URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	2021new.lietuzhe.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-02-21 12:41:12 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	15

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	SBL	ASN	Country	Active?
2023-03-09 05:34:03	122.228.223.240	Not listed	AS134771 CHINATELECOM-ZHEJIANG-WENZHOU-IDC	CN	no
2023-03-09 03:28:16	122.228.95.142	Not listed	AS134771 CHINATELECOM-ZHEJIANG-WENZHOU-IDC	CN	no
2023-02-21 01:57:14	58.220.52.174	Not listed	AS137697 CHINATELECOM-JiangSu-YangZhou-IDC	CN	no
2023-02-22 09:49:38	58.220.52.173	Not listed	AS137697 CHINATELECOM-JiangSu-YangZhou-IDC	CN	no
2023-02-21 22:25:55	122.228.74.135	Not listed	AS134771 CHINATELECOM-ZHEJIANG-WENZHOU-IDC	CN	no
2023-02-21 22:23:33	117.21.178.237	Not listed	AS139201 CHINANET-Jiangxi-Jiujiang-IDC	CN	no
2023-03-09 02:40:36	58.205.221.200	Not listed	AS4538 ERX-CERNET-BKB	CN	no
2023-03-09 02:40:36	58.205.221.201	Not listed	AS4538 ERX-CERNET-BKB	CN	no
2023-03-09 02:40:36	58.205.221.202	Not listed	AS4538 ERX-CERNET-BKB	CN	no
2023-03-09 02:40:36	58.205.221.203	Not listed	AS4538 ERX-CERNET-BKB	CN	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-02-21 02:11:11	http://2021new.lietuzhe.com/jianceX1/jianceX1.exe	Offline	exe	zbetcheckin
2023-02-21 01:57:14	http://2021new.lietuzhe.com/jiance02/jiance02.exe	Offline	32 exe	zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type
2023-03-21 12:48:41	383b0abb5274e9c87f8d42b0dfca92d82ea28ac940d55d25787a0c3394df6a93	exe
2023-03-09 11:03:25	a5af48061275c86fa879fcfc9f0a6387daca9dd12b3da5db36fed8c374280f10	exe
2023-03-03 11:22:43	2c41f943338e180561280cc544d5462de702db0816bc26c83ce64cf40523ecdb	exe
2023-02-21 02:11:11	1b19261e6e1442e84b8a53e47227ca22396e1ced1ee6484d2b8f96f0fcef68c8	exe
2023-02-21 01:57:08	4a65ce15a43524285f05b2d2720603c491cf16bd9b23daa0e8d280a0af51ad81	exe