URLhaus Database

You are currently viewing the URLhaus database entry for https://the3builders.co.za/ltp/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2659423
URL: https://the3builders.co.za/ltp/
URL Status:Offline
Host: the3builders.co.za
Date added:2023-06-13 17:52:37 UTC
Last online:2023-06-15 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-13 17:54:45 UTC to ocloud{at}stablepoint[dot]com)
Takedown time:1 day, 22 hours, 34 minutes Poor (down since 2023-06-15 16:29:18 UTC)
Tags:BB32 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-15document_AE419_Jun_15.zipzip a94f5a0bbcd677bd7ee0ca1b92ae3075e8f9d9cfa4c0dc9525f9eeea0a9e4201n/a Quakbot
2023-06-15document_AF028_Jun_15.zipzip ea319e61a91f2a443a40f477703a709da4600650b42c238146e172287dcb3feaVirustotal results 6.67% Quakbot
2023-06-15N8k0VuiuCIQCu.jsjs 7667afdee2b01e242e868328bfa28debd5f8d40fc330640591bb8f3206f6d0e1Virustotal results 15.25% Quakbot
2023-06-15Q4OaucQWd8Gj.jsjs 1eb39b21a7d1106b84bdbfeec5ac023b578c6d48db4f8f138c94a74519cef73cVirustotal results 13.56% Quakbot
2023-06-15fd6N9aD4vJH1iy.jsjs 651c694d6aa110eaec9e2e3e6500b0def23d9953a64869dd68d10de566b3a53dn/a 
2023-06-15GdOoPvO6Jq9T.jsjs 3cfd199b4db50d23edac978b0c4a3d71f364627330abecbb9f06d4042a7d57bfVirustotal results 0.00% Quakbot
2023-06-158vWHEvCBeG2U.jsjs d482677ec5742aa810b8b0e553816a0fd83a1b76ea661095374c8c8ae546b79dVirustotal results 0.00% Quakbot
2023-06-15vbAg8qPDEDs9.jsjs 18ac48fa457ce1542f53ff6f5b534b76347f625d2b7ee3e0d3484aca0b6f3a57n/a Quakbot
2023-06-14Gsj341SW1iyO.jsjs 51c8d9ee7401b29f504f359cb07e29c21dee8cb4096d1b0d6d1fc3f82e009a17n/a Quakbot
2023-06-14docu_EB637_Jun_14.zipzip c2c7cbc58552a255ee5c04240841ed2e5ff8c8ab5ef09a076d87fcb367f5cf67n/a Quakbot
2023-06-14docu_CE410_Jun_14.zipzip 4df2aa3eb76af304aff2e90f297d0342b4fe0e0bf07e56156a260fe20b975353n/a Quakbot
2023-06-14O3j8FuDkVsZ6.jsjs 33db051325f4db54cf2f56d74014a4dfc198d1ac82fa029c69c028076c3cc33aVirustotal results 20.69%
2023-06-14wVwk6ArWHj21yB.jsjs 9d9ebee294be6162c7ede90b2fad0e12f7fcb627e7f715679e3262e92ea31162Virustotal results 15.52% Quakbot
2023-06-14vHOnlJWwVSHW.jsjs ee1b110ef9002c57f50f285e78c0ce0d395f502fa49705725dcffa689aad396bn/a Quakbot
2023-06-14QuC86XQVHCJ9y.jsjs bf01a7146dfe92bf81f1e4dc18cd8f7bc4d3c66360c344aa8183336483d36f70Virustotal results 0.00% Quakbot
2023-06-14Oak15HKksczt7O.jsjs dcbb1de18c706dca894ce39fa5c0e6ec4956955cd2e0e48dd2787d8e46747b3eVirustotal results 15.25%Quakbot
2023-06-141oRZBnHAIhnnOa.jsjs 168f8828b8659bb942498ddee7c2dfd50dd851e025f0ae9dedda37ed6eed0f68n/a Quakbot
2023-06-14w2XFGWYd7VBylK.jsjs 6d0ca821cf16f5705471d86c3b715cefbd20f9caa3b98f08a88999d75a8f263dVirustotal results 1.69% 
2023-06-14xUgIwlv0zFSDb.jsjs 714d3253894ca7c971ac2c4d09c65858cb003f9dcfeec45eb0abc7c54ea23309Virustotal results 0.00% Quakbot
2023-06-14UtKd6cil1O0Pmq.jsjs 317249c0887df8cbc272cae64fcabf27c5b218d5ad3af51f28b138ddc1c7deadn/a Quakbot
2023-06-14bXbJhzU0MQtjFs.jsjs 95f2521606f82ae3b1a8d0431a422c6b9ebb5c047ce4d8cfd9f1850b80f2cdf9Virustotal results 15.25% Quakbot
2023-06-136SLPbrRRK64LZu.jsjs 99401299f9e6f416440432ca0c930576f0e4aa3dc9a8ba2860f8e11d829d88c4Virustotal results 15.25% Quakbot
2023-06-13s8i5RYrSM4bE9.jsjs 850e2992f65152ff4f739bdb99220a72c134c80398fa509bc47c7e451e7e43aeVirustotal results 0.00% Quakbot
2023-06-13mKbz2GZM6EC41.jsjs 0c9bd2cf68a473bf39a53f353fa5ac5f70995001cf388d4a410b49688713d3f7n/aQuakbot
2023-06-13tHtrJWsTSDWd.jsjs b536742f4c71b3e6ebd5f9c0bd7755c1b4ed815fbd0bcf3b8c1b9a8f5fa0e0d0n/a Quakbot
2023-06-13Vba0fW4B286EB.jsjs 319976befbb5269faeb1456a5aa2380505f358c976f911c341cfdcabc7981a1cVirustotal results 15.25% Quakbot
2023-06-13KmcxcYMPzOTl.jsjs 68bb9a216f8a9d3aee9ac685839b394690255a12e753e075293ba5c883c17e36n/a Quakbot