URLhaus Database

You are currently viewing the URLhaus database entry for https://bisff.in/aii/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2659453
URL: https://bisff.in/aii/
URL Status:Offline
Host: bisff.in
Date added:2023-06-13 17:52:47 UTC
Last online:2023-06-15 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-13 17:55:19 UTC to abuse{at}deft[dot]com)
Takedown time:1 day, 21 hours, 51 minutes Poor (down since 2023-06-15 15:46:49 UTC)
Tags:BB32 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-15document_FB564_Jun_15.zipzip 73a71723b91db8c156f9a8fb12d5dcb367b866ffd78d854d624fe2b9ce2d46dcVirustotal results 6.45% Quakbot
2023-06-15document_EB158_Jun_15.zipzip 023f9508f9cfebee4cb38a6d451a9aa6810bb364ec96ed227967ef80a6f5c83an/a Quakbot
2023-06-15document_AD028_Jun_15.zipzip dff6774c982d6a80f66b70f113678b7cdb39c9715fb71d8c0a49f7328eca1304n/a Quakbot
2023-06-15T27708GjmgPzZ.jsjs a06ca91da842b678009bdadae7519f2f75562f7d55c7e8b42f8c6a9b92777aecVirustotal results 16.95% Quakbot
2023-06-15ZC9JbvZoBenF.jsjs 4887c9ed1403ae6fe007dde9ab14d02697e92bf27f84f33e41e720538853b86fVirustotal results 0.00% Quakbot
2023-06-159ViB8AjXvc4n.jsjs c61e790b06f83727a0be47b44da12c074a42a7449d6059874aabfd61b38c1870Virustotal results 0.00% Quakbot
2023-06-14B4iqZLtp9jnHC.jsjs 2e86042f45fefd770508e8dc33942e4a413ec7a0e34d484423bbb3aba2ccd7baVirustotal results 0.00% Quakbot
2023-06-149mNmWhZwctOw8d.jsjs 4262c1cab7738783a81990842610b6f982e1c59c9d30ea2a571e3883f18e553dn/a Quakbot
2023-06-14hA3oXkrDZo8mQw.jsjs 4521eefff175fa8788e75e2048d6088b62f1f4736c5900c36ae6d030ddcb0507n/a Quakbot
2023-06-14docu_DB934_Jun_14.zipzip 4bd8eb0e5e0fb8854e367ba72e5cc20c71af349e8b0889b52972fee1830b8373n/a Quakbot
2023-06-14Vq2vx6Snm0xXFt.jsjs 7f669fb934e4aaae97235c67572dba0486b24264dea1695b200c555f66e5b87bVirustotal results 1.72% Quakbot
2023-06-14vWnfDG4oMUlf.jsjs cef236290fce0aa372364acacef0e4d551963d3a3774df2a383c222069ee6fbeVirustotal results 0.00% Quakbot
2023-06-14FmdlfRNledGNT5.jsjs 7f6436c40c2b2d104add09034d693f6871edd26b6798e272e5e4a3894ef5bc65Virustotal results 15.25% Quakbot
2023-06-14aAyf1WfaEuuOls.jsjs e714da740ce10e0eb10626a90132e6a85d82a9c468dcc8c855b9e5911886511cVirustotal results 17.24% Quakbot
2023-06-14YpDdaaCev25T8c.jsjs edb35bca2e6b45be2c59d91bb0c733b2d14862afa347aee1945f517b712cb1cbVirustotal results 16.95% Quakbot
2023-06-14DiCEG6ifO2Pc12.jsjs 650930f66619ec25707239af416d64e7acb74900e5480c732b94eabf92245d1dVirustotal results 0.00% 
2023-06-14jOVr7ffOa2Cw.jsjs c22dc4173284f84493d9f11142a4f3e459c34fd1a413ca34a8c22e01b926463eVirustotal results 0.00%
2023-06-140JqQdA8yvxy7t.jsjs 9fd3b77d7695ef59f90d70b317d46c19b077ba1cb380dc1e981ae073514af1d6Virustotal results 1.69% Quakbot
2023-06-14a8wU6f0MPcjYu.jsjs aa3b90a263a600deea80ebf948b7497631bd26618e5a626e3a54fbbd42c63e07Virustotal results 1.72%Quakbot
2023-06-14EGlKdomTlEaOGK.jsjs c25ecf652174f94ac18bba8177d5d8322fb31d649edabc523b505e815cc47376Virustotal results 15.25% Quakbot
2023-06-14Qg9I11tJ7Arm.jsjs 039e840b96c194d77d3ae7ae131d1a767b316fc70088c15054dcb363b24e052dVirustotal results 0.00% 
2023-06-13poJheMfObN3ZL.jsjs 452928a08c9474e6ffe308a9952ee43ff38c8a8fcec9f14b1cd8dc5c10c9d26fVirustotal results 15.25% 
2023-06-132NFaBnjTpB0hVS.jsjs daf0136e792cf3bf13bb53a8a40392f7ff38aa1bc870cc6a99b273f95c60d4ceVirustotal results 15.25% 
2023-06-13ZZrvn6j1TCC6c.jsjs 5a652761cdc46fb64dfac6c2d3d9ab2bd6108ccef5860b411746c8de1c6ccf59Virustotal results 0.00%
2023-06-13NmBmdfdsrDm7.jsjs 7c57c6396460e902ae047f35fccfda7d912a5eb5a2fa1fb0a9352aad5a8396c2Virustotal results 0.00% Quakbot
2023-06-13MU0WPHrVauMjf.jsjs ce41189c698532d9868b6ca7707a5ef802d8a86a0d0dc917f87877dcc311815bn/a Quakbot