URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: agernatura.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2020-09-16 10:08:07 UTC
Total malware sites :1
A record(s) observed :3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2020-09-16 10:08:08 93.93.67.200mail.s111117.furanet.comNot listedAS39020 COMVIVE-AS- ESyes
2025-04-27 18:50:17 104.21.89.117Not listedAS13335 CLOUDFLARENETn/ano
2025-04-27 18:50:17 172.67.141.161Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-09-16 10:08:08https://agernatura.com/cgi-bin/invoice/gn7m7n5b3p/Offlinedoc emotet ext epoch2 heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-09-16 20:08:57c95b5dca5208b5d4dea488991b6cae5bc1d6e7686af278285ea7e77a3b71cd03docHeodo
2020-09-16 19:40:22e247f4f69c1be4c95bdf6687e2ae1adbd1635c126ace3b544ad989024da5fb3cdocHeodo
2020-09-16 19:35:00d1df096853342d0030f71b7be3c608ee35fd1c81bce971a45e00b001a7d85d3bdocHeodo
2020-09-16 19:08:52d7f12b14c351620ca64769a126560507c4746cc966510d04d0fa882e521128c4doc Heodo
2020-09-16 18:53:1537af168ebcdcec12d2835ecc3a569839ed4660717927ae3ab0cc6a4b8a733012doc Heodo
2020-09-16 18:28:111e5ed60832baaf0e362870373615cff90279bbbc4e544c76224f7528687276eedoc Heodo
2020-09-16 18:22:31278fc88598a0bfe49be55465fdb975272c6315e3845d604caba7631cc5f32595doc Heodo
2020-09-16 17:55:569c5ec196eabe90d83815fe7015b5334c7fd6bbd350de085a69e022a0fc32ad8cdoc Heodo
2020-09-16 17:44:0589e280d00eba5184867b52270ea583f8bda9161dcb52921411e456747741e571doc Heodo
2020-09-16 17:34:24c88d8beb44c5609d538cae9b2bba76ebe5b09aefbb561fd2801356e147f179ebdoc Heodo
2020-09-16 16:40:1732eec3ec66c12e442e79982e74f902432abb353ca97501ad43d92c300a1fbc4edocHeodo
2020-09-16 15:59:453cddfe22684c82c3eeeb0d3c0c8745719dcd417db42c4ea6774c9a10d1a88f3bdocHeodo
2020-09-16 15:37:41962d453203d41ae26badcb1083a24aada6ccb51ae5ef7a416d850a0b8cee6c90doc Heodo
2020-09-16 15:32:136820256b4c1c4c5b50146126f828d2317ef12e023043a390611fe9b036cfe638docHeodo
2020-09-16 15:07:5254f3ff0a6c12843bdb1b448362320aac7421e7a1c1a210779dbb9c57ede15a75docHeodo
2020-09-16 14:13:190c982fd7e6da85d772a410a46a6569667df380d6fd19d4c597ca1a0f30c140acdocHeodo
2020-09-16 14:06:21e5c37ebebf58e59d2a4855aa35821a501f6412b3960604cb50fd0d14009888e9docHeodo
2020-09-16 13:44:335aa5a3b76812b8b3edc3768f494fd3550f5088d44872ac9f4bbabb99137427f1docHeodo
2020-09-16 13:29:5339031955d734e86e67664eee812819b699a9bc4f869cfb4d28db7f4c99cbdceedocHeodo
2020-09-16 12:07:470e0913f7c913e70406fdc7b5e47f2455d7152c4e461770cc1b9bee581491fab9docHeodo
2020-09-16 11:52:34ff707add1c74a6d7884de1fdbca86c891861883fccab90f4ef5f97130f95d825docHeodo
2020-09-16 11:41:25ba11cc626e1527c8dec4bf3fe20af2a338030cdb646252a4e170d19512d19d89docHeodo
2020-09-16 11:34:51b3f649438cba7dc8f34dbdea69bb67a356906ead944752b8abcc4fcc23b737e6docHeodo
2020-09-16 11:09:17c24eaf2c7e9192b22bdb558cdcb458e6de607d17f373c4d46d92561b2312f1d0docHeodo
2020-09-16 10:59:35b8d558c1ac20808b0809fcfa0c5a017da7e300736b6dbfee52ed1930c7b19a08docHeodo
2020-09-16 10:36:184127d459a04c32375faea92c1b93077f9a79c1c7ffff36dd050303fe2c295bccdocHeodo
2020-09-16 10:21:311d74eaf6b6fc4ebf83fa4325a27d62ee8f999df2c277d2357b777471f1b35bd4docHeodo
2020-09-16 10:08:08feb760d598f3b0a810214edcedd3e0ccefa48d12ba8c1dfb200aea8d382b4070docHeodo