URLhaus Database

You are currently viewing the URLhaus database entry for https://drainsolutionplus.com/rtuo/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2638913
URL: https://drainsolutionplus.com/rtuo/?1
URL Status:Offline
Host: drainsolutionplus.com
Date added:2023-05-22 15:02:13 UTC
Last online:2023-05-24 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-22 15:03:14 UTC to abuse{at}godaddy[dot]com)
Takedown time:2 days, 6 hours, 32 minutes Poor (down since 2023-05-24 21:35:58 UTC)
Tags:geofenced js Pikabot Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-24cloison.jsjs 4cd958e0814d4cd2479ed69bd7a08d333aa707c1604299810575737f10dc91e7n/a 
2023-05-24uniconoclastica.jsjs c2d325af3b9bc6b8c7c0de7f45b60c0faa401ab37e41610d637e6162869ceda1n/a 
2023-05-24atherosclerotic.jsjs 980e2d199ba1b8067c2f50a72343ba519743be0bfab35baa5fa5c1c10a0a4848n/a 
2023-05-24doc_A765.zipzip 2234cf8302ee9786c778ed99be6e4b7d824cb78d3b8b345197ca432d446b570aVirustotal results 23.33% Quakbot
2023-05-24doc_C024.zipzip f5dcaea1b4bb49ad600521756b1348924cf8225c0d4683b756a5f8d9a6f783d1n/a Quakbot
2023-05-24unscotchClypeate.jsjs 71d50b8aa85e27e465df34d3f1ce89a80b6daba72a34b9f0caa178ae0b2a6b9an/a 
2023-05-24tenderizesCnidarian.jsjs e62d48ec606ba25bd9fa89baa657c31308c17d3c0a337a30649d1c7031fcdc6fn/a 
2023-05-24DispergationElaphomyces.jsjs 6aecb52dfbd398a36fadc2c4b1c7852e79f79676bff7b12090d562adbc163d02n/a 
2023-05-24Slypes.jsjs 6d2fb80eec9af83363f2633a902d4c3777d807ff21c76e5869365373361fd96cn/a 
2023-05-24mysteriosophy.jsjs ba1db66e1d70ac1765b489d97da1c7d60345fea7f8bfc775ef0ddb6fd6d136acn/a 
2023-05-24carloading.jsjs d18e1af2d9e745413be1859a3497bddce790647e9930a7826694ba61491f6cf5n/a 
2023-05-24Monogynious.jsjs 0330f8aa85e193923d6e91d17cfbf898526025014015bdd3ff22c4debf30b7f8n/a 
2023-05-24Immortability.jsjs 986961d12a52a75923a69d76712c9b660c0901981980bba41085b116d5786959n/a 
2023-05-23BoschveldAutarch.jsjs 6fdde7ea5dc4f39aefc8aec749c5c3867df2a8e9534d1d2b50a32450c729962fn/a 
2023-05-23OpsonoidConciliarly.jsjs 9d06b01f76af696612aa6a7d9af31650664f6a7708abed8bcab848af292e74b8n/a 
2023-05-23gustoesJasperite.jsjs 5bcd1bb0b291cf1d6d760be83f7d2c94c7733d1820fbb1e6c090890ff916bca4n/a 
2023-05-23Gallivanters.jsjs 6aa13f63fdf5ee878299c1e8bb24122f486480dc28597dc1e6e30562cb7d6c72n/a 
2023-05-23Gawkily.jsjs 4137700564aac4b47354aeee14d633be76f59dbe9a1f0d737c2cb60ac19a0b70n/a 
2023-05-23congressionalistVibrometer.jsjs 7fd7d70fa887d27ae0608162cc4501267d0e88eff1a4812e1bcbf690171bc3d0n/a 
2023-05-23InsititiousNonsuccessively.jsjs 55d5bdfe332ba3cdb8bdc8cb08982322347d298b6d1e9ec7d975eeaa4fc37209n/a 
2023-05-23CaravelsReasonings.jsjs 0cabfcc66272f55495d6707bbb2779a18bb81203c6cdcfff904223f33dfccf24n/a 
2023-05-23axometric.jsjs 8ab6499e049359bf0937514a9ec7d17459126c650cb9be847798f8c2bcac781bn/a 
2023-05-23Ugqv.jsjs 7cda03aec46b79320e9fc31b4f65daa264639ac71432003921db5255ea669242n/a 
2023-05-23Qyoian.jsjs f06f6b15729d34ede6f75a2d528f5658168ca2a360d9f038537839ed8247a21an/a 
2023-05-23Olvhna.jsjs 027c9044be90ee1ac3b65793edc17ec3ed57be6e82edd1ff5186b06e24ccc798n/a 
2023-05-23Icuwh.jsjs 6ca4c88c28f1f05db22f6ec7400de994353848c558b3b5f9cde7d1aca2ca3667n/a 
2023-05-23Wdsyuaeh.jsjs 17b9d51e0f5fd042d413d807ffeb7293bf0035df6f2af6ce841c530ba8573aa9n/a 
2023-05-22Cwgjc.jsjs d8c0cbc038f4df5f6e6dc872b7b09c53caa644678972311b732002dfdbfe23f0n/a 
2023-05-22Evsk.jsjs fe4c58b6dd911383df87e6449a4c2af428a5398086a9aaaa545c9e54d6f4f98an/a 
2023-05-22Grcnu.jsjs ac81de7bba5d712b33da2f2276aa03925cd200d4a686fad60f84e2e92cf7ca8cn/a 
2023-05-22Cwzb.jsjs 6efd881aa93b019e71aeef9be2754d0791c76009cdf08efca01d86dfafc3e9fdn/a