URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	aquiacha.com.br
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-06-13 17:52:16 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-06-13 17:52:19	46.4.107.21	orion.cloudns.link	Not listed	AS24940 HETZNER-AS	DE	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-06-13 17:52:19	https://aquiacha.com.br/qeao/	Offline	BB32 geofenced js Qakbot Quakbot USA	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2023-06-14 01:05:25	b61f3d67e04969034efc6a92e626ee569936b15b07b8e994b860f2e72e0e58ee	js	Quakbot
2023-06-13 23:55:11	da5aad281ed680a522be9d0a37289be6db116abadd41982734f8d00faa22dd05	js	Quakbot
2023-06-13 22:53:56	3bda63a1f8c60521a0d35aa8c567de92bad4caa26a67b10f9c32a40f7498fb44	js	Quakbot
2023-06-13 22:14:44	457a814a86507539b3cba66c89ffef0fc5a9368981ef445f27813ccb05f2743b	js
2023-06-13 21:26:35	d086817161f6de425186882105a50b7da2366a6ed0b8e1b1b3a4fce11081e987	js
2023-06-13 18:59:21	5ad7cf86a6ebcdae9bee515375c90d51e24e26077a5eafe34011f3c9f756a65b	js	Quakbot
2023-06-13 17:52:19	115b8443cd8239aea1947c02a8d1659794441d660ccebade92282720926b57fc	js	Quakbot