URLhaus Database

You are currently viewing the URLhaus database entry for https://mel-gaynor.com/ue/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635009
URL: https://mel-gaynor.com/ue/?1
URL Status:Offline
Host: mel-gaynor.com
Date added:2023-05-16 21:58:12 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 21:59:42 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:1 day, 23 hours, 36 minutes Poor (down since 2023-05-18 21:36:32 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Glbade.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Yxykuc.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Khqgs.jsjs 34b840f36f254f36514d603b5e90d29bd07a0fb3fb4b714c9486c79b9fdb7c04n/a 
2023-05-18Lcdpoa.jsjs 3d7cfac759f11477d0e433a14ac56025c2be44dc347923eb3da53b58d0083f64n/a 
2023-05-18Mlhoh.jsjs 5002cf2a22a794f451347414eae921d359f14704e2fc3491ec70ae29266a6ea6Virustotal results 22.03% Quakbot
2023-05-18Yxhxeqwg.jsjs 5195290a6bfe72d1709c08345d0210181ab60e363339796ef44c05a17d9c03dan/a 
2023-05-18Pmxdqw.jsjs f0dad7e39dd98158fd3e2a3bcd4bc2dd96da1a8f382aef725da975d51bd63a04Virustotal results 34.48% Quakbot
2023-05-18Eiouxga.jsjs 4779dbaf4f01d866b1dd6a2cdeb855c53a82951952ba41e9af73be849bc9116bn/a Quakbot
2023-05-18Jlvqxb.jsjs c419bc2833e48f8f26166ef911d3915be8fd0619ac6a0e0638813a4404df6979Virustotal results 25.42% 
2023-05-18Jirxkgc.jsjs 1e96a7079b653386193018082948ee18ee1ca517dd96395eb46b4d5e30507b87Virustotal results 30.51% Quakbot
2023-05-18Vccvysk.jsjs f32e1256022a37c93429f2df0c87540583119ca913c038a1bce835786a3891a9Virustotal results 27.12% Quakbot
2023-05-18Ibpk.jsjs 2312d94387e675afd3db56f1fd5419a3a083bea7bc690341fa3d49d3e3f69f53Virustotal results 25.86% Quakbot
2023-05-17Ocyd.jsjs 9a649ac76d537c5f4ceb023745e2fcb3a6ed8443c46ac1f2dbd7da98f0487deen/a 
2023-05-17Rnol.jsjs 53d2ace5dfd9b4384bcefcc9b7e2c0b6701053df124573ad3dc1044ca98e8398Virustotal results 31.03% Quakbot
2023-05-17Qaghvt.jsjs f7e8b96be3ac805e339ea8216ff018b90165280b8feba0fb873973b6f18ca747Virustotal results 27.45% Quakbot
2023-05-17Xofolues.jsjs 0a976cddfcc0bc1b5776cc8cce0d9d1c9fbddfee4017434169358a45936d3ab5Virustotal results 27.12% Quakbot
2023-05-17Yqli.jsjs 27d3fa3ffa307f97bc3047f15898d338734929484e224f43ab8740c710601a78n/a Quakbot
2023-05-17Kjdlb.jsjs c408bd9762412a5776d177862b5ac082170428db1332d9ba6c28929b506a4858n/a 
2023-05-17Uuvdwvg.jsjs 530fd81cee17d3c908421d7e946a0064c871152d357c919231fbe4269b224441n/a Quakbot
2023-05-17Dndwwtt.jsjs da3f9004156493c941dc2d95ff9570febce7ca76a1697578a31762fe647159c3n/a Quakbot
2023-05-17Uflia.jsjs 7472dea555ae900db465fb8a4720cd8600a0c8c9414127e53b9e941b437dc616n/a Quakbot
2023-05-17Izvc.jsjs 820ee46fc77ff1e7bc34a6f52be546ab20acd2d107f552939912fa1d3f8351bfn/a Quakbot
2023-05-17Egvjpt.jsjs c46f0ea8794545247c460a1633e7d5e1ebfec0a95a58a23f58167084eb925111n/a 
2023-05-17Pikspjmp.jsjs 8bd853e649d99637749902c244ce5e96b4f07067171ecacb9a16a86b688d65f9n/a Quakbot
2023-05-17Dnjbd.jsjs a402bd53945ad787e41a8a338cbbc92c33d6ab80768ecd2cd832e8efa9cc1d92n/a Quakbot
2023-05-17Fgjwdwj.jsjs 8f9dfa3ccd2195376456088ac41108d1a37ff2bc9abbec2eb1197cac3ac8caf1n/a Quakbot
2023-05-16Qbtv.jsjs 3d789ce6a9e0597d913feba219e6690431687ba2b16475f91f98a944200500ccn/a Quakbot