URLhaus Database

You are currently viewing the URLhaus database entry for https://fansitemanagement.com/tbnu/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2635896
URL: https://fansitemanagement.com/tbnu/?1
URL Status:Offline
Host: fansitemanagement.com
Date added:2023-05-17 13:06:53 UTC
Last online:2023-05-18 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-17 13:12:12 UTC to netops{at}singlehop[dot]com)
Takedown time:23 hours, 53 minutes Good (down since 2023-05-18 13:05:22 UTC)
Tags:BB28 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-18Siclfv.jsjs 67c42e2dba1a888a502921f8497455eea4965e6a313718853b1782317b27c950n/a Quakbot
2023-05-18Kdyqimkx.jsjs c7018ff287088c076eb317d0b9402bc9dda25e832c0b205e91a3aeef7468bcd4Virustotal results 33.90% Quakbot
2023-05-18Vgztv.jsjs b64790ef2bb214bf0fea83cb0aff305cd66dd38f065ab3cc62b9ddf5d3570eecVirustotal results 23.73% Quakbot
2023-05-18Yaagc.jsjs 6341f87ee4bc63114ac2e7899107fa341aafda80e5fa00f00b0f72d89ddc06d9n/a Quakbot
2023-05-18Elpg.jsjs bc08bfae3a441cb9485634aeda5f5ae4cbbe5e36cd98ce7b2812cd62ed4e5034Virustotal results 25.42% 
2023-05-18Msubohd.jsjs f65cfd45df99f110dd5e24acdcb4a032a333c2d5f289d2867feb0d7fc6aa1960n/a Quakbot
2023-05-18Dket.jsjs 5c57b539392768e2e9e8490f11f6528d81875b4aae44e11319d0a94af50b1f00n/a Quakbot
2023-05-17Vbxakfbz.jsjs 68f73fa35cc8f6df9d84c782adc127c0af8e5c03ac541bbbee241e8edfdf685fVirustotal results 27.12% Quakbot
2023-05-17Tlpsvwm.jsjs 13fa98699be69d8a22ee7c59e1a9efe2f504a721757490445465dc8a1de1765en/a 
2023-05-17Lvvzo.jsjs e378d6c2c0b5f5ad7404ae59dc73fb118bbc687f0b78b8526939d18e1a151bban/a 
2023-05-17Qkuvfnl.jsjs f37d3c915b896922eed07327ecc8b944fcab1445d20c02c26c5aab8d91473b45n/aQuakbot
2023-05-17Ekzbqd.jsjs 4de3c0071371884b0a2e8815554e19a2c0d89112e1bd9bc512d30aa306d3f0a9n/a Quakbot
2023-05-17Khvzf.jsjs 6b64266f2b4feb2f9f045a12882dd0a54819e4eb7d840e0c0c092944b0a8ef11n/a Quakbot