URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: zedangroup.com
Domain registrar:eNom -
Domain registration date:2003-11-06 10:05:38 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-05-15 17:22:04 UTC
Total malware sites :2
Online malware sites :0 (0%)
Offline Malware sites :2 (100%)
A record(s) observed :195

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-10-13 13:45:36 92.113.23.157Not listedAS47583 AS-HOSTINGER- DEyes
2025-10-23 13:41:20 92.113.16.189Not listedAS47583 AS-HOSTINGER- DEno
2025-12-03 22:38:11 92.113.23.115Not listedAS47583 AS-HOSTINGER- DEno
2025-10-30 08:01:01 92.113.16.242Not listedAS47583 AS-HOSTINGER- DEno
2025-11-16 21:49:18 92.113.16.254Not listedAS47583 AS-HOSTINGER- DEno
2025-12-10 07:57:31 92.113.23.32Not listedAS47583 AS-HOSTINGER- DEno
2025-12-11 20:10:52 92.113.16.218Not listedAS47583 AS-HOSTINGER- DEno
2025-10-28 16:25:21 92.113.16.17Not listedAS47583 AS-HOSTINGER- DEno
2025-11-24 14:31:04 92.113.16.217Not listedAS47583 AS-HOSTINGER- DEno
2025-11-11 05:50:07 92.113.23.52Not listedAS47583 AS-HOSTINGER- DEno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-05-17 13:06:38https://zedangroup.com/uto/?1OfflineBB28 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1
2023-05-15 17:22:13https://zedangroup.com/cte/?1OfflineBB28 geofenced js Qakbot ext Quakbot ext USA Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-05-19 18:15:491cea0c4b1af9170b9ed2927f3b100d202bebd1b8e69ba1527336aaa6b2c0bffcjs 
2023-05-19 17:19:0276443e093ed6d6e3961cb5f9bbd546bab2d05f6bc2536c5744dc86f7a769bea8js  
2023-05-19 12:52:1151ffefa8a10b6da720a80cec4735fe173669e7c974946e46c8dda908e824d8a4js 
2023-05-19 08:34:20d7522ab4f64ae0950e24bb00df9157136bbcb900ace0c77bd1a46f06149bf37ajs  
2023-05-18 21:42:351a2e818afb29521c8658d2a0643158af97370d69c32c0bd85cb900bd3e85b0eejs  
2023-05-18 20:35:26d76b1300fd995ec8def343df0450c11a58a217803fee3749db4afacebc64182ejs  
2023-05-18 18:52:33bbcdb87a842c5157acea98f0cedd358f764e2613b6a635e4f9f5946de8c07780js  
2023-05-18 17:22:296016f12710a18923ed029eb1dc62882b5f1a032a7424e0169dd8c2228598f59djs  
2023-05-18 14:00:11b506350897a824484b893d2bba312f8091478e5825643d2a2c820ca83480a1eejs  
2023-05-18 12:33:4413429cf0cc28ad9378b2b6c46f7c85f5356150262bfc598353fc15c0530e893ajs Quakbot
2023-05-18 11:14:29266bfb248bbfb5fafc879d0a26c731499ccb3de4c57b64ce4b3a3fc6f836b93bjs Quakbot
2023-05-18 08:19:497524d906b4d42ae7fd1e5e15cb503e8b54fdc1afa702a0b4e4c5f1d6f99edd1bjs Quakbot
2023-05-18 07:09:11ee8f7825f5b87fbdb90f5bc8eff0cfadc358c64cfca2dcb37acfd398d5b2f201js Quakbot
2023-05-18 05:57:4172b50fe52615ed2facfe5a1517ed75f7ba6d2d98e26968645dd646186fa5fef9js Quakbot
2023-05-18 04:26:29b77866fad79584d4eeba2fb19ac488731b788c0c7c1ca30001f91741db44e06ejs Quakbot
2023-05-18 02:59:426d9b8f4761b3d2b4e1c031cece4e6ae593e6a9e7de18a01dd28c1235bf7900d7js Quakbot
2023-05-18 01:44:507b501e67649c8608b6333e95e174a2d3db77d745651cf4142c43e79b0e1ed927js  
2023-05-17 23:30:380b5625e5e6c8ca17119f220fef0e5b08313f77e79294375e8b2c57d9bdc47ca9js  
2023-05-17 22:16:08dcb4d36d51f163518e7ef97ffd77d55e49a72dc3b351a6e4051187b5361ecf7fjs Quakbot
2023-05-17 21:15:009459a0cb6bc3dff0f7972ac6852fb2f11dace3df33eded8be946a0ca5f1160d7js Quakbot
2023-05-17 20:13:56bbea073ee85951ed23e95e826bbf93fe5f1cd1885d0b88476ba2cd5a1e6bcedcjs Quakbot
