URLhaus Database

You are currently viewing the URLhaus database entry for https://megadulces.com.mx/vrp/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2659436
URL: https://megadulces.com.mx/vrp/
URL Status:Offline
Host: megadulces.com.mx
Date added:2023-06-13 17:52:43 UTC
Last online:2023-06-15 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-13 17:54:58 UTC to abuse{at}hostgator[dot]com)
Takedown time:1 day, 21 hours, 57 minutes Poor (down since 2023-06-15 15:52:06 UTC)
Tags:BB32 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-15document_AB539_Jun_15.zipzip f410d12064fa3e90314c929b4448722dce7db86cb5822933672af7a2ee3292b2Virustotal results 6.45% Quakbot
2023-06-15document_EC074_Jun_15.zipzip 2c6fed58dba6edcadccf9c0f339e44b181702a128a32fc270fdc9e611a37348bn/a Quakbot
2023-06-15TgdTmka3ADBR.jsjs bcb0b5349ccad593408a97fd5bd67a8ad6c033c11696d490851299a95ae984c0n/a Quakbot
2023-06-15OoV2SYPGxbTqO.jsjs cedbd9190a6d058a86c4870c07ed8c06e5a99033532ff508f0efdd334ce134edn/a 
2023-06-15Crn4lm7u9ycpxl.jsjs 2383a71aed495a7d8ccc6591df82546ba2dbaf218e9a3cd6e47faeca2c91d428Virustotal results 3.45% 
2023-06-159JUX0s5QI0KD.jsjs a0a9741d7ff5d18e33f4ba023d003a155f0a7b22871287798a94dd7db2d78dfaVirustotal results 0.00% 
2023-06-15Nx4s8zmMrTHg.jsjs 8a1ed6811f0f43e4480396d153775dd04bf3ca832f4fedfc8877c6c5ace4cc48Virustotal results 0.00% Quakbot
2023-06-14Of6RKG8Tasgia1.jsjs 7b53ef911370dd9299319f1b125aede4b48611ae51a003cdbf67ee995cc6592cn/a Quakbot
2023-06-14ydkl7ti4FZis.jsjs 2851c11b72361b9b5d32db0d92edb18a0c8fa75ff8cd6ea897a423d79afd5da1Virustotal results 0.00% Quakbot
2023-06-14docu_BE245_Jun_14.zipzip 6f3207bcada9b33fc5a6ba36e5e2e5bd54a4dcf8d133159c9bcd9fcbb62f8122n/a Quakbot
2023-06-14docu_BF543_Jun_14.zipzip c673bfcb47ede45a743fd4f7a77f4191994558953aa9456806cb2fd6281a9031n/a Quakbot
2023-06-14i0dzE5xGTFulvj.jsjs 2dae93e4b7c7c6d149df3f3171cfff9d70aa5814668e10c23ad5fdbe3a8de584Virustotal results 0.00%Quakbot
2023-06-14u7HT3CkzN4kuvu.jsjs b759298afeb2c1d6fa981ea47fc760912388cb629959a6cf1121be469fb61653Virustotal results 0.00% Quakbot
2023-06-14EBuI1jMPXCi2C5.jsjs 25f87b525bf0bf9ffae58b1f2f8684f93079e2aa7f022fc4669f9eb4e498ee63Virustotal results 0.00% Quakbot
2023-06-14oaxV2LiKoFH4UD.jsjs ab9a4655862e09bcfaab36bcb19e3beee69a0935253295f3befa3c8cb0641f8fVirustotal results 0.00% Quakbot
2023-06-14JJ92SanhhqRB.jsjs b9ca9f87d2a85f7b671c1d08dd34a71081ec109909c5868ec4fd07ac739bc0deVirustotal results 1.69% Quakbot
2023-06-14LFAotk6pLsJq4z.jsjs 8b2b5ab2f87cee54c8cc50586169b8759ffe94753cdf9084e2f12cd58cadcfc7Virustotal results 0.00% Quakbot
2023-06-14KqSLwjCmQQ2p.jsjs 2932accaf419737fe7893701457ed834ad17fbad8b735b46d8ae62b25ac88291Virustotal results 0.00% 
2023-06-14UbwII8oqMneOk.jsjs 77c675434a968c42c4c87fff76bec73a3d698bacb2a311dd9c90754ff2c0d0b8Virustotal results 15.25% Quakbot
2023-06-14ZOoLAEZKkybj.jsjs 905af047345addcf40ced0d92bc5164fad2cc99dead0c067e5b5f091d2e9c24dVirustotal results 0.00%Quakbot
2023-06-14QfqGO5XBro4CKw.jsjs add7b2404d100de57002112b331d4da59f8150b90a3bb609c1f06289389a9307n/a Quakbot
2023-06-13HkS1sZKW2qHf7V.jsjs f9bf334845a79050c8648bc6d50fe12fe1ff7eaf9ccfa1b88428d8692c1d9c5eVirustotal results 9.62% Quakbot
2023-06-13wGPLf6J1zy0HUP.jsjs 58a104218ed7ece5c31800e1f1fdc76882c4f6a6009bee726a54579874e99460n/a 
2023-06-13gfgztqfzPGCE.jsjs d71206a9c8377a836d6ab31a4ce976b3afdb682db44628e7e6504e2cc182ba9cn/a Quakbot
2023-06-13bXbJhzU0MQtjFs.jsjs 95f2521606f82ae3b1a8d0431a422c6b9ebb5c047ce4d8cfd9f1850b80f2cdf9Virustotal results 15.25% Quakbot
2023-06-13KMlAyEwAhXZaM.jsjs 57c6e46915487292316b14b5703105f8dcd0d12e72510826abc8146f94789650n/a