URLhaus Database

You are currently viewing the URLhaus database entry for https://tourguidescambodia.com/otml/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635123
URL: https://tourguidescambodia.com/otml/?1
URL Status:Offline
Host: tourguidescambodia.com
Date added:2023-05-16 22:01:08 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 22:02:19 UTC to abuse{at}godaddy[dot]com)
Takedown time:1 day, 23 hours, 3 minutes Poor (down since 2023-05-18 21:05:28 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Wnrmc.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Vmmtts.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Pwodsh.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Akknsgo.jsjs 1da538d1f9f5adb4cf8baf8c270e627ffe2880c4d3e9ab8f1bc3d0a599b07f6fn/a 
2023-05-18Oaprwt.jsjs ace729a8273c30f923532f7f1a8c2d214aeb49b0c3109d8eff64612384b29140Virustotal results 30.51% Quakbot
2023-05-18Thttegs.jsjs 38994d258f8bfb97fcb4ad671d962c6f000efb90f29ef01a8ca9881d7a206c66Virustotal results 27.12% Quakbot
2023-05-18Omhtvj.jsjs 340674eac99b309a0a10a07f5d961e87788e88c4cc2f218da6cd61ccb196deecVirustotal results 11.86% Quakbot
2023-05-18Mupiedf.jsjs 29d88d7a73d988b2b2c5ddc76ac150742366a2a8c379758bf47f13c2fcf01346Virustotal results 27.12% Quakbot
2023-05-18Idarb.jsjs 1a1943fad765d92f9e4afa5ae4df4ec80c61fe42d83f15ab13027ced2e33bbbaVirustotal results 25.42% Quakbot
2023-05-18Bqjkxy.jsjs 20336fdfef9d5684dd6055ff838104e334316b82122b0a12b809b529b1a66cefn/a Quakbot
2023-05-18Qagqcjx.jsjs a6974773e37cbd56791b75effa167213997aeaaa65d704bd1de8aac6d9dd42ceVirustotal results 30.51% Quakbot
2023-05-18Vffnecvw.jsjs bc08bfae3a441cb9485634aeda5f5ae4cbbe5e36cd98ce7b2812cd62ed4e5034Virustotal results 25.42% 
2023-05-17Qjbma.jsjs 4ca00c819ac67574145c0664985afbfd757621b4809ec157f14d22108aeacf8dn/a 
2023-05-17Bqne.jsjs a5540977a0c0c5a143b8a2c6f71919f2181988f29747374bd66cbcebd4eb7b11n/a Quakbot
2023-05-17Jzyfqhu.jsjs 783e0a457afb1237e0956e6ff847bfcdb49ee23036f51b4621b534f54d67112cn/a Quakbot
2023-05-17Accoouj.jsjs 5cf5a460458dbbeb9dc56a1055cc11cf9105c55fae9b828a1884c3899001033eVirustotal results 22.64% 
2023-05-17Tazg.jsjs 8110c40ddb65d964d81ab30f4c4f9bdce11b8956b986d647f4b81c4c0652f5a3Virustotal results 31.58% Quakbot
2023-05-17Lsqdq.jsjs 5c57b539392768e2e9e8490f11f6528d81875b4aae44e11319d0a94af50b1f00n/a Quakbot
2023-05-17Anqkmsy.jsjs 8290e44e2bd6431a3cb8fce93c83b97d4710c63bffe7f1eb93db3282ae17b5f6Virustotal results 27.12% Quakbot
2023-05-17Cmduhox.jsjs 6da4a8bacb02c6d1b3251c5978545168c0712fb14b5ec2731a867b73a3daeacan/a Quakbot
2023-05-17Fwpgavf.jsjs 262a5f034b2ee0bfb042f5638064b4cc08e62a7c6aba6aca6f10405d0f6ac416n/a Quakbot
2023-05-17Pchd.jsjs 3d8130c47457992237d1094704f100a93de72c1eacb9471237e6c3b52e041f66n/a Quakbot
2023-05-17Wukgejfl.jsjs 17b19a4d4a336601321021fceb10d930ff5b1865b1a8cacc7d04b9d232321fdbn/a Quakbot
2023-05-17Vhowhqhi.jsjs 21c3707acde229d4069722a16f57b7c4658a67056dd88264707d4559827bc3fdn/a Quakbot
2023-05-17Tpxjptax.jsjs 1bbf34b8e3dc813ffa5f12f8d631174b0302450b0392ee01210fd5c8bf041803n/a Quakbot
2023-05-17Zcemqcj.jsjs b678cfc3b5924488ff55d10fc8f4233f920dcefeb0954ccc7c2589490672f4can/a Quakbot
2023-05-17Zzxi.jsjs 3a0587cbb82d61e73957ffc9a09640c50c1ed43a281ea0d503928b65ba06cc5dn/a Quakbot
2023-05-16Dziblkjm.jsjs c08fc6ba1e75c5ff22e3269258aee2903fa2be9aff1a31a218a9c511d0ae9fe5n/a Quakbot