URLhaus Database

You are currently viewing the URLhaus database entry for https://macbahawalpur.com/iism/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2659281
URL: https://macbahawalpur.com/iism/
URL Status:Offline
Host: macbahawalpur.com
Date added:2023-06-13 16:33:30 UTC
Last online:2023-06-15 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-13 16:34:26 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:2 days, 0 hours, 27 minutes Poor (down since 2023-06-15 17:01:31 UTC)
Tags:BB32 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-15document_EF746_Jun_15.zipzip 4b4875983327cdba73fc3510038c49be29061cbe57854ddeb3a7f32e66252991Virustotal results 8.06% Quakbot
2023-06-15document_CD014_Jun_15.zipzip ffd0dfeafee8c0501b4b86450ff2553c6cfdea20bfa888e5bfe99bdabb989212n/a Quakbot
2023-06-15document_EF279_Jun_15.zipzip 546ec415e3aebb3a093b9a36ffd16079e522c041294c62000f36698227eb40a0n/a Quakbot
2023-06-15document_AF724_Jun_15.zipzip c767d752a98bebc6da45ea313ae1b3757901ad013a9fc455d4777fed60b980b4n/a 
2023-06-15RPmS9boLMpRkFW.jsjs 615a722632d08ee7f9f695c56551c9647f66d6ccbd0845815c23d8856d648cd8n/a Quakbot
2023-06-15Zq5UPiVB0UAcFT.jsjs c419e2d5f988ce9e1eeb8cb81adb465a58b5f608c2e8dcd789e49d8a70184bb5n/a Quakbot
2023-06-158RUyXrqCAv7qxL.jsjs d23a1a4f406df5b449ba2639810c63a7d72bca741ebd5ef204d38262fcd6e46en/a 
2023-06-153Trp5spC85H6OX.jsjs 2e0e38430c1decf4a6cbc4a56083f21d37b2c5fbdc93d427edae7720d9ddc0d8n/a 
2023-06-14hElNbSfdQlfF.jsjs 592b21e6f85359faaacef7aab8a33811f98fb928f3f4c818df7f6e4d451ad14dn/a Quakbot
2023-06-14g0MhDEuOoTCer.jsjs 7410c4718c9aeffb5071a6798425a6e9f0b4a5cccbe40acba19e106965126cd3n/a Quakbot
2023-06-14docu_BD834_Jun_14.zipzip da706e9017105fbe6721d9ae60365558edb6be2b4677c35d6bed6d9ee7dc4fc4n/a Quakbot
2023-06-14wAh5rO7ohOU3.jsjs ddd66933c7a9c246e2307d90c518a98d66cea7abc1da9e607bc7fa7d271a9ae2Virustotal results 1.69% Quakbot
2023-06-14t2n2ODUHk7Lr.jsjs 10fc5f940ccf6de1541568b1e647577528c326344c22363ac7fb2f97e964afd3Virustotal results 0.00% 
2023-06-14GhitF81q7YeWF.jsjs 2a1bbcde81a54fe5156996dc4b1413716e50c42e6ff7c2f02d5f3ca3c67ba4d2Virustotal results 0.00% Quakbot
2023-06-14MMKLBwNpLQosm.jsjs 05cd4ac170866fa3f1452d4dea305eea00fc726b97a8d13512b6a48a27a05c92Virustotal results 1.72% Quakbot
2023-06-14sL525ZOVSkCv1.jsjs 9df95efbc4e258fa1d2b4b3bb15abaebd1044a1c52aaaf506457523a40fe9a13Virustotal results 16.95% 
2023-06-148VpSVwG5bxsZ.jsjs 0832f23bd02654a2758d61bbf459aec0db54c305bfdfe9b01276cbfe701c5e31Virustotal results 15.25% Quakbot
2023-06-14L9zLS3kG2hRVF9.jsjs a65d05999b9e84c699e8cce7c926554e78a0d71daa1acb64ed8fe4e344a67f40n/a Quakbot
2023-06-145NHMA6NSpeODF.jsjs 443a4858bb97867d5cd71cf4bd4fa72fd89ead7f2a7c7c54cb88492000166886Virustotal results 0.00% 
2023-06-145DI481JSQoMcs9.jsjs 4afdccb81dc19c7e07d908fa69535271c1aac8f2055330b490c3e1803d1da3f8Virustotal results 0.00% Quakbot
2023-06-14s8Qr4NnSLDwH.jsjs 3922d1b1d955cbeb3e393a4e1df563935c55fe5f545938c5a1db1a821a3c2b54Virustotal results 0.00% Quakbot
2023-06-14GtNP8bGenj6cq.jsjs 3f4e92891bd95d21afd010216b510a9854089bf33da969004131aacfb4157767Virustotal results 0.00% Quakbot
2023-06-13QfpFkvvNhO7S.jsjs 457a814a86507539b3cba66c89ffef0fc5a9368981ef445f27813ccb05f2743bVirustotal results 0.00%
2023-06-13oZhWiM2lNRCdN.jsjs 8fc167cc73d786af01b05a9fd666d2c6f1d30876de212c419cabb127bb8166e1Virustotal results 15.25% Quakbot
2023-06-13UMCcwr2a6Rvz.jsjs 1b64c00768c6add77bc652b656bb85be65d2b30e8af0bbb96515146e20b6e9c6n/aQuakbot
2023-06-138uciwUJVhSAwIT.jsjs 045d32ff53f0c9151824d2dd6179dae546a81d95f3b862f9244a4c2f8b91e9e1n/a Quakbot
2023-06-13GWUBoiY6MFbss.jsjs 1228dcae8982bb3a8c2978af61a7368aa51cf155b7dd0a41281db56fe7042e71n/a Quakbot
2023-06-135bYZUm8mbxW9.jsjs 0938ff83e25f07fbe63f7c8e04a4d50995e5314b0b34876ca203048489c02bb9n/a