URLhaus Database

You are currently viewing the URLhaus database entry for https://trinifieds.com/tle/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635119
URL: https://trinifieds.com/tle/?1
URL Status:Offline
Host: trinifieds.com
Date added:2023-05-16 22:01:07 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 22:02:15 UTC to abuse{at}hostgator[dot]com)
Takedown time:1 day, 23 hours, 10 minutes Poor (down since 2023-05-18 21:12:48 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Xrkxhstr.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Elnct.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcn/a
2023-05-18Fzvjvc.jsjs 74e7f951fe5dcd84fa5c570a1b2e27991662022a85a90f8f38cff80d462e8541n/a 
2023-05-18Elulrem.jsjs 2a95cf3c1e69da726dd11f2d5621a546ce89b168fa1cab3506197a63de008d69Virustotal results 25.86% Quakbot
2023-05-18Anggrxf.jsjs 621b5cf40077c9b8235e3525da2dea7b28a80029ac3f7ee7477d78c780f4b8c7n/a Quakbot
2023-05-18Lzejdlwx.jsjs 50ebb94dd22b6d976b5ec46e2aaa6756dd807058f1a4fe1497d72c4a355b3c2dVirustotal results 25.42% 
2023-05-18Greooye.jsjs 2ae86821ba6902bdc957f61f92f752f51c37b2620aa00688fc6affc9b9b6c9c3n/a Quakbot
2023-05-18Nfrlq.jsjs 64dff88a0434f88beb3fac1ad7fb2945b374f90e6ee2ee7322665681b945e790Virustotal results 30.51% Quakbot
2023-05-18Vkiqgy.jsjs d072c0958caad1a6504236a0de9defd899adf9e6deedeb1cdeba1e72229b29d8Virustotal results 31.03% Quakbot
2023-05-18Taixjpex.jsjs d50736e0dc6f86a7295550e45d34bcb51be1915a810402b50f05881002c45135Virustotal results 22.81% 
2023-05-18Ipkeqfc.jsjs f39cee789a4050e31f3f61e2dae48c0b5328d480424a439ba3c06fdf7d12ba43Virustotal results 29.31% 
2023-05-17Pyxml.jsjs 3f81d638187365133a7541ec95cc8cdedd33693b4fd6331e5fddb2281147b873Virustotal results 29.31% Quakbot
2023-05-17Nwkiagsv.jsjs 4765e3f8945205cf00c99d49497f3f90e74523fec9fdbd0bf9ea1f6163c07512n/a Quakbot
2023-05-17Bswkfuhu.jsjs d3c173c2dfa25e646847bc107890d76906c807bf85968b5dd9e96044a7729b2fn/a Quakbot
2023-05-17Ubpz.jsjs 0eb36df6ac7e73e53c148166b06b5c1bc80d6a92c1718e19711dfd219c02ffd2n/a Quakbot
2023-05-17Ifeq.jsjs 4657c8d962a15da8cdc6ff3c1ab3d492a89eebdd09249e8d29eea382791500abn/a Quakbot
2023-05-17Jbeubk.jsjs 0c002b88627f5df1e7415950b066ddc51bf3e0f4f3ef5a2b01a266b2c4282ee1n/a 
2023-05-17Aumwi.jsjs 0d83b17da8e3318b0fe3004f0ee17572790abab90c15278d5d57ac951953fe5an/a Quakbot
2023-05-17Yejgwp.jsjs ab1efff693b3c9d6f83e8ed5cddf8b0f84109b343c4ebb05d8f1626f291760ddn/a Quakbot
2023-05-17Qjwowb.jsjs c98f7b330ff130a4a24a2597f2e143ed4215769493f005379aa6fac66563dee1n/a Quakbot
2023-05-17Xnkxckz.jsjs 2c2a4ee2dd7807bb39eb34f05a1b0ee75aed386dcb9e4845889230fd63eec11fn/a Quakbot
2023-05-17Bncwh.jsjs ce7502a3815dbd8ad30beb1839b50446dd5f0b4d464ca270307c130519b08322n/a Quakbot
2023-05-17Hzsr.jsjs 4a5c4257dd40f426db393a4bd7366b3e40c9aaac5eacfa7f3691a093ca6e1e5dn/a 
2023-05-17Zonwjj.jsjs 168137760a29cfb5f0e739ae71e470f09a6c98496448abae3e00bffcd1bf2e07n/a Quakbot
2023-05-17Hqqkp.jsjs aa4675c6d1abb9b5cf80eaf8f0080b806219114e5d89efcd3343113479a2866bn/a Quakbot
2023-05-16Assxh.jsjs 65e368f8b616e9d2b866c60d3d7cbc9a70f70d4d6c04114e2c7225d7e4061cd2n/a Quakbot