URLhaus Database

You are currently viewing the URLhaus database entry for https://delwanqatar.com/taar/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2639533
URL: https://delwanqatar.com/taar/?1
URL Status:Offline
Host: delwanqatar.com
Date added:2023-05-23 13:07:22 UTC
Last online:2023-05-25 07:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-05-23 13:10:02 UTC to abuse{at}bluehost[dot]com)
Takedown time:1 day, 18 hours, 3 minutes Poor (down since 2023-05-25 07:13:34 UTC)
Tags:geofenced js Pikabot Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-05-25throdden.jsjs 215c80322f2e58ce9e4f32b82f4bc42b39db05e92a325f5dc24fd69480ab53e7n/a 
2023-05-25UnbewilderBrach.jsjs 9635ea1715e70cb72e76a05c666e9adfc7657ddd103a21f72394b51d2d4a545bn/a 
2023-05-25unanimated.jsjs e78028e458457bafeba7a092a38529a5d12936c888f38b194528003ea0d31225n/a 
2023-05-25staginessBisext.jsjs a97baa90310a2bfef6a6e9d92ad2b416d26200ce651ef09a1611f0e1849906f0n/a 
2023-05-24noncontradictio.jsjs 321177dc4f99dc1131a8b2146dbf25a5001bfbdc3bcd1f619d5f970ab462fd03n/a 
2023-05-24EvacuateThrobbi.jsjs 7b89d059fd70cb3ea15f2d097368614cbef8cc07a52706b87074317d2c933cdfn/a 
2023-05-24lumbriciformOve.jsjs 69431946cbb98e69a4e81ba39f57ad7068e0cb54ba52a5e088722ba9e5c1004an/a 
2023-05-24EverywhencePref.jsjs 023ebc59c273d9e0591769de48348653f608dbe302b4bde6606d5d0a07fde185n/a 
2023-05-24doc_A089.zipzip c58f07e04414fb8fe2db4c2face9224be4d301356e108036ae63978816086974Virustotal results 22.58% Quakbot
2023-05-24doc_D362.zipzip 3a083891057172a87b82911c7eac0417237371f998644558c2b939ba09783618n/a Quakbot
2023-05-24TensasMartyrize.jsjs f14c25e29c8ffcf5929e96d2498bd71297128374a87a27ac55db0ee7a9b5cc10n/a 
2023-05-24excoction.jsjs 0cb32633dfcba371d5f659dc310bf4e38b666d248d021872d002488811da6261n/a 
2023-05-24homebuild.jsjs f3b13704f07a6f6d14104087774d43d6842c9d4f8ed99b927711f7fa9ecf0903n/a 
2023-05-24carloading.jsjs 4ede4280ad7d4373b1b87329ad56e3ec72d767fdcc959b091c7d79ff067d5ce9n/a 
2023-05-24autophoneAdenomalacia.jsjs 2bf47bec2a0f9d6bcf525d097ed68ac3db3a2d47fd82c6920d2164318d3ae673n/a 
2023-05-24BeltlineButcherless.jsjs 5ea975452b77a01ced54f63ed11e6dff81c68d86642ef97638e5f851288621e0n/a 
2023-05-24PraisefullyExpulsive.jsjs ee828f25f5098d51e4c4fcf270dbe47419c7cff2054812a24802a05fcdbe3df6n/a 
2023-05-24bezazzesAtomise.jsjs 34d7e5e21086fbf07e43d1b78a036b33358f7097d2187a57f0a7dadb338083ccn/a 
2023-05-23thistlyBreakpoint.jsjs be23f467dc0bc9d4d1e88fe78db48382af8f6550b4025685ed6ea6d99a47a5f1n/a 
2023-05-23chrysaorClamer.jsjs cbf2b4fae62ec8e56b3fec613cfb464efef85ae46a14929bb1da641807aa45c9n/a 
2023-05-23contrairUncivilizing.jsjs 5d8f39d7d687fbd2f87f17b12d107c67196613fb604ea46bc7d9863c4afbfaf0n/a 
2023-05-23PreessayDucture.jsjs 0283ed6c0dfac858ebccbb8bef3a26f6710df5e65d4c309be5247014dc5d1c93n/a 
2023-05-23mastodyniaMusnud.jsjs c49ac429c1d919063746331ae92cd18f63a7299918a7d6fc1e30b67078801298n/a 
2023-05-23MoustachedFootblower.jsjs e7904a1dbefa00a5099f833d3594c1cfca2e46df3d48b3e327eb61d2d70b1a8dn/a 
2023-05-23MalvalesStalky.jsjs 41e89e38f713eab80e4b2d576bc01fd8225a3ab913ec38f0875416ed8834a4f4n/a