URLhaus Database

You are currently viewing the URLhaus database entry for https://myonlineclasshelper.com/ire/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634980
URL: https://myonlineclasshelper.com/ire/?1
URL Status:Offline
Host: myonlineclasshelper.com
Date added:2023-05-16 21:58:07 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:59:35 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:1 day, 23 hours, 3 minutes Poor (down since 2023-05-18 21:03:12 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Aypx.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Iagv.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Zmywbgct.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Wiaugett.jsjs ca8a3b4c56e547772d4ded2dce810e719dbef1a64771c135f5235daa00aaa657n/a 
2023-05-18Yqmot.jsjs 7c13bc2d2d42fdea47cb32e74e359fa9939073a81098e801e04a6daaee5e9ff3n/a Quakbot
2023-05-18Nlmrhxdc.jsjs 246f0936618439433071e920bc87c631f7506091006fb43ae80612f430c0846aVirustotal results 25.42% 
2023-05-18Ayoetrca.jsjs 50ea4195ce44fd0c177d6c8bca4b2a4f34676b3b8cbddaa734fe11cf5a265f01Virustotal results 24.14% Quakbot
2023-05-18Hytsxq.jsjs e193e117a9fdecfac181547ca4dadf85602bca2aad6bd2c6edeb2a25d45e9f91n/a 
2023-05-18Xyvtumkv.jsjs 9024a49a844d092fb509a2d8e48a42cd4209b347497199616d579fa84a136fc5Virustotal results 25.00% Quakbot
2023-05-18Qvpdps.jsjs c7f9d6c56a28ecc44744a1c617778af39179d5869bca0ccd518016eae401078en/a Quakbot
2023-05-18Npqrr.jsjs b726185bac5c9502b0014a711f793d0559b2d0afcaf5cc376d063cb315412020Virustotal results 30.51% Quakbot
2023-05-18Cylqv.jsjs 4763068a93fa58650c7a913bb253b59fb9f5f7da3d041d28302d9d1b4d301008Virustotal results 27.12% Quakbot
2023-05-17Epknkpy.jsjs 8f547a495bc6e319219b5db2491f70ce4792f76b7770226d37be2b28fa5f79ceVirustotal results 27.59% Quakbot
2023-05-17Utjuqye.jsjs 2a893ca454c8da14c3b8682420a27dee70132a6fc3dc8975c4ff49a12a7c64d6Virustotal results 27.12% 
2023-05-17Njxsykel.jsjs 9b57a0a1ea9fbea6fc63b1a41a52f5dc8e9fa5facdff20d031096a0075e9c715Virustotal results 30.51% Quakbot
2023-05-17Umxkuefz.jsjs 2971e245d875fcb96bbbbcff59e1a34e0490ae85f5e8abd688b28772bca0b30fn/a Quakbot
2023-05-17Nnhg.jsjs 813efe88246132a445789b21b1536bd94263cd9a8c7623d7b96a9e5ac755d470Virustotal results 26.67% Quakbot
2023-05-17Fjyorvkb.jsjs 67878c5898e4d6118aea2d8059896ec493c2cb1b7f3bdc563068504a0bca9373n/a Quakbot
2023-05-17Awzlrem.jsjs 5089e9979f6a45bba9ac940e1e725185230875623b2242cad8dfcf968141f073n/a Quakbot
2023-05-17Ydxuciu.jsjs 15bf8388927c0030256d9d8ad0d8745e2d9af91c6c739ff10128f7ef742ae21bn/a Quakbot
2023-05-17Pnlm.jsjs b0af5ca80b144f0bc2ca45bf332068990752835adbe5445b429a3c1611047fbcn/a 
2023-05-17Fctgri.jsjs 171d396547260e1baa05805d11e9794d723c3dafc34f2adeacc955b3daacf51cn/a 
2023-05-17Krpdwhtt.jsjs 74ac0ab8964f671fca91a259979ff0269f38d9612becd8ce9102f1b42e73280en/a Quakbot
2023-05-17Evbdmgfw.jsjs 1bce181a52b19301972c0d9a13d9bc16d1573c1254bf4807384b4be007031d71n/a Quakbot
2023-05-17Vezfo.jsjs ca10ae35f9e715846180256ccb548603e20e4c684b43a024aa8e3227f9a067abn/a 
2023-05-17Ljtqo.jsjs 0db49c746105cf6a5862fabed745e039d40417388df5fc1b41a4a26fcc9cda4fn/a 
2023-05-17Lwulkeq.jsjs 7622429bae8585ceab58f0c6462ff0b06d16352ed30bbc866149d6c7669a13c1n/a Quakbot
2023-05-16Fkle.jsjs 671afc1c1df280c6ca3379383384bdf90b1f33899e4db23a5c4693197d8517b0n/a Quakbot