URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	afolhanoticias.com.br
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-07-20 11:20:09 UTC
Total malware sites :	3
Online malware sites :	0 (0%)
Offline Malware sites :	3 (100%)
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 11:25:44	177.11.52.83	hostcdotres.brs.com.br	Not listed	AS53243 Brasil_Site_Informatica_LTDA	BR	yes
2021-07-20 11:21:06	177.53.143.89	shared-c-q-t-oitenta-nove.viabrs.com.br	Not listed	AS53243 Brasil_Site_Informatica_LTDA	BR	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-07-20 13:12:14	https://afolhanoticias.com.br/bukassss.exe	Offline	32 AZORult exe	zbetcheckin
2021-07-20 13:03:08	https://afolhanoticias.com.br/dy.exe	Offline	32 exe RedLineStealer	zbetcheckin
2021-07-20 11:21:06	https://afolhanoticias.com.br/ddk.exe	Offline	SnakeKeylogger	K_N1kolenko

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2021-07-20 13:12:13	c5db907c35fb4f5c61325e4c1ed3baadb8957f7d53f4a41d9388dcf19177d5f7	exe	AZORult
2021-07-20 13:03:08	d8a84d803a2d0bf946234ce9b67115bbea0b0f77aa20eda71dce1304615ea710	exe	RedLineStealer
2021-07-20 11:21:06	cb64fe8950ae788d699380f0676a21aa6ba2329f8055309fd51268d9c1e0c8b4	exe	SnakeKeylogger