URLhaus Database

You are currently viewing the URLhaus database entry for https://slotgasak.com/vitq/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635074
URL: https://slotgasak.com/vitq/?1
URL Status:Offline
Host: slotgasak.com
Date added:2023-05-16 22:00:11 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 22:01:28 UTC to abuse{at}cloudflare[dot]com)
Takedown time:1 day, 23 hours, 15 minutes Poor (down since 2023-05-18 21:16:52 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Ycsses.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dVirustotal results 27.12% 
2023-05-18Cgkse.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Sbqfc.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Owazspuw.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4n/a
2023-05-18Xoczn.jsjs 0d6511ddb8cf97d9967367c983015cc45c5ea8c7ae68416f28625637be59caabn/a Quakbot
2023-05-18Bjvurwpp.jsjs 59b0a76ebb16b7e92fd7040cce169d3cd207567b8293852c5bc0d44574f68077n/a Quakbot
2023-05-18Hchcwyl.jsjs 93be05e8c37282bca34649a25ba07962fb7da33e5799c01e05c15cc3b72589ecn/a Quakbot
2023-05-18Bomzzn.jsjs 939b394768f864f5af2b1e196cb9982563bcbf1157f23f9a873030ba262566c3n/a Quakbot
2023-05-18Wdes.jsjs fb5908d59b642acad4cc8e4b40c8003da06b37e422221c358758d820f2c0a53fVirustotal results 23.73% 
2023-05-18Xpckla.jsjs 78416fcca7554fb3cc440610418511210e0dc5abcebf75ace7c1ef65d4d29216Virustotal results 25.42% Quakbot
2023-05-18Oiig.jsjs 33f33ebc5ae78bdbf3a9afc064c64f1121c0214e1305d5567232cbc8779ab8c3n/a Quakbot
2023-05-18Dftp.jsjs c5cd6ca0ca7e79a3c24d0b2e608780ee8eff700153663539c8be58f273a24565n/a Quakbot
2023-05-17Lgpgwtz.jsjs 973858251132d0779245a2e9dd301914a73702dadb9512759bce343a0fa1cb23n/a Quakbot
2023-05-17Bbkueksv.jsjs ad227c276250c72ebaf4c13e5d960347009d0762b8c2e696a35b36232e0eeff0Virustotal results 27.12% Quakbot
2023-05-17Irewcr.jsjs d72be2d3e9fcadaa237d2573ff95eacd51e973b70514465c8d57e7cd957769b2n/a Quakbot
2023-05-17Fpjzout.jsjs 106ea6e9df2db6267999fa9df4ae5950c1be2de07cbb773cd739bfaa29a806d4n/a Quakbot
2023-05-17Hmplhhh.jsjs 07d1842292aa2619ebfbb551eff5580fb24f945283f3de4298dc06f9493b6b20n/a 
2023-05-17Qxyftd.jsjs fecdae98fff4b89aadb8c35ded8061bdaa126fc12f3fd482cbcecd53246c1c0an/a Quakbot
2023-05-17Tgwt.jsjs eac6096d9525ff200431210339d6a028b68233173ae11df47f57222dc631697dn/a Quakbot
2023-05-17Uqporkk.jsjs beaf1204ada8ca02762786314fd25b6aa76835a90a8fb65bac406f55f2907eb6n/a Quakbot
2023-05-17Itif.jsjs bdc4f111f8cae6186459e9096ec5e555157aa6e46167f6d9b8e5dc3729ab62fbn/a Quakbot
2023-05-17Xkrpj.jsjs fa10153403d9bd1b92fccf90f276ad6b452a94b35380d7e8fa6750925d66daa1n/a Quakbot
2023-05-17Abazdmrw.jsjs 80cda5ad868c973c517dc36951b140c1cf3be4d390f54105b3859f1ccfa4e81en/a 
2023-05-17Exnb.jsjs 6a65301a6b39e80278df07189e1f74c2100f4e7c6a63f6d883feb49a52beccden/a Quakbot
2023-05-17Bxyr.jsjs f15d4958a0849493fdd4bff015e1b211f2368d2de71cb7ad16dff9963aecc961n/a Quakbot
2023-05-16Fpsgt.jsjs 9ba3872adc90a2e16cf105e743ce688e7951f14d1dd995bea666fded81bf4446n/a Quakbot
2023-05-16Ljcws.jsjs cde3ebb1a65964bce3f279d40dca8abbe472ea8b9c591017bdf06c4563879ff7n/a Quakbot