URLhaus Database

You are currently viewing the URLhaus database entry for https://rodarejeki.org/eron/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635031
URL: https://rodarejeki.org/eron/?1
URL Status:Offline
Host: rodarejeki.org
Date added:2023-05-16 21:59:06 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 22:00:06 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:1 day, 23 hours, 16 minutes Poor (down since 2023-05-18 21:16:16 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Yucq.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Cszzidx.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Auaawvia.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Tgbn.jsjs 6e9474aee744a61b9e7dd964a86a67e3b544231582f3957363e30e584096edb7n/a 
2023-05-18Serg.jsjs 33f33ebc5ae78bdbf3a9afc064c64f1121c0214e1305d5567232cbc8779ab8c3n/a Quakbot
2023-05-18Uqpsh.jsjs 09f9e4d8ef85ba407416a7d168207db81c2000eabea300624e17d81f58bd0b18Virustotal results 31.03% Quakbot
2023-05-18Nqbuahu.jsjs 8fd76523c7e024c9c533983f3ff94e884cdaeaef4e3cf5f935a5bdcfc242678fVirustotal results 26.67% Quakbot
2023-05-18Ezewphuw.jsjs 0d19b7d7e092df5355727bab9cbf454b5b17f90d5380ef6240d0cada7cb5a1c0Virustotal results 15.25% Quakbot
2023-05-18Pveqjjmf.jsjs 57924347ed17b5b79fa35f9c3f130733079566dd527de61c8d1691c0e4f0a7f2Virustotal results 27.12% Quakbot
2023-05-18Iwdminlg.jsjs 819c3375d47e95f26e1466039e2ff5a096837d0761bed7564c2366b094c8895bn/a 
2023-05-18Spurs.jsjs 0107042269a76269dd71d3dc19e72a1759d421cbf33b9758b94f08c93f0989e6Virustotal results 31.03% 
2023-05-18Tbhzuzeo.jsjs 7ace3a86b7ee25c1f0e953e1c7228cc835205c53e5ed210b4f3b7fc4291a75ebVirustotal results 31.67% Quakbot
2023-05-18Umjsvgr.jsjs 55ba4dfbf0eeacaace5287a51196c8d2e3c7ae79a65fd07a27fd6024ca40bc13Virustotal results 16.95% Quakbot
2023-05-17Vctxt.jsjs f7b76f7e79498990be74945924e01e7f53e3b42e5be51e93dd0c4c7a5ecb47d3Virustotal results 27.12% Quakbot
2023-05-17Anlccffh.jsjs 24cf08aad92d93dfabb65546276958ba1bad72825e0af1a4fe5d2a2f0d2a451fn/a Quakbot
2023-05-17Wtqceosw.jsjs 26e8f5245d3928df93af31946f3ff6dcf2291861ef4835e6b23e145cfcf9f8d5n/a 
2023-05-17Isdrua.jsjs 4fd5f473b0f97c7dcf4a244234c780051bb0e3c316acbb18b7f959a6663c9454Virustotal results 22.41% 
2023-05-17Lsqvk.jsjs fcdda21a712620d2dbecadb236b7ca8d2b6cef444f9848f2ac95622ed210a4e1n/a Quakbot
2023-05-17Xevjqmxu.jsjs 72495f905e654ea365738e7e3ac93200be27ad81df4327197c8d1a1427209a25n/a Quakbot
2023-05-17Vpylyqs.jsjs f1bcc127ad09154bef2d04e068d9466522a26e9a8d22eb96ad54821b3b93cfcdn/a Quakbot
2023-05-17Giucc.jsjs c2fd561b408dedbaf0e1d6f7506c85e86ecde2e3ade051cfa37c8b0c540c9af3n/a Quakbot
2023-05-17Jsap.jsjs d4f3fc32c3605af0f1dc6d82d15e7f694fa93b8663b476b63661b162f0d1782en/a Quakbot
2023-05-17Yzzyhly.jsjs a5ca23d451b642991e872ac2ae18a45e03c190a5be11ff4da742797aac15bf73n/a Quakbot
2023-05-17Xnhgssbr.jsjs 9ba5a8953870c1aac56246d1b834620908460e90fbf2cc96c214ad5b3fb4ba9cn/a Quakbot
2023-05-17Jjjw.jsjs 4e4acb611d6f5333bb404957d4466d455fcaa74e93bf7e2b3aa5c3c5f9582ab7n/a Quakbot
2023-05-17Xzxg.jsjs 23fec60588e83030d08a8af477c05b071c588f24a4f792ff22507ea6eddc1f3fn/a Quakbot
2023-05-16Pxece.jsjs 74de383198a18a2e0117a077f1b2a25b00e6943620c7abd672797eacf7deedean/a Quakbot
2023-05-16Vateg.jsjs 0d4574370d175fc3d6868fa1ecf5d1a4da1df0e803d54438fc9b42da55a3993bn/a