URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	infraarch.in
Domain registrar:	GoDaddy
Domain registration date:	2022-10-31 11:59:32 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-06-13 17:52:41 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-06-13 17:52:47	118.139.163.88	88.163.139.118.host.secureserver.net	Not listed	AS26496 AS-26496-GO-DADDY-COM-LLC	SG	yes

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-06-13 17:52:47	https://infraarch.in/pa/	Offline	BB32 geofenced js Qakbot Quakbot USA	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2023-06-15 15:14:34	cc79076d9ce4880a1d9ac29cb43472c9469a13b8decafd75d89c9995c9481295	zip		Quakbot
2023-06-15 14:08:25	c39d2c682cefa3953ff2e8449250372d6e60072686034294e3cd266526940931	zip
2023-06-15 13:04:42	12021a72a987fe2b949d86ffd24cc1affa32fb4eb5ed8473614f7ad0b101888d	js		Quakbot
2023-06-15 10:22:11	8f3c9ffb2c4dbbfe36b9df32bd6af1ad64d87eae20c2bf0c4f07b7aebccbcb6c	js
2023-06-15 08:26:15	b3b5d49270482083ac0e41ec1a28e45b09df9ec4081802deff17412288f985c2	js		Quakbot
2023-06-15 03:43:46	861a4257dbac80a697b66a11349a80fe384df8f5be62ee4d0bd3fb06fc7bb82f	js		Quakbot
2023-06-14 14:32:10	1c944f78f45c258901d24b07361415399f05ba3a81f7961ce886a489fc4754d6	js		Quakbot
2023-06-14 12:28:10	ea77f07f2351d7a02877d60ab1c40ba85243ecab88bc45b949465327304a3379	js		Quakbot
2023-06-14 11:29:46	ddbdf8827c8645e4d3c86f2a770adccaac5370409f0db46031078e56af9d71eb	js
2023-06-14 10:54:36	53c928e0f9b90660ec43f951053bbc63379cc0f1a7f0dccb103eb1abe02261d7	js		Quakbot
2023-06-14 08:57:25	e24dae59a010130abde32f4eaff31e39090feeea4c7c45ae39cf343fccb72881	js		Quakbot
2023-06-14 08:43:14	6e86f26862c886b01d7e28e34077d50ee7d167a4a5925ad9932469d5b12f2622	js		Quakbot
2023-06-14 07:21:16	115b8443cd8239aea1947c02a8d1659794441d660ccebade92282720926b57fc	js		Quakbot
2023-06-14 06:44:25	57c6e46915487292316b14b5703105f8dcd0d12e72510826abc8146f94789650	js
2023-06-14 05:04:10	bbcca37eddd3785374f00e536f7a6ab44b2d0ab8591c7e74dcc25b8409fd72a2	js		Quakbot
2023-06-14 04:40:09	ffb17a669898e1dcf650a3f29cd996e7616f2fb2fc74686e07b05d959b4099a0	js		Quakbot
2023-06-14 03:35:09	56e5d6b72e197e9cef7b8d42b87f8e79bed17613daa4acfe8f8fcf3260733cba	js		Quakbot
2023-06-14 02:14:16	443a4858bb97867d5cd71cf4bd4fa72fd89ead7f2a7c7c54cb88492000166886	js
2023-06-14 01:12:15	6d0ca821cf16f5705471d86c3b715cefbd20f9caa3b98f08a88999d75a8f263d	js
2023-06-14 00:08:38	f22900950309f35a43540587d7a68e2811a55c47791e0e2bc74f7cce84cd6b39	js
2023-06-13 22:35:25	c4d95cad8bab68a64041664b2c5ff363040eba5862e3bb707bb55a8759d3c782	js
2023-06-13 21:39:32	68dacc89f57814c2cac5cd3a53abc35e2b75bfcb7c8d84b9b33275300249ee1f	js		Quakbot
2023-06-13 21:06:06	62e7f25b6d8353f0a3d466d94d6b1a107d843470def495ee8190dcab14dfd396	js
2023-06-13 20:00:52	c7b1f5bdba77ee38d49324f1e11eeafc16f5c6d58fb0f12be4290708730b5765	js
2023-06-13 17:52:47	66be7c0113cf0006d55f00d9118ccca48387ef64349dad33ec607bf2c6b1319e	js		Quakbot