URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	wcalhas.com.br
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-06-14 09:02:19 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-06-14 09:02:27	50.116.86.49	50-116-86-49.unifiedlayer.com	Not listed	AS19871 NETWORK-SOLUTIONS-HOSTING	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-06-14 09:02:27	https://wcalhas.com.br/fg/	Offline	BB32 geofenced js Qakbot Quakbot USA	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2023-06-14 20:59:45	ddf44cef5edf4bc3ae42ad311806abede228f333c55ea1a445fcf7468645940d	js	Quakbot
2023-06-14 13:18:29	0ca741976863ab9777398b56775869a69960486891a638f91d8586ecd6b85d98	js	Quakbot
2023-06-14 13:00:19	50669a04196ff01ec2c144fd6ecfd1f9b419e195fb331c9d7bb332f35409658e	js	Quakbot
2023-06-14 11:12:49	a8fa341a4092c92e4dc493a747766e8726c2c92d4c7a894a7044040df441d369	zip	Quakbot
2023-06-14 09:53:49	524df894244a701b9825ef6f279a4ba64292f219614dad255858ccd503a896b3	js	Quakbot
2023-06-14 09:02:21	dc380c6947c5f8de2586ab7baf30b36b6a9426932323cb2096af2c5f4e2c344d	js	Quakbot