URLhaus Database

You are currently viewing the URLhaus database entry for https://uniformesmedicosmexicali.com/otna/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2659253
URL: https://uniformesmedicosmexicali.com/otna/
URL Status:Offline
Host: uniformesmedicosmexicali.com
Date added:2023-06-13 16:33:17 UTC
Last online:2023-06-15 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-13 16:34:27 UTC to abuse{at}bluehost[dot]com)
Takedown time:1 day, 23 hours, 37 minutes Poor (down since 2023-06-15 16:11:39 UTC)
Tags:BB32 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-15document_AC673_Jun_15.zipzip b84dce5e55c1c7f545bfb8310f09ae02aea8c8904f1266ca40f207fad806861en/a Quakbot
2023-06-15document_AE743_Jun_15.zipzip 742ddaa6b7f2c7f69c84557a1d88b1eae1fb35f41c11213dd58ade0fcf8759c4n/a Quakbot
2023-06-15document_DC469_Jun_15.zipzip d35d11b89d92f900a2ae052a64eaaf59b31d97795c03275578f54e8291ce5c0fn/a Quakbot
2023-06-15HkbaOlwS2uWo.jsjs ca8c1abc458cdcf8daa1a8a945ffd1e8fbb814af27bc6d7e664e441c89e75ad6Virustotal results 13.56% Quakbot
2023-06-15oPsM96DeRwU3G.jsjs 71d90bdded388fea094f04f9bf1c780ce62006f191efb993c714656621e3be36n/a Quakbot
2023-06-15DxjhZMPaJBWNo.jsjs 4b7b3c57691a57916b190e5cfead5d3d7c7a1ddef9b252dc4958a17a5fa694c1Virustotal results 5.08% Quakbot
2023-06-15CdhFpctuPL6U.jsjs ea7ebf8c1b9a07429fd08ef44323ff84ab9c5558b5bcc9ba416f18bf91baf8a2Virustotal results 8.47% Quakbot
2023-06-159omeqZ1Jr9kA.jsjs 3d638b43addb58fad3762aacfb822b5c3cc9c28f5d76ebf1dd81c9e7309d54eaVirustotal results 0.00% Quakbot
2023-06-14XpmNnlR3auujVe.jsjs 8c74a8655f51b74e88ad71e883e5d255f782223200c5fe3e3fea8765f3d3c63fn/a Quakbot
2023-06-14docu_EB415_Jun_14.zipzip 0cb4fb7c699b515356c6d36ee5284a4a57a72c2f85c8fa3bf5eb5541b30962e3n/a Quakbot
2023-06-14dUQ2mbCf8kLSXY.jsjs e30c2be9295185b257fc75b5050ecf6f90c6e4df293b4bc0abeb3f2955f0afeaVirustotal results 1.69%Quakbot
2023-06-14zvOk79GM7Ib67.jsjs e54de6391dc3d071895ce3b79273e61dccfbffb8d7584f04399258601d5ee4b6Virustotal results 1.69% Quakbot
2023-06-14uqcQj3FzRwMW.jsjs 4361924f83937cbc2c909d1cff503b72eda3e2574e3382e00be549fe31f5295bVirustotal results 0.00% Quakbot
2023-06-14eriOF7tJmkQjB.jsjs 62425ee91a39bbf3e27e00b2de9c4f744bd0acf61268fec06c642e4a2ae7b97cVirustotal results 0.00%
2023-06-14U6MSn9rXAJqI.jsjs 54ad7bc778ce3705b7ac15f9b97d5772ba4c4cc997ca79f3b8f510f7ffd01e3cVirustotal results 0.00%Quakbot
2023-06-14Pj6paojrpYgJGq.jsjs 927e7e809a5fb07c15e72b7f831550d5e4af6be4bbe85f2832b46619798178e9n/aQuakbot
2023-06-14052EdZ6QZW4CA9.jsjs ace189f15cf0a9d4524c9807a5c89842103e12be060ea33e270b0ae5c4c36d53Virustotal results 15.25% 
2023-06-140zB86c1Yw2yze.jsjs de5d5e81e6960f9dd9d6c161de7982eb4502e1bd04a6e671274c76520fd5f5fcVirustotal results 0.00% Quakbot
2023-06-14vIT9FOJc3UNX.jsjs c79c21ecbfb04a2f9a6e478b4d22aaec0ce38c37390fbb4d6f2b0eddbad7904aVirustotal results 0.00% Quakbot
2023-06-14Ur84YMWTFeHW9.jsjs 10bdbeb8894f821afeec68f1262a65a9b7513d8fcda6407f64377dd0adc00b51Virustotal results 0.00%Quakbot
2023-06-14VQcIIfuRUCWi.jsjs 8ded2bf481dcb500a9a9b7bf938df6aed877f9d4bfe2566a4539198bf56ff3ddVirustotal results 0.00% Quakbot
2023-06-139fcLufB1LVWoj8.jsjs 6e9a243e03c14c6bf4a1eb893cefc20b2399519d2c7185f2ce0f99c28916a25eVirustotal results 15.25% Quakbot
2023-06-13ky0scrKj8sFCx.jsjs 20c4fe799af91d4072738c198df0e40dc2ab4b336c2faf9bcbef95ff28de80a0n/a Quakbot
2023-06-13ylNVaoQqDNs7z7.jsjs 08fd3761a732d0249b69a9ea9d8edd1aec14af6470ae555b13fb27d9d181c831Virustotal results 15.25% 
2023-06-13pmYsKxbLJTrT.jsjs bfb3e8954363622f7de1399979a59dcae5d8d82e4704138f4cdc3f6b51cf14a9n/a Quakbot
2023-06-13YtLn6Ctai99v.jsjs e83b6b0ead3287fd0bf7919e1d5bff3813358bd73e9b5748dbb7f0007f1fb04fn/a Quakbot
2023-06-13Va1qyZOPQuov.jsjs 138d7d932fe10069e86f4f4ef46f4b9a2a9553c103eccdd6187d176149558ec4n/a Quakbot
2023-06-133IwI8tMbfb15.jsjs d66e6629f1d28350cc621b2443cb2a93bada19452a73eee181a6ab60738e2633n/a Quakbot