URLhaus Database

You are currently viewing the URLhaus database entry for https://cafedonanton.com/ud/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2659312
URL: https://cafedonanton.com/ud/?1
URL Status:Offline
Host: cafedonanton.com
Date added:2023-06-13 16:37:15 UTC
Last online:2023-06-15 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-13 16:38:29 UTC to abuse{at}quadranet[dot]com)
Takedown time:1 day, 23 hours, 20 minutes Poor (down since 2023-06-15 15:59:28 UTC)
Tags:BB32 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-15document_DF982_Jun_15.zipzip 5ab9f9697325c65c54b9f5b8a7e3e3c78ce8d14f66d75bd9de01a5d6e0a198dcn/a 
2023-06-15document_BA327_Jun_15.zipzip d8a16637ad55f6c4abfb0c9bcb0f32c080f61ab0a92a33a7ad5f7be7549ddc79n/a Quakbot
2023-06-15D1GWk5gGENJlKX.jsjs 545b1725a54d90344d9b9096d02793f8143028e3ae3d359fb45b2a9e0a617948Virustotal results 13.56% Quakbot
2023-06-15UBAXHNgFGrTXBD.jsjs 24086114f7c564a23e400bcd9ddfea9d788fa601bb16ff8c85cdf17e69033820n/a Quakbot
2023-06-15wPSHpDToI77U.jsjs 5df9007e7f84e15fad8092c19844788dd1e6d81a4a9d1a9b0096b2b76d5dc280Virustotal results 0.00% Quakbot
2023-06-15YXqEnoLW4pxR.jsjs e2ab9ef6c5941578856384b69469b47eaf77d88809c7c65747426328a99c1a8eVirustotal results 6.78% Quakbot
2023-06-15uS5IFH1rvhCn2.jsjs b6d4b574087db12840c43ec7813408d628fc5db1c342b2ac0a6fd0fca80df469Virustotal results 8.47% Quakbot
2023-06-14aocJJ04J7i29T.jsjs f151873cdb5b7c094893282019dc474a0862791e65a667cb6075670f52f6b28en/a Quakbot
2023-06-14SrBLxeeA3VOn.jsjs 17123848416875036b03242f87ae3c2e6d033e75e8a156d552adfe31f2ac5cdfn/a 
2023-06-14docu_AD517_Jun_14.zipzip 1d9eae45e40581c324acf2277a820c6cc8e08bee81e8c3162e58854e549ad66dn/a Quakbot
2023-06-14pzcCP2QOC0eby.jsjs 85f804697b22bbda35734f6c1ba9102adb75e56c4aedef9d636b052dc0c9bb85Virustotal results 1.69% Quakbot
2023-06-14Cayo5pTo4b98.jsjs bf1521a3ec608512bfd3342d16e8c7392aa729827eaae6d681d4285a0dd764dbVirustotal results 0.00% Quakbot
2023-06-14LkOah4ZXvdS0Ur.jsjs c8c692255b433f79008d463eadba1850ab6cb484f32b787a318d3984d1740705Virustotal results 15.25% Quakbot
2023-06-145NHMA6NSpeODF.jsjs 443a4858bb97867d5cd71cf4bd4fa72fd89ead7f2a7c7c54cb88492000166886Virustotal results 0.00% 
2023-06-14ZU6X7uFnLfON.jsjs 08fcba4bd4294f71d9703bdfde10ef905083c55eb4288959983ed7e7dd2b0d18Virustotal results 0.00%Quakbot
2023-06-14pnN7C2o8VV388.jsjs 29b67f2885001171080aa13fc929031085f0b8ef1753fd9b82a5ed9010339816Virustotal results 1.69% 
2023-06-14qAwcmLsVnMHF.jsjs 37ca56a41ba3eaa4a33a8522caf8f9dac77bf9b55a1ae1a088674c9292415866Virustotal results 0.00% 
2023-06-14oiMuctvXJapx.jsjs ab858f0e420f7848eaf0c15ab5decc4579993887e42de9758a2f4c2b036ee1d0Virustotal results 15.25% 
2023-06-14Va1qyZOPQuov.jsjs 138d7d932fe10069e86f4f4ef46f4b9a2a9553c103eccdd6187d176149558ec4Virustotal results 0.00% Quakbot
2023-06-14YtwAqoWz18aYX4.jsjs 8ee6d32025b0548e4ed6e55479f139e1fc07b9934ca1f80c870d8f714c7883a8Virustotal results 15.25%
2023-06-14pTFPZOSoDBBB3N.jsjs 97b8f8aef147e3696e5194b6abdff9c9510500daa8058716b037c4fcc352c0d0Virustotal results 0.00% Quakbot
2023-06-13UQ46xmObp5dJgS.jsjs 9188f52e0786097d39407a4a95da624c737a2482bf2c891f9082d21e61f2e5ean/aQuakbot
2023-06-13bZfEmjWWBWJ1.jsjs d7b1e48ae41a058f62dcb7265efb89aa1016ef57e1697ca1de31974b3a6d6473Virustotal results 0.00% Quakbot
2023-06-13CbFJnkw6DZYnA.jsjs 274e5f57fbd293f8cadfdef9c923ef6989211cc5549458be078f804e4758996dn/a Quakbot
2023-06-13RMdBoYMV4lt8.jsjs af421ce80f44c8aa9ee3baa364b9e4b541e48198fe96894b39f62297eebf1427n/a Quakbot
2023-06-13UBcxJSgiGYslii.jsjs 1e714f8c24367068cfb8eafaa93258baf9e3ec77ab4c1b44027a4c4a8ad168b7n/a Quakbot
2023-06-13LBQlYruSYxo39.jsjs 5201181776f90bcadf9f10aa6db42f4fa9288129ea63fcfe5aca875494f433een/a Quakbot