URLhaus Database

You are currently viewing the URLhaus database entry for https://sikf.in/lmei/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2659461
URL: https://sikf.in/lmei/
URL Status:Offline
Host: sikf.in
Date added:2023-06-13 17:52:50 UTC
Last online:2023-06-15 15:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU100132786 created on 2023-06-13 17:53:12 UTC)
Takedown time:1 day, 22 hours, 1 minutes Poor (down since 2023-06-15 15:55:01 UTC)
Tags:BB32 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-15document_FB034_Jun_15.zipzip fdfb6520c376fc8b4d3e9f1ff8423d4d04fddf5f180ee8b95b83e8106495cd50Virustotal results 6.56% Quakbot
2023-06-15document_EB795_Jun_15.zipzip 1960d9266d1ed466be5254bc777d5b442202473c10ae5e1ffc3845f87bb76971n/a Quakbot
2023-06-15psdVILFss1d7.jsjs 08a0adda25cd3cf7df0b1043de0593ea7dace2524c30e50a8a2b961096013b56Virustotal results 15.79% 
2023-06-152GVKBeA3dBsub.jsjs efd6ae1abcd34ead9b144648f78e4c0cdc12abd8313a2762ab69e46c9a18aafan/a 
2023-06-15FhOAh4nA3jhbe.jsjs 85bf54c3306868f24c12daa83237989b500024072121fa88fba5c065f41eafafVirustotal results 14.58% Quakbot
2023-06-15VVHidbwF0bdkb2.jsjs 3c8d3c3d18669ed755b80da559ebc3bff821428ce59d2d4dd432a8a971ee13fbVirustotal results 0.00% Quakbot
2023-06-15DD8aOrzIRyBj.jsjs 26dd329007da42a0bb04fe00599aeb8c1f3d8bce426790503e1ba76a08c572c3Virustotal results 8.47% Quakbot
2023-06-15KbvwTUsvjhu4O.jsjs 8fda971da3f1e68224581f834088e3e1d939837f146b999ee66e10f4c21d26ebVirustotal results 0.00% Quakbot
2023-06-14SlgHU1nQ54YN3U.jsjs 54ea21ecd90d204076b45f832b3bacfc06ce2a54f8561598b309f0272a49da7cn/a Quakbot
2023-06-14wbc6JSQY6BRUu.jsjs 74fe06b32304d21ffd64100a6d4e4c0061f47b79436ab508abe9e8661c4336fbn/a Quakbot
2023-06-14fXXV9AKnWVHPu.jsjs 2fe1d60736d8bf442e9db94b957f8f3b2c8b3e92ed9b9b95c920c9d4f94435fdn/a Quakbot
2023-06-148Hy4GRT8VygY0N.jsjs a90e3655ad923e94563d2f3bac038f1d0c79da128374f7eb95ca36828f09f390Virustotal results 16.95% Quakbot
2023-06-14zCzZMhblxfMeZ.jsjs 658212c80ab97bc9b7e6d37cd24e5fdd6eb46ca939ee38e2c2b68bc1238e50fbVirustotal results 0.00% Quakbot
2023-06-14RLXtT4Jj59nEKz.jsjs 2ba3c60a38843bb6e94665abf69b0b4aacd50fcc34a699882d1c692a97f0c53eVirustotal results 15.25%Quakbot
2023-06-14Un9t2YaAGBHzot.jsjs 17746de40da113640ac8db63e66f7238c0cd0afc7318cf2b94d0185601602128Virustotal results 1.69% Quakbot
2023-06-14qQPNdkvTiDdwNs.jsjs e7cd21fc50018e3a9d2df41a2c343698e595a11ac49619bbf9d7aaf657545e65Virustotal results 15.25% Quakbot
2023-06-14HyiHSOFOeBsn.jsjs 1d5987017ad620b3a02294aa2012ee88929b0de6562a00bdd17e5faa0a9461d1Virustotal results 0.00% Quakbot
2023-06-14hau7AToIbdSy.jsjs 062edfbf6d57086795b7bf9a676e1b132149f1671fb001b110186a73c1a911fcn/a Quakbot
2023-06-14iWxb4TGfaeC0h.jsjs 523f42198c5795cb4d2edf21a6100c80ebb78fca2362434da765c28a5fc0cd82Virustotal results 0.00%
2023-06-14aoPXgpWCNysB3.jsjs 9dffdfb73cd94cf534a0444b68b07a654a57ff11c16790e6ffb9d90199705232n/a 
2023-06-14s967uSCKGTfXn.jsjs 087305b668923b9ee0ffa50e031d1f44a8091997edac80ca0e0b3ae1426b6effVirustotal results 0.00% 
2023-06-14Dw9oG90uWY4wL6.jsjs 8b6c27383170e8257c1b3dd1ea763aefbdc57087a182bb3684fdca4c6b99c404Virustotal results 0.00% Quakbot
2023-06-13ARUAQUPRJfFYcL.jsjs 438c5dc253fcb2627ed01f0a8d74730ba02a30049b4218b013dbfc3d33b93880n/a Quakbot
2023-06-13GXPgFanLnGVg7P.jsjs e07aac140a5b7d449d59bfccf9fca6c1632f2cac507a68d673a96536b797d682Virustotal results 0.00% Quakbot
2023-06-13tYkkhLhOdhX6.jsjs 0f1ee35d825d7d078602575bbeff98433a8eb4be064a8bb0940a0b1c2e82b947Virustotal results 0.00% Quakbot
2023-06-13Ge3dI1gTO99PA.jsjs 115b8443cd8239aea1947c02a8d1659794441d660ccebade92282720926b57fcVirustotal results 0.00% Quakbot
2023-06-13Mz5YtIPKt2Nhf.jsjs e2f71a4ceeb433fb027d86f843db40cf5cf642b51945904bb7f2fb186de93405n/a Quakbot