URLhaus Database

You are currently viewing the URLhaus database entry for https://shadowline.com.tr/sae/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2659356
URL: https://shadowline.com.tr/sae/
URL Status:Offline
Host: shadowline.com.tr
Date added:2023-06-13 17:52:15 UTC
Last online:2023-06-15 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-13 17:53:33 UTC to abuse{at}trdns[dot]com)
Takedown time:1 day, 21 hours, 57 minutes Poor (down since 2023-06-15 15:51:10 UTC)
Tags:BB32 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-15document_FA106_Jun_15.zipzip 90d7722c5c2f53b7a22e21bb3e63d90a1878c4d09e2829e2cf2492fac58d7172Virustotal results 6.45% Quakbot
2023-06-15document_EC876_Jun_15.zipzip 71e99af8b6e00ede47e207282aa72deb7c4e39c77f11fd12941593b92495736cVirustotal results 6.45% 
2023-06-15document_FB702_Jun_15.zipzip 74df1995dbb36c127f009430c56ab01364371503893eeed171f803b0f1ae5886Virustotal results 6.45% 
2023-06-158TPA06ueq6Mo.jsjs 5bbfe077bbbeee1245fccfe1c2dd22be3e57c0f67c939173a1faa371e9d20b93Virustotal results 13.56% Quakbot
2023-06-156mq8AjGnUO2Qj.jsjs c144bfdc7de74a33ae9a94532ba9a5daac13bc8792847613f663f442ebf670c7n/a 
2023-06-15yPjkzrlqF7i9Yh.jsjs ca44db05e3e01276c436eb4a30c6568d2a7c54467a0f93b7d68245a268c9b04fn/a Quakbot
2023-06-15tqcgs3g9rM50.jsjs 046e40d374c8e2a2147806a22e3efff9357a8551c53a66173eb8a732696450b8Virustotal results 0.00% Quakbot
2023-06-14W09EAeMy7FFm.jsjs d449cb3ea0e30be359e5838805fd718b0c7e8dcb118f43d4a854e7ffaa2fdb4eVirustotal results 0.00% Quakbot
2023-06-14aoDBHjqwBbgTB.jsjs 5e0e24ff0409d3ed63e77de71772e8cb11551d877bf3ea4cadf50a400a0153e2n/a Quakbot
2023-06-141anpuc37gv9EG.jsjs 039e7c5b7c0d8d48d2a512c2e3fd77d4ae3ab204502d2032b445a276da991018n/a 
2023-06-14abRPqOJokQcesk.jsjs 4e8982e4947c150330946006c0127fadaa61218145f6f113bfdaa965458924a9Virustotal results 2.13%Quakbot
2023-06-14Ykx2d2RHL3Ckeb.jsjs 518bd813c077206e330fe7abf815319c60311bee93ab5a5ed776f1fefa9ff8d1Virustotal results 0.00% Quakbot
2023-06-14Cp4ECCgsDjN57N.jsjs ab3ee208c8e814624373b2b8603de9eba883eae6403526b3fb7f0ec78be6e6e3n/a Quakbot
2023-06-14LaVw19xNZ26noN.jsjs 32bfa79c01a1407a4197982364340603a7d06cee692fe4d8db9d89e1accba9d5Virustotal results 0.00% Quakbot
2023-06-14Opz5RNVKnrS86.jsjs e68554a95cdf461f6691aa1c71be49677f938229e88a9f4e74b66fb04d81e6a0Virustotal results 15.25% Quakbot
2023-06-14NkjEK3pV0gdSS.jsjs a29e6a9e9c53aa408ad61177a73547ecd467f52cc238367f9ad7f2ad5f5a9313Virustotal results 16.95% Quakbot
2023-06-14G660o4zgVRQ8Ms.jsjs 546d0682160e14db0b175917feadd9324fe9de892586d92a051a0fb7fad00079Virustotal results 0.00% Quakbot
2023-06-14I6Ayegc8tc5Mv.jsjs 675c342a1af08dc069a293b257048b4d2b9d06a88b3d1e41d2f91e95f53b5ee9Virustotal results 0.00% Quakbot
2023-06-14cSnaeh4qLDCgsd.jsjs 376afcd300ff145b0bc7977fd15c1cdab89027aee13f3ff6090a46d6d722c7d3n/a Quakbot
2023-06-14YtLn6Ctai99v.jsjs e83b6b0ead3287fd0bf7919e1d5bff3813358bd73e9b5748dbb7f0007f1fb04fVirustotal results 0.00% Quakbot
2023-06-14WHtlC60PAY5NvF.jsjs 7074ff624519388df3fce38a20a1ce34aad2d8b620c5e61c13b7443ebd572b7eVirustotal results 0.00%Quakbot
2023-06-14UbwII8oqMneOk.jsjs 77c675434a968c42c4c87fff76bec73a3d698bacb2a311dd9c90754ff2c0d0b8Virustotal results 15.25% Quakbot
2023-06-13plN8vhzXlLAw.jsjs 57ced807ed0b808f86d5038dfce4c393fda85af6b8ddd5b952608bff0cb90973Virustotal results 15.25% Quakbot
2023-06-13JhAxqGz5OxLW7.jsjs f666a788127bf2f9889af7487b05343a3bd70aac5e1422f3d072c6c7a2f5f1ebVirustotal results 0.00% Quakbot
2023-06-13E263XupW7CT9m.jsjs c40520f70261e62c168b4cd47816b110db840917d8212fbe62c787a40ad159d8n/a Quakbot
2023-06-13rSvE2bEBC5lx9.jsjs 2f48117178c372504ce4f5b8cd3617f09a52334e9758a3d0c2ea4893e8c1c665n/a 
2023-06-13Fq9BTxqpyv7HuP.jsjs 7d4299e46bc9c986cbe4daed9a9d8b7dda2879e4204d6192fb8c57bb83dc52c3n/a