URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 4fly.su
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-03-14 10:30:08 UTC
Total malware sites :3
Online malware sites :0 (0%)
Offline Malware sites :3 (100%)
A record(s) observed :1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-03-14 10:30:18 85.143.223.153130247.simplecloud.ruNot listedAS201848 TRADERSOFT- RUyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-03-15 22:19:10https://4fly.su/search/OfGA/Offlinedll emotet ext epoch5 heodo ext Cryptolaemus1
2023-03-14 10:38:05https://4fly.su/search/NrRU1QOR77up6YK5/Offlinedll emotet ext epoch5 heodo ext zip pr0xylife
2023-03-14 10:30:18https://4fly.su:443/search/NrRU1QOR77up6YK5/Offlinedll emotet ext epoch5 heodo ext zip Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-03-17 10:06:40fd79e8fa5e3801101a1305b6aba7a5e7fdc852ed9036d6d9a5210be414a5cc5adllHeodo
2023-03-16 22:41:390b8682fe1ee1d9a8ad485452179e9c8651c682660591077e0fb7077e89af81bddllHeodo
2023-03-15 22:19:10aa57889a91be96c5b5cae185792f5ad76eb5248abb66344a740266a1c297cfd7dllHeodo
2023-03-15 05:09:01893d4943146db4f539aa2366c4f2fca98fc628d540589254c8ab86d764fed8b0zip Heodo
2023-03-15 05:07:08893d4943146db4f539aa2366c4f2fca98fc628d540589254c8ab86d764fed8b0zip Heodo
2023-03-15 04:16:24903112f973aefb508d09fa9945d7cd1d243c52ad09e05f9f581dd1c3ba1b686czip Heodo
2023-03-15 04:00:03d8c38c1a4ee9198e568bb70296632e50c6e8a8f1d7714838c0e1440a47ef9d5azip Heodo
2023-03-15 01:57:50c631a9dd14ca4ddf2b94b5541e749e0595767bcc9cb581466e597230ea9834ebzip Heodo
2023-03-15 01:52:10c631a9dd14ca4ddf2b94b5541e749e0595767bcc9cb581466e597230ea9834ebzip Heodo
2023-03-15 01:19:068160966529f7a3cb532bfeeb331d34670bbee834dcaefcd77a76f7bd47ca3ca5zip Heodo
2023-03-15 00:54:22f3f3b6f8584cb65de093a44c4cb7f1811ddbddf4355dbdffb35fa74b04e332f5zip Heodo
2023-03-14 23:34:19670416298bf65b798bbf1195a4b235ed579e1c96cae6628e1a2d9fde1a2858ddzip Heodo
2023-03-14 23:28:37670416298bf65b798bbf1195a4b235ed579e1c96cae6628e1a2d9fde1a2858ddzip Heodo
2023-03-14 21:52:01d657cc8c2fbff96e1c3fdf9474878f1b0e5e6d5d4284bfbd6345822e10bec87azip Heodo
2023-03-14 21:50:13d657cc8c2fbff96e1c3fdf9474878f1b0e5e6d5d4284bfbd6345822e10bec87azip Heodo
2023-03-14 20:35:3644ecbc3d9a52b4af26daac6c091026d51f7d00403d7574ac1ebcb604dc66b725zip Heodo
2023-03-14 20:32:5044ecbc3d9a52b4af26daac6c091026d51f7d00403d7574ac1ebcb604dc66b725zip Heodo
2023-03-14 20:01:1304fcf6d62edff34fdc8a607a3da451d546e6c05932349e71e61ba1313ef993d2zip Heodo
2023-03-14 18:44:17bcc355d65dedb5e97a3784bf66e8a3882444e600a9ccd19c6934855f032cde0dzip Heodo
2023-03-14 18:13:111f3637d31d17d996f4379866eb06ef9b96ca97cff179c931c1fb969f3b9a5ae7zip Heodo
2023-03-14 18:08:1910e98b1a09196e4bce4508364bc4b96f7069701678d2087659b15fb239e96df6zip Heodo
2023-03-14 16:50:019b55dea4844bfbe56d5df75ebbd77aaf821a5bc65423807ef61de07bb3de8830zip Heodo
2023-03-14 16:11:55f5dc4943c4a24fcdf13937b0a6e484b90955ac80bf874483785a25cc82d164c6zip Heodo
2023-03-14 15:36:47a9de2a7fb170756cdeff00a4ed19574ffaaf1d59383728002390c8784764912fzip Heodo
2023-03-14 15:15:40a9de2a7fb170756cdeff00a4ed19574ffaaf1d59383728002390c8784764912fzip Heodo
2023-03-14 10:38:05498c4a7c1c1ad66267c35639ed643dfd17922febec4360fcaf5459c06359093fzipHeodo
2023-03-14 10:30:11498c4a7c1c1ad66267c35639ed643dfd17922febec4360fcaf5459c06359093fzipHeodo