URLhaus Database

You are currently viewing the URLhaus database entry for https://afreak.net/uiei/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634760
URL: https://afreak.net/uiei/?1
URL Status:Offline
Host: afreak.net
Date added:2023-05-16 21:52:20 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:53:47 UTC to abuse{at}hostgator[dot]com)
Takedown time:2 days, 0 hours, 54 minutes Poor (down since 2023-05-18 22:47:48 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Wisbeh.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Rlyy.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Wluqwel.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Dfbys.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcn/a
2023-05-18Ndbq.jsjs 582d7260d0c9d28291c1a5741818450399bdb826da9dfa44e69657727548f4f6Virustotal results 25.42% 
2023-05-18Rnnicvpw.jsjs da144ecfed0906bbac01d116a74626cd6fd7ec833680cd9ff8107dc94db16496Virustotal results 28.07% Quakbot
2023-05-18Hpiie.jsjs fb2bca8ce3aa4207fc636e9ebc34bb47cc0d9b6a233352bff3b6875b6bedce3dn/a Quakbot
2023-05-18Zszvwufi.jsjs 49636b8d67746ef7da6e75b7b961332aa2ec681c92060c1648c4a9730e0abf7eVirustotal results 22.81% Quakbot
2023-05-18Guuqzcw.jsjs 0857b5e40844024689620ed0e9d9fbef8b9b295f54e11fba7dd9693f59ce40fdVirustotal results 27.12% Quakbot
2023-05-18Zjef.jsjs 0efda647b9e6537d80702573e14dad4cae7edd5bb92d94eea0f136b93fdc03b7n/a Quakbot
2023-05-18Hovgksz.jsjs 4de3c0071371884b0a2e8815554e19a2c0d89112e1bd9bc512d30aa306d3f0a9n/a Quakbot
2023-05-18Yjglvchg.jsjs ace729a8273c30f923532f7f1a8c2d214aeb49b0c3109d8eff64612384b29140Virustotal results 31.03% Quakbot
2023-05-17Gkqk.jsjs 43f0a123b00abe19f1412b6fff2944e5bf4436a2ba20e3493ba9708ee5088c8bVirustotal results 24.14% Quakbot
2023-05-17Unzba.jsjs d4048bb4d8d517078d21db74a0238b8f0696dbad0bfb9cecbe0dad5e3a89bb47Virustotal results 30.51% Quakbot
2023-05-17Vbzqrnj.jsjs 32b63b6f4ee01c7737a32e2bfd61aca2c688fdbd79e9455010a3a5506954ff0aVirustotal results 24.14% 
2023-05-17Vawasbf.jsjs f74f3f66b468e91f7060adfeff51f084fd09fb44b5d93a66ce1b2cccdd016bdcVirustotal results 25.42% Quakbot
2023-05-17Wlhrwmir.jsjs f11d7ad43d7a6c6cc716d06a9d41c96156d6ce0dc45d6add8d3039cae526e350Virustotal results 25.86% 
2023-05-17Tgobop.jsjs 31bfb0e9f32a6891aa3b4bb9c1caeefec664295de95b74eccecf9eb67a2b84cbn/a Quakbot
2023-05-17Qnzixhlx.jsjs e34af5d0c51c9f5403ca9b2aad48f7f772322fade0dff21b839a90ac6420cd87Virustotal results 27.59% Quakbot
2023-05-17Jmyqf.jsjs ec038ef76ec39d36971e8a801105bd271b7e7c72a23435f57313e54e0faaac27n/a Quakbot
2023-05-17Ycgb.jsjs cd52b509a1b6bcaff1c09a88f5a99a0fb5fe271dd662d24f8aefb6466c574decn/a Quakbot
2023-05-17Kxhbcup.jsjs 2b76eae7e5d0852065af9793e5737f934a99a22ce0e5a8fb45b0b8bcfef889b4n/a Quakbot
2023-05-17Hlfzfwcw.jsjs 47a5784454f913e1af211c1a572ef498ae74bb6e7d34518691c6e71341664cc9n/a Quakbot
2023-05-17Lnvyn.jsjs c999bb60046446058bb789724f54c85f246fe434841f696999c5bc381a6ec360n/a 
2023-05-17Zsdc.jsjs fe81235a543e93f46495e88604a43aa118fed7fa70c84ea7215db9b33cbe3d64n/a Quakbot
2023-05-17Ikgd.jsjs 9cf449c200638d1e0d1ec37a7d9a6653b9d54be38295943621cfe801b2af7865n/a Quakbot
2023-05-16Nefv.jsjs af3b394ddf01797d88ab0376d999d5dcfd41fb0922e44f85768f98da677748f5n/a Quakbot
2023-05-16Lcxjibkx.jsjs 98a876c08f3499b764031b35d0e2e687860ec8fa2cc75db9806c1010d6929b43n/a Quakbot