URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	policytvgroup.com
Domain registrar:	Public Domain Registry
Domain registration date:	2021-04-08 11:03:05 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-06-13 16:33:20 UTC
Total malware sites :	1
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-06-24 05:32:26	192.185.4.37	gator4026.hostgator.com	Not listed	AS19871 NETWORK-SOLUTIONS-HOSTING	US	yes
2023-06-13 16:33:22	192.185.21.72	192-185-21-72.unifiedlayer.com	Not listed	AS19871 NETWORK-SOLUTIONS-HOSTING	US	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-06-13 16:33:23	https://policytvgroup.com/must/	Offline	BB32 geofenced js Qakbot Quakbot USA	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2023-06-14 12:28:46	140cf78359d60f4c26a64483a0e21101dbb6ea30eff42011e7e5bb65684650a7	zip
2023-06-14 11:20:22	8a2264eb520ad6bfcfab82f4a8611828f08d57ad1919193a5baa9b1b1b0f395b	js
2023-06-14 10:04:04	7dfd29f00e336c863f636f640d8483f1e532289aa0ab4a8d2ae7a8c998b20ead	js		Quakbot
2023-06-14 09:06:26	97cccea6c329b26241e01f0eb4a1b98073c032ea3b21c0799ea95ebceb7b2fa2	js		Quakbot
2023-06-14 08:12:05	40e01e9ddf622b2a881300df56b228572e8c206a15b9ae8f94c0e50f11dd74a9	js
2023-06-14 06:46:37	978259ac07ee66dcc817ab3d39ba82672a31ad51ebdfcf56024bba26859dbaee	js		Quakbot
2023-06-14 05:09:49	76008b2e90cd4dd80ebeba22ccd78f22b98684f50ea77143a3522fcc27c34cc1	js		Quakbot
2023-06-14 03:55:38	cf5e705de667060a6d8c5e53199214b73014eb8edf55374ff86403221452b37e	js		Quakbot
2023-06-14 03:37:03	18d40e0bed746dcbbba05fdce9b4872efd3ec5330d5b380d7ef163409ad826d1	js		Quakbot
2023-06-14 02:06:45	f4ab024b24634fbf75d1c9679c7e4d3ac1632cf4554ce6546c75ed77be0b3562	js
2023-06-14 01:49:50	d3285c0043046241c65646df426a6895a0bd139cb071739971291db15a1e797e	js		Quakbot
2023-06-13 23:55:45	e803f5dd0a43fd7bbf578d9ac95b1bd433ca913ff6eb0db76824e9ae765ef877	js		Quakbot
2023-06-13 23:46:05	55c8be1e1a0c0810b4f4802ded6ef7c533d8b03d5e13fadb81d2a7e7a1ace963	js		Quakbot
2023-06-13 21:43:45	a92d920c5f0993e08e2ccf2f003d53ca0f1f4f2ff4ddaafc2d3e0b7fa2d9edbe	js		Quakbot
2023-06-13 21:06:39	896baff5c940aaa946cf456e15a0dd62a2da2a1c6288c85743f10d77db10f611	js		Quakbot
2023-06-13 19:12:26	a479fa5413202ad33301a761f0ed4c239ce08a430a5068b3495f9975e83d39b3	js		Quakbot
2023-06-13 17:45:47	1fdd5b798f0a9398773e5432f79f7b93ab708838d5a54536d55bbd7d53ea1ec3	js		Quakbot
2023-06-13 16:33:22	c4f52b3de5ef2d4dccbaa2018c3c0c65daa5a66182c6dbcc7e669c5ca8b077df	js		Quakbot