URLhaus Database

You are currently viewing the URLhaus database entry for https://spsinternationalschooltatahar.org/tnm/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635103
URL: https://spsinternationalschooltatahar.org/tnm/?1
URL Status:Offline
Host: spsinternationalschooltatahar.org
Date added:2023-05-16 22:00:17 UTC
Last online:2023-05-18 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU100116921 created on 2023-05-16 22:01:11 UTC)
Takedown time:2 days, 0 hours, 42 minutes Poor (down since 2023-05-18 22:43:53 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Muqmrk.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Xpabsiex.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dVirustotal results 28.81% 
2023-05-18Mnuwle.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.56%
2023-05-18Nvaqzips.jsjs 4ffb85021d6164060c67daa09fdf36dd4bb6801559cd72715aaab76afcd5a510n/a 
2023-05-18Avnw.jsjs 5c2f413b69f9b93e5bf828d8c4219af88afdfc9d6fc5d04d749815dc66cd664bVirustotal results 33.90% Quakbot
2023-05-18Ybrjhai.jsjs 506d6f7370fc1f1367a79bb76a39e5ed1e2c5113ca286350f3239788538fa80bVirustotal results 25.42% Quakbot
2023-05-18Hryyivvo.jsjs b76a46e9b0db483e342c390f25663222fee2e67cb7670205636c7ee748850b86n/a Quakbot
2023-05-18Turqaqlb.jsjs 6f1a5f81c661643e1367ba7f42de50ede7d8841c0eb4bd7e13f5922b8a539766Virustotal results 29.31% Quakbot
2023-05-18Cbki.jsjs 24cf08aad92d93dfabb65546276958ba1bad72825e0af1a4fe5d2a2f0d2a451fn/a Quakbot
2023-05-18Vecuj.jsjs 0a6a1598b501c10c9f5b674586502de9eb32d51063c42dfce137a78f56aa4388n/a Quakbot
2023-05-18Ddkzqnj.jsjs 812cc57a966264823ac9c3e7a2ec885f1ade0a4a304ac4ef12554bbf9328338aVirustotal results 25.42% Quakbot
2023-05-18Mwdjpiw.jsjs c1064ed6356f294c6981938454ee3a3712e5e63930c1554a3c1602eacbd6554dVirustotal results 25.42% 
2023-05-18Uieayw.jsjs 8aa9df652c080c1ab6754cea7be1a61ae330512a5ddbc9af51177cbeb20da8e4n/a Quakbot
2023-05-17Kapkb.jsjs 5b34cafeebdc336b994960dac5ba4fcb70877967e1b19443c512f0a0cabc1d75Virustotal results 13.79% 
2023-05-17Ldlgdmy.jsjs b3c3f0880fe1ebd5b9f5146a8164da0834ee29a37e5a1cd8e534efe15c786daen/a Quakbot
2023-05-17Soloub.jsjs 9dc74a47b57fcd85200f975b411792401c29e5d1ac2806f4efca47c4fbc00eben/a Quakbot
2023-05-17Bbdc.jsjs a93a8bf8a31ec8306c9567bf9a32a827765ff0e798aacba99ea917a481f43f7en/a Quakbot
2023-05-17Tdyv.jsjs 0b5625e5e6c8ca17119f220fef0e5b08313f77e79294375e8b2c57d9bdc47ca9n/a 
2023-05-17Ueqits.jsjs 2570cf55120f499263bb8841172328a59101385bd1804bb919458e9bf167319bVirustotal results 25.86% Quakbot
2023-05-17Bpemrk.jsjs 98e65224d86b8f3b2be7f45d6b5bc6711e25eba8a298bf06d24ad94bfa8b2089n/a Quakbot
2023-05-17Crwjvhm.jsjs 47195a38386625fefd157789ffd73a0ec37d449b82f9a4675cb08b5793e58a7an/a Quakbot
2023-05-17Dwnxej.jsjs 2fbddc466bf96f9ae5f8431956784d54084dc35fab630ccd1e31398c4cf25e5en/a 
2023-05-17Taplpryh.jsjs 34f3e5bd21a3bf9ed5d7787c330942f5626278858cbb5224e08c62d431bc5733n/a Quakbot
2023-05-17Ufirfcai.jsjs 59a128330b9624eba9488a33c48fd24d919c142c8be91a6af9d40acba3d9f794n/a Quakbot
2023-05-17Ykimecb.jsjs 8312af9ea0dbb8cebe9edb57e2dbfcf3c44938984faf86def4bff646ea2917f1n/a Quakbot
2023-05-17Ufnft.jsjs f4bc5837d94826285a6a280d8cd49f579748232805ee22f67bf624f99b0b10a8n/a Quakbot
2023-05-17Yocimud.jsjs cf71a030eadeabfac5463b6b3345298222479b4a9a3ed3a471a96fa09b6adeean/a Quakbot
2023-05-16Qcolikqk.jsjs 46fd1b695c49ef20032340909995f9dd7a15eea96efa3e6e0fe38a154519bbe4n/a Quakbot