URLhaus Database

You are currently viewing the URLhaus database entry for https://spsinternationalschooltatahar.org/mtit/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635096
URL: https://spsinternationalschooltatahar.org/mtit/?1
URL Status:Offline
Host: spsinternationalschooltatahar.org
Date added:2023-05-16 22:00:13 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU100116917 created on 2023-05-16 22:01:06 UTC)
Takedown time:1 day, 23 hours, 3 minutes Poor (down since 2023-05-18 21:04:56 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Bkunjz.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Sbipuf.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.56%
2023-05-18Qeui.jsjs 969b49aec8aa2ad07610dd8382c80d94e0537120e9a08bab54cef6631181f763n/a 
2023-05-18Otfrp.jsjs 0eb7615075853fea63154c3bbd2be5b4bb724f0717a67082633fe348e45b49ebn/a Quakbot
2023-05-18Ikhlpuk.jsjs 213ee67765673cf53e5f361c49a1bfe40187ecfa07f72bd5a77d13e1f437edf4Virustotal results 27.12% Quakbot
2023-05-18Eeeiblcy.jsjs 02736e3801e700601d6212804b2d824ae4771d32fb369044887fdc9f2076ddfdn/a 
2023-05-18Mmapu.jsjs 7237114103b60a76ef6a67916d0d6fc1e14dc707087bd27684d1093748393f39n/a Quakbot
2023-05-18Vndyb.jsjs d67719607166b2f101544e674067b1d8a66a134620ce0e19794356da09e033ebn/a Quakbot
2023-05-18Grqtnr.jsjs f15cee857739e493f0b99f7ec002e9fd76dd37b87080807a922a414a5294c989n/a 
2023-05-18Nrcp.jsjs 8f547a495bc6e319219b5db2491f70ce4792f76b7770226d37be2b28fa5f79ceVirustotal results 27.59% Quakbot
2023-05-18Jwcvbua.jsjs 356497f781814842756d631b841bd2962b7aba15e1e749956f57352ecf4e24bbVirustotal results 22.00% 
2023-05-18Cobyyavd.jsjs 36c1b7c7a1b5c11ac465725f40b235b232adb02f122a1d9d3210656cacf4ee3fVirustotal results 25.42% Quakbot
2023-05-17Yfzi.jsjs a569ce1eb1902d2edf7cffba78e832e764170e48ecfe81ac3adda07c5f42455eVirustotal results 30.51% Quakbot
2023-05-17Rlyut.jsjs c2b44422f7f4e7dc1cd2abeab300413b55a00cd9d34fda7542a467dd852bafb4Virustotal results 27.59% Quakbot
2023-05-17Qlabfaek.jsjs 51351bc77c5c23de367e4fdd74a87fd4ea6a100dd396c2f78dde57c715543f3dVirustotal results 27.12% Quakbot
2023-05-17Zefrpz.jsjs 009f072fec4afeeb62ee51fc61e387113eecca3d907b9784a9e4b79ca0c64ddan/a 
2023-05-17Hxaagtt.jsjs b3d737c721d3c5e7e58a28f076c7fc26e6ebaab2f08f52e645c645c0b8536210n/a Quakbot
2023-05-17Ucjpi.jsjs 69d10bf1c18cc7df540de106a1056c5af79f8b60f1ffae762d06532cc84375d8n/a Quakbot
2023-05-17Kxnkfw.jsjs b0be9915846a032654d7a5cdc2488d13fd892ca71f707d67ef917a7ed79bd43fn/a 
2023-05-17Ilsir.jsjs c0e4fa96272095779b19bd5c5a1a8e1e305a882bd4f690c32bf346dc365dd64en/a Quakbot
2023-05-17Pwsz.jsjs 072f8998f0fed1a28adde00d93230b2ef20c44e177b0a2857fe88eacf1fc6631n/a Quakbot
2023-05-17Nbzpaqyz.jsjs 7c84d404f2847055517d0fcdad7972a29301452996dc2d0946cc0ed0c210058cn/a Quakbot
2023-05-17Quoz.jsjs c6a9662f1c76442ac68f6b77991386f7e28038114dcdac29bb58d62a2d334a0cn/a Quakbot
2023-05-17Bngh.jsjs f82301598e99812f689ba32eab252e53a1ec1a07215d873fa0c233b67b803209n/a Quakbot
2023-05-17Uldoccny.jsjs 27776a357ce7b295a995e083f925e92ac02d38dcd5e59d3bf4f39080ec68aeb5n/a Quakbot
2023-05-16Setg.jsjs 6cc14207af972b8feb5efc12269f48420f88699ecb277780df47f7405a95a669n/a Quakbot
2023-05-16Svpfczo.jsjs 0c2d707f7d1854c7a63f82faa054d6d54b930dcbc01cbf5114618576ac7e4125n/a