URLhaus Database

You are currently viewing the URLhaus database entry for https://jagowd88.com/mts/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634940
URL: https://jagowd88.com/mts/?1
URL Status:Offline
Host: jagowd88.com
Date added:2023-05-16 21:57:07 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:57:39 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 0 hours, 46 minutes Poor (down since 2023-05-18 22:44:14 UTC)
Tags:BB28 geofenced GuLoader link js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Xlwwk.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Tedhe.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Iewaawhy.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Licztpa.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Jokye.jsjs a2e089ea2109c0266102bfc4aa8f272db42dd66855fb4fd2525dfb51ad7be3b9n/a 
2023-05-18Hxuqsjyh.jsjs 8c2547beb9fb406c4a16f82f423ebe7c1ad3223e438fa0b061c7cc13133a635an/a Quakbot
2023-05-18Wtudbzx.jsjs 479435405ce11b58fbf16a8d7d4f3f1b2d8952718a2dd79f8c0e4ecb91176be8Virustotal results 32.20% Quakbot
2023-05-18Dnqwhaw.jsjs e7958ccd8a002219ae5c0a15fe85c42f33e3433270f0ba102d597f19a494e2e8n/a 
2023-05-18Ksytvmz.jsjs 2e6fa76c0870d4318d71a8defd95759f831cb88397931327f00478d853bc9525n/a Quakbot
2023-05-18Lgpjzdo.jsjs 568dbf92f0bf53b20857f863e58e7f82287fe96c9dc066c782f5f82c64287a75Virustotal results 25.00% GuLoader
2023-05-18Bbhv.jsjs d307232640d2944029109ca441be49052d7c8d24590a54096c256c48e4d7da1an/a Quakbot
2023-05-18Xkjdci.jsjs e50886cba40b1a43e2a678f24566fd07c951a78a554670ec3b2f25a3866d0d57Virustotal results 22.41% Quakbot
2023-05-18Oqfny.jsjs 8deae0dc00f63d06da4b8491f06c909682b192af1c7ae4467703241c34a509ebn/a Quakbot
2023-05-17Znndty.jsjs 1eaeb0800e5cf78a2590fb2ea6859c5f0bb66ad09354a079964ab9c7e6381781Virustotal results 32.20% Quakbot
2023-05-17Cwrdw.jsjs 5058b0ab18a174398413798e655e1f00408418493c371ea109decdfcde2e1608Virustotal results 32.20% Quakbot
2023-05-17Ncda.jsjs 9c3ce9878a22fffcee6c677d536eef828546dc7592693cd8be968e6235ceb49fn/a Quakbot
2023-05-17Cdtx.jsjs 3ff223428a9d2b7b897fd823e4add6ae4cc119c86e47eb073bdbf5a578a17226Virustotal results 20.69% Quakbot
2023-05-17Bshv.jsjs 90854b60ab6b30c83f8839a6d1977dc7968771625bc4a6751d30fa1ff505912bVirustotal results 27.12% Quakbot
2023-05-17Pwfjxuod.jsjs 7f96290dff45385bfd8340f07e433e56831a66a593d5472a2ef8da6d665f355bn/a Quakbot
2023-05-17Pndsjjax.jsjs fc087bbfa79c07ccc635f8a6fd0b89dea00fce47f2c8fdd18e9a29c72d8a3bd0n/a Quakbot
2023-05-17Dzmluo.jsjs b5060d1f18744e27e7affaecf8b9774ad92a8d69bd995264376e34eec30a82f4n/a 
2023-05-17Ilgqwdlr.jsjs dfb198f9dcc99efb89d6095f743995c6e21bcd91b4e3b45afd4379e3529459d8n/a Quakbot
2023-05-17Yrmm.jsjs e914196c4d5fe41aaec6107c2ec6efa4b35cc05663587a69a8b862988255efdbn/a Quakbot
2023-05-17Sven.jsjs 74ecd854e501276c103694dd5af6879daabdc6b882c6992c558a80c2e544e9c8n/a 
2023-05-17Ckzrfn.jsjs ef07be91c24172eb1ceaa2d72bb41a1720204aad612156b4f15f52d31306e65cn/a Quakbot
2023-05-17Nzzbcba.jsjs 69e6ebc77024704a706660d2049609544ea46a1877a9790ead8546ca94ef1396n/a Quakbot
2023-05-17Fljaf.jsjs 6564d6128d8d494bc51359fff4b13c02df46b189001dedf16380cb8d579c5524n/a Quakbot
2023-05-16Pbqmv.jsjs 75b01cef73ff0de9a4992446a70c2b4b0b28981dec46806e937fe0961f9db205n/a Quakbot