd61aca2c688fdbd79e9455010a3a5506954ff0an/a 
2023-05-17Yxpy.jsjs 746d22bfe791d3291cd24ba74ea9d99a7b2af827eca57b37840e19df31ef47aen/a 
2023-05-17Xgwruf.jsjs 24576228da14a432262f5d194e680539775d4479a2033a642a2b83e2a43f4808n/a Quakbot
2023-05-17Zxawwj.jsjs 2b5da96b5ccf7bdb212478c9a9277860af1d167a81d134bacc1709c844f48caen/a 
2023-05-17Udokp.jsjs c4e7f1344e33178a46bebfa5a7a2eb2bbc1a37e65f65957df5df9a1ad87825fdn/a Quakbot
2023-05-17Vahh.jsjs 35b626a53171677f4502a9d250e76608ceab2ae80f796d5e05c698402eb84014n/a 
2023-05-17Vlwu.jsjs bad580d5fbad35f515bde7bbe1bd7a87583c3a04217858f6f642eb7eff44b678n/a Quakbot
2023-05-16Qkmvylc.jsjs d4a43bcdb2a7186666d6d7d942ab7ecb26fa4f04c875c8981f0e58a4dc293021n/a Quakbot
2023-05-16Rqyduwa.jsjs e1a86ad7c90f5ae89eb7cd7d84da11f08afadb66172a268dbe616b95e6826396n/a