URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: morroazul.com.br
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-06-13 17:52:10 UTC
Total malware sites :2
Online malware sites :0 (0%)
Offline Malware sites :2 (100%)
A record(s) observed :2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-07-17 23:34:06 154.49.247.120Not listedAS174 COGENT-174- USno
2023-06-13 17:52:15 162.241.177.160mx02.forza.com.brNot listedAS19871 NETWORK-SOLUTIONS-HOSTING- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-06-16 15:28:19https://morroazul.com.br/ao/?1OfflineBB32 geofenced js Qakbot ext qbot ext Quakbot ext TR USA Cryptolaemus1
2023-06-13 17:52:15https://morroazul.com.br/aeis/OfflineBB32 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-06-15 15:01:03c0536ef60b956978c7e54220ec8dfb12d292088862715db7d118786c9b7eeae4zip Quakbot
2023-06-15 14:08:496b433e6368ba9fd66e6bd85c0025bd509fe2a93be9b98054bbe3a44180c41982zip Quakbot
2023-06-15 13:32:4127d27aea08ba1f849088409121fff47540aa6424ee5a9a5f38aa13d721b56710zip Quakbot
2023-06-15 12:00:155cdf7ea225d67a7639e6bae77e2a8e96850aa4229fd2e2db1195eca14ddbf32fjs  
2023-06-15 10:51:579dfa556f1c7ff896c79a4c77153087a5fa263f11176495218af3f8ee8385aa05js Quakbot
2023-06-15 09:09:2333dda8d7f3dc7abde925beb856e93c8d4570200e9bd76c4c688760683561d498js Quakbot
2023-06-15 08:43:17f7c453fb01b6ea20e8f3fc65bca3e6ccfbac00df127862a0b12400a25aba0987js Quakbot
2023-06-15 05:02:2751630acfe12b73c4394b0e42e4a0b77a70fb178ff6288abd40cfbed7c473b97bjs  
2023-06-14 14:36:47e929147b40a3c9bc6918edb1fe41453173adfaf92afdc18a0b3391e1414426aejs  
2023-06-14 12:40:35b50dcde191da6147ec540e6999d5763a5873016dcd157fca26c3e9b61d37175fzip Quakbot
2023-06-14 11:10:49197c2db0857bc2cd2b24856ea3966173990489709337aa4a3bce6ce17e9e9b22zip Quakbot
2023-06-14 09:57:5382d7fc23e0eb1d8f7ef83f5ddd41c982584b037116c2fb7e5fde41e756dadd24js Quakbot
2023-06-14 09:38:38e9463170b553a9a93634d494cb40fa7cb1262eadac1d486ecee9acbee098cab6js Quakbot
2023-06-14 08:03:048b7ad482b2d4ae6336df9e63c13365e00e549e430b9a843d8a4e392a43a4d828js Quakbot
2023-06-14 06:37:500fd860961e1295b2e739caf4d4d6ca29eac0aba3f9ea84bc16dcbd96aee06fcdjs Quakbot
2023-06-14 04:52:58045d32ff53f0c9151824d2dd6179dae546a81d95f3b862f9244a4c2f8b91e9e1js Quakbot
2023-06-14 04:30:46964c22440234b645517e6252c5c09c6b4577df7416335aaf23f14eaf29f6d859js Quakbot
2023-06-14 04:23:280787387747384f631c0a746905175f19f71d462cfb3cf432d69cf92ff90953e3jsQuakbot
2023-06-14 03:37:400ae818b3cb8248d77466d4dccd518194094a6a50ccb0cacc0d002a612d0b9822js Quakbot
2023-06-14 02:24:33f4e6c505a295f068260e162b3702b38adb2506af13c64162cc2b517fc9919453js Quakbot
2023-06-14 01:54:328913f51f576f3301a53cba804462f22c5a965e87e1acf37b23076fe661524998jsQuakbot
2023-06-14 00:00:47302e7520d63d0aee99b626125c45533429d5cae1d0dc0b99ee16ebcd23a74f7ejs Quakbot
2023-06-13 22:35:2697b28de69acb52542ece68cf3c90c7c729661bc3154710912e0bc38f95df4c40js Quakbot
2023-06-13 21:55:376dc6aca3cc4c22b24664c82e847e49311fe3d52b1d0ce82b4b25e7aa876d85f1js Quakbot
2023-06-13 20:19:20fed038e6d1a61372051fb708aaaf8ba258672cb324f3a1ef1e790245414fedb8js 
2023-06-13 19:12:110e8c06b0ceceecca29b95c14087a277ca66d8e0af6e49dcba8f588de5b98ae11jsQuakbot
2023-06-13 17:52:15c25ecf652174f94ac18bba8177d5d8322fb31d649edabc523b505e815cc47376js Quakbot