URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: afusheng.cn
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2020-10-06 04:48:08 UTC
Total malware sites :1
A record(s) observed :5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-04-27 08:38:12 38.28.170.18Not listedAS54600 PEG-SV- USyes
2021-08-10 18:54:57 8.210.3.140Not listedAS45102 ALIBABA-CN-NET- HKno
2021-07-14 10:11:40 121.127.241.114SBL657515AS152194 CTGSERVERLIMITED-AS-AP- HKno
2021-06-10 07:05:15 134.175.222.95Not listedAS45090 TENCENT-NET-AP- CNno
2020-10-06 04:48:14 49.232.160.160Not listedAS45090 TENCENT-NET-AP- CNno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-10-06 04:48:14http://afusheng.cn/nauf55aqa.gifOfflineDridex ext bigmacjpg

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-11-25 13:06:354ed84af8136d2ed1024814c2fe8f38ddf427b9bb3644b6a3652ea1c066fad6b8dll Dridex
2020-10-10 18:17:16b325eab59c4e9bd54a0f63a37f3bfdaf85a35244a9720207302b69190d628db6dllDridex
2020-10-06 06:07:43adf6d91922505e07b840cdd9f74d33d6c7872bc6534a9be6b27b5d03470c835bdllDridex
2020-10-06 04:48:14a8b125a1162491b5a6d0a4372aea196007ba8f96ea4dfcda4c05ad5a65d03378dllDridex