URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	amazonbirdingperu.com
Domain registrar:	GoDaddy
Domain registration date:	2012-08-09 02:59:39 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-05-16 11:25:45 UTC
Total malware sites :	1
A record(s) observed :	4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-08-15 19:13:11	13.248.213.45	a67c48129651a0940.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-08-15 19:13:11	76.223.67.189	a67c48129651a0940.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2023-05-16 11:25:48	162.241.194.20	162-241-194-20.unifiedlayer.com	Not listed	AS19871 NETWORK-SOLUTIONS-HOSTING	US	no
2023-08-13 18:52:47	34.98.99.30	30.99.98.34.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	US	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-05-16 11:25:48	https://amazonbirdingperu.com/ueut/?1	Offline	BB28 geofenced js Qakbot Quakbot USA	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2023-05-18 20:44:03	d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9f	js
2023-05-18 18:51:28	6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59d	js
2023-05-18 18:12:09	76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8	js
2023-05-18 17:23:38	d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37a	js
2023-05-18 14:00:34	ead404112663c936fd9babf8efcdc0f5e6ce6670b3b9b2c27643cd9c72ad011b	js
2023-05-18 11:57:23	576d80e7bad2be3b3f4ddb0ccbe067bceabbc990bb96e11007cc74c2d6ad7bea	js		Quakbot
2023-05-18 11:42:18	c321a1664d74da4f73b983c793c4059b38202d4116be2e9f53f9aa1d4320d830	js		Quakbot
2023-05-18 11:41:25	3bc2c76bd30c4f67c56425ecd3201a7bd43655778be5fee4b7a2f72478c57d5f	js		Quakbot
2023-05-18 08:44:18	724461f309ab96d511ced805b91951db475a6c036216777c4f4570a3ce7fbac5	js		Quakbot
2023-05-18 06:23:31	819c3375d47e95f26e1466039e2ff5a096837d0761bed7564c2366b094c8895b	js
2023-05-18 06:16:18	ad9d5d545cd208607067a384f752e68873813a4863a25840901805e6778a5f43	js
2023-05-18 03:16:21	73abfbef5c169e5239c78d4c04f3d18f7f72490c2ca0cbbb33d92cac9675dd16	js		Quakbot
2023-05-18 02:08:35	934626b333d14ccf5c2f3a3effc073bba69fea3effa6d474f19bc48281dc9013	js		Quakbot
2023-05-17 23:28:30	ccdc371fa95a2dc8192ecf73826f489942857addced0e8ce4b9aa969aa98381e	js		Quakbot
2023-05-17 21:55:44	f14437be247480b6af38f3ccdd4ba46e6e55eb7b3d706b8df711f63558b8703f	js
2023-05-17 21:36:41	356f8c2ebf3f6ab97ed37e1195e6ccc8d5441e37c038c0c09c7f481b5aa205de	js		Quakbot
2023-05-17 21:09:18	0281a8abb9cc25356770caa1340573c19ab7bda7d5303f43a60a52b2b9154067	js		Quakbot
2023-05-17 17:43:30	928455b0e6b3a04da2d4fc9cc17de42c52ae2a640937dcbc9a048f76050c138e	js		Quakbot
2023-05-17 17:10:53	4657c8d962a15da8cdc6ff3c1ab3d492a89eebdd09249e8d29eea382791500ab	js		Quakbot
2023-05-17 14:21:53	562698d61476d96d6f3b0fd847585b9c5e4d1f9eb96f8153ba577725aa0eb697	js		Quakbot
2023-05-17 12:58:30	64dbefc6ce8b2caf9b441a36490ebed30319eed28e49ddf95d43659494906f10	js		Quakbot
2023-05-17 10:00:19	54a4a3e074ff22cc31b86638c0b92842abb8e50210d99199ca871c7a88203458	js		Quakbot
2023-05-17 09:02:56	704ba9aa1fff41b913c8599c068b5b39a18631605592bf7ec528bc6b4210be7c	js		Quakbot
2023-05-17 07:24:44	326cc24e3ad32abd95fbd18023850b5f12fec58debfd7ca5c417ccda04e4fcf2	js		Quakbot
2023-05-17 04:43:12	aa5d838147cec5acdd711cbe35dd9ca9e0cdef7ed6b1d47c4cea52355801b644	js
2023-05-17 04:24:44	6bd416d89a64830bb9264efa3a9bed9929f32b8a1c210305f79cd9d405767c78	js		Quakbot
2023-05-17 01:00:36	ff8c01ccd06fcea01357dbfa785383045f8df9db75826cb8050b3725a6985d48	js		Quakbot
2023-05-17 00:29:36	01dcc7b941bf1166caf7e45b20e938f98df6fc33d2c76d6c72ea56ef0439df61	js		Quakbot
2023-05-16 22:46:05	06e9338f8c84ef2eea4173cd609638337713b3a04223c7fe9cafbd2b78eab732	js		Quakbot
2023-05-16 20:28:03	3af8bb62d51aa24dd5d12741627a86bb420946471f2347bd080c0fc0d41016b9	js		Quakbot
2023-05-16 19:09:15	66eb7f6421f6b426cdba9d51c2e5e0c875ff391002ce41a0cd53d998a7af2cce	js		Quakbot
2023-05-16 16:14:41	41403671a1e9f66e44f7c0b7e10cc209b829df90820ae0ba98509dd673c188c4	js		Quakbot
2023-05-16 14:45:12	dd21219076f5d3e24129ce6b1a71f2a6dbf0b764b46a90461467c68a09f99e20	js		Quakbot
2023-05-16 14:35:49	274d0a493611f43156e0f6960b2f6fd82e9dcacdc7162642ebcefeb288e0b303	js		Quakbot
2023-05-16 13:26:07	9b3407fb4abe0459e81a16fcaf2c58bfa5e3ef000117351765eb76c4d46c7b79	js
2023-05-16 11:25:48	6948abfce5c3b45d037995658578feca02e89fb6b05549c74d00ce1c5ecbb945	js		Quakbot