URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: slleathers.com
Domain registrar:Public Domain Registry -
Domain registration date:2022-10-15 11:57:39 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-06-13 17:52:48 UTC
Total malware sites :1
A record(s) observed :3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-06-13 17:52:50 69.57.162.3premium263-1.web-hosting.comNot listedAS22612 NAMECHEAP-NET- USno
2025-09-24 19:34:26 103.224.182.250lb-182-250.above.comNot listedAS133618 TRELLIAN-AS-AP- USno
2025-09-25 15:24:09 103.224.212.210lb-212-210.above.comNot listedAS133618 TRELLIAN-AS-AP- AUno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-06-13 17:52:50https://slleathers.com/mng/OfflineBB32 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-06-15 15:40:335af899114d66919b0ec6cff2ae691dac0f3525976cc46fa53be43633bd0842c8zip Quakbot
2023-06-15 14:49:17bbd65b92eb2b19dec3e2aa863e9d0e38e5c7488716d54019998016f7fc283148zip Quakbot
2023-06-15 13:57:16463e6fe4eb539842dbcb208fa8d54d60b83bada98887586dca16baf40c789c21zip  
2023-06-15 12:27:09be229c95bfdddf89931bb90e5ebf5ba55025902544967ed8b16bffc0200ff9bajs Quakbot
2023-06-15 12:13:339fba75907fe008815c8f2fcd6426d4e59dd628bfca43cd15d78a21c9f4c8b85ejs Quakbot
2023-06-15 09:57:29e6bbd6c75e92fa4abb0f6bac404c93757652d834e36cce1113a39a8d6ed68083js Quakbot
2023-06-15 08:41:232a96464f3c0db5819f8df2a46b3893a3b7696fc189c39c782960a37ef8a1b078js Quakbot
2023-06-15 05:20:53994e5849e553e29401079ff0025997180b273b95d7a6f7ab0c68538ecbb22347js  
2023-06-14 15:24:475df9007e7f84e15fad8092c19844788dd1e6d81a4a9d1a9b0096b2b76d5dc280js Quakbot
2023-06-14 13:32:33fbae37e554381f4eb322ff51b262041da8c1531168db8f35390add5d17cb4911js Quakbot
2023-06-14 13:04:162fe1d60736d8bf442e9db94b957f8f3b2c8b3e92ed9b9b95c920c9d4f94435fdjs Quakbot
2023-06-14 12:05:4784f88781a9c3c60accced74763aac49bac2a3654f8bdf9fa12676262201a6927zip Quakbot
2023-06-14 10:18:21caa8ee5c68758233ce84cfe62a44ba27b70d18431e88605a935896ccee26c987js Quakbot
2023-06-14 09:18:322a1bbcde81a54fe5156996dc4b1413716e50c42e6ff7c2f02d5f3ca3c67ba4d2js Quakbot
2023-06-14 07:31:190cfaa4cb0879b9e5cc26481a9699c15f2bb6ceddb36099f93fb8178621448873js Quakbot
2023-06-14 06:39:263fc9358247ddf03b3ba91cd44c47b72dde88ab35e753d41d605b1e661b858f10js Quakbot
2023-06-14 05:55:38bf1521a3ec608512bfd3342d16e8c7392aa729827eaae6d681d4285a0dd764dbjs Quakbot
2023-06-14 04:46:19087305b668923b9ee0ffa50e031d1f44a8091997edac80ca0e0b3ae1426b6effjs  
2023-06-14 03:07:074afdccb81dc19c7e07d908fa69535271c1aac8f2055330b490c3e1803d1da3f8js Quakbot
2023-06-14 02:38:29ccca70bc38f9c4f8832482f515ab6bb37f2d6fc7e459cb5114768bf05f378f96jsQuakbot
2023-06-14 01:44:07b9ffb402836bd3d588877a6c08f403f6668733547cd631d175d9ff91e19e5516jsQuakbot
2023-06-14 00:07:298ee6d32025b0548e4ed6e55479f139e1fc07b9934ca1f80c870d8f714c7883a8js 
2023-06-13 23:09:01aa9a56b58360820ece0775ba743aa981a0e0ad24ac7c21a7377d051390802641js Quakbot
2023-06-13 22:02:52c97e4e9584e98a76b1bd6783f6facf831291ee87040b441a385227af8921af57js  
2023-06-13 20:41:11b0a4887bd2cc2532abbfc931767cd93fc025b0d06f89e99ff2dd90e48830dce6jsQuakbot
2023-06-13 19:40:18f3610868f2d9cc100f7e1eaff98b6fd93c33283dbee08170b747fd9c48cf7facjs Quakbot
2023-06-13 17:52:50cf511c31b333d8e91a5fbde65fe820f6343954ee168d177476664a9aa8000721js