URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	livingwatersinvestments.com
Domain registrar:	Namecheap
Domain registration date:	2022-11-10 14:38:56 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-05-16 13:14:21 UTC
Total malware sites :	1
A record(s) observed :	3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-11-24 18:34:19	47.32.33.172	syn-047-032-033-172.res.spectrum.com	Not listed	AS20115 CHARTER-20115	US	yes
2025-04-28 00:16:58	71.8.150.212	syn-071-008-150-212.res.spectrum.com	Not listed	AS20115 CHARTER-20115	US	no
2023-05-16 13:14:24	162.0.232.60	premium132-2.web-hosting.com	Not listed	AS22612 NAMECHEAP-NET	US	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-05-16 13:14:24	https://livingwatersinvestments.com/aiam/?1	Offline	BB28 geofenced GuLoader js Qakbot Quakbot USA	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2023-05-18 17:39:51	51ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4	js
2023-05-18 17:01:07	d3c6e06204212c1aeeef29809460056535cba3beca8cf163b7c8719671ef0c9f	js
2023-05-18 14:27:56	9b53168cab07922f9b504b1d175d9766a65fb7a77adb7e1c0a8fac8c276cd9de	js
2023-05-18 11:53:19	f11d7ad43d7a6c6cc716d06a9d41c96156d6ce0dc45d6add8d3039cae526e350	js
2023-05-18 10:47:42	0c002b88627f5df1e7415950b066ddc51bf3e0f4f3ef5a2b01a266b2c4282ee1	js
2023-05-18 08:35:09	dff43d93176f7f0b50d2b960680eb78be307c219d3a2f9b42d969390818a467f	js		GuLoader
2023-05-18 07:18:59	973858251132d0779245a2e9dd301914a73702dadb9512759bce343a0fa1cb23	js		Quakbot
2023-05-18 05:44:09	9dc74a47b57fcd85200f975b411792401c29e5d1ac2806f4efca47c4fbc00ebe	js		Quakbot
2023-05-18 04:24:22	f7141b5e0f8768e0c1d39b6da886c311b1ba7a4a1db8d4efe2c936270bc2f0c8	js
2023-05-18 03:52:57	3b413252866f0b4261ccf3b4972d86690f29353242c85733133be84940ad6fa3	js
2023-05-18 02:39:36	c3e99de4200fa77aa025ca9c3691f352cd668d0a77b4f467305f66cb4f933618	js		Quakbot
2023-05-17 23:29:36	f9a03e213a2bf36d23d4a6877af8261834b3049ed458410c5e8b4c6da00e2383	js		Quakbot
2023-05-17 22:33:44	69d10bf1c18cc7df540de106a1056c5af79f8b60f1ffae762d06532cc84375d8	js		Quakbot
2023-05-17 20:07:22	b4a90889250c70642150c7b822ece35979290cb3664a5f778ccb8195b4c440ec	js		Quakbot
2023-05-17 19:10:32	d50736e0dc6f86a7295550e45d34bcb51be1915a810402b50f05881002c45135	js
2023-05-17 17:19:46	c5b4c29787160ccb71f79ff6637aeac99008ef606c71a4b14629e1281f03f74a	js
2023-05-17 15:14:30	b726185bac5c9502b0014a711f793d0559b2d0afcaf5cc376d063cb315412020	js		Quakbot
2023-05-17 13:43:43	e21d7ce5a24617b4a823482fea8b703cee1f434028f5ee807b3d77bcb4197988	js		Quakbot
2023-05-17 11:46:00	c1064ed6356f294c6981938454ee3a3712e5e63930c1554a3c1602eacbd6554d	js
2023-05-17 10:45:39	93af25c2bb84dbbc62530b5748e2f3991c97a4ec3b33290a56e7457210cb7a37	js
2023-05-17 09:00:44	6172c01a006d5cc724269e018a69732ebe40056f6975bf5cf71abfb4345b8bcc	js		Quakbot
2023-05-17 07:20:28	bcb6a37bb954ab7f9b30c21476949c023b39ea65812bc2a160f0f522d57c3f64	js		Quakbot
2023-05-17 04:33:35	0204987c7b898357ad31c247590aad172a2cf5572b3326b44d9ac56ecf527c3a	js		Quakbot
2023-05-17 04:00:16	b18a0794892c7db8ed12a79ea1f625d7565ddec1bf1aac34b764014562b3d814	js		Quakbot
2023-05-17 02:38:17	9dd88528754400f74d4791136423b4fa4692fdb96c55d5e55720ce89696b5c74	js		Quakbot
2023-05-16 23:09:43	0548b85b4014a2072109c678ee978af7f7e809e076f5f7572e42d7e6706abc52	js
2023-05-16 22:46:38	bcc511874a76993eb20e795e618bc68db0e28a81e0fb1601c060f8ea21671b8b	js
2023-05-16 20:44:47	922c9e56e238d3e3f7bd4705d85db8c38262767f98a6c74dff0f5441838a2b79	js		Quakbot
2023-05-16 18:38:55	fbf89199c5ccc788b76742572e9ff06b2090c20cc7902c0754d0c2f8c892fb4f	js
2023-05-16 17:15:59	bfbc144bed831e3f65d7e1ae3f55e1c91ca9d726eddb5d3ad4b88e35cb83af7b	js		Quakbot
2023-05-16 17:09:21	3ba23753b8bce855cd387a8732f452ec142ca84ed3c79b483737ac9701760f37	js		Quakbot
2023-05-16 14:27:30	a503efd57d1a320d5dd06ddac9220ea88b9ae35b967920d9e5205165a3614991	js		Quakbot
2023-05-16 13:14:24	7691ece71c3084de5b0a9da3fe76d9b0de510ec56a76bf56b5bb29541ce97e15	js		Quakbot