URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: baltimorewatercleanup.com
Domain registrar:GoDaddy -
Domain registration date:2023-01-27 14:16:16 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-05-16 11:25:13 UTC
Total malware sites :1
A record(s) observed :1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-05-16 11:25:17 72.167.77.3737.77.167.72.host.secureserver.netNot listedAS26496 AS-26496-GO-DADDY-COM-LLC- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-05-16 11:25:17https://baltimorewatercleanup.com/ru/?1OfflineBB28 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-05-18 19:16:126016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59djs  
2023-05-18 18:32:1251ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4js 
2023-05-18 16:45:2176443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8js  
2023-05-18 15:50:52c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021ajs  
2023-05-18 14:17:20db59b4bee7e7aac147c463e8fed982b77b3440646771e7e8f73db27a7d8c23cfjs  
2023-05-18 12:38:09043c810fd7d77672928841fc44891531ce536c6b4cfb9a4e54529c20b36eecd2js  
2023-05-18 10:54:385c53fc6d6d29d37ae644bf3845ff851d6b03cd26eb5e411f93c26dcf018a4c35js Quakbot
2023-05-18 08:16:5717c3055ce856c6ee8bbfdfa36ea81dedf3d495e3aa418145fea73358747d4cd0js  
2023-05-18 07:12:147b0e64b5b88495d402a11b16ad7776cc5e0d44a07992e8b9cf9c7006a92ac8bcjs Quakbot
2023-05-18 06:20:3519add01de5eb9fa85d7bed9badc8daf24f0083faf06b7eaecd8b1efb21be5428js Quakbot
2023-05-18 02:47:32f0dbb6e29c6d7e8d5463a1e716423776b0aa2be9fedbdd957adf165559ca8a5djs  
2023-05-18 01:38:06def1eebe55f3bc428d1f39ef2f6c7d61a64a48dcc71389a348eefbb797e07653js  
2023-05-18 00:42:29c63bbe3dc673315fe3da91f26e53709a754546f9d2fe9fdbbd7dfebbf28c116fjs Quakbot
2023-05-17 22:01:36b65cfc5c1f188f590ab7d7d6a20d1ea638a086a9be61e3442b6ea9388fda3c0cjs Quakbot
2023-05-17 20:31:20a0c936769d05f511e808dc9d178d44c1b60779ae7ad0e7424e520b2e75ce335cjs Quakbot
2023-05-17 18:23:2834af4640c3591095a1562606faa096b2cab669c17859f8b99df4321999b17373js Quakbot
2023-05-17 17:02:3626a9ccdd2cb5bd68aea8b06532a4945f8f6585f5ee8e03fd64c7dd7ba9bde535js Quakbot
2023-05-17 13:55:217f5092d0b223ae713b6ead45d62c1c63d910a500fc960aeae16e1a1073355c86js  
2023-05-17 13:06:300281a8abb9cc25356770caa1340573c19ab7bda7d5303f43a60a52b2b9154067js Quakbot
2023-05-17 12:38:234a5bb0d1af42aabd643a23c518cbc77c4a2931fab8d180bbad1c0ea815f5954ajs Quakbot
2023-05-17 10:44:345b939c07e76fe301a66b2613a2e0a9b289b0ea6e468cef398b58bdc202465aa7js Quakbot
2023-05-17 09:02:11b4607f4e324c4486d0b09262d9bc4bdab0ea0143c5aa49fbbb688579aaf67d6cjs Quakbot
2023-05-17 07:02:1119634bc5d277bd2ef6f47daf49184306fa548e848ceecf2686aff981b80d822cjs Quakbot
2023-05-17 05:24:10d424fdf0b7f944b4b56a4aa5ebb3b9350e56ae670bba0a067b52d6cdb45e644ejs  
2023-05-17 03:29:02c07ffac9b1d36a0d280fd711deeb42679558110dbbffd46a49c3bf122d753089js Quakbot
2023-05-17 01:05:469e3931f0349989c7992625b9b609bbe6fb29ba89c621dbc007061e1cf254a142js Quakbot
2023-05-17 01:05:04e7c37318d38fb7d3bb26690f255cbf2273e28aa698853b0d78e194ba82d4ca6fjs  
2023-05-16 23:56:062bcd1c4e227e0ef7ad928860ded667e2987c6d6f42c87618648b7116f033b9cfjs Quakbot
2023-05-16 21:52:28149631d6f2435ff196cfaa5feec53cb3d818746593f610b3906fe6fa962a72d9js Quakbot
2023-05-16 21:17:3562449414b6bfbeba9ea09496a79b5b01f8d26855deeecbd1ecea9100ccdbcae2js  
2023-05-16 17:41:56209c2aceaabe07ec79169929195b8e872469414b44423339d518670e7ff43950js Quakbot
2023-05-16 17:19:50e78dbbe3321fe1cd1c6118d8feb0bc3e09c891dffcdc95d4e57bd9900ed0312bjs Quakbot
2023-05-16 15:25:577e896b31df435b8140458865f16972be71363f41889fe402fb2a21f07aad85d4js Quakbot
2023-05-16 12:15:49d8cff6bcce410268e0f5bf9089e1c09319e92faa76b05685c0d280a565199910js Quakbot
2023-05-16 11:25:1757e114b6c41d88d51490178c3230972d355e3ea0e0479f24d5fa09090f07e48fjs Quakbot