URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-08-09 18:30:59	162.241.2.49	162-241-2-49.unifiedlayer.com	Not listed	AS46606 UNIFIEDLAYER-AS-1	US	yes
2023-06-13 17:52:38	162.241.2.50	vps-9013616.plataformafly.com.br	Not listed	AS46606 UNIFIEDLAYER-AS-1	US	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-06-13 17:52:38	https://engenharialda.com.br/toro/	Offline	BB32 geofenced js Qakbot Quakbot USA	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2023-06-15 15:03:33	d57ca37b6219390110344d4797c5d33aef44ca82d7d652946cfd6a9f8bd63998	zip		Quakbot
2023-06-15 14:14:00	f809e9d5b1257b8a2bd29a10e4e5f1e4a72fd9d47052cc390e9e6e2c8403735f	zip
2023-06-15 12:59:11	43a518cda69b0a2aa612fe35b41c147f945f497cb6a94fdb9dc73d1c1b907171	js
2023-06-15 12:07:47	c5c50b3a7c3fcacd521bdb227c710f8e48d6900910505976689c972bd47f83e6	js		Quakbot
2023-06-15 10:14:09	6d59b65e8f901b4d5bc531b33899eff95d49c58d787acbb81fe141e890ecaeb4	js		Quakbot
2023-06-15 08:36:54	95f906e704a0fc52ff27d3b59841fd98b015507d23d615b90e3e4923c8d79c40	js		Quakbot
2023-06-14 17:21:37	845f30ed0b65863dd10576279a8adf2c7e89ef62ab94cb1b8cbb6684f27cad85	js		Quakbot
2023-06-14 14:12:29	9aab71105e973fc0120fbf4ba1599483039809aafe1f649bf867701d6c68becc	js		Quakbot
2023-06-14 13:08:40	e1e8b43fdc48e47142839e3c99cac23d7b5704b4fdec7273dbaa98f2cff623c1	js
2023-06-14 11:27:13	4ea2b569e5dc6389a3bb81ff4f84d75f4f818162238b1c9844a487674dd44157	js		Quakbot
2023-06-14 10:04:32	2189fc7d4919821aa3397ee92a9388a0c68cb5e9609bb6e5bba88da219126306	js		Quakbot
2023-06-14 09:09:43	62356922472019adcfac4e233a2aabc0eca414f713a656412ee5b5a77dcb4658	js		Quakbot
2023-06-14 08:22:35	3e1667b0ade50d60845228578f60a6540cdbd21bb0bf6a52bc186a239d809409	js		Quakbot
2023-06-14 06:37:22	e1278a6ca91d3112345095ef66d152f0aea42bd2438d23f7565a3a90e01942b2	js		Quakbot
2023-06-14 06:25:22	7074ff624519388df3fce38a20a1ce34aad2d8b620c5e61c13b7443ebd572b7e	js		Quakbot
2023-06-14 05:56:05	184197d57ce5cb830933f2eb4ddef420b90bd6943cfc7e727dadba04cb620386	js		Quakbot
2023-06-14 04:03:24	990fcc25de370c8b28fcd7dd0c37eedff5aac1fa3c53d892528aed63d3e46499	js		Quakbot
2023-06-14 03:28:32	d9c252bff6eda77d590cc25382534d315921058f11abf5fd8cede81804f89ec9	js
2023-06-14 02:19:51	6e9a243e03c14c6bf4a1eb893cefc20b2399519d2c7185f2ce0f99c28916a25e	js		Quakbot
2023-06-14 01:58:00	24d9537d3b8010f7ca4629170de02d72a16212bfb3eb11348c80aedfcdfaea87	js
2023-06-14 00:47:22	a479fa5413202ad33301a761f0ed4c239ce08a430a5068b3495f9975e83d39b3	js		Quakbot
2023-06-13 22:54:00	52d7a3eb1a87e1844d40bddb7c30f0a99000d0e5aa997c8e2b458821bc79f123	js		Quakbot
2023-06-13 21:43:45	451498b188ecb6bab94beeeb7c5147abc4814073f2c90058544fc3ce28c82bfe	js		Quakbot
2023-06-13 21:34:31	905af047345addcf40ced0d92bc5164fad2cc99dead0c067e5b5f091d2e9c24d	js		Quakbot
2023-06-13 19:03:36	8b2b5ab2f87cee54c8cc50586169b8759ffe94753cdf9084e2f12cd58cadcfc7	js		Quakbot
2023-06-13 17:52:38	7fb0d0d006fb2d1a05576482a1acdfdd21d674d14f989933f67a5d2f594c7b30	js