URLhaus Database

You are currently viewing the URLhaus database entry for https://spinkapuas88.com/oem/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635647
URL: https://spinkapuas88.com/oem/?1
URL Status:Offline
Host: spinkapuas88.com
Date added:2023-05-17 13:06:13 UTC
Last online:2023-05-19 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-18 11:12:08 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 8 hours, 29 minutes Poor (down since 2023-05-19 21:37:59 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-19Gkcrp.jsjs d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fVirustotal results 25.42% 
2023-05-19Ytkdads.jsjs 76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8Virustotal results 30.51% 
2023-05-18Drpban.jsjs 51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4Virustotal results 22.03%
2023-05-18Gnngzquu.jsjs 1cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcVirustotal results 13.33%
2023-05-18Wyindbsc.jsjs d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182eVirustotal results 22.03% 
2023-05-18Rfrcpklb.jsjs 6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59dVirustotal results 28.81% 
2023-05-18Plhi.jsjs d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37aVirustotal results 24.56% 
2023-05-18Ruoa.jsjs 1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eeVirustotal results 22.03% 
2023-05-18Mnwayu.jsjs e2bbc65a1708a15750ebe9904c352d16d0b6a10f65665e0c8170db970a3e1708n/a 
2023-05-18Uzlsmnsp.jsjs e82f04f537f593c6f5469d18db6332febdcd169b2dc920ed7619f9edab951f03Virustotal results 30.51% Quakbot
2023-05-18Vckkc.jsjs 783e0a457afb1237e0956e6ff847bfcdb49ee23036f51b4621b534f54d67112cn/a Quakbot
2023-05-18Mywdse.jsjs fd6447c1e9b59d7114534e32bd988bd00fb674bcecc4c3d958b096bfc06b4acaVirustotal results 29.31% Quakbot
2023-05-18Sczmbbpy.jsjs 1226b64c5cdc915647f5412f5ca66ffeb7ac2c6e7787e3f38195da88b68ca12en/a Quakbot
2023-05-18Ktkxfkxb.jsjs 10f759e97a48df574fc941e1fdddf412b2e5a598d13829c47c202527d7d36ee6n/a 
2023-05-18Uodwjxja.jsjs 134b8da7c15c769cdda57799cf4c8b3e35b0937c9709e7c8e13783183ec10341n/a Quakbot
2023-05-18Zvgnpws.jsjs 47b6986c5352ef5a3ecf9cbe02d34caf8e096cb6635c958ce8dedb89540da3d8Virustotal results 26.79% Quakbot
2023-05-17Yqfavc.jsjs 479435405ce11b58fbf16a8d7d4f3f1b2d8952718a2dd79f8c0e4ecb91176be8Virustotal results 32.20% Quakbot
2023-05-17Iwyk.jsjs 8506e3c5de62fa6173656a51f4f41a0986ccb9fa55bea9cfcb878c6df2bd88c7n/a Quakbot
2023-05-17Gfzzzv.jsjs dfa59aec9d3aea04d54bc6bcacf0f7a1fc618f9981bc4a0955947134999d2ae9n/a Quakbot
2023-05-17Gponlt.jsjs 83a6906128b93fb8777e46c5a7c736321ce2cabe58ece643b53dd9884a1c6c77n/a Quakbot
2023-05-17Hkrs.jsjs 66a44d6ecc0bff8550c4f8fd93b40851e019bac6297339dd180d268ed9bba451n/a 
2023-05-17Hvqq.jsjs 9665c60390e6de64d398dc14f91957bbec2a396ca2c0ee79cde6f8ae0e2a585dn/a Quakbot
2023-05-17Irldim.jsjs 58b0e516ec4c36b4a0582314a01bc968a5e3a7acce646abe2179ef5adde91a24n/a Quakbot