URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: restodoporto.com.br
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-06-13 17:52:21 UTC
Total malware sites :1
A record(s) observed :2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-06-13 17:52:30 104.21.70.59Not listedAS13335 CLOUDFLARENETn/ano
2023-06-13 17:52:24 172.67.220.116Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-06-13 17:52:30https://restodoporto.com.br/ndil/OfflineBB32 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-06-15 14:56:33f6f5738c9d07bf3f7eb04cfca60bcac0c019738635131b8a1e4105d053ea2fb9zip Quakbot
2023-06-15 14:38:29442a788b25ab5bf166940345f08f620260c35f26ae52579147f6af2f063fe266zip Quakbot
2023-06-15 13:10:10356a629e04eecc0cf77c3a249ad2d257195d824203414c3923960c0de753dfe8js Quakbot
2023-06-15 11:59:18106a06ba68fab33718d88c828557ff8df114a01db94f0a854915b3773976fe9fjs Quakbot
2023-06-15 10:02:511d06b1738ed11335dc388594fee6551422e327aa4f9cc22b39c56dfd9de45398js Quakbot
2023-06-15 09:14:141afe7cc14d470b62fbf984decf3a3528e68d0ac84f9a4a3e62333a0ee63a132cjs Quakbot
2023-06-15 08:56:07b78b54f956b95a726a95ec2bdfb3e99a516589b557df5dcc2dc5379484114d54js Quakbot
2023-06-14 18:38:3954028e894dd48268a588562e0864a85970ca56788af10ba2474af3ec3a3fec22js Quakbot
2023-06-14 14:34:59553c3c756266c1c73bfb70a56a012a3dda9ac8e7ed99d513e89578d1af084bd6js Quakbot
2023-06-14 12:32:47399bef95a290ece265c8251f4c1cba96457fec13734d09bba3207aa862be54aezip Quakbot
2023-06-14 11:17:19197c2db0857bc2cd2b24856ea3966173990489709337aa4a3bce6ce17e9e9b22zip Quakbot
2023-06-14 09:57:23a4723a14b0f4cb97c6c12e88d9350a036a568b5b9edd60ab1f21ace5c41d96e0js Quakbot
2023-06-14 08:37:33055dc4c4ee27b80abbee11617724554d34acbb425aceae1c31083118dbaff67djs Quakbot
2023-06-14 07:18:347a686129f8d2aa3974975aa9c0c053956a35a0e41ef1a0ebc8c57f7c19a92caejs Quakbot
2023-06-14 06:29:525cd2f0d80b5f451a5aff75feb9897bbd7ab37921cac6ba7b59bdf50ffff64e52js Quakbot
2023-06-14 05:26:3867076bab342d29b913071be1cd29b60d1800fda7c0f4379f8f5adfb4e3b6f0cejsQuakbot
2023-06-14 04:22:24d663d679bcae514fe5d4491ad3b4e9a365452cc2b786b59a66c8ff9f72d7b239jsQuakbot
2023-06-14 03:41:14af9a41141e77ece9fc895c1cf2c7e244f1f0f605cc25a62ddbc77fd0751cf22bjs Quakbot
2023-06-14 03:32:56b3211a16069b7928e1bd457442e5816b09d29ed9baa96db0c8feea2e00069609jsQuakbot
2023-06-14 02:25:12325e486140498c768d75e86b2139832ae5fb99960c3a5e5ab1aef3940146850ajsQuakbot
2023-06-14 01:16:500ba21385c79af7af3a4a4cf757a2d3ff6dc0d9873689930d58f713288f671b9ejs  
2023-06-14 00:38:23f402b8848c5cdc6de1de79c42976ccf1b2e2b4f301d942d3c9eae9c63bcf5374js Quakbot
2023-06-13 22:58:314573e411b70a42868e2b1d62ebddb99005c241abae8eb6652d2e1d1e3b815681js Quakbot
2023-06-13 22:02:527a3dd2afe479c3455a453cf42e01bf511c3eb31d29866a382a3e5257912dfeecjs Quakbot
2023-06-13 20:38:3839812c0ab253e75f4835c0da4cb08db82f3c7954ccfc3d9a989944c1ae295f8ejs Quakbot
2023-06-13 19:14:506d5f22677d533a9fc11c5c01590b32eb2974e96e0da226717203bca23433ba8bjs Quakbot
2023-06-13 17:52:24e9463170b553a9a93634d494cb40fa7cb1262eadac1d486ecee9acbee098cab6js Quakbot