URLhaus Database

You are currently viewing the URLhaus database entry for https://glonix.in/oa/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2659416
URL: https://glonix.in/oa/
URL Status:Offline
Host: glonix.in
Date added:2023-06-13 17:52:35 UTC
Last online:2023-06-15 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-13 17:54:38 UTC to abuse{at}gooddomainregistry[dot]com)
Takedown time:1 day, 22 hours, 18 minutes Poor (down since 2023-06-15 16:12:45 UTC)
Tags:BB32 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-15document_FB106_Jun_15.zipzip 76c13994d7861bc40b116fe147553da9405b55fedac0f471a6fa6bac8237731bVirustotal results 5.08% 
2023-06-15document_BD190_Jun_15.zipzip 8cd253070aa7e2d56b2467a8ce0fbfe4b0e2127b397b9d626c4495ffb733a84cn/a Quakbot
2023-06-15document_EF485_Jun_15.zipzip d0209505b0048817390407cc05d7ad35ed88dd522079cf30f7c16fca95c78918n/a Quakbot
2023-06-15RzUykHZXxwdmc.jsjs 5c44d00c46a50ce5506c7d49e1a18154f3cf9b002b183a2976af2a9d15409760n/a Quakbot
2023-06-153E95CoTnFmqr.jsjs 647639dc42c7699c9b70e466a55b13ad7112be63abdc425f39efa64ad3e31626n/a 
2023-06-15hpupQjePl3982.jsjs e381e9e8ca6334986a8b1c0a1f03631f020966c6cc74a7b7dc218fb934362cacVirustotal results 0.00% Quakbot
2023-06-15tkgo5KMW634y.jsjs a90747f9ea6b7c543a37e2e20a5742d6d446690c5520deffe86ad6c6576887d1Virustotal results 0.00% Quakbot
2023-06-14x3iopUG7eiReIn.jsjs ef479d6639cf3695395aa63efae4167a6d982080c28c4beaac32df9e0b5c6637n/a Quakbot
2023-06-146EVEHUrcCZ6k.jsjs f6a42bbe46a1e62030574bf902e10346d4f287ea756a56550fa495ddad8a9040n/a Quakbot
2023-06-14docu_BA301_Jun_14.zipzip 197c2db0857bc2cd2b24856ea3966173990489709337aa4a3bce6ce17e9e9b22n/a Quakbot
2023-06-14xZJkf60MbDEsz4.jsjs 97b28de69acb52542ece68cf3c90c7c729661bc3154710912e0bc38f95df4c40Virustotal results 0.00% Quakbot
2023-06-14HCIDPotjoqEsQB.jsjs ef30c929acc5df4e44f3adb68621c8a6716d06345adfb1259048813f0e26a758Virustotal results 15.25% Quakbot
2023-06-14Ykx2d2RHL3Ckeb.jsjs 518bd813c077206e330fe7abf815319c60311bee93ab5a5ed776f1fefa9ff8d1Virustotal results 0.00% Quakbot
2023-06-14Hw0MvA1G6HBQ.jsjs 8965759a396313356b8cdf34487d99fbf9c6537cd57da8c9a8a63d6266df6fd9Virustotal results 0.00% Quakbot
2023-06-14MIoBpa1BRJIcY.jsjs 634e719840cd9c48779d5e7ad7255062b937ed075dc5a7bd77e2099b8ae48eecn/a Quakbot
2023-06-14Kd7c8Mhs9eN4ce.jsjs fc7b2764014269e22e29092384aae3b2087b32ca32619ac2879471b486b19632n/a Quakbot
2023-06-149XTC80O7MsoG.jsjs 56b1c95adc775a79029a8607e6d8bd87e286367a38ef9a2ac09edc306b3c14aeVirustotal results 0.00% Quakbot
2023-06-149EElqfEUWhf9az.jsjs 2c8df73904647f9d4eed5dd55388a48df8165a225cf5ae148eb89a77b1e3890cn/a 
2023-06-14ZxmKES20KoNByZ.jsjs 6638b909caee457d91654eceae92ac782dab981bd1b4cd9bb433b143bf5a8d39Virustotal results 1.69%Quakbot
2023-06-13FeOOI4lwr6Nxo5.jsjs 050bd382d14228cf927379f1cf81e022711bff4fd3b55e31872f46a31d78dbf0Virustotal results 15.25% Quakbot
2023-06-13wX8YzA3MEIgk5.jsjs a8fc21aa186eb51d6c4d2ffc36dd86d82ce67d009e4c8ff93221eabce48136f5n/a Quakbot
2023-06-13JhRdCoW2hGx5.jsjs 31250587f0bc18aad546f183b227908c80f3f8eb532618bdc9566b658a2be857n/a Quakbot
2023-06-13eR1JzrZFCnY4V.jsjs 80f50469b54674eaf1fb7d4eb44bf603e3dc20084db713fc62d0042b557abbafn/a Quakbot
2023-06-13IDzOKgUMidTj.jsjs 2e6c65708101978493d33039a24987a1b46b65b3c1795df913b4564efad64b7en/a Quakbot