URLhaus Database

You are currently viewing the URLhaus database entry for https://advertentiemakers.eu/uq/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2659446
URL:	https://advertentiemakers.eu/uq/
URL Status:	Offline
Host:	advertentiemakers.eu
Date added:	2023-06-13 17:52:46 UTC
Last online:	2023-06-15 16:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-06-13 17:55:10 UTC to abuse{at}cloudflare[dot]com)
Takedown time:	1 day, 22 hours, 7 minutes (down since 2023-06-15 16:02:51 UTC)
Tags:	BB32 geofenced js Qakbot Quakbot USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-06-15	document_DE245_Jun_15.zip	zip	f22cc06f54f0caf7e1667359fef4ceb0259e28de5745ed6c182e196b69a98f4c	6.45%	Quakbot
2023-06-15	document_DE791_Jun_15.zip	zip	0243fd16cf95633ac6374516ed137f3ef377f2a9acd2fa875812e496098a5fdd	n/a	Quakbot
2023-06-15	document_FA071_Jun_15.zip	zip	1211c72dbe34dfff4baede5345b4e3b204f1b877036a4b272379dd6e329b9e1a	n/a	Quakbot
2023-06-15	5QemmxbvwKnxz.js	js	7b94ce1dfcef7d4cd29e5fce6012b404f88ba3e45ffd23160f14de52ea25bd16	13.56%	Quakbot
2023-06-15	2hCTZphAeZKSSU.js	js	ec85530df986d3f352511bc4c2bac64e9a600d15befec4a73680e4e8fc4909dc	n/a
2023-06-15	btks4zRfW8aFIX.js	js	9639bb82a3045227090d63804502f5b013c99cc58489d92f427e358f5b3cdcfe	n/a	Quakbot
2023-06-15	fQPhB29p1i0Pf.js	js	8a2e41a0dd7efb0dd51e5fb533c29ebffc9618eb126e1ac2e9799acff164ad68	3.45%	Quakbot
2023-06-15	1lmYqFBQUx0W9k.js	js	ed64d33b56912ad534e8eee0b97ded799f9740ef0cb8e8c8c2687364a0ca0134	15.52%	Quakbot
2023-06-14	JHFQrYdyG4tgo.js	js	49c6bb4a14c70b49be707a1fdb82b374a14e3cd2dfb09aa87111a5c0286e689e	n/a	Quakbot
2023-06-14	wpYTp7nGKvG3.js	js	12564dd67e92b3a9af89ae847eafe93327867b5e60eb2cc32b7007e8fd11dccb	n/a	Quakbot
2023-06-14	docu_EF925_Jun_14.zip	zip	10e566dcc281e6b991c1793ec7bb7fcf5340ff7c607fbc94780502a1567b8bc0	n/a	Quakbot
2023-06-14	2vYVj3ZH8oC2z.js	js	8b9e0246b8885c915a4b0f7e1a2b4dc12814de55b4bc2295f5942b9607275fed	0.00%
2023-06-14	13ihSzMUcQru.js	js	b3a7e8f31b81630441591ae2a1e5693d483de48928c5cfc0c1db83188c6be4ee	n/a	Quakbot
2023-06-14	I6Ayegc8tc5Mv.js	js	675c342a1af08dc069a293b257048b4d2b9d06a88b3d1e41d2f91e95f53b5ee9	0.00%	Quakbot
2023-06-14	S7ZC0B4rK1iA.js	js	b705c3a886481f893789ca4b5c4f7f2dbc6b7b0592dbf947eaaa1fb3f00239f4	0.00%
2023-06-14	AgfJYOhMjq4V.js	js	1f0adb030fe4a12653347834c868c109728791e508c0955d372d314e632090f7	n/a	Quakbot
2023-06-14	N5HWbSLuuyIsLC.js	js	52bb11ce6f9126bca631c0ba9116d446457e2dd77d29a343e5a300e0e5303b46	3.45%
2023-06-14	gFubsBkBbCKYA.js	js	f8c96cc06b2725f233673141c1302ffe18ec461d4367a388057cd8e63fb6cbde	n/a
2023-06-14	6SLPbrRRK64LZu.js	js	99401299f9e6f416440432ca0c930576f0e4aa3dc9a8ba2860f8e11d829d88c4	15.25%	Quakbot
2023-06-14	V5znx9WhhuXNI.js	js	0e5588d92003690ed51f62d78db1a60077090098ca4ea350a99bd0a93e96d0ee	0.00%
2023-06-14	AXXm4eatDSLb.js	js	dedeb99463d2ea4f2fa93d6f102826498044e19bed4380a484404a7482598776	1.69%	Quakbot
2023-06-13	6WSU44J6FLiaYv.js	js	f58f2d997fb73aec69c9a665be9952fa7bb6f23db59e3a0d5d18fed309125d12	n/a	Quakbot
2023-06-13	B0lOs4ZCytkvGS.js	js	e797a5956864b396d85fa82188512614cf40a7e7ae2d04448cea909c191f5c40	n/a	Quakbot
2023-06-13	Hss8Dm2Zis2Gs.js	js	6e86f26862c886b01d7e28e34077d50ee7d167a4a5925ad9932469d5b12f2622	0.00%	Quakbot
2023-06-13	5OZsddt88kWskJ.js	js	2f611d2bbed4eccbd77cefc020aa9de246c8d90313f37e8cb63f8048557a23ea	0.00%	Quakbot
2023-06-13	ALLrayjgN8kR.js	js	da5aad281ed680a522be9d0a37289be6db116abadd41982734f8d00faa22dd05	n/a	Quakbot
2023-06-13	Jtz8vkOjVgwJ4J.js	js	91307559f707be501540666487c1292b396caeccb87b9cf49cfd05413a06c949	n/a	Quakbot