URLhaus Database

You are currently viewing the URLhaus database entry for https://freewebdesign.web.tr/hro/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2659403
URL: https://freewebdesign.web.tr/hro/
URL Status:Offline
Host: freewebdesign.web.tr
Date added:2023-06-13 17:52:31 UTC
Last online:2023-06-15 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-13 17:54:26 UTC to abuse{at}myloc[dot]de)
Takedown time:1 day, 22 hours, 48 minutes Poor (down since 2023-06-15 16:43:21 UTC)
Tags:BB32 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-15document_BA297_Jun_15.zipzip 850faffacf255d37f6721f3ed22843ca7176089bda8f3105c78e40e958c910f9Virustotal results 6.45% 
2023-06-15document_EA172_Jun_15.zipzip 489b6812a92b0d9ca9d3108ba5bef842848c40bbe2dcd0231473a4206e534998Virustotal results 6.45% Quakbot
2023-06-15document_EF786_Jun_15.zipzip f312320e8347b5b12105cb26803f072f2d110b88caef89bdbbdac48807088681n/a Quakbot
2023-06-15xSJkrO256x8uzR.jsjs bd1fe2324eff64c4d3eaca902d12611640e11559618a6ce12cb5e33a76d31efeVirustotal results 13.56% Quakbot
2023-06-15uhzShVLaDkifiS.jsjs 92a7db24a83986871942281c001725a014ef0bd0b6620da5f4f5572635a2c3c5n/a Quakbot
2023-06-15PIuS8JehrpmZ.jsjs 89eaebd9fc514da9016eb7cb5eb2d027defd1c71ced4a64f650e2af7a8974356Virustotal results 20.34% Quakbot
2023-06-1522laPeHEqU79.jsjs f9785ae0225d3ab5cf172602ad9f66ae945217ee8b128a43fab87c589efc04aen/a 
2023-06-15IqJEPdFqsT269.jsjs 33dda8d7f3dc7abde925beb856e93c8d4570200e9bd76c4c688760683561d498Virustotal results 0.00% Quakbot
2023-06-14JBDeZxMJspXYwL.jsjs 31e14c5360537a9712af024b26d93a7e0125b0bbb06f99f11f2cb1e2f346b8bcn/a Quakbot
2023-06-14h0qeDgzQCUQt.jsjs 66fe8ef97658446966a16f5643a76ec22329385940e7320ebd51c74d4e75c3c7n/a Quakbot
2023-06-14SzQ6cWdqqpY4.jsjs 7d4e226a744ca78d2895a97321cbd94d70ee10a78295dd01040e4ac7023db936n/a Quakbot
2023-06-14VAVPmIHCNaKTV.jsjs 0975c3c93b7f70c773fb13060f63c8d1435081c5dbd2c9f5a7d1abd4eaebafa8Virustotal results 0.00% Quakbot
2023-06-14vDL6teN4VlbTYq.jsjs aaf94ddc2eb26c8160e8b0da2419b1d74b3e1528ff553e8db465403f595ed2d2Virustotal results 1.69% Quakbot
2023-06-14ztxkmHREnyRmNN.jsjs e84c09d55fa1d242e6e3bb0a5f0e8667f5ba97c118b316bae16e64e2d6cc53f1Virustotal results 1.72% Quakbot
2023-06-14xKXJRgd6sRv6.jsjs f3610868f2d9cc100f7e1eaff98b6fd93c33283dbee08170b747fd9c48cf7facVirustotal results 0.00% Quakbot
2023-06-14Hss8Dm2Zis2Gs.jsjs 6e86f26862c886b01d7e28e34077d50ee7d167a4a5925ad9932469d5b12f2622Virustotal results 0.00% Quakbot
2023-06-14p6GW5N6nxRD5v.jsjs 9dc959ee18bb50add173d7d7579787e090cb0994ea7fce829fe2862f3d54ee2bVirustotal results 0.00% Quakbot
2023-06-14VWUu24oLRH7sz.jsjs 7655dca0c6b6e1f781e4093ea11a0fcd61bded9b40d8fcfce85aa4ee3c360929Virustotal results 0.00%Quakbot
2023-06-14p6Qyi723hMWX.jsjs 56e5d6b72e197e9cef7b8d42b87f8e79bed17613daa4acfe8f8fcf3260733cbaVirustotal results 16.95% Quakbot
2023-06-14Rkg6rH7Om5etC.jsjs 80e6c857b2da90fff6bc93c3ccd0eb77d2d1b9ddc2348d354cf69fb09905d277n/a Quakbot
2023-06-14VSVpARyN3cztLX.jsjs ab548b135d975073153ac01adbb7a92eba6c9f4f6afde5f553b55e158ad524ebVirustotal results 0.00% 
2023-06-14bQXzB3HZtq5ZcF.jsjs 2822b52eac93cfb96273c9db5be40c8ec47f07e64de27ce116f4f024169ee82cVirustotal results 0.00% Quakbot
2023-06-14El1zlPYNMGX0SE.jsjs 7a686129f8d2aa3974975aa9c0c053956a35a0e41ef1a0ebc8c57f7c19a92caeVirustotal results 0.00% Quakbot
2023-06-13EBuI1jMPXCi2C5.jsjs 25f87b525bf0bf9ffae58b1f2f8684f93079e2aa7f022fc4669f9eb4e498ee63Virustotal results 0.00% Quakbot
2023-06-13JhRdCoW2hGx5.jsjs 31250587f0bc18aad546f183b227908c80f3f8eb532618bdc9566b658a2be857Virustotal results 15.25% Quakbot
2023-06-13F586qB18I2jN.jsjs e74b9e82e22583477e942f2e1f99ffe7b954fc91b4d599756ee9fee1b739d4f3Virustotal results 0.00% Quakbot
2023-06-13a1KuEm1gpsrno9.jsjs d3285c0043046241c65646df426a6895a0bd139cb071739971291db15a1e797eVirustotal results 15.25%Quakbot
2023-06-13Hk3ps4STjnZYt.jsjs 2b80621d811a6d0d4b3a3439ff79280fdcbaf1dfa805fa787197cb4fa010affen/a Quakbot