URLhaus Database

You are currently viewing the URLhaus database entry for https://chaosofsoul.com/mvu/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634803
URL: https://chaosofsoul.com/mvu/?1
URL Status:Offline
Host: chaosofsoul.com
Date added:2023-05-16 21:53:18 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:54:28 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:1 day, 23 hours, 32 minutes Poor (down since 2023-05-18 21:27:04 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Cqvuyjn.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Jsgx.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Vrdb.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.56%
2023-05-18Zhwa.jsjs 4c15ae6ab4ca0297dc590ad4e0a908bbcfba4e69cfe60a078d6aaebff1c94b80n/a 
2023-05-18Segc.jsjs fb2bca8ce3aa4207fc636e9ebc34bb47cc0d9b6a233352bff3b6875b6bedce3dn/a Quakbot
2023-05-18Zmybosvx.jsjs 3ac894a6a388d20bc81ae5f8474ee788079f5036842b1542150a55c8fed2059en/a 
2023-05-18Cgtrahb.jsjs d7ee80c4c9f9a041e63b9e4a454dfa6c60dcb7fdd18ca658f2f92fc97f61d766Virustotal results 22.81% Quakbot
2023-05-18Byznikts.jsjs 502aa2d56dbba3e18971b863336aff4b696a67a0935ca0cc3d9186a3c2c8550bVirustotal results 28.57% Quakbot
2023-05-18Xobbojf.jsjs dd49f4bd134e3d669ea1daeb866bffdb27dd69e46b07dfc3b04758e718b40700n/a Quakbot
2023-05-18Xnokxm.jsjs 6b01b5522683c655f6e33fc4ecfa2ef55bae886a543ba306b61dd976a892fe96n/a 
2023-05-17Ukszi.jsjs 80fc6bc22b972a2f7976468afbf26152a90501570de0a295a92cc9b9c55b15ean/a Quakbot
2023-05-17Vmdpf.jsjs 38994d258f8bfb97fcb4ad671d962c6f000efb90f29ef01a8ca9881d7a206c66Virustotal results 27.12% Quakbot
2023-05-17Afxgfpdm.jsjs eb40b9246889e25a0aa869bfab07adf9622ef027a8ef2ca488d9926b5a39718fVirustotal results 27.12% Quakbot
2023-05-17Celdeg.jsjs 2f457141989cd8db7267b3dd982bc3aca3c0d763161cfedf75384aaa9b27bfe3n/a Quakbot
2023-05-17Jzgvj.jsjs 0281a8abb9cc25356770caa1340573c19ab7bda7d5303f43a60a52b2b9154067Virustotal results 25.42% Quakbot
2023-05-17Skjajt.jsjs 4de3c0071371884b0a2e8815554e19a2c0d89112e1bd9bc512d30aa306d3f0a9n/a Quakbot
2023-05-17Rsdkl.jsjs 84ea8172d4dc9112a6a11a4eb6053bfd7ed4e0f0855474e5c373d33fa906b6f1n/a 
2023-05-17Ojyxxofv.jsjs afc4fed1315266a349a8724272f94cd165f33813d2db7a110f0d3ba9f6e18e36n/a Quakbot
2023-05-17Sxbvjbsy.jsjs 494afe48ec71796410908932033885dd27f28c3f56c2622fb1ddd97dbe2220aan/a 
2023-05-17Xsibjy.jsjs 13a61e8df510b9bc3bca9a91758feb855600d371d5d3eb041dfe707aad8fe39cn/a 
2023-05-17Dblhc.jsjs 3f992b19022a457a408891be97e080d1fd747ff86896f1eee397d9a8370aa054n/a Quakbot
2023-05-17Phzopjg.jsjs 809c17c806cdf5d0c948a2345eb8aa9ddf425fc1e7f51d84bb31cef722841c33n/a Quakbot
2023-05-17Yvyrrj.jsjs da0c7f3873298cddf441126e3c989a30c0d830a8663c7edd96524ec389e4c4ban/a 
2023-05-16Wigx.jsjs 81bd254324a6c835cd4419ce5becd9e44c7c357cd4d19f045a56c95c7ee4964dn/a Quakbot
2023-05-16Drcabilt.jsjs db57aee8269f98653c4564d459b1eddbcc137c8ae198156c1a0c65120e087877n/a Quakbot