URLhaus Database

You are currently viewing the URLhaus database entry for https://exclusivelocalleads.co.uk/ei/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2659431
URL: https://exclusivelocalleads.co.uk/ei/
URL Status:Offline
Host: exclusivelocalleads.co.uk
Date added:2023-06-13 17:52:41 UTC
Last online:2023-06-15 04:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-13 21:37:05 UTC to abuse{at}bluehost[dot]com)
Takedown time:1 day, 7 hours, 9 minutes Poor (down since 2023-06-15 04:46:27 UTC)
Tags:BB32 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-14WVIUBLoC9OdxV9.jsjs a207dc87533a62fdea318ecbdb87f94689d63253748fa599e61319a99f31f445n/a Quakbot
2023-06-1438yN6mcwxyDW.jsjs 8384d7c96bc5a1b51a7afb10615524d9233e6a13a5e2dbfbc52d0bd73ca378b7n/a 
2023-06-14docu_EC496_Jun_14.zipzip 9d1baa08c4f14604d9cd6e31d5e2691431d2a232940bce9b15c47ad8f7f7776fn/a Quakbot
2023-06-14vIT9FOJc3UNX.jsjs c79c21ecbfb04a2f9a6e478b4d22aaec0ce38c37390fbb4d6f2b0eddbad7904aVirustotal results 0.00% Quakbot
2023-06-142JHAmjbee5iA.jsjs 1af52121ccc0f2a0f4a4b3be87108472ceadab9f88ecbcc98aa288034f937089Virustotal results 0.00% Quakbot
2023-06-14nhxO7eoiXu9zQ7.jsjs 31d3d0685be4ee92838a6645510847a3c36241a12760a0d28ecfbca82f5332edVirustotal results 15.25% Quakbot
2023-06-14MgqEYfHy5j2D.jsjs 38a6586c4f844456e251c103e557855978c935d14429e42aee6e9f4431dd9317Virustotal results 0.00% 
2023-06-146SLPbrRRK64LZu.jsjs 99401299f9e6f416440432ca0c930576f0e4aa3dc9a8ba2860f8e11d829d88c4Virustotal results 15.25% Quakbot
2023-06-14rnm8UcCo1IhpB.jsjs 69b80b67a6c963fa6d00d4fe7ba7d280cf4c16753fca11691d917a50bffe9ad6Virustotal results 0.00% Quakbot
2023-06-14t2n2ODUHk7Lr.jsjs 10fc5f940ccf6de1541568b1e647577528c326344c22363ac7fb2f97e964afd3Virustotal results 0.00% 
2023-06-14ZZrvn6j1TCC6c.jsjs 5a652761cdc46fb64dfac6c2d3d9ab2bd6108ccef5860b411746c8de1c6ccf59Virustotal results 0.00%
2023-06-14ZTBmezckK5Cp9.jsjs 77ee59f5de41fe253695de13801bf06c13dedc1897fa9fb15b5b6e0635c2455bVirustotal results 0.00% Quakbot
2023-06-13V4W7Hf5zwlDL17.jsjs 2a406608a0ffaba2656cf5879e23dfbe00108787515fb0cf28a1f28ba8b06c94n/aQuakbot
2023-06-13jEACfOmWSAdGEr.jsjs c6b4767af4977fbaa9c568a5647ec17d3fb56ccd5d7e042eec576ea7e2af954cVirustotal results 15.25% Quakbot
2023-06-13aZeNnjaQ0TriCw.jsjs 2fa7b2040ac076e3788b317655009f3136cde0771ed829a5b4d18a366aa8956fn/aQuakbot