URLhaus Database

You are currently viewing the URLhaus database entry for https://jaridh.com/ato/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634959
URL: https://jaridh.com/ato/?1
URL Status:Offline
Host: jaridh.com
Date added:2023-05-16 21:57:09 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:59:13 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:1 day, 23 hours, 13 minutes Poor (down since 2023-05-18 21:12:14 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Cbvyvxk.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Llpsol.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Kytv.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Hlcob.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 29.09% 
2023-05-18Bsfffmcn.jsjs 6fe70e5b43a0fb5848bd352e2627b685901caaace1196fe04c1f43c30987dbcan/a 
2023-05-18Hqhlmtp.jsjs 9fc5c95367df0d42df001590faddb4edf2e71a19e7159cb210d5525553462459Virustotal results 15.25% Quakbot
2023-05-18Nowmm.jsjs fc4e17680da39bbf2dfbf388da243c919927a825eca7d8de8a39d74be04968e9Virustotal results 31.03% Quakbot
2023-05-18Odmagm.jsjs f44e30ffb57afcf688c00896ca7384786ee3ede05210094b66c6d9d6c83675e9Virustotal results 18.52% Quakbot
2023-05-18Qrdwlfh.jsjs c5a390d1bf67c2241e5a9cb33cab3e83b41d4319c494c9f15d864cff3015e95dVirustotal results 16.95% Quakbot
2023-05-18Xbrzwbb.jsjs e34af5d0c51c9f5403ca9b2aad48f7f772322fade0dff21b839a90ac6420cd87Virustotal results 27.59% Quakbot
2023-05-18Tzxbcx.jsjs a70e07343087b1341505ab67207e4f4d1170a7ae25f9b7c90ca2eab5663e3db9n/a Quakbot
2023-05-18Yhcwz.jsjs 9fe91aecf500ad9c63e2325310e5a0f358434ce9e04f697e1173ad6af1956453Virustotal results 25.42% Quakbot
2023-05-18Ctziqhik.jsjs 24cf08aad92d93dfabb65546276958ba1bad72825e0af1a4fe5d2a2f0d2a451fn/a Quakbot
2023-05-17Hoyf.jsjs 43783ef70654df6b8b4c8d132454112d675abe8da1b8cacb358490d7b2159998n/a Quakbot
2023-05-17Xsgsm.jsjs 57924347ed17b5b79fa35f9c3f130733079566dd527de61c8d1691c0e4f0a7f2Virustotal results 27.12% Quakbot
2023-05-17Cmnbmked.jsjs 8b2b3c3498bea970b5883a908b36e4437b9809a010cf2df44004264d33d66dbdVirustotal results 11.86% Quakbot
2023-05-17Eeudmoy.jsjs 0e8413c3fd2b87cd2139ba54c718d6b9f305a8bf33d41f05aaaa2639ccde842cn/a Quakbot
2023-05-17Szbors.jsjs a7a7249194b741b44bab1befd74e783ba57af2f211b597961892dcbe975544c2n/a Quakbot
2023-05-17Jfgchkib.jsjs 813efe88246132a445789b21b1536bd94263cd9a8c7623d7b96a9e5ac755d470n/a Quakbot
2023-05-17Hmqwfku.jsjs 09d00cc1758af4e79c7a38e65ba9555ccb18dcc1f628a22c1d9bd5a337b03d88n/a Quakbot
2023-05-17Vwerjjs.jsjs 0bff7a11adda36ed8f039bfb91eeb8b840b5cce29d60b31808b57dc2a5cb4656n/a Quakbot
2023-05-17Gghhxtk.jsjs 7ba2aa49ab4df35f761a155636acaf568b1a069adb3b4a7fb26c7bc87281572fn/a Quakbot
2023-05-17Eufiezds.jsjs d487c2bfe18939c182f02db9c0557e396c563d3b001223d08f9e9f34446c29e5n/a Quakbot
2023-05-17Jhnvgy.jsjs 3db156ad2306e4335810723effcb3f02fce5ca15ecb505d26f7bbed4e92eee8fn/a Quakbot
2023-05-17Sanlpqum.jsjs 50ac88c48170f59f4e5dd39bb8d1f216dfcb8c82e4695a97e979757443b4eeccn/a 
2023-05-17Molatdy.jsjs d3863f00716c7065d92da10f66ce974caec29ec7c5f3c5a11bc22946813d82d9n/a 
2023-05-16Msblqb.jsjs 12b027eccbb6d8fba7cb0b3aed4c21b7d17923b42bbf5b5572662b91ccb6f3bdn/a Quakbot