URLhaus Database

You are currently viewing the URLhaus database entry for https://examexplorers.com/ub/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634883
URL: https://examexplorers.com/ub/?1
URL Status:Offline
Host: examexplorers.com
Date added:2023-05-16 21:55:12 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU100116893 created on 2023-05-16 21:56:03 UTC)
Takedown time:1 day, 23 hours, 14 minutes Poor (down since 2023-05-18 21:10:40 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Qbzxsliv.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Opfugg.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Adrljal.jsjs 4eec459eb93bc9944e7264be3cd022338865fe3227c98eaea7f9379fd46f94e4n/a 
2023-05-18Cutvmwo.jsjs 5b903308829f5c7410c0e53ec748a05a9e2205f4400bf2941199cf2223c0e1f7n/a Quakbot
2023-05-18Qmgwlsny.jsjs 41004cb0d270673cab3af5cab1a87b9c6c88fd3a43f9a28494997c13652781c0Virustotal results 35.59% Quakbot
2023-05-18Nzexyar.jsjs fab89deda2e8de1afcdf4d43b713652dab42ebcad6b4eddcd3b225188a7e3078n/a Quakbot
2023-05-18Xujvjxyd.jsjs a9d658acf1c13639bef4615e65fcd8eaebd3b1d0c14ee826b7268e893878e5a5n/a Quakbot
2023-05-18Jlnojgu.jsjs abae955795961dc369ba3d41196f2f4238001efcff8a2dc429ababf4821ca7f5Virustotal results 22.41%
2023-05-18Hbfgvfmg.jsjs be61952594d1dcb5774683bd939e4e278b596ba069248f2ff16fc39f2351936fVirustotal results 10.34% Quakbot
2023-05-18Dgrhf.jsjs 2c6c3f6ffb898b9a29cc0a5ec84ccecf30800496946b378d5558f81798278c3aVirustotal results 32.20% Quakbot
2023-05-17Ljyf.jsjs 9f16a38888bf7c130dfc15dff72eda59b2621e7c1048f157a4cf51e9bcb2e280Virustotal results 32.20% Quakbot
2023-05-17Jffxjnif.jsjs a5f3d5a1dd9f57238b6a528792a0d6043f93289be9f4e2760c3549006c132bf8n/a Quakbot
2023-05-17Bvzzda.jsjs 4604c9a02925f680aa68df7691aab5b247d61f74fa2c2c261a58ed40e9680327n/a Quakbot
2023-05-17Fazi.jsjs 003a7f907bd61ac3b7c2a9dddb1bcf8822364010b01853af755fca54c3f2fd80n/a Quakbot
2023-05-17Vidvwlyv.jsjs ad3a510115f62b2cdabc978db56cb5d93c372bcf45b52fa39d4d125e1cae3caen/a Quakbot
2023-05-17Husafppd.jsjs fe6c3afc81fba017285089bb2240464e993b83edbf51755fe47e70d5ce454558n/a Quakbot
2023-05-17Fzottgp.jsjs 92541d594f60bdb46e24073e3720e0deb32a8bb5a4409a44b650b790dbeda309n/a Quakbot
2023-05-17Xiulreef.jsjs 3f2b1d4fe71004830b3afc87d735391d7ff0033d3264baf0b9b84903c52c16f4n/a 
2023-05-17Muzn.jsjs 6243187f5e22cf5d0109387442b299e80a012d699797cdfa29e5fb0823845b56n/a Quakbot
2023-05-17Vzbbzznd.jsjs 610281c2e6e84b04eca0c3eeb26b00f0e7516b7e17f5fe34c3c0a5894858a424n/a Quakbot
2023-05-17Ahsk.jsjs 200586ea36b76779071d70f8f0706be3d05d92209d426a900652723f7b3ebf32n/a Quakbot
2023-05-17Mmxc.jsjs febbd20de9e23130a564cec49cd17e354756fd815462122e7d1441209451a87cn/a Quakbot
2023-05-17Suxjefmu.jsjs 1772cc0b24107f9029a4a36c51b36e0ed9901360de0a501737fd4231acecda8dn/a Quakbot
2023-05-17Ncom.jsjs c0e90307db42c506347acad7a06a37256ef286b1de5cce95b070ad723bc9e675n/a 
2023-05-17Iippiw.jsjs 028dd313de6392afea15caf15ae4424a155af3b18fa0a97527a83023f808bbfen/a Quakbot
2023-05-16Winct.jsjs 195800eaed03d8fa83fa50cffe85855c83c6447daf9aeb4137c249dfce88da45n/a Quakbot