URLhaus Database

You are currently viewing the URLhaus database entry for https://levstik.si/eeud/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2659439
URL: https://levstik.si/eeud/
URL Status:Offline
Host: levstik.si
Date added:2023-06-13 17:52:44 UTC
Last online:2023-06-15 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-13 17:55:02 UTC to abuse{at}hostko[dot]si)
Takedown time:1 day, 21 hours, 55 minutes Poor (down since 2023-06-15 15:50:34 UTC)
Tags:BB32 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-15document_AB485_Jun_15.zipzip 4971fe4eb9041c1f1160164b7cfb8ac0d30bd3ae0844f8656d7f2d172071a321Virustotal results 6.90% Quakbot
2023-06-15document_AC689_Jun_15.zipzip ed76eaf7bb91a031196085e045a6613da93259220ea53cec067c53971f80a5d1Virustotal results 6.45% Quakbot
2023-06-15wWezQZshale4.jsjs aa520c37c5f1fd3999506682853c10d51b002efe4ab188c3b451f541bb6eb286Virustotal results 15.25% Quakbot
2023-06-15VVrvKgfw0WWiM.jsjs 9a54d17ca7f8f94b84d92540e1aa1309372cf2f6525e8214bc19f0fdc6050633Virustotal results 18.64% Quakbot
2023-06-15WKPgWSC7kTgz.jsjs 542e6dd9dce2a281fd377b239f430841a53361ceedd91f0e5d05305a4c0a899bn/a Quakbot
2023-06-153jiMZfnbbILzA.jsjs bd4e86a053e47a93363df7ef0521eafac518744761d922332b9c6f4df1688ba2n/a 
2023-06-14VcVqkHtXZzwT6.jsjs 284d31778397f63491319568d47106697d94cecd2e43fcaf4883ddfa22c7bf33n/a Quakbot
2023-06-14Ytxsn18VAyIa.jsjs 37c6b428c6dac5415c0b35410a7aced9d2053d27b962431df24c4173c93f8523Virustotal results 15.25% Quakbot
2023-06-14j024NcPNS85x.jsjs bae63014222c445f1035e6d96c15f407e41825807e0ce8cce7057fff2a0242c7n/a 
2023-06-14aYQa9wQyAZZ1.jsjs bc64caf34f92e2e6f063ced2c6d9e82ecfab18b7aeee5767de6094fd960d23aaVirustotal results 0.00% Quakbot
2023-06-14zWEQlEw7WS2wy1.jsjs 2ecf8ad3e38853c6374d0727cac60b889e5e35bd8161a5106f70870be251998aVirustotal results 1.69% Quakbot
2023-06-14L3TVHKpg6yfhD.jsjs 7fb0d0d006fb2d1a05576482a1acdfdd21d674d14f989933f67a5d2f594c7b30Virustotal results 0.00% 
2023-06-14I73vwYkX1vmp9G.jsjs cf5e705de667060a6d8c5e53199214b73014eb8edf55374ff86403221452b37eVirustotal results 0.00% Quakbot
2023-06-14RxC3EZPRgOOUA.jsjs fce346ef00b16381bb4a419671d8c9d2ba9ebfcf2e33f7656cc401d821acc06cVirustotal results 0.00%Quakbot
2023-06-14Hss8Dm2Zis2Gs.jsjs 6e86f26862c886b01d7e28e34077d50ee7d167a4a5925ad9932469d5b12f2622Virustotal results 0.00% Quakbot
2023-06-14jEACfOmWSAdGEr.jsjs c6b4767af4977fbaa9c568a5647ec17d3fb56ccd5d7e042eec576ea7e2af954cVirustotal results 15.25% Quakbot
2023-06-14OjlNKAu8wvnA.jsjs 88285aeeb72a8951140bc0236c733ebec023b3eb03c55ba49979003c46300b11Virustotal results 0.00%
2023-06-14poJheMfObN3ZL.jsjs 452928a08c9474e6ffe308a9952ee43ff38c8a8fcec9f14b1cd8dc5c10c9d26fVirustotal results 15.25% 
2023-06-14V3DOeLqnp6OI.jsjs faf4254fb0b769d95733e7d0742a6087db84c8f33a59965427e9d14aa4290e59Virustotal results 17.24%
2023-06-14rxh5CoDP6AunbX.jsjs 7065e4c6d3f55f711d6212a95a634d74296bf2b391f5b1cd8b211c0bd09ec128Virustotal results 0.00% Quakbot
2023-06-14GB3jySLOwDSX.jsjs d086817161f6de425186882105a50b7da2366a6ed0b8e1b1b3a4fce11081e987Virustotal results 15.25% 
2023-06-13e0RDWV3G9aAC.jsjs 27caea170dece7169f1c5d9778c4c23a6b2d1e05518aa8b5f643349f20ae0ab9n/a Quakbot
2023-06-13SJ6FuMfpe1Gj.jsjs 85aa6a26b394da306e21260aa86bb2f36550ead1086c06ffed11cd86c214cbe2Virustotal results 0.00%Quakbot
2023-06-13321aTvKux8J3uR.jsjs 38972f9749b0ad71a1c45e7911373b3f2d6f10dc344045a3a60a1685339c4554Virustotal results 15.25% Quakbot
2023-06-13LaVw19xNZ26noN.jsjs 32bfa79c01a1407a4197982364340603a7d06cee692fe4d8db9d89e1accba9d5n/a Quakbot