2023-05-17 18:23:5992541d594f60bdb46e24073e3720e0deb32a8bb5a4409a44b650b790dbeda309js Quakbot
2023-05-17 18:23:36716b277dffdcf3099c8c86e0198ddab7a5d55627de582e5b73e900db63fed67ejs  
2023-05-17 17:40:089fb9192d902b2bec0253263ac7de12696284a3203d04c735faf491c94c94ed32js Quakbot
2023-05-17 17:25:23f0ba5660e9ba7e62c93207a7b6fd775ee56ae1fa8dfc2ece0f169a6e96076681js Quakbot
2023-05-17 16:16:12fcdda21a712620d2dbecadb236b7ca8d2b6cef444f9848f2ac95622ed210a4e1js Quakbot
2023-05-17 14:52:115e2610a338e8ef5c3c882966366fdd36d988d79233ad84071b96fe04a7ea18cbjs Quakbot
2023-05-17 13:52:06ea84f700c5132b793e8bbc20dd9383bd71e86ffe8be7ec16ec7fd5ada9cfb33ejs  
2023-05-17 13:38:146a2c26dc0efdfc1c4fdf83525f29de723f3f77f866558ce277756af920925c89js Quakbot
2023-05-17 13:06:38ebe8f7530444ccce930ca2eb9bce9d1a8dc83786f22d231c9b0ecc1b37803d8ajs Quakbot
2023-05-17 11:48:24cadf3b701a796ab414a9adb1d3c761ea95dd6b2b518dd9d9f1034a9982d8fc30js Quakbot
2023-05-17 08:58:4109e06dd63fdc3686337f6cc0069f8e61b8618bda66e0e7ead643d3e0b3bf1478js Quakbot
2023-05-17 06:18:251605bd530ecec30d2a5cc69dd7ce9e755622bad253ab1fdbddd7d106c2c118c1js  
2023-05-17 06:02:396eaf44bfbebb7da48b2f1be9bb08090097499b296f0215a1839f2a6f29af354ajs Quakbot
2023-05-17 04:02:2105fd12dbffd8b71c6262c82616cfa915150ba7567ca4e3d334b0a96d376b89fbjs Quakbot
2023-05-17 01:01:47b3cb30bea0d64e9f1c5f29293711938052d6bdea79a97dca47f2ba5b86422d9ejs Quakbot
2023-05-17 00:30:250cea5eeca40e75d97d6c2cada8a834cae671cc11c15d18c99b93bb0585c0aff6js Quakbot
2023-05-16 21:22:4402536ac3ea7e2395e33f73551ab3c1863cc59122981c1fb7c1ea0d66991435bajs  
2023-05-16 20:35:53605e553605365175c65c5e5b31ae2f08ac0da8afd7cf164d5457814c0859aabbjs Quakbot
2023-05-16 18:30:40ada2b4c4c2373ab3a8e597ddcbaa4b0ccc07b2989806ca1aae59641f08560e52js Quakbot
2023-05-16 17:15:5306c03c0bf3a16225e49f621aebf8602313e6d80a30789d05241d542fe63b3848js  
2023-05-16 15:14:5309cbd9a0c43a1bac2f766e36e045d02eeb9b2b48124a42e844d03f877535ce01js Quakbot
2023-05-16 15:14:03bcbb41426ec3bd2accd10d5b3a24c9ffb0238fd449084d527ad67ca08201639ajs Quakbot
2023-05-16 13:25:40d63dd030f098bfdff0283864f2b6741313ca1e03c881857ebbad0c4ba98020bcjs Quakbot
2023-05-16 11:36:16ee19e6703948f3aff0eb48203ee3f225c5be53579344483b16a1a5f01507615fjs Quakbot
2023-05-16 09:20:45837f0a8f58bfc6decb7b1cb280b927aad0846fa871ed80f0f05b205785907d06js Quakbot
2023-05-16 08:19:420fb8753e9cfadc8c15c78ae5a9e276cdaad91e296f9c8d6fc9ee33cb6bc708abjs Quakbot
2023-05-16 07:33:1977b37a11f05a74b39246ca7adb73f1c9d3d2cfc54a2d503a2dc82b15e572499ejs Quakbot
2023-05-16 05:20:04116e5ddd6a87d4f5fff4206c931d3c44b1f0ab964da7235d64de3a6463f5b2c9js Quakbot
2023-05-16 04:28:39990aa9bd5a280f79a8dfe3d0f4d90b05ffba410d18db5ff666f95bbcb62d7e58js Quakbot
2023-05-16 02:25:25eb2849404eb8c87cfc7da81397f8c69cbd94c678e9e56b628fdc8c0ee19458b3js Quakbot
2023-05-15 23:28:14ee7729b9293921270655a02a92fbf0d3d6cb7d1d4ab822fc85694cd0620fe167js Quakbot
2023-05-15 21:38:29495092850b50b2229d91810f922e95a09b25de0ed93b6487a4cbaa26663af500js Quakbot
2023-05-15 20:30:49a686551bc74e05266439efb0a7941925bfa25c89b12e22093d77a3c4a7e5cc14js  
2023-05-15 19:24:53124449d6efbb306b8a4c60c49d1f1fe698faaecc15031faa8c1c7cf529f8f239js Quakbot
2023-05-15 17:22:075ba1f25720a89481b6905f41564cf233313eb51206451ea5a852c787a939e20cjs Quakbot