URLhaus Database

You are currently viewing the URLhaus database entry for https://nbdn.org.ng/ptis/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2634995
URL: https://nbdn.org.ng/ptis/?1
URL Status:Offline
Host: nbdn.org.ng
Date added:2023-05-16 21:58:10 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:59:37 UTC to abuse{at}colocrossing[dot]com)
Takedown time:1 day, 23 hours, 34 minutes Poor (down since 2023-05-18 21:34:36 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Frfwnxu.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Volljnrm.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Woncleoj.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Zhjapre.jsjs 06357d6dca8ba662f1e3b162bb7c7934dc192d476792d3ef008ab8f6bfd48d0en/a 
2023-05-18Knev.jsjs 4df2da0e1a60159c49866a7e3899e305f80766c9bae6b676bf18955d4e2ee8ecVirustotal results 15.52% Quakbot
2023-05-18Ifxgg.jsjs 9c3ce9878a22fffcee6c677d536eef828546dc7592693cd8be968e6235ceb49fn/a Quakbot
2023-05-18Vojmrk.jsjs bf6a2013ee6092e2d291a06d2f69e617b318a1e842a0d559b91fa1b8f8ea1a1dVirustotal results 25.42% Quakbot
2023-05-18Vixpjfwb.jsjs 9fc5c95367df0d42df001590faddb4edf2e71a19e7159cb210d5525553462459Virustotal results 15.25% Quakbot
2023-05-18Autg.jsjs f4fb9e206467712813d87a31c0ea3285bf1a5ad9658839ca77ac0a61dcbf0693n/a Quakbot
2023-05-18Ausjq.jsjs b93e7c1a5d378e99de142cb47319276288120a8138977edf98875c43822f6d86Virustotal results 31.03% Quakbot
2023-05-18Xtcvlju.jsjs 2643a0ad4d4922d9f4428188cfe85112015c48ec78826051b8fc118affc60fa4Virustotal results 30.51% 
2023-05-18Mfma.jsjs 1226b64c5cdc915647f5412f5ca66ffeb7ac2c6e7787e3f38195da88b68ca12en/a Quakbot
2023-05-17Dlgesggk.jsjs 817e3087dd09d826cc20a0381d67784b264c51a854134ac760b9219f49d58f0dn/a 
2023-05-17Vtlwsrzf.jsjs deeae69c4717d775bf5fa189632028d3bea8fff66b068f15bb1c163430d3fb84Virustotal results 28.81% 
2023-05-17Sntv.jsjs a581d1bc0926e4888a7d919a2ec529d51e03862bf784ac4cd4333e3df168d239n/a Quakbot
2023-05-17Djxf.jsjs aa49eea2c5b828df4f85742d3d76bc365ee6c18721795dfe567bd8be0b360d61Virustotal results 28.81% Quakbot
2023-05-17Slukt.jsjs ad3a510115f62b2cdabc978db56cb5d93c372bcf45b52fa39d4d125e1cae3caen/a Quakbot
2023-05-17Hrzef.jsjs fcd00b353c980d48983a4a2533eb482d632935a343b2034ea119d3a4a74f3841n/a Quakbot
2023-05-17Crrecknz.jsjs 7f96290dff45385bfd8340f07e433e56831a66a593d5472a2ef8da6d665f355bn/a Quakbot
2023-05-17Oshd.jsjs 5c590ed8c2a61db026ab0f72ad06ad8912a183b7da13cad46d64aaaee460c973n/a Quakbot
2023-05-17Mzuxuv.jsjs b069f767b3210e689aca26f1cbebfe8bb8ca1ba97ce1b15443ffd1c970724b4en/a Quakbot
2023-05-17Tkcoggtt.jsjs 9fb3a0947b3f88864e3beef0370f148bdc46186be874b4bce71b018a86ae49d0n/a Quakbot
2023-05-17Xglo.jsjs c6e86bd9d92c7eabf062a7ace869680612eeb510b459b54518290111d942c6dan/a Quakbot
2023-05-17Crrusfwa.jsjs 1d5b046041fc69ce06ca9a0b342a0a0bc619903ef609697e7f2f3d70b8441fb2n/a Quakbot
2023-05-17Fszzi.jsjs 093c516f40694a86fcea470c90d47501de83a52ff767a9574a3caf381418ba85n/a Quakbot
2023-05-16Fdhgazuf.jsjs cbcacce2dd96f85a1adbc08021217bf74198f2660ba28414b0e8cb72b2cf712bn/a Quakbot