URLhaus Database

You are currently viewing the URLhaus database entry for https://centronixcomil.mx/ir/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2659430
URL: https://centronixcomil.mx/ir/
URL Status:Offline
Host: centronixcomil.mx
Date added:2023-06-13 17:52:40 UTC
Last online:2023-06-15 17:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-13 17:54:52 UTC to abuse{at}namecheaphosting[dot]com)
Takedown time:1 day, 23 hours, 38 minutes Poor (down since 2023-06-15 17:33:42 UTC)
Tags:BB32 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-15document_CA534_Jun_15.zipzip 140557875d215b30888c155355cd909d6782e9cec0a6f8f2fc5133c5d039758dVirustotal results 6.78% 
2023-06-15document_AE036_Jun_15.zipzip 42abe1e7ec7a7f39fbd10aa3972c24b4b25e50ea829ddcf33c119dbc27bae07fVirustotal results 6.67% Quakbot
2023-06-15document_FC281_Jun_15.zipzip 13270731c02ced03e95ae9980d03d0653366b0969c0c847cb73886351c139091n/a Quakbot
2023-06-15document_AB854_Jun_15.zipzip 344a89416779069293f77fdb1540f5f44a2ebfe0fdd5ad8f5606fb0608c37f7en/a Quakbot
2023-06-15dmoGAhEKORvD.jsjs 6ce5fd27c8adf9006714aa3b6d9a3ae80a26837e4bbf596a225607f8d1da5a7en/a 
2023-06-15BEdXMmpZIdB0.jsjs 877682f20518cc2d0a7d957e85454146c1c0af570b834bf5ae508fd85cd5b997Virustotal results 16.95% Quakbot
2023-06-15OJhaaavp3jCZ.jsjs c1de2d0054eefad63e0ac20dec43bfa2e3b7e04b5ce2c80a231c1f68ddded1b5n/a Quakbot
2023-06-15O8CzSVUuGUSK.jsjs 5637e7f85811d4416ae73931f92d44a07a11e6083cd6d5bae1eaeaaf6ae89195Virustotal results 3.85% Quakbot
2023-06-14Omn443FDllUg2E.jsjs 14f4e3a6660a97bc5cf73b447c422b69f28bae2defcce0f4d0d65a46d3091eb5Virustotal results 15.25% Quakbot
2023-06-14C2abkaCZL1pQx.jsjs 93012a511a4f20e3d5d92b5bb81058583cc09a2d4e5994de356701b4259231aen/a Quakbot
2023-06-14GpuIrjuEQ7KKwd.jsjs c28050b3cde92177914123d176bad01f97d5fa6fac3b84f0390eda2b2b403f05n/a Quakbot
2023-06-14docu_CA394_Jun_14.zipzip ca803ab1be9e161ac00d503bd01f9b4e58a58efd16cef9c3c60d730bb2c8dd91n/a Quakbot
2023-06-14docu_EF925_Jun_14.zipzip 10e566dcc281e6b991c1793ec7bb7fcf5340ff7c607fbc94780502a1567b8bc0n/a Quakbot
2023-06-14W2I4jd9Ysv5XC9.jsjs 48f7a827ce26700fb4fc4370955e762fa9944d462d5c8ec894f100ed6a1286a1Virustotal results 0.00% Quakbot
2023-06-14u6vxqC81HDYt.jsjs 2c0eb730bf95ed68473c18275de6e8fa29ca3e48e96a78a75ac8b1126fc3d6beVirustotal results 0.00% Quakbot
2023-06-14MhctTO2JpHLBzT.jsjs b84a4d2ff0bf83602850efc694d3901096e4a7e245631e403930a29abd9b272dVirustotal results 15.25% Quakbot
2023-06-14Qkar5wIR4erg0.jsjs 7039c75c670048a1229f475146b53304bafa2c639cd2ae8e5b11e4dfcb02e5c9Virustotal results 1.69% Quakbot
2023-06-14JFCHDDgRhAxkP.jsjs 483228cd9dbc746865382146bf2237e1f145e9abe508ce213389b481bec31c45Virustotal results 0.00% Quakbot
2023-06-14eR1JzrZFCnY4V.jsjs 80f50469b54674eaf1fb7d4eb44bf603e3dc20084db713fc62d0042b557abbafVirustotal results 15.25% Quakbot
2023-06-141ZvYN1IiHOyWvd.jsjs 6f76135a8f0906aacb09a6860dd6904d4209f32d89b8d7c5cc108c34fc8bace0Virustotal results 0.00% Quakbot
2023-06-14cJQCrFenRpkC.jsjs 3e7f948117ef7d107ff4ec5e2598d93364a37771193927f8188819ee2a60bc0aVirustotal results 0.00%Quakbot
2023-06-14UyVdZNG1VBF0.jsjs d7995244004b6c7094809163e7f9587abc2a4759932ead8e535cad0e9011a40eVirustotal results 1.69% Quakbot
2023-06-136yzDh60oGUd4.jsjs 3f7c3cf5e431d53ca0ec77bb09724c5a82423f23c9a5c181bb4f1913bd11ae14n/a Quakbot
2023-06-13IJy84nR48pzzU.jsjs 76c34967251176452c5ee6eabe576acf95c69478dd889afc445b4e80222fa494Virustotal results 15.52% 
2023-06-13UtyFjVGJJBGbZQ.jsjs e9ab96a64f988ef64c92226ff9c2411a3b4f055f673995e4e6e203c3c9ff3e24n/a Quakbot
2023-06-133l2Segc0bXeo.jsjs 2d450128ed46d3fe488a483213995e2bb863bbaf1867750be7b7f677d784b021Virustotal results 0.00% Quakbot
2023-06-13mdqCPQiTyjFC.jsjs 7542f2ce24ed86bad616a3056170553d573e916b544b08ca4d7efaeb8b4c034bn/a Quakbot
2023-06-13LBg4jVUTABQX.jsjs 3df0fb465f311f75474fef0685fbf90a438f2fe093eeb89f05a52dc075f16da4n/a