URLhaus Database

You are currently viewing the URLhaus database entry for https://kinkyplaystore.com/ait/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634956
URL: https://kinkyplaystore.com/ait/?1
URL Status:Offline
Host: kinkyplaystore.com
Date added:2023-05-16 21:57:09 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:58:05 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:1 day, 23 hours, 3 minutes Poor (down since 2023-05-18 21:01:12 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Tyup.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Rbbijiwu.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dVirustotal results 28.81% 
2023-05-18Vzxse.jsjs dd18c327fee19cec1d7029bfcb3f7ef2ff927ffbc41e3850193aeb148a07630fn/a 
2023-05-18Olpgefwz.jsjs fd0ca1aeb929c31a64a1ec9c5027c0c2c644161a6fe7faacf6ea8ec30ca8806an/a Quakbot
2023-05-18Oekz.jsjs 72495f905e654ea365738e7e3ac93200be27ad81df4327197c8d1a1427209a25n/a Quakbot
2023-05-18Jqky.jsjs 3bc2c76bd30c4f67c56425ecd3201a7bd43655778be5fee4b7a2f72478c57d5fVirustotal results 26.67% Quakbot
2023-05-18Lvzdo.jsjs 0b38200ce89d27eea5fb23346b4015cb585d0af5fd4f176a7c9bdb20ae369a4eVirustotal results 25.42% Quakbot
2023-05-18Hxktfct.jsjs 6d790992a3828c5f421e6c85ac319d61de4eb5320ff67d91b8e5d4577865de5cn/a 
2023-05-18Pfqvsalo.jsjs 35c35c65a46137ab025bfda60be1ea1c10a10b9cae6e337415b9c7b2ebd3df3en/a Quakbot
2023-05-18Zovq.jsjs f5a9de314dd0e63ac6262d4d17d66999b1a0ef8384756576c26eb7623a678f71Virustotal results 25.86% Quakbot
2023-05-18Urwlb.jsjs ff50e9d6bada1c148165cd94d8242cd7c0651692a508bbec763046c0ad17be90Virustotal results 32.20% Quakbot
2023-05-18Ybtnpdsp.jsjs bbea073ee85951ed23e95e826bbf93fe5f1cd1885d0b88476ba2cd5a1e6bcedcn/a Quakbot
2023-05-17Xmyausew.jsjs 16c00ed1c4eea2fca24d5ac64106a0261dfc36eb8ff64471f024d0f95efd140an/a Quakbot
2023-05-17Jlotvw.jsjs 6da4a8bacb02c6d1b3251c5978545168c0712fb14b5ec2731a867b73a3daeacan/a Quakbot
2023-05-17Dwjvo.jsjs f4454d45458f3aaadcdfc328fc4107a6c670b1c0e04df1d476ca56e831b83818Virustotal results 27.12% Quakbot
2023-05-17Pbdneqw.jsjs bb62ccf9fa803df4844b790350de975a1f8ea136f9334e3563a5e8ecf4d9b601Virustotal results 25.42% 
2023-05-17Kwnrqj.jsjs e6823880248255f28dad73af6553cfbae133b6df9f78eff124a379d793265ac2n/a Quakbot
2023-05-17Fnecx.jsjs fecdae98fff4b89aadb8c35ded8061bdaa126fc12f3fd482cbcecd53246c1c0an/a Quakbot
2023-05-17Zsse.jsjs 119f17c14cf71289c7f4e31d39fd584c176a854e73f8cf1e3dc0d433a4131cd8n/a Quakbot
2023-05-17Zkhjsth.jsjs ebe9722d44b933e68f43f11d95c644bf4a262884ef503fcc3d5ea0e9d30ecc89n/a 
2023-05-17Ioremhki.jsjs a7c6ed704cbbb10e5af9fd526d69e1c17449e46f70b18377914173f3b64c25b9n/a Quakbot
2023-05-17Oqqwglfh.jsjs 796e09f75e869cfd34f5db0516a7ef9618fe19af13e4d12734de2604435f7a66n/a Quakbot
2023-05-17Kcwijvt.jsjs 7ca98163a3125531e5a871634ffd4299228927d8e1b6e7c86985190cafb82851n/a Quakbot
2023-05-17Bvhyb.jsjs aa19f364c6afc7615434a52b14c7c2f0635f5117c77a9a5b8be9c9d673244b26n/a Quakbot
2023-05-17Eiytms.jsjs ce722839d410e887c1b0b6fa1e013da3d34640366dc049d5684a8baec7f42683n/a Quakbot
2023-05-17Strut.jsjs 89cb622765673ad83e6442e18ae94f370de4ea6b853bb92814ce6262c4491ab2n/a Quakbot
2023-05-16Nnyy.jsjs 91f0c551e169af13ace87df875340ed99808a762af9f1aee8109de12feecf541n/a Quakbot