URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: staffordhvacservices.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-10-20 14:32:03 UTC
Total malware sites :2
Online malware sites :0 (0%)
Offline Malware sites :2 (100%)
A record(s) observed :2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2020-10-20 14:32:06 192.185.16.228mail.glorchem.comNot listedAS19871 NETWORK-SOLUTIONS-HOSTING- USno
2021-09-19 04:46:11 34.98.99.3030.99.98.34.bc.googleusercontent.comNot listedAS396982 GOOGLE-CLOUD-PLATFORM- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-06-08 19:43:19https://staffordhvacservices.com/prof--guiseppe...Offlinehtml Qakbot ext qbot ext SilentBuilder TR zip Cryptolaemus1
2020-10-20 14:32:06https://staffordhvacservices.com/crun20.gifOfflineexe Qakbot ext qbot ext Quakbot ext lazyactivist192

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2021-06-08 19:43:19b7305d03a17f1d7e5332e6253344dfe5b82ad007a9a7937f320bee803a439343html  
2020-10-20 22:24:119ab404c46a4511f207c5b9df3e76c2618d193873e98ec7bc7c9e60b5dc285bd6exeQuakBot
2020-10-20 21:44:0776ca0f3d7cc3c4231e242c4a90ecfd5da244d4df64cfc3c95da1ce321e1c3852exeQuakBot
2020-10-20 21:11:2848f64c9177e93942695e1108b6346a1437a3ad44e6cf65ebe1d2e5b738a23421exeQuakBot
2020-10-20 20:43:52507a5d8212197647a28afccc1a800f7e28b4c26ecf1181bac72921b95d33d83eexeQuakBot
2020-10-20 20:07:586f00837f83703021bc4f718a4df8a7fbdadf5fff50728dc09c050efa5259db89exeQuakBot
2020-10-20 19:16:266e682ff56d1665e1462761e22246cd232e2e819a600d81fe0e770104c097db7fexeQuakBot
2020-10-20 18:49:391138aa0a51e7b7c9bd78b1b423ceec867de06c609adf541ee9f1b0168ba32121exeQuakBot
2020-10-20 18:02:06ddfcc04088a52d6ebd212390fd55c95cb7f8286e200175dad5bb5b1ffd141762exeQuakBot
2020-10-20 17:29:26f4bfb36faa1244ccb7eff5b1ede62bbdea104a86caaab19cb962f3cba093ccadexeQuakBot
2020-10-20 17:04:21c59164aae8501626379a0956e0367081d9f4bf330165f16ccffbe0da867ed169exeQuakBot
2020-10-20 16:41:00e7b71f274fa6101b23bea864a62527e991781f2b94d2158077bef3e8eefa0bc6exeQuakBot
2020-10-20 16:27:364a6ca274f5f152354863189c9a593bf566cf120c8d6c5b4e023ae5b953f26b5aexeQuakBot
2020-10-20 15:33:47a377d9feadbe4833a58119212059ef8ede76a06942a82c79e5f179707b5e0a2aexeQuakBot
2020-10-20 15:07:4979aca9d3f5ef2e6e73a8966187d65d9822c7c1295b35cd4c96f9a262996dc6dfexeQuakBot
2020-10-20 14:32:058ba3aa42d5c3e1b4cd3ead07bf2c40641e4011aac0b2a1b1262f80504d423f9aexeQuakBot