URLhaus Database

You are currently viewing the URLhaus database entry for https://tzktv.co.uk/odle/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635128
URL: https://tzktv.co.uk/odle/?1
URL Status:Offline
Host: tzktv.co.uk
Date added:2023-05-16 22:01:09 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 22:02:24 UTC to abuse{at}hostgator[dot]com)
Takedown time:1 day, 23 hours, 26 minutes Poor (down since 2023-05-18 21:28:57 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Kiutc.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Dzciqa.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Igzxt.jsjs cc21c2452b18fe00462f68977e1f81ed9544380f61bef3d41ed883849f4b9dbbn/a 
2023-05-18Yjpabr.jsjs b1580417444140f2311d1f0098c4af6163f27ee7fc99281c6c6904870fdd88e3Virustotal results 27.12% Quakbot
2023-05-18Bdkal.jsjs 07b159de000e3d081a5de88077364dcaec1eff528f38b286c7ba65059429853bn/a Quakbot
2023-05-18Alzqlpzr.jsjs d3174d21c0af8584eb01c73536a3c50de953ccf9c1486afb0e38c63e608d5342Virustotal results 29.31% Quakbot
2023-05-18Rwhhvpon.jsjs 8323339fe9864a8ae4d4d40aaccb4bf92a9b3ba6b545c2210dec09fb28bf9374Virustotal results 27.12% Quakbot
2023-05-18Pheet.jsjs a5f0035e2f6ab21d643775a304ea994d963bc0ad712a5ae1a9ebb1a5298f7adbn/a 
2023-05-18Swtxaauh.jsjs 17ee5a686914f6713574da4e30d7902af9bdfc03eb0173e1143cc97a4fa37b75Virustotal results 22.81% Quakbot
2023-05-18Oourfqs.jsjs 0d6511ddb8cf97d9967367c983015cc45c5ea8c7ae68416f28625637be59caabn/a Quakbot
2023-05-18Jcvcm.jsjs a3a82b0e5a194f3c627df166b34ee132214dd6dd7f04b7a684d1b93af75f7591Virustotal results 32.20% Quakbot
2023-05-18Emyp.jsjs 26bcf4ed38ca973b884b3322675bbd0b590533240961f9fd6272fa3e3aeba113Virustotal results 31.03% Quakbot
2023-05-17Yyol.jsjs 307a3ef8bc1930af1d46fc60bac9820950e278feee14f7a931ac745613568698Virustotal results 23.73% Quakbot
2023-05-17Dorzjlj.jsjs 447b96999dd079d4e5bbdefc464fbae41be6c1d6f55fa0d6dc0cf9db6f3490b2Virustotal results 23.73% Quakbot
2023-05-17Tseqnt.jsjs 2148fe2b647b8aa1006957e65de07d42e631ced18a21aa3d1aef1ad5d22ffae2Virustotal results 29.82% Quakbot
2023-05-17Netuf.jsjs 2c402bf5ac40a8110c89bcf0f4ccd617ba22f8e8a6ca32d9949461c82540e48an/a Quakbot
2023-05-17Bwdihu.jsjs bbb3857a4a55979cb62365c0f64de4c52d6dfb99575872792f1875a6b7d5afd9n/a Quakbot
2023-05-17Qcokg.jsjs 3dfefc0e91ce9c601581448bcc12aa145f0ae317f0c3bf6cd09b4605cf679ce0n/a 
2023-05-17Jvdt.jsjs b9170aeebd08524169fed0b445611779711a9eba73b341fc4a6d212748636d48n/a 
2023-05-17Avkl.jsjs d1375197d4ced926389c630282c5bc7e8b74513c9e2d3d343aeb5fd34b159349n/a Quakbot
2023-05-17Qnts.jsjs 6fcf54d92019d6ca3e9cd23b772c227479c862b3045d8da71e4b7d37d4dad0b2n/a Quakbot
2023-05-17Mpsqj.jsjs 1b447823ec1017e503109cf5657c013da7b6b87a16c4667b741f78010856a701n/a Quakbot
2023-05-17Itwzmvem.jsjs 5f1f15012ab3b0677b9b36047452f0cb2126d55e6c1f6e2a261aa3687963466fn/a Quakbot
2023-05-17Rtldx.jsjs 2c248bf5c8e15f2bdeb46a5e5a7760b037acd3a6b40ade4cc6ea639452262bd9n/a Quakbot
2023-05-17Vwsaooyf.jsjs b0aa52535b379af3115336c45c193ce469842d117419529413dbbae2165c2ab3n/a Quakbot
2023-05-17Yxgmk.jsjs 0c1b73960bd584dd2ebbb547e301f5b0d1468a42b7f1a71bc3017bf6fd4eab0en/a 
2023-05-16Kwtuzp.jsjs b43ee1e9cffd018877896d1a7227d685134bcf093559264046d6664f6905d3afn/a Quakbot