URLhaus Database

You are currently viewing the URLhaus database entry for https://slotgacormania.com/rs/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2659263
URL: https://slotgacormania.com/rs/
URL Status:Offline
Host: slotgacormania.com
Date added:2023-06-13 16:33:22 UTC
Last online:2023-06-15 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-13 16:34:35 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 0 hours, 6 minutes Poor (down since 2023-06-15 16:41:26 UTC)
Tags:BB32 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-15document_BE201_Jun_15.zipzip 3a29fda2356a1b67b775ef538667889559651a987e020ec5371550d365486798Virustotal results 6.45% 
2023-06-15document_CB315_Jun_15.zipzip f64abad8460b43ab4d3de9fda51a9cf5f12d601e2fc31ce5a86a30185f8eb457Virustotal results 6.45% Quakbot
2023-06-15document_BF380_Jun_15.zipzip 5d0cc77ffb8e02ae7e8cb5a93170ae1fcf723b562ab572e3246e2d6218ddd060n/a Quakbot
2023-06-15fz7dn1iKO0FEy.jsjs 50e462b63767802685783b47a25720da437bbb6c9acd42374b05524db7de9c4en/a Quakbot
2023-06-151eay1YhyEhyf6f.jsjs 9a10ddf81abf18d84188a731cc038d7505998d6798e3aff5160cf1348f8cf0d0n/a Quakbot
2023-06-15qeb0F7NOLWEsjY.jsjs 29b79a77ec250ad891d85d563a6688462ec205665b90388c06fcbba663136fa6n/a 
2023-06-15y2K8D0zEJ0K1.jsjs 71bdcfc4e5d0a656618d24c89c5b7634e4d07d6925c4fb316065e7c019b640e9Virustotal results 8.47% Quakbot
2023-06-147lG7E0nprRbqDy.jsjs ce7c9ac0fc0ac65a166267839f6a5d9949f72de7ba392baab9de6b4e8fe48ddbVirustotal results 0.00% Quakbot
2023-06-14QnPMpqqdkGCm.jsjs 8c6e2232e4b5944a29f29981f40495dbfcbc4a457766c7e66357ec6333dfe8e1Virustotal results 15.25% Quakbot
2023-06-146tH1MpASS98g.jsjs 520ec931cd246bf7da06ca8170b5851275ab5db18d098d181ba73a19287181f7n/a Quakbot
2023-06-147rIGvz0DbJBp.jsjs 55d7f4a1995a96cfa3a5495b30ee800d1beff100e2e40da102880198225c4b89Virustotal results 16.95% Quakbot
2023-06-14o6J4ni3Vw8VU.jsjs f500f8c4fa0d5c6a32fb058c2934384cf20c94f8ab36fd9e28a177efa41ab4e1Virustotal results 1.69% 
2023-06-145x5GXce4rxIQ.jsjs 18586a9d694fb77bb4a0afede289c35ff33b6a25628e603288993191760cafe1Virustotal results 1.69% Quakbot
2023-06-14bQXzB3HZtq5ZcF.jsjs 2822b52eac93cfb96273c9db5be40c8ec47f07e64de27ce116f4f024169ee82cVirustotal results 0.00% Quakbot
2023-06-14bJQrQIPQrhCO.jsjs f3c89b57ec700157818293b4ab3cc6998e1cc99bce9e06431180baed8e8f8333Virustotal results 0.00%Quakbot
2023-06-14Pmp48RAtNdcvRK.jsjs b0234d241c2e2947f7b6e107c8a00868e98cfa15f4dc4cb91dcba8122c3520cbVirustotal results 15.25% 
2023-06-14DOwnePBYmjpf.jsjs d1d86bc8c4b7b5b439b81526da3587affca593de26bc275b93a7ead4976ef1d1n/a Quakbot
2023-06-14poJheMfObN3ZL.jsjs 452928a08c9474e6ffe308a9952ee43ff38c8a8fcec9f14b1cd8dc5c10c9d26fVirustotal results 15.25% 
2023-06-14e1JX17pDt8UYTk.jsjs 95dcc193fb525ee98badcd4cef7d491bb44e80d4c770e638021c50615550d05cVirustotal results 0.00% Quakbot
2023-06-14uQ2TFNzOMgl7D.jsjs 5c4e49c1977a1a6350d56c77e09bf00d527cf459ffc47c665697c3cf349bf90aVirustotal results 1.69% Quakbot
2023-06-14aCUz5bqbc2cL2.jsjs d3f7132a2ad6670bacbf9660f313c6c914fe09fc762a859e302bd75dc4a62bc3Virustotal results 0.00%
2023-06-14IhcAwi6yaFyuk.jsjs 199f8075ae65ab51a377fc39b0009f4d371d893da6d4e66bbb2cbec5219d05ceVirustotal results 0.00% Quakbot
2023-06-13glNkUO81BxIZO.jsjs 2c0314076f91587df56b869725ec51994647a749840e798ee26427017bcd23afVirustotal results 15.25% Quakbot
2023-06-13yjwnO8plHctrTv.jsjs e0355038a04f6d0516e4adca7ee00d81530315a8f2d4c55b684f21e8ccbb8506n/a Quakbot
2023-06-13jEACfOmWSAdGEr.jsjs c6b4767af4977fbaa9c568a5647ec17d3fb56ccd5d7e042eec576ea7e2af954cVirustotal results 15.25% Quakbot
2023-06-13T6uLNJLhYsIH.jsjs 1b51b8063a026dbefcdb1f41c988303956a34ca1bfe8b09e9f8eb8a8bd2b0905Virustotal results 0.00%Quakbot
2023-06-13V5el71V1T5vhIW.jsjs 49b920eb57e11d1a6313d186251a42fbf079640ac076bd6335b055da0ebf7db5n/a 
2023-06-1322n319Lazhjmm.jsjs e0d2a5fd5ce6fb0eef6018cf0f38457d0c52febe5242dad043f3036642ae1e93n/a