URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	aaticd.co.za
Domain registrar:	n/a
Domain registration date:	2016-12-06 10:11:59 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-03-14 09:24:04 UTC
Total malware sites :	1
A record(s) observed :	4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-05-03 08:06:44	41.72.157.138	s43.registerdomain.net.za	Not listed	AS37153 xneelo	ZA	yes
2025-07-05 16:56:56	104.21.70.201		Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-07-05 16:56:56	172.67.139.68		Not listed	AS13335 CLOUDFLARENET	n/a	no
2022-03-14 09:24:08	102.67.140.236	savannahweb.co.za	Not listed	AS328170 DataKeepers	ZA	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-03-14 09:24:08	http://aaticd.co.za/wp-content/6JENALSdgs0RAPqV...	Offline	emotet epoch5 exe heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-03-16 09:26:39	cd9e8dd25052152d54bbf5d3dc5371acb7a0aab8303567f2a49e6c6bd21b1888	dll	Heodo
2022-03-16 08:29:25	9efe8bc32413c4cc9fc99d116894393de264ef7465f9551f5a3795a571dff1f3	dll	Heodo
2022-03-16 08:10:07	dbbf24e442361839e7113e3e8b91215e35b68f06b5f98dba3b9ec1874f7877cd	dll	Heodo
2022-03-16 07:15:56	9b3ee49df18efe8f6f22d5b34c469ecbbba4f045ad41949dc18a3bb3e142146b	dll	Heodo
2022-03-16 05:38:29	b512e8a13471607f5152fe750849be9e96234170cf15ff6676aacce14708dace	dll	Heodo
2022-03-16 05:09:54	b8b8e503a26c3cd6b6625c1155d80e4417c5e9ee9ecb6a6f1e8efafeab755f42	dll	Heodo
2022-03-16 04:03:37	3d483c142210ee92fe2239d5fb08815c133bdf8f57ddb67ecb03a117a8dd1733	dll	Heodo
2022-03-16 03:35:05	b0eaab1c048f1b6f86a0e8fe3a2a6fee9e87770c536cbe0e0b956f9c1d0b06bb	dll	Heodo
2022-03-16 02:20:03	c30529cb6634f6bf6a06f5a49296be641d9d59039d1b9c439fb72afa51c097a6	dll	Heodo
2022-03-16 01:38:28	5bb53d958ba846161471997abcc948b2ead7a8b6ad686629f55eca215190ba3e	dll	Heodo
2022-03-16 00:51:45	870d76f00591b78b68c888160708dee69122fc6a3a875df841561ae01c0e1d5f	dll	Heodo
2022-03-16 00:00:33	fd421fc46f9d3d59c25b677f894151d8547e54103af63d38cb07cc6e1b8e4725	dll	Heodo
2022-03-15 23:09:03	ec76ae65d6e9d1867e3d5a94203e49508efab628aceca32b989e2640eb472330	dll	Heodo
2022-03-15 22:51:22	804cd08d884fa1567917529d11fd9bd1b76e9095667b89ef784886b74d5d1ae2	dll	Heodo
2022-03-15 21:58:15	8f68141db9e03a2ccdeb0c44cf7047df81bfabc752378a65be8885431e2a213a	dll	Heodo
2022-03-15 21:04:08	6bcbe0ed9da8fd5d72a70c1a8ec70283b3e0c5438395ab6125615e32c71fa72d	dll	Heodo
2022-03-15 20:48:48	2496e993f4cba20c58b23872dbd780f79701df13b9223a1127611f8c914d4fde	dll	Heodo
2022-03-15 19:41:31	b67e325ae49a5f52d49128b68cb60d2e07c87035865f912d5e4a0f1eddc06129	dll	Heodo
2022-03-15 19:32:54	9abd7d99207dea29e02364dc8a48e0c43a1207c14d31791e2cc368310bebc37e	dll	Heodo
2022-03-15 18:50:20	0955ef93b99858a8c1581673ae35ea78728311355f57f0493ce8d91af494a7e9	dll	Heodo
2022-03-15 17:39:38	817b3531003be8dcf693256f8b13b2f6a7465dd0c3c95bb0c1396c756375582a	dll	Heodo
2022-03-14 11:27:27	cd2c8be79c458923fbbd37763cff069d5cb89bf95a8063364a39950bc24c2d48	dll	Heodo
2022-03-14 10:39:13	7c7e81d4142750bee944849e7231f4a23379fadc281e057843b682d7017a0797	dll	Heodo
2022-03-14 09:24:07	6a1edfff98c525817549e269c2408c2d2d07145c2c1d9ea6c7c165f569726fc9	dll	Heodo