URLhaus Database

You are currently viewing the URLhaus database entry for https://civilwarhomestead.com/etev/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2667238
URL: https://civilwarhomestead.com/etev/?1
URL Status:Offline
Host: civilwarhomestead.com
Date added:2023-06-20 11:48:57 UTC
Last online:2023-06-22 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?): Yes (2023-06-21 00:37:06 UTC to abuse{at}hostgator[dot]com)
Takedown time:1 day, 20 hours, 43 minutes Poor (down since 2023-06-22 21:20:21 UTC)
Tags:BB33 geofenced js Qakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-22Onqao.jsjs 46caaa17c5063b62076970c6a7fe075d0be460f021bdd9ef611940182a6bb048Virustotal results 1.69% 
2023-06-22Qje.jsjs 32e25dc796400be387af4f15352e9e237693e69d952b85c287a5a2d8f781c3e2Virustotal results 1.72% 
2023-06-22Ump.jsjs 297b65e71353914b21ef228016cbc0a076d24655630ab04b4dbccd4a30a31e65Virustotal results 3.39% 
2023-06-22Pwag.jsjs 6a499bfd46105dd9a04668a9b6f9a5bad1a9445ee3773b67ee8e4deb7f686fe7Virustotal results 3.39% 
2023-06-22Np.jsjs f72d8fe4fca0857452e37eae36ecd43ec8c98867d2c06249c514024c98aab638Virustotal results 5.08% 
2023-06-22Ny.jsjs d2346519a6ef3fcdbc1c60470a6006067f4f039ec0b7d370e4619245a9e54c0cVirustotal results 1.69% 
2023-06-22Idm.jsjs b6efe8a6651b756a9dff6302157ed74b3eb097f0b13f487cc7325e43417d8e6aVirustotal results 5.26% 
2023-06-22Heq.jsjs 0f044d0080531475c155e63ae6ac2c3507b77877629d208be36b9e8dc8b32887Virustotal results 1.72% 
2023-06-22Rsywk.jsjs 6df67290960162b97ffb466237e0382be2f9fce879711916f33e7c1faec077ceVirustotal results 1.69% 
2023-06-22Pg.jsjs ddf7b825108a0a54864df4df6beaa35ac55ba31dfc7133f80a3a1b0f846f6421Virustotal results 1.69% 
2023-06-22Kvi.jsjs cf3716d17ccdbc0e9386ba01ac4460ecfff21c17aaeca58aac2c0fbac9451511Virustotal results 5.08% 
2023-06-22Qisic.jsjs f715b31013d7f587950f5891f783b6af96da4add8cb87bfd37b0d497157e4dbdVirustotal results 5.08% 
2023-06-22Xlq.jsjs 05e72933ba2058b97be42c6bcfd8fce52fd7e7c01678aae8965cbc376eed2f4dVirustotal results 5.08% 
2023-06-22Ly.jsjs 9b5aab62c8c131d2fe442d9100f8bd96d99e1b1e87447d82adf307730280478aVirustotal results 1.69% 
2023-06-22Ko.jsjs 5c9315e54b16cbf691206417834cf0427d19f586734931c60608c89ca525c946Virustotal results 1.72% 
2023-06-22Of.jsjs 97832d69e03587622015ed8b2af36fb0a78a761b7a44261a2680e61ddf3bb7afVirustotal results 1.69% 
2023-06-22Krsa.jsjs 6b496b722cc2f42ee00aa20bd2f8a7def25e30e1097ac86d39a34aa0c0feff89Virustotal results 1.69% 
2023-06-22Tpgfw.jsjs 2d063af9f7f71efbab3c7c7f8badd673c0f59fa648b9bdbebdba3efdf2917219Virustotal results 1.69% 
2023-06-22Pubzr.jsjs 5e11e9aeeda819d709bdc69b470519e41e5234894b62d08b6fe059ce321abb16Virustotal results 5.08% 
2023-06-22Um.jsjs c3e10e2370f023f3b1c2a3c4adae648f3441057ef56f4c773c2cdd3d7e9e0349Virustotal results 5.08% 
2023-06-22Iy.jsjs 7d71a8296417a3de85cc93e8d9a36d26166792a722cc8275e5dab3ccb61ece47Virustotal results 5.08% 
2023-06-21Nifgw.jsjs 0a29dc0ce9497abfb25b078c0d9c98d4dd97de02c9688057f69d6553b5e405ban/a 
2023-06-21Gbime.jsjs ea146021dd479c8f16e40b48385f9e267c5ea633529e2afaebdd439d564277c1Virustotal results 1.69% 
2023-06-21Mthx.jsjs 1b5866ce8f4a73492afbf25f6c0b01254d532ed75bdb29f13349b8be2a4d065an/a 
2023-06-21Ik.jsjs aa3ae8a3d341e0f141f5d68f9bb7e05d27a71f89bba3658d6bf491f1d15fc09eVirustotal results 18.64% 
2023-06-21Nytff.jsjs 89d3ed313e26f6fc3ef599d28375c2632454ba4652e15c4780d14d2aad275f60n/a 
2023-06-21Vibev.jsjs 2a79edccaea7a227c455c46c49789ce54af61ad780c249326a6e0f6f59dd5afbn/a