URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	aradin.ng
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-06-13 17:52:30 UTC
Total malware sites :	1
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-09-16 09:16:22	131.153.147.178	wghp7.wghservers.com	Not listed	AS19437 SS-ASH	US	no
2023-06-13 17:52:32	23.94.16.6	wgh25.wghservers.com	Not listed	AS36352 AS-COLOCROSSING	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-06-13 17:52:32	https://aradin.ng/cdi/	Offline	BB32 geofenced js Qakbot Quakbot USA	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2023-06-15 13:23:25	e5dce1eb0d47fd6df8823182d57122f7e61e65e8746e94639eaafd2ab54f610e	zip	Quakbot
2023-06-15 12:07:35	ecfa2f4a4aec3872ca2006986b31c1c931e41cf6b0c2732fe158200a60e884e7	js
2023-06-15 09:03:52	82313ade9759830bef7315f3c769957810ce78654f47e8fe118a7c25de2bdb3f	js	Quakbot
2023-06-14 20:44:51	14d5f7e51e721a63d6911a68bfbb6d257485bb56e1715381906d1b410860cba0	js	Quakbot
2023-06-14 13:40:57	7e3ad7bf2fa97a4409bbd01bb67fe408ec5e6866cf5ca2ad74dae8e9fcf41e23	js	Quakbot
2023-06-14 12:41:16	0849a869c12d5315bc0a61c6ad89af946dd5f073189bacb7aaf22597891c7780	zip	Quakbot
2023-06-14 11:31:08	57569333d65d14b891bb0f583dc302e7e5a7def51435a5a128a06b6782d0e3db	js	Quakbot
2023-06-14 10:10:22	bbcca37eddd3785374f00e536f7a6ab44b2d0ab8591c7e74dcc25b8409fd72a2	js	Quakbot
2023-06-14 08:27:33	18bc700ae4cb6fcdad8a07ee9a3dac5d23802799aa651e43a4ab31c3074aa69c	js	Quakbot
2023-06-14 07:33:10	6ca765d33ea0eba311be84e9ff67f65dcc4b81c19058c46331d4502dcc91c2e4	js	Quakbot
2023-06-14 06:44:53	fc7b2764014269e22e29092384aae3b2087b32ca32619ac2879471b486b19632	js	Quakbot
2023-06-14 04:53:08	570a45bb6b33b7a8a0fc9a63a4cc8c50cd2b12923de836ef58cd94c3e60ed5c6	js	Quakbot
2023-06-14 04:39:31	efc5079cb78e367de5d06317228a9cbd6960191852d65203978ce7ac42424fe5	js	Quakbot
2023-06-14 03:53:54	412d8ed2b5c5aa3eb0487ca19b47426c2631fbaff5900be52e3c978477d52500	js	Quakbot
2023-06-14 03:38:39	d73ad0f35f7ba862245dfb28c9f3fa54a9bb2b4730302eb8c7e173f97b0ce76a	js	Quakbot
2023-06-14 02:23:56	ce41189c698532d9868b6ca7707a5ef802d8a86a0d0dc917f87877dcc311815b	js	Quakbot
2023-06-14 01:56:29	eea96900b352686f4027368ea486dc36e9a045408a1d0648815c483533f7c7f2	js
2023-06-14 00:44:03	f666a788127bf2f9889af7487b05343a3bd70aac5e1422f3d072c6c7a2f5f1eb	js	Quakbot
2023-06-13 22:51:33	d578997e38238c6ced02ce0bb621168c2109002d185e063aaca9acbcac8e42cf	js	Quakbot
2023-06-13 22:00:34	50ecc004c17dfdf0cfd97c571e3f51c8e79e0502a93203a3bd86ac7ec51611f6	js	Quakbot
2023-06-13 21:21:38	9a5fe07818a395a994f670f3439742df6f38369c1c9130c84c8f3becea552086	js	Quakbot
2023-06-13 19:55:23	f3c89b57ec700157818293b4ab3cc6998e1cc99bce9e06431180baed8e8f8333	js	Quakbot
2023-06-13 17:52:32	7841a17722296c7ab0cef5982fc317916d62b939bb8b350643eade96ac5ff9ab	js	Quakbot