URLhaus Database

You are currently viewing the URLhaus database entry for https://erengenharia.net.br/pt/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634820
URL: https://erengenharia.net.br/pt/?1
URL Status:Offline
Host: erengenharia.net.br
Date added:2023-05-16 21:54:12 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:55:15 UTC to abuse{at}hostgator[dot]com)
Takedown time:1 day, 23 hours, 33 minutes Poor (down since 2023-05-18 21:28:29 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Zmwfjcqv.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Zkti.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Xgef.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Qvrl.jsjs 544cfb1374f40247b834139606a1917e153ecb5a1f24237667ed5297144d4078n/a 
2023-05-18Unkyghux.jsjs 2ea57f7ed2c3148b87f87bed297e9f780f369a71667342ed01a88fc779a24eefVirustotal results 33.33% 
2023-05-18Llcdoac.jsjs 3fe82998dbbd1b56d6f2bf670fec8d276ac794d97facd50002a2cae0c1f41b02n/a Quakbot
2023-05-18Voenfx.jsjs f80b9a7940830c735c2fbaf225da18389f25dc1ed7ef8e073311c9b3d680a95bn/a Quakbot
2023-05-18Ybjakkt.jsjs 1eaeb0800e5cf78a2590fb2ea6859c5f0bb66ad09354a079964ab9c7e6381781Virustotal results 32.20% Quakbot
2023-05-18Kpogx.jsjs 80fc6bc22b972a2f7976468afbf26152a90501570de0a295a92cc9b9c55b15ean/a Quakbot
2023-05-18Spxzrwes.jsjs 89ddd75a9d671f30070d8ed74468e507a72e5ca5699855296beb959dae2b71b3Virustotal results 11.86% Quakbot
2023-05-18Ekncyrlw.jsjs 321c1a3f14a23d2a9aa660e3c3d41d7c92fbba4788fc20057ac697e402248405n/a Quakbot
2023-05-18Uwqzav.jsjs e70a77365ffdf3f446781b46a826a0796adf73d479c783efd6763a7d83aec549n/a 
2023-05-18Usqufiz.jsjs 1f26839da60e55672a1ff564cacf4050f50673ab46f7c13ece884b64e8db290en/a Quakbot
2023-05-17Jffo.jsjs 17c3055ce856c6ee8bbfdfa36ea81dedf3d495e3aa418145fea73358747d4cd0Virustotal results 25.86% 
2023-05-17Uqfbroh.jsjs a9f2a0cb2e1331cb0fde62a0318a6e4666f4e283157690f3f7a1059aa73b2f71Virustotal results 30.51% Quakbot
2023-05-17Kbefjjuy.jsjs 62f72a40ec519cd843b1c38ebe9ee2be23628961bffc952c1da59c3687a87466Virustotal results 24.14% Quakbot
2023-05-17Ablxe.jsjs ad3a510115f62b2cdabc978db56cb5d93c372bcf45b52fa39d4d125e1cae3caen/a Quakbot
2023-05-17Kqbrvbkd.jsjs 2d4fa148f948ad83cb6ea9d45930d0384b699b8dad0de5e48214d4fcd895cad5Virustotal results 28.81% Quakbot
2023-05-17Hbmzg.jsjs 9da26f54018ef7b69e7ca172d1ef9d1de643acee030e0b25c66a5f27867c8833n/a Quakbot
2023-05-17Egor.jsjs d3c173c2dfa25e646847bc107890d76906c807bf85968b5dd9e96044a7729b2fn/a Quakbot
2023-05-17Sqkycbw.jsjs e4ec32150d6e87a71d76e7b2f71274e3ac9a2b263e4fec937fbcf4b766731192n/a Quakbot
2023-05-17Xufqnw.jsjs de92fff0aafe72aaecf1189a2346d2c0432c9724e6137bca26238805aafd458fn/a Quakbot
2023-05-17Vxax.jsjs 5edbe8de58a8e018eb80a3952bcba323ec17031dc1e506ffc08dd987570c7dben/a Quakbot
2023-05-17Uxwcedzc.jsjs e2e9dca8d29550881b47032e2e6daf20d94fcb1a9a8de07574710b76c0b8807cn/a Quakbot
2023-05-17Yalzyl.jsjs 70dc3b0aeece0e22398361a478db5f468e8ced7c3daa57fd14fced53908594b2n/a 
2023-05-17Bpdr.jsjs 91355cb5aa57c7cb3627ee30ef9b09defc726a07d181f732e2160da2c1d37088n/a Quakbot
2023-05-17Wsxspgyd.jsjs 30736b6e73654a44a9689590e22560f3c3c1c38b352b248a40b31559133621a1n/a Quakbot
2023-05-16Brfypdae.jsjs 99fad1382759f137125f15982b4f14988e1af44cc3d46bdf3a68946abd7db31dn/a Quakbot