URLhaus Database

You are currently viewing the URLhaus database entry for https://joker123truewallet.net/it/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2646524
URL:	https://joker123truewallet.net/it/?1
URL Status:	Offline
Host:	joker123truewallet.net
Date added:	2023-05-30 16:51:07 UTC
Last online:	2023-05-31 22:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-05-30 16:59:28 UTC to abuse{at}godaddy[dot]com)
Takedown time:	1 day, 5 hours, 10 minutes (down since 2023-05-31 22:09:28 UTC)
Tags:	BB30 geofenced js Qakbot Quakbot USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-05-31	doc_D623_May_31.zip	zip	b7aa48888907b85d3a0236ccdbfdb6ee54e62f0329d3540ab5540fe82447df55	19.35%	Quakbot
2023-05-31	doc_A510_May_31.zip	zip	f867aef77c489f06f5085e2186fbbeac17a5e4e60f6cbc50f24c2a79ac9c5959	20.00%	Quakbot
2023-05-31	doc_C517_May_31.zip	zip	b2f3c5e72016770918cc9e558c7a9a12ae591f17f757dc8c68a3bc4cc780560c	n/a	Quakbot
2023-05-31	doc_F931_May_31.zip	zip	10ac5e7ead8dcc9b2f6e4d56723238c6880e841c9a71635ccedd24ddad10369f	22.58%	Quakbot
2023-05-31	doc_B608_May_31.zip	zip	cd5e4fb0ca36f75850d4d65f6650776e14f51e37658cbdad3f53289e3dea99c7	22.58%	Quakbot
2023-05-31	doc_C185_May_31.zip	zip	83ad539e2c8d487f727f4ec24c0dad21b2353ae97959951ce6ae1d5677b30ce8	n/a	Quakbot
2023-05-31	doc_F501_May_30.zip	zip	0212fdc235dcf33ba6df41a8768206be1de186413a5fffdcabfa60576bde0298	27.42%	Quakbot
2023-05-31	doc_C425_May_30.zip	zip	d6f0220f36f00d03c7fbe53e7aee14cf07fbb7fbe89368c0e78f14aeb82aea63	17.74%	Quakbot
2023-05-31	doc_F891_May_30.zip	zip	7aac59897e6b602ffe4cdebb34c6ebe6957e972e392a00664ab83f216189d881	19.35%	Quakbot
2023-05-31	doc_A492_May_30.zip	zip	5687f0fae2a937ee9ac6bb2601ff1558b50b4785ec36849bf99bad96c0109c4b	17.74%	Quakbot
2023-05-31	doc_E216_May_30.zip	zip	aab031e9f3216501e2a08dedfdd7d67a89889304b79a46a9c1320d7e77c028d6	19.35%
2023-05-31	doc_F849_May_30.zip	zip	6438aa59de9a298f8b3db0a435e559249042c55da81017b98a352c4ee294b3d7	17.74%	Quakbot
2023-05-31	doc_A461_May_30.zip	zip	ca485ac0931ac7e8216d6517a00349d8eed0b2611bd6e5899f5d952486208660	20.97%	Quakbot
2023-05-30	doc_D034_May_30.zip	zip	1bb82e8726dea297bbf2b9c63f65b057661fe7ff839167c7edfe208604e12c90	17.74%	Quakbot
2023-05-30	doc_D761_May_30.zip	zip	9321f113c9248e8a01dcd9547ae7b5160c10de0669d2ffab1ceaa3a5be533a00	18.03%	Quakbot
2023-05-30	doc_A560_May_30.zip	zip	3e8bd8c4254e4259785b9e37bcb9a86ac95e3015b37fc99464a7fe200f43f376	n/a	Quakbot