URLhaus Database

You are currently viewing the URLhaus database entry for https://lifetransformers.org.ng/ipc/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634948
URL: https://lifetransformers.org.ng/ipc/?1
URL Status:Offline
Host: lifetransformers.org.ng
Date added:2023-05-16 21:57:07 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:57:55 UTC to abuse{at}colocrossing[dot]com)
Takedown time:1 day, 23 hours, 37 minutes Poor (down since 2023-05-18 21:34:57 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Qlgez.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Pukwrg.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Zpgiu.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Gxwvfiyd.jsjs fe36a3fa1ef67d47a73ba6d05a8e698cb6d7e541ad32afb8a45d729204e9926bn/a 
2023-05-18Yldt.jsjs a96854430c436d296fb5eab6bb063863ecdcb5e6d1f48982d5375cab74cc8773n/a 
2023-05-18Izklmf.jsjs cc1399eba326d79dc397363937989a81822144dc05e184cd6d904bbf2617e9f7Virustotal results 22.41% Quakbot
2023-05-18Rjkrprr.jsjs a2f17ffca655028bf5663349090771ded5e0eac6f65e71d0fc151816a2dc7342Virustotal results 23.73% 
2023-05-18Isbws.jsjs 935d2fea6488c7d2c6ec2b528f43f43c49b96750bbf21401284b5c42710e8c75n/a Quakbot
2023-05-18Vbjxovu.jsjs 8506e3c5de62fa6173656a51f4f41a0986ccb9fa55bea9cfcb878c6df2bd88c7n/a Quakbot
2023-05-18Bcwfgl.jsjs 028981687a2254e22ca965537b4ed290d1dca3b0b682da744c55d1763c98565aVirustotal results 32.20% Quakbot
2023-05-18Glfbpf.jsjs 3b521273a1f49f0fb7c2f4ea15df405e5c77af2e36c653ca0e352ada89db0c6bVirustotal results 27.12% 
2023-05-18Jzbkpo.jsjs 1518f10a4a3e1bb0772544083dd21336675b9248d73c59f8dd75068406de1474Virustotal results 23.33% Quakbot
2023-05-17Psvua.jsjs 0a6a1598b501c10c9f5b674586502de9eb32d51063c42dfce137a78f56aa4388n/a Quakbot
2023-05-17Thzm.jsjs b267e2261f79527d447d6a639751fcabcf68f9640e62a3c3106b4f750cb07b66Virustotal results 32.76% Quakbot
2023-05-17Qryhoqs.jsjs 562698d61476d96d6f3b0fd847585b9c5e4d1f9eb96f8153ba577725aa0eb697Virustotal results 27.12% Quakbot
2023-05-17Jkpdnahc.jsjs cac584e2ff62f01ca51db682d0b6d32ff11123c3bc3b6a5e9794606ad51844fcn/a Quakbot
2023-05-17Gvigd.jsjs 4ade6f7d7cfcd03dbffdfe401ed93fa601500252c858fa6010e54b0587fa0249Virustotal results 27.12% Quakbot
2023-05-17Sres.jsjs bc85062a6ed96ba55f83637c5941ebb10dd8734a7486eb2e716a41e21578b347n/a Quakbot
2023-05-17Vgmqd.jsjs 8a1f226245e5f15e87409d617437e6d102c8267d28d1bdb3f198a89620b090edn/a Quakbot
2023-05-17Mugbg.jsjs 5e08bd84c93fa47752ebee4cf067cc94ed0e2312edee78850a4d68e3906e1a76n/a Quakbot
2023-05-17Wzspy.jsjs 54410c83965a5234736983ec620fbaf21ac7b377d39adb3d373ec6dec61802ddn/a Quakbot
2023-05-17Byls.jsjs defc528bf4bb0cb8c8fd7af749f8f916d43f506f4582066a9403a9c2881d63c4n/a Quakbot
2023-05-17Bglf.jsjs e1913a57df396dea3f2a56ce5bdf7d04c4ecdf1f6fe665dc0be04665d59f415fn/a Quakbot
2023-05-17Ketj.jsjs d97a129a0b9c0dc150231357deeab38c73b13d3cfec8dc076622d9cae919e777n/a Quakbot
2023-05-17Dyic.jsjs cf0fda23464ebd1865c26252c19a445bfb23588d6684b4d699e69f452e7d1dc2n/a Quakbot
2023-05-17Tyxjyjv.jsjs 657b43ca9a39f0ee2af87b710ee20ca44b2e2afdd5564fc99d00feb4da8d680dn/a Quakbot
2023-05-17Xuriv.jsjs 1deac00048c4eab80704e103acabfd6580f6c8a3b9522e1132b2fe4f3abc66f3n/a Quakbot
2023-05-16Lfqxclui.jsjs 46aab149550a968fd63eaa492cedf7c7c67cfc275c96e9dc7e3919efaa392aeen/a Quakbot