URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	9966699.xyz
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-10-15 20:36:04 UTC
Total malware sites :	1
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-08-12 06:10:40	101.34.178.149		Not listed	AS45090 TENCENT-NET-AP	CN	yes
2020-10-15 20:36:07	149.129.123.12		Not listed	AS45102 ALIBABA-CN-NET	HK	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-10-15 20:36:07	http://9966699.xyz/wp-content/LLC/OaT54FleoYzA4...	Offline	doc emotet epoch1 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-10-16 06:43:36	6980b31565edaf3afbcff9d9e5944ae0ef03b5b895ffbe8416a5ba976a24f66c	doc	Heodo
2020-10-16 06:30:12	e92ce2936427af8c9ad098f7545082f5075cb392ae497589ae3335a9efb8d7d0	doc	Heodo
2020-10-16 06:07:24	23321ef2552ae21809b21f51b4380c31d17917222fe373a59d73500eedd99fdf	doc	Heodo
2020-10-16 05:32:36	953e1db493bd64b85be6166ddc1fcd8c35fc618189477b578cd123fcfc86611e	doc	Heodo
2020-10-16 05:10:17	a6091d359b405ea83e58000e282b0bd40824c64d36b4546077d786ff19124be1	doc	Heodo
2020-10-16 04:52:31	643b123f7b3a0482098e2bd2b3df2061f3960ba6cdf75946a75a2ab78a836aed	doc	Heodo
2020-10-16 04:06:01	f9d5124fa2f49422eaacc95990935571a667118bbdebac076de0f178e54e9ce3	doc	Heodo
2020-10-16 03:51:12	5122b41d64f8d986ea881b2cfe34337e9998ba36ae9b854c680c0fdedd28968d	doc	Heodo
2020-10-16 03:04:39	ef15c47fd8dcd129ee3580f45ef2062281b18b7410002a2631200043b9d170ae	doc	Heodo
2020-10-16 02:48:39	c29e0628b36f838a071e5cf4bdca821647bdd53dab36d762eb02a680f0bf5d03	doc	Heodo
2020-10-16 01:59:35	9347c2db740afe55d4fcd6c9346d63d399d3456bdfa1f8413ade5b083f64f0ee	doc	Heodo
2020-10-16 01:28:34	e1fa8ab1bc95406a6ca6938a72337e0b9206e90dcd5517bdcf36c487c5a92bd0	doc	Heodo
2020-10-16 00:57:19	eab5eed41969a9071221c46da6c2e5cbad82ce39b400964b2a4cc2c05d5617ef	doc	Heodo
2020-10-16 00:52:06	713ac4f03c7fe5fadbe01634828fa46a784a546c3604fa531d1b14efe197f7bd	doc	Heodo
2020-10-16 00:25:35	23da77ba922f1456341c04679f2fb38e73b253b7a6e8a2994471072e2029e5d6	doc	Heodo
2020-10-15 23:53:35	859a52cd1b0aa5c84836f1d4b6e63be3df7155d97fcb2f40fce4a55d4bebb495	doc	Heodo
2020-10-15 23:30:25	39f443a944e3114cf6c84fcd6c270f6f8ed42bd1ecf833189fb7e9a96c8fdd2a	doc	Heodo
2020-10-15 23:05:20	d1b6dd32cf8a5aff83fcbfdcae6e3ef17d7fdee013c76b2bbff8d6afadad569e	doc	Heodo
2020-10-15 22:28:58	38852b2a879c31c5f6a1cb8ad7874b20c2142d496ad73f9901c2088d2e006ed3	doc	Heodo
2020-10-15 21:53:45	beafc1267a6858915fadf22b33115584995aae3cef104ec6cb8e2cf4e07434a6	doc	Heodo
2020-10-15 21:25:46	8103d04629a03039728f51f15d3b206bec5bb301efdcf69dadecbcee0c613b74	doc	Heodo
2020-10-15 21:08:07	17c3d1b520a527f0b3b908b6107db6d0fccac8f66a9c5308cfd02bda68d814fc	doc	Heodo
2020-10-15 20:48:38	acd62901b73d5643b8a0036bc7545deed2970f0a2c1a780d46e42a69137c0e19	doc	Heodo
2020-10-15 20:36:06	be2d72ee1a4da699026d47683395cd063bc94662a384bc7352e9596f63f6c843	doc	Heodo