URLhaus Database

You are currently viewing the URLhaus database entry for https://ninetofab.com/obpe/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2639485
URL: https://ninetofab.com/obpe/?1
URL Status:Offline
Host: ninetofab.com
Date added:2023-05-23 13:07:14 UTC
Last online:2023-05-25 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU100120239 created on 2023-05-23 13:08:08 UTC)
Takedown time:2 days, 8 hours, 56 minutes Poor (down since 2023-05-25 22:05:02 UTC)
Tags:geofenced js Pikabot Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-25345.zipzip cbe2236b1cd7f4be0b45ebabb14ba49d3db4a9658aacd5e32c222eb73dfb5c4dVirustotal results 20.00% 
2023-05-25569.zipzip dc4fc5ec31a89f09ff0d4b57654edf95e68d20cc57f3fecc793e29a4eb90c035n/a 
2023-05-25428.zipzip afa3688ecafd582f8d8c0b9281530f456ede4f7448b7d699dbc12c3a2590f6d4Virustotal results 24.19% 
2023-05-25559.zipzip 92f81796b058edfad9a3b0bfda68195b0c08367ba9d1d9d40ae2d6ca1c441a84Virustotal results 22.95% 
2023-05-25608.zipzip 15378e5de6db6d287041f84de7c76b46e1a718bffad95f0ea0cbc8f619021feen/a 
2023-05-25574.zipzip 68f61633feaeff9f7328a2391c95fedf2311069e59e0af1c006153c8ede85350Virustotal results 19.35% 
2023-05-25InmeshedKorumbu.jsjs 2a2d617a0e2294fb9240c9933a7fd9ffeb1bb2d7c00beab0babb0647a9965031n/a 
2023-05-25UnbewilderBrach.jsjs e428c448aaf697fb6886300fd5de44380d8819d5b6ec7b874233b719b9bd7a7an/a 
2023-05-25EbonizingPyroma.jsjs 663947b4b1298f76ad63342829cb80789bca8b899731061f7ea4813f1964bc37n/a 
2023-05-25assurorsAbsolve.jsjs d9c19d284c91e77177429dd34a7d44e211f91b9ff09bd3cddc20efeeadb2773bn/a 
2023-05-25WidowlyMastery.jsjs 185eb20b16f7182ca37e53995ca1ceb03805ea263d3510a1f4aac4a87e015dc2n/a 
2023-05-25HottentoteseHom.jsjs de364557f33ffa66e41cfad2700e0d77a45e7a6511d1d9e154a61b3d0e8da7dbn/a 
2023-05-25drabbler.jsjs c79cc1dfedd717de0ca1b125656a4d01ce0441209ccdfc41ee9dabc4fadd933an/a 
2023-05-25DisunifyingNonp.jsjs 2bdf3d5ad31ebdeeb6d7c20e9218a3b1395a6d0259594614bb2c7ffc42fa83c5n/a 
2023-05-24synecticPhysico.jsjs b8d8aa69fc1a58b484d69e32581ef0ee465b7826e2316c3c6c93609b9f18c03fn/a 
2023-05-24Desmodus.jsjs 6179a74e30ecc69562d90588afb832dba9065db0309d6c00a0d1b7954ff412bcn/a 
2023-05-24degausser.jsjs 85c1434ffb35354cff1295f562e957691e2b42efeb617fd04def36907579bf5cn/a 
2023-05-24noninheritabnes.jsjs 877aaf6ef895e1060f0b7ca9bae04089eaa2e1936ad850f14e814d580d74e971n/a 
2023-05-24doc_F326.zipzip 63ff79e45b2ab1f01b3c9e5a086070f9c0e71202d7ae780f541b4ac8086ee9c3Virustotal results 20.97% Quakbot
2023-05-24appendicesSubgaped.jsjs 020c5039ee5ccbcafeec4ba65b98bd93c3066cb10321c4363afde9e0a45a4ef5n/a 
2023-05-24doc_A805.zipzip 8f21b36f19866809a9e066064fe1f4d43b441993385f11f7201d5c80e662f5c9n/a Quakbot
2023-05-24ConfiscatableUnconjoined.jsjs 3c1b87a0ac6df43c38c6c406ba41db63883b7239f542d07b1c471b3e29e96725n/a 
2023-05-24decriminalized.jsjs 35151985736e417e2d5a83f5f7f7252a171ab0089d21c38aa362fb51052fa4a0n/a 
2023-05-24Hydroairplane.jsjs 43442c066b815ac77d52d9b474622188e9891250573e1060742e1f06ebdb3436n/a 
2023-05-24pneumonocele.jsjs d46f98a8d60fa52c450cc23ad7f2ac4b193b7bc739d0a514e9a9c362de53a433n/a 
2023-05-24transitorinessRetouchable.jsjs ea850e6cca46e589fa6ca1cd65b8ee9ffbb8787e98b2cfaecc82f4fa45d16c7bn/a 
2023-05-24genesisPartialities.jsjs 4132e853f1d3f6c6e14eaa2ef0e15b70dc9860f9e56b15949e0af18e17d9ab5fn/a 
2023-05-24Chebog.jsjs 4bbe5721122ff8c26d8e315f3f02167bf7c5f6eb94dcf92cb917683e33a39d01n/a 
2023-05-23Subfractionary.jsjs 189be3bcf90d79446e18ae7989085e94d2eabb8fbee33c3378f5804e126c9cdcn/a 
2023-05-23SyncopicAbamperes.jsjs f9816eaaa451eb9d8bbcfa4e8b139ffe817f4d92883f2f0c14f299fa78d3eb4bn/a 
2023-05-23Gallivanters.jsjs 8e52728cf5baf50f4a33fa2a0a4ff8f48c34720b94261792b15a750509b60211n/a 
2023-05-23Datsuns.jsjs 98389a868a9e2c8f5468869985264bdce67836e412c1cf2f789654605f66e27cn/a 
2023-05-23parahypnosis.jsjs f34ffff55f250b93f8b2a16b17e953af62a3b792597d07b915ebf8aa0774db91n/a 
2023-05-23SamaroidAlbuminiparous.jsjs ab085da0be7e157ced5e5fa251a22a3588d8da3212d029cafe7ca7e6efc05dcbn/a 
2023-05-23GraviesSociologism.jsjs 365fc9264e01cf37f778084a12871ff1b19f2a7c584913e24664c383e280ac2cn/a