URLhaus Database

You are currently viewing the URLhaus database entry for https://case-sa.org/ene/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2659313
URL: https://case-sa.org/ene/?1
URL Status:Offline
Host: case-sa.org
Date added:2023-06-13 16:37:15 UTC
Last online:2023-06-15 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-13 16:38:30 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:1 day, 21 hours, 10 minutes Poor (down since 2023-06-15 13:49:27 UTC)
Tags:BB32 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-155bFm571VFquSm.jsjs eb3693038ee74d901bb3b4c110baedf22b090ffa6fa033be5e82ba4242db2f64Virustotal results 13.56% Quakbot
2023-06-15Cv5fYdjK5m1kNH.jsjs 10e28eda9e17673d9a06e77d1e652d543ae6ef5fd85b90f332f3069dc1b85d5dn/a Quakbot
2023-06-15eScsokbyl5dB.jsjs 696a8ef90e0202a3966b497a8f1ae821f85404fcfdafd1a70ff4669da16dc08cVirustotal results 16.95% Quakbot
2023-06-15CBoExdNRD3daJ.jsjs 1fd9f8bad73ab4aaa6dd0e604731f19441af3009ce97595a27a8a4aac354d760Virustotal results 8.47% Quakbot
2023-06-15s5AQWNI73HFm.jsjs eebdc95635d3ebe1858f89d7eb3fd8194f3e53611150c051c1feb6aea1bfc76en/a 
2023-06-14tmF26j6OpMxsNU.jsjs 57541785689a03a75b670214c5393ed3243540e8d5f778fd82370a7d7219b9d9n/a Quakbot
2023-06-14docu_FC967_Jun_14.zipzip 352d06d6cc85cba14fdb7c438dea26f35111eebc8b5c2c702e6713f5495126f1n/a Quakbot
2023-06-14OU7DaQPhbRfj.jsjs 560a5ab4cce6e9d0734472d58f8bf3852a5298769bfed40509ac71dab225d411Virustotal results 15.25%Quakbot
2023-06-14RxC3EZPRgOOUA.jsjs fce346ef00b16381bb4a419671d8c9d2ba9ebfcf2e33f7656cc401d821acc06cVirustotal results 0.00%Quakbot
2023-06-14IBD1JLzh9ynfe.jsjs 4bdeaa4a52d4543ee914c548930c2eccdd81c411bc1adc6525fe66cd9a8a026aVirustotal results 15.25% Quakbot
2023-06-14hau7AToIbdSy.jsjs 062edfbf6d57086795b7bf9a676e1b132149f1671fb001b110186a73c1a911fcVirustotal results 1.85% Quakbot
2023-06-14BxIqeiILZAnwhJ.jsjs ef81c6dabbca977072412b84e9fc55918ae8dd802ad2919d06133a39faf54fa3Virustotal results 0.00% 
2023-06-14Zf9XEL6Je2Vd.jsjs b0a4887bd2cc2532abbfc931767cd93fc025b0d06f89e99ff2dd90e48830dce6Virustotal results 0.00%Quakbot
2023-06-14STk4TfpanD9A.jsjs 97e82f3e15cc3e22b263a32382e925ca0b80ec40ff3d7ce92fd48a253b12a9b6Virustotal results 0.00% Quakbot
2023-06-14N3E018uwqEpmDC.jsjs 5eadbaf9a14ce37156d68b2a4068c573dcde1a0051b22ace7bcf46c3b849c856n/a 
2023-06-14KIOdUV4xfNHHGK.jsjs f7f7097e102febeaa9a5ff4c8b95a9b7033a3444fc682726ebfb7d7a5395bb58Virustotal results 15.25% Quakbot
2023-06-142Ld6UTiEEsoR.jsjs c68be9349047d743f4cfb1a611b2fe8e178211a43418d42f07c9c8c26553c4f5Virustotal results 0.00% Quakbot
2023-06-14Sjeq7vH8HEmx.jsjs 155edabd201cd66924836287c83f653e09c7ced1cbd3af8084eb9bfad9680d0cVirustotal results 15.25% Quakbot
2023-06-14GydMf1FaNMbCP.jsjs bbfb0ba41ca93c14c1ce9a65464fbee472fb0f2eab52dc47eac07d2ff59ed4b2Virustotal results 15.25% Quakbot
2023-06-13SPb8UrQBOpqa.jsjs ee47b766419e507c8c752c990c15be77ae864e768e79d5ffdb12fffb8104547bn/a Quakbot
2023-06-13eozfQ66pGEjjz.jsjs 0e00ded5f9ad6662d955770f086ae1ed52d0eaac9375c87f9ca0e2d2ed2145cbVirustotal results 0.00%Quakbot
2023-06-132vYVj3ZH8oC2z.jsjs 8b9e0246b8885c915a4b0f7e1a2b4dc12814de55b4bc2295f5942b9607275fedVirustotal results 0.00% 
2023-06-13mbJNNKlDxVu7.jsjs b59325af83b35ffb7e6e9ee9ed503fb027ceee09ecab61fc72d588e8a9c0fe4eVirustotal results 15.25% Quakbot
2023-06-13vOegEGGkfBgu.jsjs 3379770876b5688b733c5dad07c5af57b653cc2f8d3b5c90c4ccf920c5fde51fn/a 
2023-06-13LLKmzFpHxfWK.jsjs 9a370a53720d5f83c499ec56cf131a9e80a73aff32a07a4c916000878f182ae7n/a Quakbot