URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	baltimoretrashremoval.net
Domain registrar:	GoDaddy
Domain registration date:	2022-11-12 15:39:05 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-05-17 13:06:04 UTC
Total malware sites :	1
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-07-18 14:08:26	68.66.200.219	mi3-ts106.a2hosting.com	Not listed	AS55293 A2HOSTING	US	no
2023-05-17 13:06:07	72.167.77.37	37.77.167.72.host.secureserver.net	Not listed	AS26496 AS-26496-GO-DADDY-COM-LLC	US	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-05-17 13:06:07	https://baltimoretrashremoval.net/mit/?1	Offline	BB28 geofenced js Qakbot Quakbot USA	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2023-05-19 09:26:24	51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4	js
2023-05-19 07:07:40	bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780	js
2023-05-19 02:41:45	6016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59d	js
2023-05-19 00:05:42	1a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0ee	js
2023-05-18 17:46:01	c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021a	js
2023-05-18 17:39:36	d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182e	js
2023-05-18 16:47:54	d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37a	js
2023-05-18 15:13:40	76443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8	js
2023-05-18 14:04:34	66e342b4d7e2065a87ca4110a44308783b338bad1a8b54be47fe6f39d7fb93c2	js
2023-05-18 12:40:56	becfbdbbd5a9cfbb918940eafdd8f586133d77eb11bfc5dac1f96e7787abfd65	js		Quakbot
2023-05-18 11:12:00	5c02cc26158109b9e14b2601be5848cda11477e56c521a791dfdc4081366da0b	js		Quakbot
2023-05-18 08:37:51	dc776fb044bb27e20a16f383ecdaa44a67be283f4902ddd48f1f6cffd24d036c	js		Quakbot
2023-05-18 06:39:19	6d790992a3828c5f421e6c85ac319d61de4eb5320ff67d91b8e5d4577865de5c	js
2023-05-18 05:07:41	c7f9d6c56a28ecc44744a1c617778af39179d5869bca0ccd518016eae401078e	js		Quakbot
2023-05-18 02:47:54	43a19d17453fa7c2633186d340c06a3b0b794b8cfe7e6ce0adf02f44713c5e25	js		Quakbot
2023-05-18 00:55:22	f463f7a1eabfcde6cac3157449992b10b752021a61c46392c383c0949c81a709	js		Quakbot
2023-05-17 23:26:53	6a36fcdbced70acfd047d3132e249ef81960cf97f62f9e391e672db0ecd19f13	js		Quakbot
2023-05-17 22:34:53	a581d1bc0926e4888a7d919a2ec529d51e03862bf784ac4cd4333e3df168d239	js		Quakbot
2023-05-17 21:12:40	5195290a6bfe72d1709c08345d0210181ab60e363339796ef44c05a17d9c03da	js
2023-05-17 17:38:51	561eeabd5f230ff8d733b3aa53f761558b65f54ba6d32241bf0350b4e136b808	js
2023-05-17 17:19:47	959eaab7d50ed2022fc6403b969a196f340861c5aafaa73ebd170ad225699275	js		Quakbot
2023-05-17 15:21:42	f14437be247480b6af38f3ccdd4ba46e6e55eb7b3d706b8df711f63558b8703f	js
2023-05-17 13:06:07	4c15dba778afb1200f2c6d840c81c397c3fa416e7e47b19d01800000c0ce6f82	js		Quakbot