URLhaus Database

You are currently viewing the URLhaus database entry for https://mybabezacademy.com/vtuo/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634982
URL: https://mybabezacademy.com/vtuo/?1
URL Status:Offline
Host: mybabezacademy.com
Date added:2023-05-16 21:58:07 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-17 07:16:09 UTC to abuse{at}cloudflare[dot]com)
Takedown time:1 day, 23 hours, 17 minutes Poor (down since 2023-05-18 21:16:56 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Odswro.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 23.73% 
2023-05-18Tizigwds.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dVirustotal results 28.81% 
2023-05-18Reze.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Bzccejsf.jsjs 9129a6ea4c8e29903676b04cedf56683c72209d03e3a68e93c517bfd8a477f46n/a 
2023-05-18Aeqywqy.jsjs 1126eb773737ce63bcc031813a3893e30dcc5b6a0f018496a3e0106fdf1783d5n/a Quakbot
2023-05-18Rnwxgah.jsjs 928de378e1b8690de67deab709ed80da406ac542daf31e7c5859f02c0b9a4240n/a Quakbot
2023-05-18Pjxubgvc.jsjs 86f81887bb6051cb0f8b8b3d948a6e4bbff1538e986a71386da56590e614f26aVirustotal results 27.59% Quakbot
2023-05-18Fjyetr.jsjs 6d9b8f4761b3d2b4e1c031cece4e6ae593e6a9e7de18a01dd28c1235bf7900d7n/a Quakbot
2023-05-18Zddbia.jsjs 09ae96eb664bab43c15f8208e579fc06cb4e92d817de28ade6659d138ca9571en/a 
2023-05-18Evnljj.jsjs 71399d25c8497d7f81c87b8f5ec8d5071d8a62ac85ee254638bf8d24feccc5adn/a Quakbot
2023-05-18Snlwem.jsjs 19c40585627ffe423ed5f0a6da7706a51a4e068323d3f9cd2f54a01d45c02af1n/a Quakbot
2023-05-18Sxct.jsjs 106ea6e9df2db6267999fa9df4ae5950c1be2de07cbb773cd739bfaa29a806d4n/a Quakbot
2023-05-18Ekyrtdk.jsjs a45416e3d9aa47760feeee7375be42c3748b04b0d9c6c573bf4db2cfa07929b5n/a 
2023-05-17Hrlnz.jsjs e7958ccd8a002219ae5c0a15fe85c42f33e3433270f0ba102d597f19a494e2e8Virustotal results 27.12% 
2023-05-17Tfwnjuj.jsjs 586fe07a69bfe8b72088da7156e3feb75ac24d66ef99584f203b73fe30f08076Virustotal results 28.07% Quakbot
2023-05-17Rwfkavx.jsjs bdc565778f51721f51d31d3a2fabe61b47bd3d921ace6ff98d7637b3cee485bcVirustotal results 22.41% Quakbot
2023-05-17Mguie.jsjs c1460321f81f5ddaf0e6965fdc14511326240b2d261c1e2c98e92f73eb1accd4n/a Quakbot
2023-05-17Tjrv.jsjs a0c936769d05f511e808dc9d178d44c1b60779ae7ad0e7424e520b2e75ce335cn/a Quakbot
2023-05-17Vnbnlz.jsjs fab89deda2e8de1afcdf4d43b713652dab42ebcad6b4eddcd3b225188a7e3078n/a Quakbot
2023-05-17Rtllh.jsjs 42c81982e5f4b734f8ff57da5bebf9b6d8f79c468dd97a2b69b831657bbc8258n/a Quakbot
2023-05-17Jyojqy.jsjs e0c004d05a04fd9fdc50a8921771bf4df0201c140dd184d06c9c93f3ff2c1326n/a Quakbot
2023-05-17Zbyv.jsjs 0e3c37ead1ea99d8c6f628b33b5cc3580b90500e96630dbbc4e56f18454ea4cbn/a Quakbot
2023-05-17Bnqrlj.jsjs 3c2a807185a38984b5a25b9d437f81d3774156cc1044327b46d004c19ded381bn/a Quakbot
2023-05-17Ynltxdnh.jsjs a53b2dded733fa8571f98eeda7ff036f8b685c4acb4eebb1931c2a39cdb261den/a 
2023-05-17Unjbyok.jsjs b0bfe8278bdcdb759d30c8c07103e69fd249c2cd82741289c04e4bc54dc5d988n/a Quakbot
2023-05-17Svvyuicx.jsjs a074af7fb22290387bc602230d582a6f44c6dffd08ab4175c28edc8486348611n/a Quakbot
2023-05-17Ukagg.jsjs dc00ab47d981b2b0694a05b881a759ea3752d16de3c7d9513988a4295d40c2e3n/a Quakbot
2023-05-16Lroqmf.jsjs f330343ac971202fd05587f3e1cfb5b26c18cc3f977f8c8dc4b5a169e4e4eb0an/a Quakbot