URLhaus Database

You are currently viewing the URLhaus database entry for https://mortalflix.com/ont/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635002
URL: https://mortalflix.com/ont/?1
URL Status:Offline
Host: mortalflix.com
Date added:2023-05-16 21:58:11 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:59:34 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 0 hours, 27 minutes Poor (down since 2023-05-18 22:27:08 UTC)
Tags:BB28 geofenced GuLoader link js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Rrysyvna.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Voggeohg.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Bltmnd.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Ptwlrwy.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 23.73% 
2023-05-18Cqduihv.jsjs 4779dbaf4f01d866b1dd6a2cdeb855c53a82951952ba41e9af73be849bc9116bn/a Quakbot
2023-05-18Bmxytfa.jsjs 4c15dba778afb1200f2c6d840c81c397c3fa416e7e47b19d01800000c0ce6f82n/a Quakbot
2023-05-18Fvjnxao.jsjs 0b7fccf63d874ff825b5a3e790311b7dd0923c82b142520db78f43a8191e9216Virustotal results 22.41% Quakbot
2023-05-18Hork.jsjs ad3a510115f62b2cdabc978db56cb5d93c372bcf45b52fa39d4d125e1cae3caen/a Quakbot
2023-05-18Sqxa.jsjs b95a6f4518de9f894317d0fe03a9dbf1132ea5b5053e9f11d63ac0746afde62bn/a Quakbot
2023-05-18Pwhe.jsjs 1a1943fad765d92f9e4afa5ae4df4ec80c61fe42d83f15ab13027ced2e33bbbaVirustotal results 25.42% Quakbot
2023-05-18Dgvgux.jsjs d67719607166b2f101544e674067b1d8a66a134620ce0e19794356da09e033ebn/a Quakbot
2023-05-17Hhearav.jsjs bcf9e05bff1a4453dbe187a142eddb6857e41bbaf3869f7ddc598b6ddca0d276Virustotal results 26.32% 
2023-05-17Ynyo.jsjs a1353f7898cc49901d6c5dc01063b60be173f0ab2378d18348e3b766cd3a9913Virustotal results 25.42% Quakbot
2023-05-17Ftmrjq.jsjs a9f2a0cb2e1331cb0fde62a0318a6e4666f4e283157690f3f7a1059aa73b2f71Virustotal results 30.51% Quakbot
2023-05-17Iiqili.jsjs b5e43b4ccd0107bcf4e8ce081135f2adb345ba3df9a4df5637d3cd9e08b43ba8Virustotal results 21.15% Quakbot
2023-05-17Yxwykt.jsjs 90854b60ab6b30c83f8839a6d1977dc7968771625bc4a6751d30fa1ff505912bVirustotal results 27.12% Quakbot
2023-05-17Qnte.jsjs 07c7eed20a0deee08f2f4bcdaa5a1b077e9c5d50c6b1219c4082c3d54afc1349n/a Quakbot
2023-05-17Ooff.jsjs 9ac768cf3025869132bdb78aad3f4505cd8dd7e5ddc218e64d6645ba8db5e4f4n/a GuLoader
2023-05-17Jzpfel.jsjs a2c7977a22e05316f189c3f85104990d871073112a5b4cdad8f639fb02b18ccbn/a Quakbot
2023-05-17Ffajbnf.jsjs 0e58dbc900cc700d38a1f6e13cb3a3b1d624932c25d017aab840a9cbc168065an/a Quakbot
2023-05-17Zahxon.jsjs 5cc8abd5a42ccad22180ed8a2352262d3cb869a199bb3252818ad6cf3e3054d8n/a Quakbot
2023-05-17Asrkygsx.jsjs ecef6845ec0e3f2dea86e31e7273063020101108660f5ceb4b17c28db4ca9323n/a Quakbot
2023-05-17Hcevyfzk.jsjs 8b352be4daff2b6af78bb1a0d549948b8885948ca3bcae3799112f4183bb41abn/a Quakbot
2023-05-17Opitt.jsjs 016699a1ead3c62ce446912c101ab1033aca53e45e899b02630bfd8c754a9384n/a Quakbot
2023-05-17Onvnxinl.jsjs 7cc8ef66ae9e48be93277322552e37a8ee0ad3bde5fe0557cd30152c383d5e9dn/a Quakbot
2023-05-17Ichibxff.jsjs 41adefb4d5cd5cd234541c9178d9e5ab18e39b39a0db2285528529ced35867b2n/a 
2023-05-16Brouk.jsjs 6a475c7dc9bfdedbe1f29a99139334b33fb61b1de88336331773839e5cd480fdn/a Quakbot