URLhaus Database

You are currently viewing the URLhaus database entry for https://ninetofab.com/oug/?1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2669066
URL: https://ninetofab.com/oug/?1
URL Status:Offline
Host: ninetofab.com
Date added:2023-06-22 06:46:15 UTC
Last online:2023-06-23 21:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: Cryptolaemus1
Abuse complaint sent (?):mail Yes (Ticket DCU100137288 created on 2023-06-22 06:47:08 UTC)
Takedown time:1 day, 14 hours, 53 minutes Poor (down since 2023-06-23 21:40:31 UTC)
Tags:BB33 geofenced js Qakbot link USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-06-23Pp.jsjs d4029612d9cc09013e23fc478de8c7cbb8318a090862cefc991dbfc933298c9fVirustotal results 6.78% 
2023-06-23Fvdg.jsjs cafed396efdb688fe471bfcc15b764ce2bb729b2f12217922f0f2ebaa3443968Virustotal results 5.08% 
2023-06-23Upm.jsjs d3f49b113d42b8e7c3cc2cadb6aebf7c44c45fdd02d4228bad573003dc588158Virustotal results 29.31% 
2023-06-23Hoain.jsjs 2aec86ff6c8d4ebb7060979db985d906305ca5a567e1f8cc3dc29ec6e872d561Virustotal results 1.72% 
2023-06-23Aue.jsjs b4814484379775f1f034aee8d9939b0cd2122f2347acedc74c6facd4e77b8903Virustotal results 1.69% 
2023-06-23Cr.jsjs d6209d373da381ab887c0f93295e9756adab4a745ad1a21dd0ff7e24b2720a0cVirustotal results 23.73% 
2023-06-23Oa.jsjs 05916da047af733e480ac71dd0a5522848b97f4fc7c2471eeac7d4d65e3ea0e8Virustotal results 5.08% 
2023-06-23Ht.jsjs d476bf7471b36776553bd62fbfb1d7fec8f7fc94b9bff8438f621a7b99aa5e96Virustotal results 1.69% 
2023-06-23Sun.jsjs 990aaf6ba6a2bf40f85f8c28ecf2d17ba6b1333e2f81e2d52a4237089ce3d6cfVirustotal results 5.08% 
2023-06-23Zp.jsjs 65e04b7539b4a17ea1e7f3c35f111ba2a12d37b5f15a9c69e11593d5cdfaa397Virustotal results 18.97% 
2023-06-23Lia.jsjs b361e1b8792f0ffc37709c69776260b149e151dad844b8f75d2f12c7354f0433Virustotal results 5.17% 
2023-06-23Qnh.jsjs 5e966759204bee233716f591f4a9bbebd852d89cb5819dc4d9d2c650d00fb6f3Virustotal results 5.26% 
2023-06-23Ukq.jsjs 1b5866ce8f4a73492afbf25f6c0b01254d532ed75bdb29f13349b8be2a4d065aVirustotal results 1.69% 
2023-06-23Wdrkc.jsjs 612799d36dcc8df6d744e009a73deb930b00b615280281315fb2f1d9cf776897Virustotal results 5.08% 
2023-06-23Mimc.jsjs ae2e5f757ffbe0fef6bd82b43d52c831b051668a664210501a196564d9c34a78Virustotal results 5.08% 
2023-06-23Mz.jsjs a8f8e844313cb75e2da2d44da923a31eaae360c3ed9c36bf4ab8e6038b1a6ea1Virustotal results 1.69% 
2023-06-23Wwk.jsjs c3bf2ca06c7f1d2b93e495869a9a427691bbe3636de2cc4169c6e8e23a4354ddVirustotal results 5.08% 
2023-06-23Rqgt.jsjs aaed8e46656fe804fb34c7d9fdfa668f750fb427a41c18c5b2315ecd8268e353Virustotal results 5.08% 
2023-06-23Pkolr.jsjs cd16166d3282220941c6fe8fbf95d7318cf5d8e19048bb9e6ddaa83979b90c7aVirustotal results 5.08% 
2023-06-23Fyc.jsjs 181d7007864b27b0892df8da89213093aa6e543a12e97c1decb255158a743596Virustotal results 5.08% 
2023-06-23Dtfp.jsjs 81678fca61d5ab2f49a9614132e470f94ae6c8c93a3127de3b3c373679b59364Virustotal results 5.17% 
2023-06-23Oktg.jsjs 01ef83a83dabe4d9d25ea30f7e946d650e57a813ebd9a6a846aff69eb64991e9Virustotal results 11.86% 
2023-06-23Gfoc.jsjs 97b0e7c39a4951dbf6a8cd38ba8f9ce8710487418ab309da5bb49800818ef5d9Virustotal results 5.08% 
2023-06-23Df.jsjs 5a4cb2127a06c48bca62c01960ea1475a41a7ba4d42d1ff2d22b3778b0fed678Virustotal results 5.08% 
2023-06-23Qj.jsjs d96d46c0b3f3387b2b3013e8baf96f2a6108b9a7af1ece6f5e9392a688d01218Virustotal results 6.90% 
2023-06-23Gh.jsjs de547e3e2f3bacc706864cf2db90f093718b4c29910ccec0380467a5121eb7aeVirustotal results 11.86% 
2023-06-23Navsv.jsjs 2e673cb2158281b85015a0bdec8af77a2e74ccf6cf29d2b37e642e0717b3a073Virustotal results 3.39% 
2023-06-23Lz.jsjs fbac387543ec243cb6bf33e43ac939bb73f4148fe63ff463dd98dd8fe0b90b28Virustotal results 5.08% 
