URLhaus Database

You are currently viewing the URLhaus database entry for https://solidsteppaz.com/eut/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635090
URL: https://solidsteppaz.com/eut/?1
URL Status:Offline
Host: solidsteppaz.com
Date added:2023-05-16 22:00:13 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 22:01:56 UTC to abuse{at}hostgator[dot]com)
Takedown time:1 day, 23 hours, 32 minutes Poor (down since 2023-05-18 21:34:14 UTC)
Tags:BB28 geofenced GuLoader link js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Tejlqi.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Yume.jsjs 0500af731ce8cbad0c49c4405ac860319ca3e47cac815c791b478a45911c4ef8n/a 
2023-05-18Kjdvr.jsjs becfbdbbd5a9cfbb918940eafdd8f586133d77eb11bfc5dac1f96e7787abfd65Virustotal results 22.81% Quakbot
2023-05-18Zctlg.jsjs a74b08fd8574636c900a77d9d50f0c7d91b058b6a82d501d33a366e1e7c3d343Virustotal results 25.42% Quakbot
2023-05-18Kiqldiw.jsjs 185a635c927d918ae74aea58092eb9ecedc06bed0129605f9c210f1a3ad2d63dn/a Quakbot
2023-05-18Qzoxv.jsjs 0b8b2630460c4baa473d458c5dfe165acc6e1cd41d684697d22599bce6fcf623n/a Quakbot
2023-05-18Gnymgghi.jsjs 2ac229fd994bdb64a7cde85dae50a0f2f6a3229eed9afc763d5f8d0e9b4f0ef9Virustotal results 20.83% Quakbot
2023-05-18Sqeb.jsjs 93be05e8c37282bca34649a25ba07962fb7da33e5799c01e05c15cc3b72589ecn/a Quakbot
2023-05-18Suuu.jsjs 6408a31654a97655a3c45f019e39fd50d628010800c45fd4be6b71329449483an/a 
2023-05-18Vydemux.jsjs 6cb675336525f3ee63666c008f21faa80acdb6e41fec92d7d75201b385880e2cVirustotal results 30.51% Quakbot
2023-05-18Ufdxi.jsjs 2072042cbdf8458366261756217da566a1b8d6cf4b24541a37d71c44c07c7fdeVirustotal results 24.14% Quakbot
2023-05-17Fdoh.jsjs 148425d44762a381cbc5cf7c9e0e7fb44d71f7162439e78b219929274f34d19fVirustotal results 25.86% Quakbot
2023-05-17Hautbgj.jsjs a957652292b9f2b69f858cd1f3221d9c4ae8b165a295b91459fd2bf2eedce715Virustotal results 25.86% Quakbot
2023-05-17Oeoczie.jsjs de678b4a37c6c15a808f0289a0185302b696546ff234a9c180ca99ac8bb1f313n/a GuLoader
2023-05-17Lghgfk.jsjs dcb4d36d51f163518e7ef97ffd77d55e49a72dc3b351a6e4051187b5361ecf7fn/a Quakbot
2023-05-17Ieitaq.jsjs 3fc389e082cfadbcbe3c61ee47a019b1a2e74b486bbcf569634b7699c56347a7n/a 
2023-05-17Czpiewc.jsjs aab20b8c8db7c411b561f5e5edbe3f9e0fb3c792a80c42a94acf141aad93ebd4n/a Quakbot
2023-05-17Bhckag.jsjs c2c00133ebba6753caccdac8ee3773964fd3165ac2ea7dcbeddb1d520ef485can/a Quakbot
2023-05-17Ympj.jsjs 39ef940b3ec0202638c6f08eddc70c6c0ba3e854ee6756117bc3195b0385ddb2n/a Quakbot
2023-05-17Mxlzov.jsjs fb3d9fa2b13b36933ec706b7c38e7b1db0f721986c7a03b4afd584e0cdcc5574n/a Quakbot
2023-05-16Enwratnc.jsjs 31d1556edf28c87c65fe424658ea73de89aa680708afe323b473289ec8dc351bn/a Quakbot