URLhaus Database

You are currently viewing the URLhaus database entry for https://wallowemb.com/vv/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2667123
URL: https://wallowemb.com/vv/?1
URL Status:Offline
Host: wallowemb.com
Date added:2023-06-20 11:46:41 UTC
Last online:2023-06-20 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-20 11:47:12 UTC to abuse{at}cloudflare[dot]com)
Takedown time:2 days, 9 hours, 36 minutes Poor (down since 2023-06-22 21:23:25 UTC)
Tags:BB33 geofenced js Qakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-22Tpnb.jsjs 3c4e688c643d8eb2cb5025e60a9fdc0a1be4e5405a3da55188798c792e691d1aVirustotal results 5.08% 
2023-06-22Onxy.jsjs 18d798e1f7d1498064ae680c3e4288bbd12c3b04b2180965836fb2df6a998a89Virustotal results 5.08% 
2023-06-22Ztorw.jsjs 98db22672bf966f5b0b2adffae4501437a8dce9a9a079ad0e53ba3571363514bVirustotal results 5.08% 
2023-06-22Zpsa.jsjs 656cfc6070be3db9c87b61374ad04b7ed6692f1806d72fea18f3899acc739c92Virustotal results 3.51% 
2023-06-22Cf.jsjs 3ce1a5f3c31726831bf8897d67fbbae8e7a29b806de322c4006686be38d75594Virustotal results 5.17% 
2023-06-22Llkt.jsjs fe70ddf0fcf293678d573186d38f31617a6e8a32a3d51778c25c9b07164e117cVirustotal results 5.08% 
2023-06-22Va.jsjs 5eea5880f2f8bf04bff8269b5f2e8dec0d64256a53b11a8072deec00dafa8c0bVirustotal results 1.69% 
2023-06-22Rbel.jsjs 637259dd0906c9861fed744db21ec76da8a4cdf9ed91859f725b34fa4fe55591Virustotal results 3.45% 
2023-06-22Umbla.jsjs ddf868e3995e582d8b6c81f1348c2548b891a9a9dffb39d966f42088149fa89bVirustotal results 6.78% 
2023-06-22Rw.jsjs 1617e3200bf65f7ce126ba3eb9a92becb6e834ddc375d0cb4b107c201647f04aVirustotal results 1.75% 
2023-06-22Qa.jsjs 6cf9154074f27c59eb7ee2409a96ed988949c546ae9face095406d7f76d137caVirustotal results 1.75% 
2023-06-22Vri.jsjs 1eb14af62b3310dd72313a682381c1ebd02fc546c7e2f0ab971e064585ab893dVirustotal results 5.56% 
2023-06-22Isvku.jsjs 6cc9c17172bd2ce159ea9490b4dc69f1025d2cfcc6f8a534c9c6c9cc895db0d4Virustotal results 5.08% 
2023-06-22Si.jsjs 400dd51a3329eb12e37ec0fadd2191ec2489efbab8b97846a4ddc2c325d7a255Virustotal results 5.08% 
2023-06-22Ul.jsjs ef309ff9487c9e28306dc258d564ddab040c3bf0d063f96455c9fddf5fec4729Virustotal results 5.08% 
2023-06-22Iyu.jsjs 3015d082971d8c57ddb51d8bb51ece5bf20e485d80c4462c722c2579f5e51bf3Virustotal results 1.69% 
2023-06-22Ruws.jsjs 328d293b25090d4dcf33602742160c71a3c4d2b4cefa4dfde61dbd8041be6b3bn/a 
2023-06-22Yg.jsjs d3f49b113d42b8e7c3cc2cadb6aebf7c44c45fdd02d4228bad573003dc588158Virustotal results 1.69% 
2023-06-22Fsn.jsjs e9bea5a876c0939482249efa99b535d86301922295800a644200488f3972342fVirustotal results 1.69% 
2023-06-22Skgzu.jsjs bcd49f03fddc2a196df6131e62faacdb0cd4f92cfd3537dd970bd1fb0b8c1201Virustotal results 5.08% 
2023-06-22Ny.jsjs de1cf7265b9c285e94641b0a0a3b1294e6bd0f83548b30424d9eebe9f0157e39Virustotal results 6.90% 
2023-06-22Ce.jsjs ec6ea3dee78a1c871082c857d5f2d67cf16c6b5057ba1215472290d6a6011c65Virustotal results 1.69% 
2023-06-21Yv.jsjs 88b8b21d772502d33f78d89e2d56606ba7c9e3776419a7e28ed1bb3a80fee81en/a 
2023-06-21Ktw.jsjs f7b8ef5c426ce063d3bc2ab4446502b369cc21174de3ca8c4ac30306d7fc49fan/a 
2023-06-20Kicpj.jsjs 85bb35e412fcc2e2cfd0faf3d260f735b3ef95112936dbdaaac45135923c4004n/a