URLhaus Database

You are currently viewing the URLhaus database entry for https://cuanselalu88.com/bml/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634856
URL: https://cuanselalu88.com/bml/?1
URL Status:Offline
Host: cuanselalu88.com
Date added:2023-05-16 21:54:24 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:55:42 UTC to abuse{at}cloudflare[dot]com)
Takedown time:1 day, 23 hours, 9 minutes Poor (down since 2023-05-18 21:04:54 UTC)
Tags:BB28 geofenced GuLoader link js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Qmraih.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Jwwvf.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Jyaao.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Aymoer.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Taikw.jsjs ff6374f261eec79e587b2b399eec41a29ae18f9452fc0f66ea55ba5c02a9a8dbn/a 
2023-05-18Kbyh.jsjs 0e8413c3fd2b87cd2139ba54c718d6b9f305a8bf33d41f05aaaa2639ccde842cn/a Quakbot
2023-05-18Xyatmb.jsjs 8f330d0bd33cae1207a38406d6db47ef79a72bd8d18681a4a0f3a3a33ec3e4f3n/a 
2023-05-18Uycgc.jsjs cf3f8bcfc47120345a6bf7e2b44265e2cb07dfc6d6aae1290d5552e5f6d2e1f7n/a Quakbot
2023-05-18Ticfcu.jsjs b76a46e9b0db483e342c390f25663222fee2e67cb7670205636c7ee748850b86n/a Quakbot
2023-05-18Ukdqw.jsjs 9ac768cf3025869132bdb78aad3f4505cd8dd7e5ddc218e64d6645ba8db5e4f4n/a GuLoader
2023-05-18Egthw.jsjs fceef22558799ba34afb830f44f63ff2d0386112e3506a24549d220e7ab2f4d1Virustotal results 15.52% Quakbot
2023-05-18Ykohxax.jsjs dc7a9209bb0458b585fb71acb0ae6a651d790217507b141df605e7290800960cn/a 
2023-05-18Behu.jsjs 29d88d7a73d988b2b2c5ddc76ac150742366a2a8c379758bf47f13c2fcf01346Virustotal results 27.12% Quakbot
2023-05-17Ezwpt.jsjs 246f0936618439433071e920bc87c631f7506091006fb43ae80612f430c0846aVirustotal results 26.32% 
2023-05-17Ynyhj.jsjs e84b4920d25503f9505dfe8813b964551aa485cc176eb30dc5ac5e46dd5d56bbn/a Quakbot
2023-05-17Neefub.jsjs 3e80a8823bae07e1aca749a62a6da2c57f0f80ebb6d4a8cd1be2ea749d3af45cVirustotal results 17.24% Quakbot
2023-05-17Cdcjyd.jsjs 5b03a98354c24b442061c45caca4e261ba88fe1d68187bd4c44f84773d562a6dVirustotal results 22.64% Quakbot
2023-05-17Bqglohsw.jsjs 759b7245c8f5cd0c5db7853442c740696c4a66caf8aae6a281b32f063f6c660an/a Quakbot
2023-05-17Ospuxwa.jsjs 148afa4bdc9cc4fbfe4816e01d70172a2fba4ead24c822bd4cc936cb0efefaddn/a 
2023-05-17Hihlaih.jsjs cb46274d330ebea266c559fd5e391bd171816f40b8a0d960dbacf22c23a94ea3n/a Quakbot
2023-05-17Ytzrsejk.jsjs d539b753543af560dce23ae456fac8033ea352f2d003120b34332e8aef45cde4n/a Quakbot
2023-05-17Vmtiu.jsjs 36434082197db3a5e2c24134b3c8dac64d62998fb5bac83d4d60fa66af0aadc0n/a Quakbot
2023-05-17Mcxeitgf.jsjs aac9097a89e9ede6b06a4b0e1f4045c55f09b73df7e1c86ac7c71ca070cdf7a3n/a Quakbot
2023-05-17Zouxfmd.jsjs 7d588f31d896f1a96d2f00efd0b286f841534c9dd9bb74a7514e6c5c2226fd14n/a Quakbot
2023-05-17Vdtl.jsjs 4243a3bff9dec2a49a9666f50f26572666ad1ea85af3419fe35d3e1d8bc1ff65n/a Quakbot
2023-05-17Tjqqcwo.jsjs a9dd9e3810ebbc2337ee7ad47d3e14f983eebd0b511a498446e488dc495c6abdn/a 
2023-05-17Hjht.jsjs da6aa0f5e70dbf19c25cdd964b675fdfd8ae0054b5fa7b231d3d3feffb84f39en/a Quakbot
2023-05-16Fdqugla.jsjs f2a79872768ea02add4483142baa4d7eef4a91a83b5af931728d6825be4b0a47n/a Quakbot