URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: derofx.com
Domain registrar:Namecheap -
Domain registration date:2022-12-13 17:50:19 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2023-05-16 11:26:03 UTC
Total malware sites :1
A record(s) observed :1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-05-16 11:26:05 68.65.122.92server170-2.web-hosting.comNot listedAS22612 NAMECHEAP-NET- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-05-16 11:26:05https://derofx.com/tuir/?1OfflineBB28 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-05-18 19:32:05c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021ajs  
2023-05-18 18:32:4651ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4js 
2023-05-18 17:02:15d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fjs  
2023-05-18 14:18:32fece7b3eb85a14d01f5c11d72b1d89920d183f55f7d39e7d16a00988cb4c93cdjs  
2023-05-18 12:58:59e90a83b63ded96ef671ed3692c8983df0d5845adeef9c03bbbacc8a34cc8db79js Quakbot
2023-05-18 10:09:29a70e07343087b1341505ab67207e4f4d1170a7ae25f9b7c90ca2eab5663e3db9js Quakbot
2023-05-18 08:27:000204463c040334db593942c0e48063d6f6df33cbfba1fdbf8bfe51aa0bf83372js Quakbot
2023-05-18 07:20:18f27926066b5633ef279634f13fac70b4fc198ce37d68ef22e07fa19e4bf0fd44js Quakbot
2023-05-18 05:05:462072042cbdf8458366261756217da566a1b8d6cf4b24541a37d71c44c07c7fdejs Quakbot
2023-05-18 04:26:5985341f4b78166b2b1fe18125caf6a187b8c29c45ce7ef3956530cfd4bd6591e0js Quakbot
2023-05-18 00:56:08447b96999dd079d4e5bbdefc464fbae41be6c1d6f55fa0d6dc0cf9db6f3490b2js Quakbot
2023-05-18 00:45:307fc4905fb7d4a1e1c931e869fdfaabceabbdbf242ca9e35ff7178f74e6f7b207js Quakbot
2023-05-17 21:22:539b64ae131a9769a5a9c68d07ec022e6c1bb857b911fd3e4ba914453db7e4b317js Quakbot
2023-05-17 20:18:289ed630b44354fa9a5b12648e092b487dbecee08d6aad53bf5d2695dbea9b9cc6js Quakbot
2023-05-17 19:31:205385fad188601d9e6dde0c124799956c0f227ef163e10a45533ba701150ef12fjs Quakbot
2023-05-17 18:23:23c7350bae160037853cf976ce2975bb3bf2a766449f69080fe67c733cbe18e005js Quakbot
2023-05-17 17:12:04e33a486361f2b596983444fdfcab380bffa678c31788687e1d8fb8e9aed9f6b0js Quakbot
2023-05-17 14:51:25bc85062a6ed96ba55f83637c5941ebb10dd8734a7486eb2e716a41e21578b347js Quakbot
2023-05-17 12:51:368323339fe9864a8ae4d4d40aaccb4bf92a9b3ba6b545c2210dec09fb28bf9374js Quakbot
2023-05-17 10:55:4067a65e547d816ffbf22aa6f4566683c49686c114668c16d033c7741de6c9b117jsQuakbot
2023-05-17 08:10:06abaf44b363d38d782b6130de3eb34338d52cf9dddf17f38e603cd4b07dcb6619js Quakbot
2023-05-17 07:14:133e64a12cbe4c670b4b3a0fb325a3bb3c01fd052cbf597d897054156f7e83821djs  
2023-05-17 05:14:29db1db35f34e9220d1191ff87ec1d0aa49dd14efe42065bfa5420f0b141ca0626js Quakbot
2023-05-17 03:41:17ad81dc2308de9ff8c3dcd7ecb90be6076650f6d760a6a8076e2b7fd8cd1dc7cejs Quakbot
2023-05-17 02:44:541a223cd50b651fdc815071bf20a6bc43b0b3e671ef51aba480b6748fb42c83f0js Quakbot
2023-05-17 00:55:2272aa57271565dbf8b2772e7c7d47e5aca67538ae2e68563362afbb8d0ba51315js Quakbot
2023-05-17 00:47:3839e9742057a63f7df05a6ecb045c366a47aa0b460b8d0251f303504d450e0b5ajs Quakbot
2023-05-16 21:53:382b2418f3c02011ad281a67c4f0543131b8e16a16baaab9bbc83971b2ee35a963js  
2023-05-16 21:17:38542e90d0f6102f954435117bead86647d83a6f41f9eb0adc387f28aed88f7877js Quakbot
2023-05-16 19:04:467bc3611875b84cf22e28fb5a3414206c3c76219390b8efb9132c51200cb8692bjs Quakbot
2023-05-16 15:53:38c32b1d453449c1296708a323f832a2b5115107ed8daeef98be04fc1570db97ecjs Quakbot
2023-05-16 15:15:0906ae2c8212c1202fb18fc9141c3723de925bdbd1b1a6a9959468d627ca9a546fjs Quakbot
2023-05-16 12:58:485d8d1ba6d172f20d83e8ad051858ebc817b0ff3cc8dbb6367966007eebf92690js Quakbot
2023-05-16 11:26:05ef57b6ffefc373414571cf8d127f8d7f677a2cd44538818f80164d21de5884d7js Quakbot