URLhaus Database

You are currently viewing the URLhaus database entry for https://tefcoglobal.com/mte/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635130
URL: https://tefcoglobal.com/mte/?1
URL Status:Offline
Host: tefcoglobal.com
Date added:2023-05-16 22:01:09 UTC
Last online:2023-05-18 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-16 22:02:25 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:1 day, 23 hours, 14 minutes Poor (down since 2023-05-18 21:16:51 UTC)
Tags:BB28 geofenced js Qakbot link qbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Afgp.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Qsrtntb.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Fjnmt.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 22.03% 
2023-05-18Gtvmgida.jsjs c4eaf42b29c841d1c2a45c55e67ee1fd525c46215874ea2b3c847a67fe10156fn/a 
2023-05-18Noemy.jsjs 67ff580532af15d6457fe1b6aa59886c46bd5c72906c86b58aae1e7aab70fa3dVirustotal results 25.42% Quakbot
2023-05-18Omvcns.jsjs 6fc84f16bba8f14130cc061d7ab41c424fdccd71398b2bd8c1f4300ffffe8912n/a Quakbot
2023-05-18Okqdt.jsjs 9d9924b0f0e33e1b74db34d25035395c2f29b1c29926ab16bfec2e29f30c8b81Virustotal results 27.12% Quakbot
2023-05-18Bjdwvp.jsjs ff50e9d6bada1c148165cd94d8242cd7c0651692a508bbec763046c0ad17be90Virustotal results 32.20% Quakbot
2023-05-18Hmqndjpf.jsjs 287c569bf794a7ec47dcd5f308d39f138b6b4b964ad50c335991038cafd9d476Virustotal results 32.20% Quakbot
2023-05-18Pzyzfdl.jsjs 7b0e64b5b88495d402a11b16ad7776cc5e0d44a07992e8b9cf9c7006a92ac8bcn/a Quakbot
2023-05-18Ovgdm.jsjs 345e76a5091b5ecf319a57a8901fc203f48dae4dcc62b70fdc4d1e542d1a1f46Virustotal results 30.51% Quakbot
2023-05-17Rsnhmu.jsjs e6823880248255f28dad73af6553cfbae133b6df9f78eff124a379d793265ac2Virustotal results 27.12% Quakbot
2023-05-17Xzrmgoq.jsjs 49255538015c01aa00ddf4828db000a7ef75677681ed98234a94a9ab84e159cbVirustotal results 35.59% Quakbot
2023-05-17Elhspfs.jsjs 8c2547beb9fb406c4a16f82f423ebe7c1ad3223e438fa0b061c7cc13133a635an/a Quakbot
2023-05-17Bmukce.jsjs d306257143ef32e3f924f2886ed8c92b3dadea9e12e458ad402e9456a2e61edfVirustotal results 24.14% Quakbot
2023-05-17Qnlrxy.jsjs 1f3d3d34fcd02bfbd9eba7becc4eb01342dffb209af4971f9df25374411cd1a7n/a Quakbot
2023-05-17Rfkgzhfs.jsjs e193e117a9fdecfac181547ca4dadf85602bca2aad6bd2c6edeb2a25d45e9f91n/a 
2023-05-17Iqkkxdsu.jsjs 479435405ce11b58fbf16a8d7d4f3f1b2d8952718a2dd79f8c0e4ecb91176be8Virustotal results 32.20% Quakbot
2023-05-17Tktf.jsjs eac6096d9525ff200431210339d6a028b68233173ae11df47f57222dc631697dn/a Quakbot
2023-05-17Hdaweheh.jsjs bf7f705bdbe160edb30bf838595113fe93344691e84b25747eaf9458a7860738n/a Quakbot
2023-05-17Qlszwr.jsjs b75e603f56e95ea38a430facc754a21ec1f4dd06945156ddd63e7d034eb1a4e3n/a 
2023-05-17Vpeww.jsjs 56fa76db7aaecd8c82fe0e13184ddb449a94a88aee4071d0dc7b0a3d5c926e65n/a Quakbot
2023-05-17Sjsz.jsjs 2f257fb671a4fab8a137e6ed44f09024d313c2df2c4c7cfaa349ed7e5ab440c0n/a Quakbot
2023-05-17Ikygkey.jsjs e6f8de997ac1a241d4af72cb4bfdc75f2dbe005752c20854d780989ea62db0f5n/a Quakbot
2023-05-17Onjodabe.jsjs 2a348ef52c5b3717494ee6085c71b91ba24303e15ba83bb32eed529401367010n/a 
2023-05-16Smema.jsjs 4b0603e98c9548521465698da908c77c9f878feadb319f3b0def7572e95de90fn/a 
2023-05-16Xybwk.jsjs 6e0541db0373d5383990143f4dcbdb7c76a5e699d61d86660a571e270b9a0d88n/a Quakbot