URLhaus Database

You are currently viewing the URLhaus database entry for https://izabellacardoso.adv.br/uq/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2660014
URL: https://izabellacardoso.adv.br/uq/
URL Status:Offline
Host: izabellacardoso.adv.br
Date added:2023-06-14 09:02:17 UTC
Last online:2023-06-15 16:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-14 09:04:06 UTC to abuse{at}hostgator[dot]com)
Takedown time:1 day, 7 hours, 8 minutes Poor (down since 2023-06-15 16:12:15 UTC)
Tags:BB32 geofenced js Qakbot link Quakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-15document_FC083_Jun_15.zipzip c2fc3b00d65da4a142a62c68fa8c04ff1adbe9e32fa3399fde9d0321eece1ef1n/a Quakbot
2023-06-15document_FA401_Jun_15.zipzip 31ff8a2d95ccc1244e3b459529fd5078013e3dad7f57fb69f1899a2def806799n/a Quakbot
2023-06-15document_BC041_Jun_15.zipzip 602d45d6de41c11aba9d591f18c196f599df1847b74400bdfb4e376ea1fc4051n/a Quakbot
2023-06-15j4d4ELZTjxT6Ye.jsjs f5969064236e9546f9dd65b413931ff3c8ea75546c9b92589b54dfd099f497een/a Quakbot
2023-06-15clSKYpGnYZwxE.jsjs b8353871fc39bd764835db181c2720a081ff124141ff9f6bcc8f8f3e88130dffn/a Quakbot
2023-06-15rIMvC8kSjJXbs4.jsjs 8a2b63b28ab1fe94ea04b496dde6ed97ceb4861640133bb50204e32d3d631947n/a Quakbot
2023-06-153eLVaOL0XOXmg1.jsjs 26e58f46486bf6df0b3f7f09f47a0c3525aab216be5de16610bef52b4e36c7a7n/a 
2023-06-14jDeg9SjjuXTmos.jsjs f3e548fafe3a13b08e0c2fb19193f3816cbeb169cba484b670b64b562505e6baVirustotal results 0.00% Quakbot
2023-06-14pnAOtjCm1aEQa.jsjs 26213112db9ea1bf1d3bffec66378ce0edefd7886902e4231106335ffc6f84b7n/a Quakbot
2023-06-141VYehFpjtaMyy.jsjs 08df4d2389cd5501993e309c3641708b938dcad0bc50625f24c11ef68eb61aa1n/a Quakbot
2023-06-148nqEEGz7A7nVE.jsjs 91f627516bba65bcf752f5fa9eae092d7e3ff81267bd5ff6e7acabcc6eb8425bVirustotal results 1.69% Quakbot
2023-06-14oZhWiM2lNRCdN.jsjs 8fc167cc73d786af01b05a9fd666d2c6f1d30876de212c419cabb127bb8166e1Virustotal results 15.25% Quakbot
2023-06-14UTrf96UpLmKX.jsjs e2d52c6111c68535f7c2841b3698a29cd59ed137e71a39abfc9c95ed25a4e255Virustotal results 0.00%Quakbot