URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: menangmudah88.com
Domain registrar:Dynadot -
Domain registration date:2022-10-19 09:12:47 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-05-16 21:58:03 UTC
Total malware sites :1
A record(s) observed :2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-05-16 21:58:12 104.21.95.147Not listedAS13335 CLOUDFLARENETn/ano
2023-05-16 21:58:18 172.67.145.128Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-05-16 21:58:18https://menangmudah88.com/eemc/?1OfflineBB28 geofenced js Qakbot ext qbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-05-18 19:35:09c74cf0cb7927a8438a84c9cedbdbab3e4815550813336043f39674a67b6a021ajs  
2023-05-18 18:32:2051ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4js 
2023-05-18 16:14:58bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780js  
2023-05-18 13:53:053cc5422658c2598cbbc2122322d49628059f49038bfcdd2b2fdaad8db8f9fee9js  
2023-05-18 11:52:413f2b1d4fe71004830b3afc87d735391d7ff0033d3264baf0b9b84903c52c16f4js  
2023-05-18 11:15:3374e7f951fe5dcd84fa5c570a1b2e27991662022a85a90f8f38cff80d462e8541js  
2023-05-18 08:23:24e84b4920d25503f9505dfe8813b964551aa485cc176eb30dc5ac5e46dd5d56bbjs Quakbot
2023-05-18 07:18:3793be05e8c37282bca34649a25ba07962fb7da33e5799c01e05c15cc3b72589ecjs Quakbot
2023-05-18 06:17:03d8227132d7300d02c5cf46a7c7c4ea76a6fcd10c516382dad0a8892266612025js Quakbot
2023-05-18 04:29:2800662b73e2bd3a971290d1314c7c89f0f6d0d7244ebb8fde1721be20fa50a8dajs  
2023-05-18 02:07:2872495f905e654ea365738e7e3ac93200be27ad81df4327197c8d1a1427209a25js Quakbot
2023-05-18 00:48:396880ce894904976fa0bcca1c18a48cf2a862737e355802fd26301563e6a09454js Quakbot
2023-05-18 00:09:47fb639f61394301ec51c3c82b270fa10118b12150f177db33a72560d80ad79f25js  
2023-05-17 21:28:076ee195c06baf35069572750e08cf581ee2a7a59c0b75faff8c5284a839f34ee6js  
2023-05-17 20:26:17abc48260d90f80894b8dce196c06da33c2c84c6e28e7f70c81840bf419cf2344js Quakbot
2023-05-17 18:35:31a7559adb58fb8ca343a880d3a323c7307621cf7e95fee410922b0ee0d24d8bc7js Quakbot
2023-05-17 17:20:212f457141989cd8db7267b3dd982bc3aca3c0d763161cfedf75384aaa9b27bfe3js Quakbot
2023-05-17 15:45:05f7e8b96be3ac805e339ea8216ff018b90165280b8feba0fb873973b6f18ca747js Quakbot
2023-05-17 14:48:113833419abb83fe2369255a23b3fa983e65047ca005c0dee0d772efbdbf8ee75fjs Quakbot
2023-05-17 12:37:30c321a1664d74da4f73b983c793c4059b38202d4116be2e9f53f9aa1d4320d830js Quakbot
2023-05-17 10:39:472f5a37b1c41f4eaa483ca0e6b8ef14c0b656cfef1e713f74510c05a462ffa8b8js Quakbot
2023-05-17 08:12:58be67d60d56901d48a44bc142936b6e28a2f67a12f26648df608040ee246777e2js Quakbot
2023-05-17 07:05:41770edc4bf1912bb5feebf8a5b92f9d319a8dc469127de7bde4611ed08903085bjs  
2023-05-17 06:09:37930e6e133fe2f5e4adba54909e6bfce4821f97d4fcd39a9723fae0d490506ef2js Quakbot
2023-05-17 03:26:433b2e0798b89a39328ab5ca89100b24db240f8560451757fe71607b353b288fb8js Quakbot
2023-05-17 01:56:52a127550b500569d758df2d429ee67f3a9f395483b2de730a3b086e1abbf1c0e4js Quakbot
2023-05-16 23:23:39e42ca0fc7a85bd4eead60c901d2c0e942fca01ad035c0c538cbf36b4831f21d9js Quakbot
2023-05-16 21:58:07cfb668b6b769136e79eb9a5e8b255ac2a109f369c3dd17e296019efe0c6bdae9js Quakbot