URLhaus Database

You are currently viewing the URLhaus database entry for https://proguildgg.com/eoll/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635049
URL: https://proguildgg.com/eoll/?1
URL Status:Offline
Host: proguildgg.com
Date added:2023-05-16 21:59:09 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 22:01:21 UTC to abuse{at}bluehost[dot]com)
Takedown time:2 days, 0 hours, 47 minutes Poor (down since 2023-05-18 22:49:20 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Hwrfijfo.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Ehtgk.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Rkaynlp.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Gdajzxye.jsjs c7f11e384f59bd4f19d49f828d90bad4be8a082ce0e6521aeec34cdae64ba6e5n/a 
2023-05-18Rcqjev.jsjs 905a894ac3b18458a8372c05faec1cd015ea3d7f3a5d248f87684a3062f2ca5fn/a Quakbot
2023-05-18Illp.jsjs b96c9289fab9b7759ba3dd4ea2b84064aa296457443d10064d033d225609b55dVirustotal results 23.73% Quakbot
2023-05-18Aichcy.jsjs b9a4b8691e7de63f6af1a61319d16827e3308ff248981ca1c9d815fee2a1b93bVirustotal results 32.20% Quakbot
2023-05-18Vfgppwe.jsjs 89ddd75a9d671f30070d8ed74468e507a72e5ca5699855296beb959dae2b71b3Virustotal results 11.86% Quakbot
2023-05-18Bnqgnns.jsjs 0e3f95cec4063907bf68a435963ea684b5f9bbcbdd4ac6337048ae70087a81fdn/a Quakbot
2023-05-18Jmqj.jsjs 906e50a48250213ff6fa64b72219e204e4f47e919757a5b1214a5e7682a44da1n/a 
2023-05-18Dnnzljss.jsjs 148425d44762a381cbc5cf7c9e0e7fb44d71f7162439e78b219929274f34d19fVirustotal results 25.86% Quakbot
2023-05-18Jqfcnncs.jsjs abae955795961dc369ba3d41196f2f4238001efcff8a2dc429ababf4821ca7f5Virustotal results 22.41%
2023-05-18Gyoeam.jsjs c408bd9762412a5776d177862b5ac082170428db1332d9ba6c28929b506a4858Virustotal results 33.90% 
2023-05-17Bcfnkdug.jsjs 11ef57c233cd2baa14c4cfb9579839d381fbdec85d01923f9679f5ed21935f52n/a Quakbot
2023-05-17Incs.jsjs 9b57a0a1ea9fbea6fc63b1a41a52f5dc8e9fa5facdff20d031096a0075e9c715Virustotal results 30.51% Quakbot
2023-05-17Tkeev.jsjs 9fc93269f064d50db15333e3dbcf15dccb35094dc51bedfc465ba99ce6a37953n/a Quakbot
2023-05-17Tysgvtw.jsjs 3c55d89d269d20d6852bd0da433091d1fb247c736acddefdf23c414213857e73Virustotal results 31.03% Quakbot
2023-05-17Iiwa.jsjs 003a7f907bd61ac3b7c2a9dddb1bcf8822364010b01853af755fca54c3f2fd80n/a Quakbot
2023-05-17Jvfdynxx.jsjs 60ac01b6dc615a190d4fd5f4ae9e67d29d9faf9784d997dc375bf3bc5affcbe6n/a Quakbot
2023-05-17Tkbdf.jsjs 5c53fc6d6d29d37ae644bf3845ff851d6b03cd26eb5e411f93c26dcf018a4c35Virustotal results 25.86% Quakbot
2023-05-17Midybmxt.jsjs 00662b73e2bd3a971290d1314c7c89f0f6d0d7244ebb8fde1721be20fa50a8dan/a 
2023-05-17Jwkdhaxi.jsjs 32e58ddde3d2e5ca0271f615bd62af011eaa1e153489cd33f4f198b0cbf7e1bcn/a Quakbot
2023-05-17Akxice.jsjs 262b9e3a42c3b5698a7b176b3dacbe16d892881d88cd48397d59fd6204c0ee8fn/a Quakbot
2023-05-17Ozoimmu.jsjs 164c7e67a68592b2276168e8f0859b7d73532d582daf46b2be5aa25818768b94n/a Quakbot
2023-05-17Jwdwzllf.jsjs cc1bef70e0f27d80061c17271580550b423828941571fb6775da1ca3986f6540n/a Quakbot
2023-05-17Fgtk.jsjs 440e797a95e39879922dc8470d1169155137d1584843d8e0eb52ac0539daea6en/a Quakbot
2023-05-17Vdsg.jsjs 85599030417561de0593a5cb82d46f1d744e1bfe7715b69600e14206a7b3e216n/a 
2023-05-16Nyhspd.jsjs c38358cb5a3771b1cd8330f4e93c7667930c1fba31050566494dd1da36540b7en/a