URLhaus Database

You are currently viewing the URLhaus database entry for https://tctradingfx.com/die/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635121
URL: https://tctradingfx.com/die/?1
URL Status:Offline
Host: tctradingfx.com
Date added:2023-05-16 22:01:07 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 22:02:18 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:1 day, 23 hours, 10 minutes Poor (down since 2023-05-18 21:13:09 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Cqzunlpt.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Miwhtv.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Rjkjyrys.jsjs a047907ed3aa654f0ad5a45770f998c887bdd26ab8d83948edfb26fadd283fddn/a 
2023-05-18Seum.jsjs a18a3c0e37cfc92a00d139f4aebd7996690f4428dea318f028570bf9037d8aban/a 
2023-05-18Ibiju.jsjs 8c2547beb9fb406c4a16f82f423ebe7c1ad3223e438fa0b061c7cc13133a635an/a Quakbot
2023-05-18Cuugkju.jsjs 6d5e3d77360658771bba4d35e8dd94a77d30f33a7c30ab86b66e271b54d2a638Virustotal results 20.69% Quakbot
2023-05-18Cxryhx.jsjs 53d2ace5dfd9b4384bcefcc9b7e2c0b6701053df124573ad3dc1044ca98e8398Virustotal results 32.20% Quakbot
2023-05-18Olcpt.jsjs b5e43b4ccd0107bcf4e8ce081135f2adb345ba3df9a4df5637d3cd9e08b43ba8Virustotal results 21.15% Quakbot
2023-05-18Wnmoguik.jsjs 7a515185d1c204dc897de0e485dd2dd335341156b5b7764220fb6df27fdbeb16Virustotal results 25.86% Quakbot
2023-05-18Btrn.jsjs b207edc0255d1a287ff3c8f2e769e9540966bfb78068188cac44e1c350f704a4n/a 
2023-05-18Gbpejx.jsjs 6b64266f2b4feb2f9f045a12882dd0a54819e4eb7d840e0c0c092944b0a8ef11n/a Quakbot
2023-05-17Nvuoewla.jsjs 53182e2434b52d11490f911c908c6c23755d667fca1a03ac5d4be2cc9b0cd61dVirustotal results 23.73% Quakbot
2023-05-17Rmanj.jsjs 07b159de000e3d081a5de88077364dcaec1eff528f38b286c7ba65059429853bn/a Quakbot
2023-05-17Lcqg.jsjs ce5efda576bdfd577cb85bba27c1785787f37d30869878530f7249504d45cf69n/a Quakbot
2023-05-17Gwpspyf.jsjs ef1c6b9ad4a7758ef25a4557fa7bf0a20ab6dd57c36474a91ef75620edd0974dVirustotal results 25.42% Quakbot
2023-05-17Dlsbbkxg.jsjs e000b46c0d6abfd08c10602eb092657cdf4c49e578302729b7d31ae55a978a5bn/a 
2023-05-17Ugbfa.jsjs 78a09834bde88bcf04dd934a793540b810b090e90efb96a977c2477be294fc75n/a Quakbot
2023-05-17Vrwn.jsjs 8c4f0c45a34f4cd509c3354346e0db29fbbe4bd099e2b67de6abc88dde35081an/a 
2023-05-17Ycdgai.jsjs 9fb9192d902b2bec0253263ac7de12696284a3203d04c735faf491c94c94ed32n/a Quakbot
2023-05-17Anjcxlq.jsjs 90eb6a3fd342d1e300c062bb5ab1eeefd6222a26ce8b7d1b5c8ef8aa9135627cn/a 
2023-05-17Txhd.jsjs c6134c1f80f22ba0656da79db55eaa40e9bf6b64458d11aa6f3dc908352f3052n/a Quakbot
2023-05-17Kxyjnl.jsjs be1ae61729b0b3b765571e7fb7fb3597592844a17f37deef2aa1da8e323f4e62n/a 
2023-05-17Qnswene.jsjs d7d1083b8bece677640367b2774f27382053c0dd46350e4daabbfbcd00cdbbecn/a 
2023-05-17Nxfkhxp.jsjs f3cb2a4e102c1d8fd2a7a95662d5f0c58281805f31aa6334174579f215b475f5n/a Quakbot
2023-05-17Atamoa.jsjs b05971975da2e8923996e9d3ee714590ca1841beb29bb1517b7cc60ef7ae8225n/a 
2023-05-17Gbfh.jsjs 8d0cf6d6e375dbfd696ab70d039152fd23c8361b14abd86a7e451a541ae30090n/a Quakbot
2023-05-16Uwebiusx.jsjs 7224cf137a99a8612b7012d56c53f8dd03e1b5f12c4b14c60e5b23c1829a75a0n/a Quakbot