URLhaus Database

You are currently viewing the URLhaus database entry for https://trinifieds.com/olqu/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635129
URL: https://trinifieds.com/olqu/?1
URL Status:Offline
Host: trinifieds.com
Date added:2023-05-16 22:01:09 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 22:02:15 UTC to abuse{at}hostgator[dot]com)
Takedown time:1 day, 22 hours, 59 minutes Poor (down since 2023-05-18 21:01:35 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Petpau.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Lbpcyct.jsjs c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021aVirustotal results 28.07% 
2023-05-18Itynd.jsjs b4f8a856fb4896bb8cea1cdc9c4b4dbeaf71020d6ed83cefcb08d78eadbf6a86n/a 
2023-05-18Amqth.jsjs ed175d3585ab2d387e6c4a9420d8aa055d62ef6670fbe83a0f66d5bfaf943a92n/a Quakbot
2023-05-18Wnldcm.jsjs 5c02cc26158109b9e14b2601be5848cda11477e56c521a791dfdc4081366da0bVirustotal results 26.67% Quakbot
2023-05-18Fabbef.jsjs 0b7fccf63d874ff825b5a3e790311b7dd0923c82b142520db78f43a8191e9216Virustotal results 22.41% Quakbot
2023-05-18Hpjr.jsjs 1539b3e778af6f644e932c0910705fec144fe2bbef2f8df241b0d4bb821d0fc5Virustotal results 29.31% 
2023-05-18Kvpb.jsjs 15abbc922de384ed273fbc1a2e831ab1024bff793998f2cea3c69abd68a85566n/a 
2023-05-18Dpxte.jsjs b1c5cdb6f87ad0c3aacbf479218ede289571b85d30eb47defef749332b52c806n/a 
2023-05-18Kbisq.jsjs 2ef6e700c619c1ace05075497393d8ac827d836ec052de9b6a71a0cdcd343141Virustotal results 24.14% Quakbot
2023-05-18Zlqner.jsjs 2a38d5dd759f5e13e433429b8fbed42e9b1fa7de9f671bf87d0739862847c16aVirustotal results 26.67%Quakbot
2023-05-18Plesukym.jsjs 03652beb5abeb2e27fe43d5ddbecd035cbcb347a4e522a06b97f53e9c8f2c3a3Virustotal results 30.51% Quakbot
2023-05-17Dwjvvgvv.jsjs 8475cb42b6b2c974e37378cf11491570a83f194a37e5ebbc50add4a5677d6d72Virustotal results 25.42% 
2023-05-17Hyql.jsjs 819c3375d47e95f26e1466039e2ff5a096837d0761bed7564c2366b094c8895bn/a 
2023-05-17Hhhmj.jsjs 8c2547beb9fb406c4a16f82f423ebe7c1ad3223e438fa0b061c7cc13133a635an/a Quakbot
2023-05-17Riouukue.jsjs fc087bbfa79c07ccc635f8a6fd0b89dea00fce47f2c8fdd18e9a29c72d8a3bd0Virustotal results 25.42% Quakbot
2023-05-17Wxyog.jsjs 992ec3c1bccb3793a6ae36e909056122ef9e442c16c17bcf9d771c90b85ee980Virustotal results 22.00% Quakbot
2023-05-17Ajfth.jsjs ccdaaebf2ae2ce525ab5ccf2b4d74cf6b58e7d9515c21c0d46e2b8e0709eefb6n/a Quakbot
2023-05-17Selleo.jsjs 15c2f8c8c1100304c80120e164e47b92abe57e5dc117384e5f4f204462601c4en/a Quakbot
2023-05-17Ggsred.jsjs fa3b8cb32994d2971e17a3d75a3959bfa418b6ee806d8fb5b4c80f38e336a0b0n/a Quakbot
2023-05-17Fwmekqjj.jsjs daf7131d331a1564627f85c5fd61658aa7e40e2f297c2ca713416c4efdc7bae2n/a Quakbot
2023-05-17Duifrksa.jsjs e68cc04a7a9246497668d57f2114d2ad5f2a2d5883f3d346aa1ad60846869f58n/a Quakbot
2023-05-17Uqjicne.jsjs 206dc4f8a3a170a454689e92a3f19adee4141a27b6579419dbfe283dab6ecbedn/a Quakbot
2023-05-17Fclsxdm.jsjs 7c922ef83664af5b78b8463c35a19151aa586de984fb491faf03d99191d046abn/a Quakbot
2023-05-16Gjir.jsjs 2080bfe8031e470bf0160de13406ddd8f4583d4bf466f15342aa8b85483b49bcn/a Quakbot
2023-05-16Ndjcmtok.jsjs fdee207280b092a22131aba138441be8c61853c9741aacaa59f89201e28bb0adn/a Quakbot