URLhaus Database

You are currently viewing the URLhaus database entry for https://grillandshakes.co.nz/tei/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2659428
URL:	https://grillandshakes.co.nz/tei/
URL Status:	Offline
Host:	grillandshakes.co.nz
Date added:	2023-06-13 17:52:39 UTC
Last online:	2023-06-15 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-06-13 17:54:51 UTC to abuse{at}hostgator[dot]com)
Takedown time:	1 day, 22 hours, 27 minutes (down since 2023-06-15 16:22:38 UTC)
Tags:	BB32 geofenced js Qakbot Quakbot USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2023-06-15	document_AB083_Jun_15.zip	zip	37ca6d13a09af01663ed0479fbe4404b645bbbe77e0dea8aec997eb702013186	n/a		Quakbot
2023-06-15	document_AE374_Jun_15.zip	zip	c7d922ad1f5d0dfa1ae41f043beaa18113615eae2d1924d6bea6e99e369ed553	n/a		Quakbot
2023-06-15	npgAVYT1kp3QS.js	js	cea9b8bf495a920d46730eebc2ffd922c07cf435f20ead8c1702ea73c5e51d07	n/a
2023-06-15	YiG5NdmJjwmavW.js	js	dc476ee07efa4a8657825f9a5c76f6e2395387e13f018eb154b75baab12dacb4	n/a		Quakbot
2023-06-15	k0f2PXZwnjwo.js	js	8ff720a2f106283104f2c449946d140f6a62b913053e89ccf0554310e65a8c02	16.95%
2023-06-15	KEtLr161lf4yBz.js	js	bce82e20df4eba3d49cc892aa1af408c349336bd4f28d9b4b06eb91b2dd21f4a	3.45%		Quakbot
2023-06-15	C4oicBIryLOLvB.js	js	24963a6558f60d5dcdec0ee6d229e281b64bef49441675a347a09fb6cac161b1	0.00%		Quakbot
2023-06-14	snK8ajNT3tzmW.js	js	1a637a4ef54a868a5970d67564b8277b8e3427b6bce8728770531d16458a93b8	n/a		Quakbot
2023-06-14	rfBxfV4I6xz84R.js	js	da0bd15e6eed5b72b7061e2a7226e150d2437fe006c32668b9473aba45eef8d8	n/a		Quakbot
2023-06-14	docu_AB584_Jun_14.zip	zip	94f05be78da413db0bfb0f0a1a818a1ff208bc3c5ec09103489372fbeaa71a48	n/a		Quakbot
2023-06-14	Cayo5pTo4b98.js	js	bf1521a3ec608512bfd3342d16e8c7392aa729827eaae6d681d4285a0dd764db	0.00%		Quakbot
2023-06-14	rmojKhr5DzyE.js	js	18bc700ae4cb6fcdad8a07ee9a3dac5d23802799aa651e43a4ab31c3074aa69c	0.00%		Quakbot
2023-06-14	wP3exsMu32XV.js	js	2f70d614dfce45e13915d1f10b8a73bf31dd0484d11752675d96acbc7ef48d97	0.00%
2023-06-14	pHorVf0aOjmf.js	js	efc5079cb78e367de5d06317228a9cbd6960191852d65203978ce7ac42424fe5	15.52%		Quakbot
2023-06-14	ZTBmezckK5Cp9.js	js	77ee59f5de41fe253695de13801bf06c13dedc1897fa9fb15b5b6e0635c2455b	0.00%		Quakbot
2023-06-14	j6LohfJvnD8M.js	js	22626e2b680dcbce24bbf4d3b9c98c5a776900ffd5e53fb86a83ed73d27a71b4	15.52%		Quakbot
2023-06-14	1GGaTljVlpQP.js	js	b676bb590284288d53b837bfb66ccf2aabc00be26e11f4ceb01db48209360e80	n/a		Quakbot
2023-06-14	KyiTMlQGp1ovqb.js	js	7755f78d3f440e957a66b636cdcd5de8b9cbf3592c1071db582f402665ecffb6	15.25%		Quakbot
2023-06-14	bhuY8XwdY6sI.js	js	4e57148bfbd39f2bd7256784c1002c691b566dbdad8bbedbc16aff1597617529	0.00%		Quakbot
2023-06-14	vekKlqgJh86X9j.js	js	1578ea2288b5b11d8959991e30603262a35f2cfc8bbf54e090298356dbfbb555	0.00%		Quakbot
2023-06-13	8NOJgoZRdY7B.js	js	38745323f99c12ef5a5da01bfc75b817be0bb925cca67c6d05e08ad796895c81	0.00%		Quakbot
2023-06-13	kwIUUlGrx3cP.js	js	58fed3a739c1ab3b03f9eeb11efae107dcb008eb920fe897eb3a9672cf263917	n/a		Quakbot
2023-06-13	JKClPesBSM2hHW.js	js	5cbc2c2ad5a1d54ee0c7d6af0e20f6bb389fb5bae125f4812a743e6104db171b	n/a		Quakbot
2023-06-13	sHjEM3p6UJmT.js	js	96a4f008ed8c404dcdd6003590e5453eff2affe0dde4845a3dc681ebac85fbf0	n/a		Quakbot
2023-06-13	q7xvKX0Nd5GL.js	js	8fed5c10ed51e62a635cc23ed17323018f4862b4e83087a3b084e2778cdf014b	n/a		Quakbot
2023-06-13	JXi2Z5iMDbVH.js	js	5c813455c6286775168292ea94a7166eafc19509589539c3a0bb02f83e62ef2b	n/a		Quakbot