URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	immuno.mn
Domain registrar:	n/a
Domain registration date:	2020-01-26 06:18:01 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-06-13 17:52:27 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-06-13 17:52:29	198.187.29.39	premium70-4.web-hosting.com	Not listed	AS22612 NAMECHEAP-NET	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-06-13 17:52:29	https://immuno.mn/av/	Offline	BB32 geofenced js Qakbot Quakbot USA	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2023-06-14 23:29:51	66aa2dd7e584855acc0acfd0bb11cb368b4342687fee6f39a298fe4d3e7c0795	js	Quakbot
2023-06-14 14:26:06	5bf90545c2f31938eca16528d91721548a8394c87d3418f37a3e248246f87bfa	js	Quakbot
2023-06-14 12:44:24	ebec161b1dd031ca7a25c79351a5141ae66612ba6cf9fd1dc3de15cda6eecbc0	js	Quakbot
2023-06-14 11:27:21	d5799679892f2d41682602153ef3a6cb8606cc55b642e23e1d0074acdebf324f	js	Quakbot
2023-06-14 09:55:08	c9f9c016085e20f6f3cc4ce1a2be8de531b3784c2aed172fd0f3c28b13206034	js	Quakbot
2023-06-14 08:41:38	1d3a9835e9e8689c93d768a101b03ed05d000e75d9dd590b21bb07271353f00b	js
2023-06-14 07:07:36	d62cdaaddda1026ab7d661773daf7ff00ebbc890486d0eae1f14600d65cd0f3b	js	Quakbot
2023-06-14 06:07:12	001630641e12868fff408b994d5fe3de803100bf276fa26db76e831654bce2ae	js	Quakbot
2023-06-14 05:57:42	199f8075ae65ab51a377fc39b0009f4d371d893da6d4e66bbb2cbec5219d05ce	js	Quakbot
2023-06-14 04:29:20	b71674dd814d9b6e917f6a995c9628c746065bee19783009b808262e6825b866	js
2023-06-14 03:33:41	aa9a56b58360820ece0775ba743aa981a0e0ad24ac7c21a7377d051390802641	js	Quakbot
2023-06-14 03:33:34	0c9bd2cf68a473bf39a53f353fa5ac5f70995001cf388d4a410b49688713d3f7	js	Quakbot
2023-06-14 02:57:46	bcb177e44a1db09831cc15a8be2d2df7587c0deec33245fe2e9788d3575c1148	js	Quakbot
2023-06-14 01:14:36	daf0136e792cf3bf13bb53a8a40392f7ff38aa1bc870cc6a99b273f95c60d4ce	js
2023-06-14 00:58:09	dd8a49f0c0149eb9593e6443f58eda0a193be8e92a13e6fc25ea1e2691cf68ac	js	Quakbot
2023-06-13 22:59:49	39812c0ab253e75f4835c0da4cb08db82f3c7954ccfc3d9a989944c1ae295f8e	js	Quakbot
2023-06-13 21:39:38	2cd16497fafd54be453785f0de672f58bd4a37c1b7b6fd792370628b45b1c42e	js	Quakbot
2023-06-13 20:18:34	fb5e6d7464b87d8c745f417d2dfaeb41eddc6b75737084e27beef82da95c5d05	js
2023-06-13 18:57:34	69f93a6237243fafbd9819b0e9f48146bc2bb54273b0f7ef5815edf7b0fc9626	js
2023-06-13 17:52:29	db4f8c0c1ae2a40d44321117fd1fc22c03c44cddf6fe50d8058a3d8c370c38e9	js	Quakbot