URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: petirtopan77kuat.xyz
Domain registrar:Namecheap -
Domain registration date:2022-11-02 16:55:24 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-06-13 17:52:10 UTC
Total malware sites :1
A record(s) observed :6

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-06-13 17:52:15 188.114.96.3SBL690066AS13335 CLOUDFLARENETn/ano
2023-06-13 17:52:15 188.114.97.3Not listedAS13335 CLOUDFLARENETn/ano
2023-08-03 17:51:26 188.114.96.9Not listedAS13335 CLOUDFLARENETn/ano
2023-08-03 17:51:26 188.114.97.9Not listedAS13335 CLOUDFLARENETn/ano
2023-06-16 14:05:40 104.21.19.181Not listedAS13335 CLOUDFLARENETn/ano
2023-06-16 14:05:34 172.67.187.13Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-06-13 17:52:15https://petirtopan77kuat.xyz/cat/OfflineBB32 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-06-15 11:01:58375dde806cd9523842552419fad442e3d1cb5db36d60608a9bd0e757e11fb6dajs Quakbot
2023-06-15 08:46:09fd15430bbbf90cb493f14be0df3dd7b7a6686459dda4d0601fc00b760b101a2ejs  
2023-06-15 04:31:462740f14fa5948d32541e84f7c2719aa5f5e96e9093beb9cfbce3211d74d09b61js  
2023-06-14 14:36:3569b57b50b3ca6b4bf4288b9673ebdd7f4dcaeaad1bcc12a8e47b41e0311aea19js Quakbot
2023-06-14 13:17:1451cec446fa27d41e2f49a25612211ede50ae7b577cd31cf4e9ac2f20b893f1f3js Quakbot
2023-06-14 12:36:45830da52c26957c558b2026ed46b06b762804bc40a9ec105ac2907792da111ab6zip Quakbot
2023-06-14 10:52:213922d1b1d955cbeb3e393a4e1df563935c55fe5f545938c5a1db1a821a3c2b54js Quakbot
2023-06-14 08:27:26eea96900b352686f4027368ea486dc36e9a045408a1d0648815c483533f7c7f2js  
2023-06-14 08:24:372c9753f3b2faf3e22fd3b6ef3be9c9edd4c22fbca372a9946b1fce7d7518c72bjsQuakbot
2023-06-14 06:07:3875030730085c9f4d5afe5987d5a00daf2c4b04fceb95ec0f241e271ee67b3714jsQuakbot
2023-06-14 05:55:4770486d3708fc4c5c848b9f5f3bfd329d77423f0d8e97e6ed80289da7e5e1675cjs Quakbot
2023-06-14 04:10:14702b05b838fa4bb7e62f8c97a3823c6d813ddc3b1a1b44e83225def58d0022fcjs  
2023-06-14 03:14:194589d0623c9ca1bd83875a78dfffdb75e1a5190a08aaffd90a6299cbc3834fb6js Quakbot
2023-06-14 02:07:07fdef38221e0225e6501b9bc784617eae4b6eab280721139c1618383cb3f0a6f8js Quakbot
2023-06-14 01:55:082a93b6d5c616cb03c2d5e9bef589dbb894396399c7b1987a896d552e5ac5ab7djs Quakbot
2023-06-14 00:07:0417e0b63a9658844a7abe937e437ad78b32a0b831718cf4a8504c81f558243073jsQuakbot
2023-06-13 22:54:487273b75e139f3dd30809a4e9c1abeec754ee24b0a7f1ccc2333727449802fb81jsQuakbot
2023-06-13 21:56:34a821e7221d10ecd07f5e0bb75652e33eead49e60ee39c0532cee0b43775b11e8js Quakbot
2023-06-13 20:18:332c0314076f91587df56b869725ec51994647a749840e798ee26427017bcd23afjs Quakbot
2023-06-13 19:46:17daf0136e792cf3bf13bb53a8a40392f7ff38aa1bc870cc6a99b273f95c60d4cejs  
2023-06-13 17:52:15c560caa45b825d01ec9bf2dd4eaecbe7e34c80301c4c5ce8bdfacade0f7e3e4fjs Quakbot