URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: cosmetici.com.br
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-06-13 17:52:45 UTC
Total malware sites :1
A record(s) observed :3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-08-22 02:49:13 69.163.185.118vps51420.dreamhostps.comNot listedAS26347 DREAMHOST-AS- USyes
2025-04-28 01:19:53 162.241.2.20162-241-2-20.unifiedlayer.comNot listedAS46606 UNIFIEDLAYER-AS-1- USno
2023-06-13 17:52:48 162.241.61.28162-241-61-28.unifiedlayer.comNot listedAS19871 NETWORK-SOLUTIONS-HOSTING- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-06-13 17:52:48https://cosmetici.com.br/dni/OfflineBB32 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-06-15 15:07:59b1b29c105b7ca9414002ed608ee8aec804d756925a16877fc0d8a6d9b272a816zip Quakbot
2023-06-15 14:29:28af17718a960ccfdac82b5b6b513307b88194ed78f2b6b476a89e783498c156e6zip Quakbot
2023-06-15 12:40:162b4d7a07c330ece34fc2fffdaa0fa147ad35d97221d9a1163dce4366dd4257e7js  
2023-06-15 10:42:29d1e131e24dfc38ea0883c94ff86e7ede73c5db56257b802a33fa3c639b0e7e1ejs Quakbot
2023-06-15 09:57:2147a8edb0c660a7a8b630b9426c5ba7adaea358c97a6e7d70a41426e5c37d9353js Quakbot
2023-06-15 08:53:49eac27978ca24fec75ab281645b0f8e75e86f1b861742d6dabafd7ca86ca3700fjs  
2023-06-15 03:21:431cc9b8ac64f4025144212c5262b32aa8e768e45c869f2d298de9ec726e89d1edjs Quakbot
2023-06-14 13:22:494d21f1cc62ff981db834b29c4317388c7504e3724395c105640666bab48c094fjs Quakbot
2023-06-14 13:12:19150361fa0e3890bde01a72818bb87a540e1aa9f31b13a18ad0beba518d3753a7js Quakbot
2023-06-14 11:25:27acefae9cf9ad1242d70a98450990bf561d7918326c9bf3d9519018f4799fd112js  
2023-06-14 11:01:25930344da054b37c5cc4ce764b1562976503b8062063ec52a0535b3d5a00ff583js  
2023-06-14 09:49:051b47d55fe6a8cf401ea08c28473c2c24938b7148b8e0e6e2970f56b9281451ddjs Quakbot
2023-06-14 08:39:469f9895cbe88811eb4a244c7ee0b6d3868136a1e1662bdb0202ebdb5930980609js Quakbot
2023-06-14 08:03:40570774e9bd1a8f8eae9a1943d1e3fc537ef304460db22a989261d9201d1d2206js Quakbot
2023-06-14 07:02:42c7b1f5bdba77ee38d49324f1e11eeafc16f5c6d58fb0f12be4290708730b5765js  
2023-06-14 06:01:44c72f9d4985280477c1b57234ed6fdb9d760060d765c03db312c206ea35e8cb98js Quakbot
2023-06-14 04:03:250b45bec0aa6e9d9969b6be347fac28fbfeac0102e552da0dc28e362f32c60f81js Quakbot
2023-06-14 03:37:2904d85875b74d2fb23177f6eee1a9c9ef79cdc7d0e0487718993dad7161d40868js Quakbot
2023-06-14 02:38:20e9ab96a64f988ef64c92226ff9c2411a3b4f055f673995e4e6e203c3c9ff3e24js Quakbot
2023-06-14 01:06:20b536742f4c71b3e6ebd5f9c0bd7755c1b4ed815fbd0bcf3b8c1b9a8f5fa0e0d0js Quakbot
2023-06-14 00:01:36f4e6c505a295f068260e162b3702b38adb2506af13c64162cc2b517fc9919453js Quakbot
2023-06-13 22:32:20c9f9c016085e20f6f3cc4ce1a2be8de531b3784c2aed172fd0f3c28b13206034jsQuakbot
2023-06-13 21:55:562a272653b56b77d03cd623abe943e7f0fe965b1a381184a2e6596be9eb9afdabjs Quakbot
2023-06-13 21:24:2359eb669a757058561ea4c07b922431289017a7bce6a4f8a1fac76b85c30ece5fjs Quakbot
2023-06-13 18:58:558fcec0e00b5c30b684c0b9968ffdc5c3fc156af7e2b742f3cb70342082909f3ajs Quakbot
2023-06-13 17:52:48702b05b838fa4bb7e62f8c97a3823c6d813ddc3b1a1b44e83225def58d0022fcjs