URLhaus Database

You are currently viewing the URLhaus database entry for https://hurghada-fs.com/txm/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2639437
URL: https://hurghada-fs.com/txm/?1
URL Status:Offline
Host: hurghada-fs.com
Date added:2023-05-23 13:07:07 UTC
Last online:2023-05-24 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-23 13:08:32 UTC to abuse{at}hostgator[dot]com)
Takedown time:1 day, 4 hours, 31 minutes Poor (down since 2023-05-24 17:40:01 UTC)
Tags:geofenced js Pikabot Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-24doc_F325.zipzip 8b857670ab1452f8dc494e0f442468d571fd239be9d5c8d551add6b63c7ddd60Virustotal results 18.03% Quakbot
2023-05-24doc_B460.zipzip 0a4d1a864deac9f69c69d01671748fe59bb3c663859f1da349bc68cd9073cdc7n/a Quakbot
2023-05-24crematoriesMonomorium.jsjs 320b8802d52e131ed81b47a37b03df79205f72de2eec5a8d1e50949f5ae829cen/a 
2023-05-24infamizingHeartrending.jsjs f1df6c08b073519a2ac18a1cd75e0b65cc0b21e08978ad1265d33a1cfbd0e93bn/a 
2023-05-24GanevsMiterer.jsjs 23646b718612c3f921c98536aebccfec2809496ee3b1c6285dd727f81fbae4cdn/a 
2023-05-24AnisocotylyInsolvence.jsjs 9bb76d85e774144e361de0b4a8874f419313cc2b03493e77f6f3195f139518ecn/a 
2023-05-24reprogramming.jsjs 7bee3f26d0e3588ec0ff20a3ff83be3cc4c40958b54baf758d310efcc81d36d1n/a 
2023-05-24rifflers.jsjs 48d71e8be6585ad9c53dcc357456520d391b7cded79b3d1b4ee0c48e7cbd0c8en/a 
2023-05-24Mellifluate.jsjs c1414a97e8c1513988d6f0d328e17c0d3ea385451bb1170c2fca2c4e1921a838n/a 
2023-05-24dollopDeviancy.jsjs 75b3a2d41b218751b98a4a2409cee43f3cce0651a75c46f61be8baac98e9e12fn/a 
2023-05-24melastomaceaeMethodologies.jsjs 9d9a9a7a1c03ceaa23b111936b5f491d728d2a3fe0f6819e7c5263aa0f175947n/a 
2023-05-23ProtistonWillowworm.jsjs c9ecf543634698a793d1cec6e7d21320638c049cd7dbf4413a7add578c0499a8n/a 
2023-05-23Slabstone.jsjs 0e360b10325260a01f66b52d3a3acd4731471c7e48c36170f624b687f6dd65e4n/a 
2023-05-23gadgeteer.jsjs 5e3d08a3084f29e812ef53fc308913c5393fe83f8b670b74648f65b3bec63dc0n/a 
2023-05-23Pollicitation.jsjs 690ce25e63c261cffee227b5974062e53a9dfdd8caa1823a929d7ccf760b1c4dn/a 
2023-05-23melastomaceaeMethodologies.jsjs 0ee13a852cbf45ed99e47691811ffc377fc028f9f24d0fd8e0978e6cc01a3e0dn/a 
2023-05-23Dicaeology.jsjs 8c2145e1b97933f642707abad4cd68bb026f197200f3de8512c34e8783a8f7ccn/a