2023-06-23Tot.jsjs 8c3d473a1622eac664d3aef7bd7c80df8260f71fa5da07ac39bfd2801df901b6Virustotal results 1.72% 
2023-06-23Xr.jsjs 4e59a864cd618fb5c8d571470c9b02280b2876fea954b330c15b8396b24e2427Virustotal results 5.08% 
2023-06-23Srnb.jsjs 6745d3b40608f8d2769851da8fb7298c03a43939b990ed3df56db4b8023dc558Virustotal results 5.08% 
2023-06-23Bnu.jsjs 8b63ca65af2447d137b666b617adb6f608cab440d972d474e48e0854cf20cb5fVirustotal results 1.69% 
2023-06-23Boy.jsjs 09c934edd6e4f3848dd457a100eb12adcfe7d7e24db1fa3a7e9458e068417544Virustotal results 2.13% 
2023-06-23Ep.jsjs 648ea31d679fcf7f1cfdc559fe32eafd1e3e31ccaae4f975c0bbcc6c6e6ce3e4Virustotal results 5.08% 
2023-06-23Ttt.jsjs f0c716b389bd53622e017eef1b7dad424c6d8a8ba4a45766d68a04a462b81104Virustotal results 1.69% 
2023-06-22Hjloq.jsjs 1ea189f4c1a5f3337d42388d23a9bfdd8e00a00732fb4e6cb077244cff0fe146Virustotal results 1.69% 
2023-06-22Myu.jsjs f9255e8cc8dd2b7d6282a5882d372b8e813de569add3bc56c53d85502a9a4aa9Virustotal results 3.39% 
2023-06-22Adwcs.jsjs f38d7a98cdbfd69050a5652528e452e12db76830cc2c751d182a9088b2493ab3Virustotal results 1.82% 
2023-06-22Xoqsg.jsjs 2e58d291e2b56440d48b2a542599910cdba10e9f2dc829e298ad5922a2be56a4Virustotal results 23.73% 
2023-06-22Bocpr.jsjs 74060d001d4e19b003b5b255b9f75796e53e3fde9f275314c5f736a86cd3f7a3Virustotal results 0.00% 
2023-06-22Bqekr.jsjs 5ed71722ea151760711a3ccc541ac0adb1abd1c49a219402e9a299eb0edb59e0Virustotal results 6.90% 
2023-06-22Rvtxc.jsjs af47496bed0157a418f135566be948ddd387f6040b626f559762b7d61d0237f1Virustotal results 5.08% 
2023-06-22Li.jsjs 374df00584b2125406038cf7e833ce264153bdd9287eab670339129ebddc038aVirustotal results 5.08% 
2023-06-22Ux.jsjs bb5ecedca925450bf2e1913212852a1a89944cada7f9263d00c7ac1268764e4fVirustotal results 1.69% 
2023-06-22Vnum.jsjs 479261fcc95cd7e725fea93074b8772ec2da37ee967ef2b3f2803f22e530ff9eVirustotal results 1.69% 
2023-06-22Nr.jsjs a9e65ee00179a693dae9285a5922a2a6a631ac9a81e109d571df25ff24c0e7ccVirustotal results 5.56% 
2023-06-22Bpiw.jsjs af2d6e0eece9ad9636a20d02f33af88642f1f5b9811ca8b668cc86f966abf90dVirustotal results 5.08% 
2023-06-22Tcyip.jsjs 55c6a44d2c9e66f62fc0ee8ae4350ad7896b6b4b9387aeebeba9c7fedc3405a8Virustotal results 5.08% 
2023-06-22Eo.jsjs 221e8d28a7114835fa021ba6dc84d53ab64c941e44a0da80d85c74a1bd694935Virustotal results 3.39% 
2023-06-22Sqgzo.jsjs 8fae32c20744d1ac06055f267a7d87f55c570848e10a07649259d651d5294b61Virustotal results 5.08% 
2023-06-22Ie.jsjs 8c56d8f8827c82d061bc9ee9a17736a87c5842ca60a8813fe9c866ee29f3b67aVirustotal results 5.08% 
2023-06-22Kt.jsjs 297b65e71353914b21ef228016cbc0a076d24655630ab04b4dbccd4a30a31e65Virustotal results 3.39% 
2023-06-22Whwjr.jsjs 11691e93c1b4e8bec9ca7937c184740e908ff3ba723eccfeeb0c26abe4b263a3Virustotal results 1.69% 
2023-06-22Blwm.jsjs 2f3e73d196afcdd86e0306ae98a1e7fdfaa501968d3710ca5d0fed3a22d05eecVirustotal results 5.08% 
2023-06-22Loj.jsjs 596b8d6a3a00f0695fe90d07dd92b023caf6de7fa74cc38e97990b0a9a32c516Virustotal results 1.69% 
2023-06-22Xzdgh.jsjs e59b938323c979deeccb858936897d2caf19fc7cb8bf85805e60cfb5f087c195Virustotal results 1.69% 
2023-06-22Cyf.jsjs 6a499bfd46105dd9a04668a9b6f9a5bad1a9445ee3773b67ee8e4deb7f686fe7Virustotal results 3.39% 
2023-06-22Raiep.jsjs b111e288637fe51492ddd763951e62c28b208b7cc07f2f1ddbc068beee3962b3Virustotal results 1.69% 
2023-06-22Rwum.jsjs 0d61164f3a330cdea3b208cf20bfb48e58a556fd16bcbaf9640a569c4b9ff8ffVirustotal results 8.47% 
2023-06-22Xoqmg.jsjs 6df67290960162b97ffb466237e0382be2f9fce879711916f33e7c1faec077ceVirustotal results 1.69% 
2023-06-22Trxz.jsjs 61a6ef7673afcb02665635e2569dd7be28b35d68f4bdecc6a81bcbcfdd5ba529Virustotal results 1.72%