URLhaus Database

You are currently viewing the URLhaus database entry for https://bimskol.org/ehci/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634779
URL: https://bimskol.org/ehci/?1
URL Status:Offline
Host: bimskol.org
Date added:2023-05-16 21:53:14 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:54:10 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:1 day, 23 hours, 18 minutes Poor (down since 2023-05-18 21:13:00 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Smvs.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Kdrvk.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Decv.jsjs e3fcf880ac439125aec44d2e5ff0c5ec8be06c1291589710ea72bbdcaa4f5c08n/a 
2023-05-18Pxwyco.jsjs 64b83f23408d2a7227fa4c862e4bafcc65ec650c57113690f264fd64d4b9bfceVirustotal results 27.12% Quakbot
2023-05-18Cmcvotay.jsjs 1c527faebea66510912a82a4ece923294f74fa2947ce89b48b9b341ade828e1en/a Quakbot
2023-05-18Bnpkwklf.jsjs 0d19b7d7e092df5355727bab9cbf454b5b17f90d5380ef6240d0cada7cb5a1c0Virustotal results 15.25% Quakbot
2023-05-18Cicwak.jsjs f21a9095152b5a7124af37bde4000f76717ad002ec5e40bb2b86dc71839dabeaVirustotal results 30.51% Quakbot
2023-05-18Hyxu.jsjs 2ac229fd994bdb64a7cde85dae50a0f2f6a3229eed9afc763d5f8d0e9b4f0ef9Virustotal results 20.83% Quakbot
2023-05-18Vvfbayey.jsjs 24c2f222f6f2809f7c5dda15d789a41d9424dfce3714fe71bed9fbb0e077503en/a Quakbot
2023-05-18Vpxw.jsjs 5c57b539392768e2e9e8490f11f6528d81875b4aae44e11319d0a94af50b1f00n/a Quakbot
2023-05-18Ffpltl.jsjs 5c53fc6d6d29d37ae644bf3845ff851d6b03cd26eb5e411f93c26dcf018a4c35Virustotal results 25.86% Quakbot
2023-05-18Cbecmutv.jsjs f0ba5660e9ba7e62c93207a7b6fd775ee56ae1fa8dfc2ece0f169a6e96076681Virustotal results 25.00% Quakbot
2023-05-17Cchbyp.jsjs cfc68b43d74cf7d5fd05920f53d7e80393899308fd60fbcd60c8582770294bc1n/a Quakbot
2023-05-17Dxwlejq.jsjs a4633a3bade267edfd4e6171fb238320ca7b8fc6ce56403954409c8af38c4ca5Virustotal results 27.12% 
2023-05-17Ndmu.jsjs 009f072fec4afeeb62ee51fc61e387113eecca3d907b9784a9e4b79ca0c64ddan/a 
2023-05-17Qwuf.jsjs e50886cba40b1a43e2a678f24566fd07c951a78a554670ec3b2f25a3866d0d57n/a Quakbot
2023-05-17Blmznrjg.jsjs 2d4fa148f948ad83cb6ea9d45930d0384b699b8dad0de5e48214d4fcd895cad5Virustotal results 28.81% Quakbot
2023-05-17Csliivz.jsjs e82f04f537f593c6f5469d18db6332febdcd169b2dc920ed7619f9edab951f03n/a Quakbot
2023-05-17Ucvmtdu.jsjs b3c3f0880fe1ebd5b9f5146a8164da0834ee29a37e5a1cd8e534efe15c786daen/a Quakbot
2023-05-17Vsjzcrrs.jsjs 781f2026071c7e14280073286bc0f52d426e1da32fa1d8e168ec977ca8eb67ecn/a Quakbot
2023-05-17Hhptmv.jsjs 6447cd8ba5c3f05a6159282f1e8597882c4cd116edce75beb3640d8163a61129n/a 
2023-05-17Vciyy.jsjs 00a43a687c44f8c0a8ba0ec5c601e01032c37e68dba1397c6986e4ef08fa8cd6n/a Quakbot
2023-05-17Baoz.jsjs f5eafdf729fe6688f0407efedb6a560d53de5f9e5b304f5f44ed029764878ab3n/a Quakbot
2023-05-17Uxnqd.jsjs 4f308e1054b1ae7fc46ff1b7c233a59189a78f862dfdebc10da559784058ebeen/a Quakbot
2023-05-17Vyjnttkh.jsjs 3b48fc29b5a1b5cd1167f6c45bed7a81383c7b9b13c362d3fa1f1f9fa939b006n/a Quakbot
2023-05-16Gawx.jsjs f16716b4bdca9481715cdb1cb06c7b85b2a1ee6589009e3a09c9f9ae48973a8an/a Quakbot
2023-05-16Qygjmqk.jsjs 953e07e1203ee1a006d4e67526f1a0330e154a434bc9734754d683bbb8d88363n/a Quakbot