URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: ghdgroup-llc.com
Domain registrar:Register.com -
Domain registration date:2015-07-22 17:56:21 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-05-16 19:10:14 UTC
Total malware sites :1
A record(s) observed :2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-07-24 17:55:12 208.91.197.44Not listedAS40034 CONFLUENCE-NETWORK-INC- VGno
2023-05-16 19:10:18 160.153.133.160160.133.153.160.host.secureserver.netNot listedAS21499 GODADDY-SXB- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-05-16 19:10:18https://ghdgroup-llc.com/odt/?1OfflineBB28 geofenced js Qakbot ext qbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-05-18 20:59:31d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fjs  
2023-05-18 19:21:14c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021ajs  
2023-05-18 17:18:13d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182ejs  
2023-05-18 16:09:521cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcjs 
2023-05-18 13:59:41935e56d91107aeedfb71a87d995f9cee169fb8f4abf76aed50a05ba63e4b052fjs  
2023-05-18 13:07:43ccdc371fa95a2dc8192ecf73826f489942857addced0e8ce4b9aa969aa98381ejs Quakbot
2023-05-18 10:47:013938ff8a3f26ca0c121f461afcbf7394844e31d1fb9e68757fd98de2a4b3238bjs  
2023-05-18 08:30:2093492712919e0adee85ebe16363f99eb8fdbfe7f055f8645bf21322ce803cc13js Quakbot
2023-05-18 07:14:50e6823880248255f28dad73af6553cfbae133b6df9f78eff124a379d793265ac2js Quakbot
2023-05-18 04:59:42d2338cd0376171b31bef79e7bc05e3954d3c61c6f23184804a1a1110dafa3d36js  
2023-05-18 02:55:09f064ddce080fc01f0b5b378227f89a1ee2f48034efc22bcdba315de07adb217ejs Quakbot
2023-05-18 01:45:25d8ee25b9b238ffa9197d9bb3defe47e9a2720909109c315f32b38191a4c534afjs  
2023-05-17 23:14:323f883b067422272c3b10eea88505351741b599d103f66676cb75912106735cfdjs  
2023-05-17 22:19:32828ab9b198ace6540bab66d12bff28bf5b11bb1258df06ae467240d2ff175f1bjs  
2023-05-17 20:23:42b4bbe3eb6f77c745b1c296728e15c69c6b766df2aa51d6d745ce4e5fee415e06js  
2023-05-17 20:06:57aa29c7434c1bdbe52fd461a295dac0931392a0852902d70bd91693bedfc48375js  
2023-05-17 17:43:37c7018ff287088c076eb317d0b9402bc9dda25e832c0b205e91a3aeef7468bcd4js Quakbot
2023-05-17 17:03:5849636b8d67746ef7da6e75b7b961332aa2ec681c92060c1648c4a9730e0abf7ejs Quakbot
2023-05-17 14:23:233cc62e68f657fa870eabb640cd8e651d4ee69a242db9feadeecdbe6a0435ea99js Quakbot
2023-05-17 13:30:39813efe88246132a445789b21b1536bd94263cd9a8c7623d7b96a9e5ac755d470js Quakbot
2023-05-17 10:49:25d86bd24d259bd30a01c94fb535f0c0e3c8aba5557a6d5065e13de15d7b9ece75js Quakbot
2023-05-17 08:38:209bcb03f266dcce1657cc070f9b87ad562abe1836fb13710217a9866c5f35ddafjs Quakbot
2023-05-17 08:02:345e65f72351215bfb912a93dd2b37ce2963cfd0bb5e1c6986dc72844a3e8f190djs Quakbot
2023-05-17 04:33:468d30b51fa352affda93933bb361d1eeb949cf5edfe8b779953d992c4a38e0eb6js  
2023-05-17 04:08:175c3e2f76eed1b2341c193b7bf3421d6e8604caa8623468e78eec2bfc0111a912js Quakbot
2023-05-17 02:24:097707d6baca2f7024327a657b3c49cbfb2370ade804a6c8372cd8ae44348c952djs Quakbot
2023-05-16 23:55:123118abe32ffddbcdb068998f903689286e4d6edc5377e1ba2cb6051953011128js  
2023-05-16 22:50:1635bd142bb2b84026537a1cc380433232f6caa8af0d13e3974beb34a654b0d8abjs  
2023-05-16 21:10:27e654f87c9b111c082cdbfe922bbc14ba5d244cc59953bf3f7b077b274b57197ajs Quakbot
2023-05-16 19:10:185368ef886a6426bea55e425b22700a1cd8e2ed3d71c195845c13e4ffb3132c3cjs Quakbot