URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: lifestyle.mn
Domain registrar: n/a
Domain registration date:2019-03-06 01:07:16 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-06-14 09:02:04 UTC
Total malware sites :3
Online malware sites :0 (0%)
Offline Malware sites :3 (100%)
A record(s) observed :2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-06-14 09:02:22 104.21.95.100Not listedAS13335 CLOUDFLARENETn/ano
2023-06-14 09:02:16 172.67.144.70Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-06-15 16:14:22https://lifestyle.mn/etm/?1OfflineBB32 geofenced js Qakbot ext USA Cryptolaemus1
2023-06-15 11:03:45https://lifestyle.mn/etm/?OfflineBB32 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1
2023-06-14 09:02:22https://lifestyle.mn/nre/OfflineBB32 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-06-15 15:42:47efe47b1efab26d341cf2f75bc3f838ba5f700353c35970ef4aab6f7585072889zip  
2023-06-15 15:25:014ec8ade209cfbca83037abf274b25f40d8d7abc93ab780fa48d3eef1efefd7eczip Quakbot
2023-06-15 15:03:47b983426952e8271724db7c02621830a89d919578015243c8aced8586c47eee3fzip Quakbot
2023-06-15 13:51:26881aad0e92f980125586cf41f05f97fe98cba7bd3934dfe1b16bba7107a49cc6zip Quakbot
2023-06-15 13:40:43436cfa1babaab4ff2a569d09ea02b2e45bfb7d5446d07dd7e4c8d6e5055272eczip Quakbot
2023-06-15 13:32:5747f31071b9b836d7a72dd51acd1d93f1630c039bed34f20fb1dc244b0e4dfd97zip Quakbot
2023-06-15 12:34:59049d3ff2b24390d7b5ddbe9a4148286308e0e1d5f8e59f4c3899fd27928c27fdjs  
2023-06-15 11:03:454968230502b4b71fa2bc656d33566ca8ca4a73cd759251629fe68afb4b520985js Quakbot
2023-06-15 10:46:55aefbd8c2f0696e960a202d2255dc852c710020f4296ac1997465e208027f6bcejs Quakbot
2023-06-15 09:24:04e62aab4e64b901e5725f3db310edf7fe45de476652f5bbf979ced6b88a919936js Quakbot
2023-06-15 07:18:456f075611ed0e6cc57b7e8789bd17486b2a52fd561a83a4c9589b01c2f5953dddjs  
2023-06-15 07:15:17c18d345c3bc268f9c89f4433de494633707ce8de6854d71ab91b93e234ce6209js Quakbot
2023-06-14 20:36:284a2eea1803cda3dd4f98b8bc5004057ed6797b13021a03f15eedb9f8183ff3e9js Quakbot
2023-06-14 14:37:054d610364e865325ba1a869c0f6514e7d2bdcaf5c4a5d60d0af65789aa0bb692ejs Quakbot
2023-06-14 12:34:1971ece756d0a82c68c002571bc8010e13018ec7860d24aa6d9bb595698e10d9c2zip Quakbot
2023-06-14 11:13:54dfe99e49909839abaa99142b09b1e8eaf4d5ceb9e5880e75b045fc2c805c4f7ezipQuakbot
2023-06-14 09:55:312c9753f3b2faf3e22fd3b6ef3be9c9edd4c22fbca372a9946b1fce7d7518c72bjsQuakbot
2023-06-14 09:02:102ba3c60a38843bb6e94665abf69b0b4aacd50fcc34a699882d1c692a97f0c53ejsQuakbot