URLhaus Database

You are currently viewing the URLhaus database entry for https://share-hero.com/rin/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635107
URL: https://share-hero.com/rin/?1
URL Status:Offline
Host: share-hero.com
Date added:2023-05-16 22:00:19 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 22:02:06 UTC to abuse{at}godaddy[dot]com)
Takedown time:1 day, 23 hours, 11 minutes Poor (down since 2023-05-18 21:14:02 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Rnud.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Swer.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Wcpy.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Uali.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dVirustotal results 28.81% 
2023-05-18Neqoev.jsjs 42b4893ba0405aac00edd326142c0a2ec683b22478ec9876f6729965d50bc29en/a 
2023-05-18Akxdgrd.jsjs 47b6986c5352ef5a3ecf9cbe02d34caf8e096cb6635c958ce8dedb89540da3d8Virustotal results 26.79% Quakbot
2023-05-18Wyiud.jsjs 26e8f5245d3928df93af31946f3ff6dcf2291861ef4835e6b23e145cfcf9f8d5n/a 
2023-05-18Duksxul.jsjs 43b5fd987f46196b07b603e95e51b7c7676ad0784f913f1b136dcf29bb46e808n/a Quakbot
2023-05-18Eazgdgmx.jsjs fcddde4aefcc392bf143eaab986f85fa9fea69d7d232194ecf6c3080b8b60a1fn/a Quakbot
2023-05-18Zcnp.jsjs 66131f1f9028038c86ecf420304c739126694a6e99cbba38c1bc18ae9c448ddfVirustotal results 20.45% Quakbot
2023-05-18Fqldmuj.jsjs 6b64266f2b4feb2f9f045a12882dd0a54819e4eb7d840e0c0c092944b0a8ef11n/a Quakbot
2023-05-18Lzea.jsjs dfa59aec9d3aea04d54bc6bcacf0f7a1fc618f9981bc4a0955947134999d2ae9n/a Quakbot
2023-05-17Ygqnhssc.jsjs d5cf74860b7b3a07c522d435a8360406d7c4a5575bd34a1244d8d0c1426bdb61n/a Quakbot
2023-05-17Flmwufe.jsjs aa29c7434c1bdbe52fd461a295dac0931392a0852902d70bd91693bedfc48375Virustotal results 31.03% 
2023-05-17Robdwd.jsjs 07c7eed20a0deee08f2f4bcdaa5a1b077e9c5d50c6b1219c4082c3d54afc1349n/a Quakbot
2023-05-17Rgzsar.jsjs 07cd66f1c775da49daf409f335ec5d0189ba991d2e66c33b01708efe1934e0dfVirustotal results 27.12% Quakbot
2023-05-17Kstidgku.jsjs 2ef6e700c619c1ace05075497393d8ac827d836ec052de9b6a71a0cdcd343141Virustotal results 24.14% Quakbot
2023-05-17Rddsd.jsjs 71122ff461bd77e00f131eb7f52d813ed7a1fdb3262bba2adb83ee04085152f9n/a 
2023-05-17Vvlii.jsjs 644d7490c3fe27e34ffb24eec109bfe9aaaab1a088b489de784de77611e65df8n/a Quakbot
2023-05-17Ssqlczef.jsjs a5aecdbacfb015e27f2c157bce0d1f0b16674188123497abd57e1107b4e7fc70n/a 
2023-05-17Zcqzbcf.jsjs 233aa69a0b85b253d8c0c4115bf5d56fc1dd10459242783f5ca1deeda6f5f463n/a Quakbot
2023-05-17Ffzpo.jsjs d717932a09ab31a8bbacc06206a5c8df517871b50cb9d480339d179e8cb99fd8n/a Quakbot
2023-05-17Vyhoobkk.jsjs 8a26ca47fc3851b298f0a39a39b342bbccac25904dda99f9bcd06c4b90f8b96fn/a Quakbot
2023-05-17Yjtufioh.jsjs 1e2098c5396ad0cdbf43890a9a84ef6ffe69e11d6b9569fded7ced704fdf7a53n/a Quakbot
2023-05-17Dekx.jsjs c0ca5cec112b2090e1d6b1aed31dacf43d532c96aabdd64b185e01a381eac927n/a Quakbot
2023-05-17Aiwyvr.jsjs 7ab76d47b9a435fede0bc5e3e27f98bfdb76ea4f5c0e10a9e14ebf106e469bb5n/a Quakbot
2023-05-16Aerdr.jsjs 955ae8ec9c1c8b64fbfabf75d33e9adcf8d74f9a11e86df8125fc3ff5367546cn/a Quakbot
2023-05-16Rane.jsjs cf92698aecd44befaad272f2a730286cf2d0a6688718c24471441a722799dd46n/a Quakbot