URLhaus Database

You are currently viewing the URLhaus database entry for https://gamerzshops.com/tova/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634891
URL: https://gamerzshops.com/tova/?1
URL Status:Offline
Host: gamerzshops.com
Date added:2023-05-16 21:55:18 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:56:23 UTC to abuse{at}godaddy[dot]com)
Takedown time:2 days, 0 hours, 54 minutes Poor (down since 2023-05-18 22:50:50 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Ytrbh.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Hgvywymy.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Tibwaudy.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Amwfjncu.jsjs dc94aa70e0b96e33c5c886a6a33e835d38d0cb7344127885c738b192c36e6d29n/a 
2023-05-18Gyam.jsjs ff50e9d6bada1c148165cd94d8242cd7c0651692a508bbec763046c0ad17be90Virustotal results 32.20% Quakbot
2023-05-18Jxcc.jsjs 50181b4f3b73fded444a5822e9aae57537b05f693c1a1887d0f8b54f0f597de3Virustotal results 24.14% Quakbot
2023-05-18Nxggrjn.jsjs ccdc371fa95a2dc8192ecf73826f489942857addced0e8ce4b9aa969aa98381en/a Quakbot
2023-05-18Tcdrgt.jsjs 447b96999dd079d4e5bbdefc464fbae41be6c1d6f55fa0d6dc0cf9db6f3490b2Virustotal results 23.73% Quakbot
2023-05-18Oopx.jsjs 321c1a3f14a23d2a9aa660e3c3d41d7c92fbba4788fc20057ac697e402248405n/a Quakbot
2023-05-18Qjixdxe.jsjs e21d7ce5a24617b4a823482fea8b703cee1f434028f5ee807b3d77bcb4197988Virustotal results 14.29% Quakbot
2023-05-18Bjmhrfud.jsjs 3b413252866f0b4261ccf3b4972d86690f29353242c85733133be84940ad6fa3n/a 
2023-05-18Fwuf.jsjs a5540977a0c0c5a143b8a2c6f71919f2181988f29747374bd66cbcebd4eb7b11n/a Quakbot
2023-05-18Lupj.jsjs b7aee295279db7ddc9a5aaf2c89b1395f0a2c3ad92cabddcb41b024dbeff9c64Virustotal results 18.64% Quakbot
2023-05-17Gcuw.jsjs f064ddce080fc01f0b5b378227f89a1ee2f48034efc22bcdba315de07adb217eVirustotal results 28.33% Quakbot
2023-05-17Xypehy.jsjs f865f1501145c736f9f72ffa6b3431effc20f094261818dfc60ace530d2aacebn/a Quakbot
2023-05-17Pyhflaa.jsjs d4d054686a5e084363a71c69d138897e7b35fe3a4008cdd377ef2a2121799d11n/a Quakbot
2023-05-17Ffnofsov.jsjs 67ff580532af15d6457fe1b6aa59886c46bd5c72906c86b58aae1e7aab70fa3dVirustotal results 25.42% Quakbot
2023-05-17Xdbwplr.jsjs 959eaab7d50ed2022fc6403b969a196f340861c5aafaa73ebd170ad225699275n/a Quakbot
2023-05-17Zetkotc.jsjs 64dbefc6ce8b2caf9b441a36490ebed30319eed28e49ddf95d43659494906f10n/a Quakbot
2023-05-17Onhhtmo.jsjs 810ada1d42f67452a00b5ac007636e097f2cf12b8c0fd0d88bd798d30a09a5b2n/a Quakbot
2023-05-17Tfeugf.jsjs ed1a1af28aada43b6e0f0bdd34950866a82f33d2b93309ed3cc63b3289b91bf8n/a 
2023-05-17Odvx.jsjs 3d5e9b5d826ab6dbf9471676552f06ca85ad2f4ae115c0991ecae5ce87e0bf02n/a Quakbot
2023-05-17Rlukiwc.jsjs 6486252924d754a98637b1657196cf3513e5d44c6100fe3e240e0488b1f40175n/a Quakbot
2023-05-17Elmrxay.jsjs afd6d4c3bbc48830b194c3362d50c8a30e742f003f671d08ff4cb61e547b52cbn/a Quakbot
2023-05-17Psbocre.jsjs 4758c97a7ea2d3e8a8d1b50ce581b8831babefd8be96ea303e266170af8b3a58n/a Quakbot
2023-05-17Zxnzyrpi.jsjs f7a693c799561cb7167351283c6441d710591beb84a3d905d698980b4f6fd079n/a Quakbot
2023-05-16Wdcur.jsjs f85d2d0d6645084485bc31235feb91e999887ffaadaa2e190ab733285d749fa3n/a Quakbot
2023-05-16Jrpeih.jsjs a8f98ba12d91e4dfa3826bfebcaab35d929c60b36bd767aafb20743d97bb789cn/a Quakbot