URLhaus Database

You are currently viewing the URLhaus database entry for https://stacksmind.com/rat/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635070
URL: https://stacksmind.com/rat/?1
URL Status:Offline
Host: stacksmind.com
Date added:2023-05-16 22:00:09 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 22:01:41 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 0 hours, 46 minutes Poor (down since 2023-05-18 22:47:58 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Maaf.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dVirustotal results 27.12% 
2023-05-18Kcbnjuo.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Kfjrslp.jsjs bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780Virustotal results 13.56% 
2023-05-18Jdnglx.jsjs ee395ad680000c142b297cd4203649769219cb8dcc96e19a27b16743666d1434n/a 
2023-05-18Jqnzm.jsjs 905a894ac3b18458a8372c05faec1cd015ea3d7f3a5d248f87684a3062f2ca5fn/a Quakbot
2023-05-18Ffybbd.jsjs 92541d594f60bdb46e24073e3720e0deb32a8bb5a4409a44b650b790dbeda309n/a Quakbot
2023-05-18Xukjvd.jsjs 6be55c4c2824a4cd16aaf9002adae153b6156ce58174febfd162d82dff7ba019n/a Quakbot
2023-05-18Rsjr.jsjs 148afa4bdc9cc4fbfe4816e01d70172a2fba4ead24c822bd4cc936cb0efefaddn/a 
2023-05-18Isojlm.jsjs 49255538015c01aa00ddf4828db000a7ef75677681ed98234a94a9ab84e159cbVirustotal results 35.59% Quakbot
2023-05-18Pjzaj.jsjs bbea073ee85951ed23e95e826bbf93fe5f1cd1885d0b88476ba2cd5a1e6bcedcn/a Quakbot
2023-05-18Wpdjnpxj.jsjs b45fa98328f6170801cd88be88f4ac670f2266e2ed383e78f37fdd5d860dc695Virustotal results 30.51% Quakbot
2023-05-18Cgnxbcv.jsjs c419bc2833e48f8f26166ef911d3915be8fd0619ac6a0e0638813a4404df6979Virustotal results 25.42% 
2023-05-17Offnaknz.jsjs 09f9e4d8ef85ba407416a7d168207db81c2000eabea300624e17d81f58bd0b18Virustotal results 31.03% Quakbot
2023-05-17Yipjgrh.jsjs 8496ebcccb2676a1fb21ed0fdf36c320fabcf9036d275af7acc025b0182e7963n/a Quakbot
2023-05-17Fudvacbp.jsjs 03de8856a9267b9e96c1454bd5a13ff8d068076ae6a1b7ca1984367997fa981en/a Quakbot
2023-05-17Spcztdr.jsjs 7fdeda1296a36cffb37a03dca1e25125b27333e53ead2391247d2790dffd0e7aVirustotal results 32.20% Quakbot
2023-05-17Tbldfbpu.jsjs 9487aeedb7473998494f4a53f02cd176e21f14043b6e2e75cff9016c277d0c0en/a Quakbot
2023-05-17Mniqx.jsjs b11fc0e56235f908dd870eceed98215c815c131e83913eff33f70f528e369dd4n/a Quakbot
2023-05-17Nvpo.jsjs 7b2d026af455f82aa83937faf57df322e860b2b32dc01811c4f57da54fe3c37dn/a Quakbot
2023-05-17Qtjtcf.jsjs d765406cc9c36330f57c24cc59c6be558a80f87dadb9be569d30a0c3a261da47n/a 
2023-05-17Kjaxbafc.jsjs 3f3a5e7c9644c0b45225d0fb5ee1aa52cf00c7a2783fce5deee51a8dc5ece1b5n/a 
2023-05-17Qkkrpzdm.jsjs 8f3040b63001c77c40c9211488612d22159f4debb5eceb0aea14d093fc2f4f89n/a Quakbot
2023-05-17Ukcv.jsjs 775b62fb6dcd4e8b334258a13578882ff95e7b4364eb6c445d4ea2496460a7f3n/a Quakbot
2023-05-17Ehzisnw.jsjs bedf82f8605e6a10a42ffb84069daaf4f132cbdad12c2adc61093f7f2feeda60n/a Quakbot
2023-05-17Odvvjqbs.jsjs d8aaac597840b687ed867f10c00e72cc43d367619834c8dd5d84875043d7bff4n/a Quakbot
2023-05-16Uuruqua.jsjs ada6d24149f73daf5e7bb30e7d6b0ffe58621d440511db441aba844efb7336d7n/a Quakbot
2023-05-16Jifcfyap.jsjs dd0a690f1e0e493b26b13d6ed203f0955783b99f2cb010395b1c7c0d8d9c8213n/a Quakbot