URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: globalhse.org
Domain registrar:GoDaddy -
Domain registration date:2015-12-14 06:43:19 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-05-17 13:06:21 UTC
Total malware sites :4
Online malware sites :0 (0%)
Offline Malware sites :4 (100%)
A record(s) observed :4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-04-27 11:05:42 184.168.107.207207.107.168.184.host.secureserver.netNot listedAS26496 AS-26496-GO-DADDY-COM-LLC- SGyes
2023-05-17 13:06:27 68.178.224.210210.224.178.68.host.secureserver.netNot listedAS26496 AS-26496-GO-DADDY-COM-LLC- USno
2023-09-02 12:08:22 104.207.134.116phoenix.herosite.proNot listedAS20473 AS-VULTR- USno
2023-07-13 14:55:18 103.212.121.57flash.herosite.proNot listedAS135222 MWNASHIK-AS- INno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-06-16 15:24:34https://globalhse.org/ietu/?1OfflineBB32 geofenced js Qakbot ext qbot ext Quakbot ext TR USA Cryptolaemus1
2023-06-15 16:14:48https://globalhse.org/ie/?1OfflineBB32 geofenced js Qakbot ext USA Cryptolaemus1
2023-06-14 12:32:40https://globalhse.org/entu/?1OfflineBB32 geofenced js Qakbot ext Quakbot ext USA zip Cryptolaemus1
2023-05-17 13:06:27https://globalhse.org/qaf/?1OfflineBB28 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-06-15 15:40:36e21e9ccf9b2f980a2c724cab2a4a9ff4cca6be9a117e18ebc3be54fc5011f999zip Quakbot
2023-06-15 15:23:477c4b60f4da6ca1854167a630b36f73cce9139c31e26f524e6d5b4022dc23d952zip  
2023-06-15 14:07:43ef14667b3ce40ee178f1a9b3f6f3fb71ce20bd96b5483dde83acc27deb66291bzip Quakbot
2023-06-15 13:33:2625c0fb7cdb7acf37c84d84318a4f598f197b09519279275efacb54570f139ee7zip Quakbot
2023-06-15 11:04:447d298e6538b80be42fa8321f1709f1c0b138517f87e2156f870caa2c44cf412bjs Quakbot
2023-06-15 10:21:52754a5f22e16b736659604105224d4333a57004d4c6f4c4aaaa5f6629931a2b27js  
2023-06-15 09:33:15eff02f7320bdf1d2effc76da9f8143162b37e632459d366bcbed8863208cb4a3js Quakbot
2023-06-15 08:19:3487f498b6b1cc9d8a87883ac481530d47ed781cef7c7c9d9faaed126550877676js Quakbot
2023-06-14 19:34:37a242b467fddca6e5a80b07ff3029b6df2631dc8a84114ffe59643a8c43e872cfjs Quakbot
2023-06-14 13:39:30e287b94ccd12dc41e98edff7ade74e1659809fb9ce3898bbc6abe7ad3579f966js Quakbot
2023-06-14 12:32:392e3f3e13937cc2e623db18df77e5fd709db78e65fd38de968113df58abd14133zip  
2023-05-19 16:19:45c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021ajs  
2023-05-19 12:50:5776443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8js  
2023-05-19 06:24:111a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eejs  
2023-05-19 01:40:05d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37ajs  
2023-05-19 00:41:07bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780js  
2023-05-18 21:36:52d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182ejs  
2023-05-18 19:35:191cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcjs 
2023-05-18 17:30:42d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9fjs  
2023-05-18 17:01:276016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59djs  
2023-05-18 14:27:289a409df957076ff61db6880b254d17c2f272bdca37fd420f1544b0c8db8f4351js  
2023-05-18 13:37:14ad3a510115f62b2cdabc978db56cb5d93c372bcf45b52fa39d4d125e1cae3caejs Quakbot
2023-05-18 13:00:31b866fb32a73c9c9a6de4c2fa92651d4d8d7f72f0fe66af797867274e8a889e85js Quakbot
2023-05-18 10:48:41c426bcba8c0bf1790fa05cb78d763ad67bedd1b1bc3eec6b4902700e097a1a0fjs Quakbot
2023-05-18 09:19:1971122ff461bd77e00f131eb7f52d813ed7a1fdb3262bba2adb83ee04085152f9js  
2023-05-18 06:35:270eb9fa07ffbdae465ca7afa7b68b6b38311315046844cd6ac97c9e3b77d5fe99js Quakbot
2023-05-18 04:36:19d953d8ab979233a6b29a964f031086bd74ed7eb684d99d10f5a881778f4d13b2js Quakbot
2023-05-18 03:10:38093f4994d50fb15a657ced4731d4109a45ae410dbe91554d201d3ad2c44501acjs  
2023-05-18 01:49:25ce5efda576bdfd577cb85bba27c1785787f37d30869878530f7249504d45cf69js Quakbot
2023-05-17 23:24:040107042269a76269dd71d3dc19e72a1759d421cbf33b9758b94f08c93f0989e6js  
2023-05-17 22:34:06c97e0d75191c3cd583de9edf9cef56be0b4b4bb3e072a64e3fd6133eef6ea96djs Quakbot
2023-05-17 21:14:2570cbe6d0639705257a62be9eb8da5151af27830bf379d05aaffea8a6d1f49b39js Quakbot
2023-05-17 19:15:178fd76523c7e024c9c533983f3ff94e884cdaeaef4e3cf5f935a5bdcfc242678fjs Quakbot
2023-05-17 16:58:55404e30334a58830297758dd73f2fee67f6ed0ea8c6d7fa501d7eb809925d82fcjs Quakbot
2023-05-17 14:57:0523c7e26757364f19557ee494d86b6dfc1c19e076aee18974a5443ce434459b22js Quakbot
2023-05-17 13:06:2774e7f951fe5dcd84fa5c570a1b2e27991662022a85a90f8f38cff80d462e8541js