URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	agir-santeinternationale.com
Domain registrar:	Ligne Web Services
Domain registration date:	2018-09-27 13:16:18 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-06-13 13:31:03 UTC
Total malware sites :	1
A record(s) observed :	3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 22:38:30	185.135.132.112		Not listed	AS210403 LWS	FR	yes
2022-12-20 23:09:07	83.229.19.74		Not listed	AS210403 LWS	FR	no
2022-06-13 13:31:04	185.98.131.156		Not listed	AS210403 LWS	FR	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-06-13 13:31:04	http://agir-santeinternationale.com/wp-admin/SU...	Offline	emotet exe heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2022-06-13 18:48:48	2732fdea91df7e70b28be0beee8a59989d8594214f23bf016513ab524418a16a	dll		Heodo
2022-06-13 18:41:01	dd6172d735f52fd1f69aa29a5b46b40cb0213d504943053dfd5efb95f0a255b6	dll		Heodo
2022-06-13 18:07:52	e9cd6d6455847cf2b23bd01e51b9bacc76f02475b77ee23ba3eab904798caece	dll		Heodo
2022-06-13 17:43:17	cdc02c512c01ea6574e2afa0d274fe3113676ac05c6eda102a2a9b7d37ab497e	dll		Heodo
2022-06-13 17:25:49	8d51ca5dd05f9a4fe670248f86181d9c35eb3d7f536eaf497da2156adf05710b	dll		Heodo
2022-06-13 17:05:32	a5eb94b987606321a528c8e58bee8dae5cc8b7e393894805a0dcccbc22efad5a	dll		Heodo
2022-06-13 16:51:00	fac561e3d8b0820131e02053c6b71e29ebf70f8f7c985aac328753ab4808692d	dll		Heodo
2022-06-13 16:40:02	d94156b7179abac4b6e243f52f184276a33caa36f762f105d87a0fcab60e7d2d	dll		Heodo
2022-06-13 16:21:16	cfb57a5ebcbf1bca38077d80b1745f940fced03dc53f17fe5b1f492291932c36	dll		Heodo
2022-06-13 16:06:16	d0c01dcbf49ce2bb9a9b41979b36ddd9c55c23b2683359e3fa5cdbb2c6f78881	dll		Heodo
2022-06-13 15:50:12	82e8d4cd6c70e860194ab2c03c196f30cc556782fefdba37b2bec1e983c6ae42	dll		Heodo
2022-06-13 15:30:56	80c88ac4521371dace5dfa3703607c8bb97a6a681f78401eb4e068fa7aeb1d38	dll		Heodo
2022-06-13 15:17:46	5b785907e4d387e17b61a1e917ee3b48a3e70708febfa819e1a2d19f8c19ca42	dll		Heodo
2022-06-13 14:48:59	547dad59d779e3e8b87e967bf2b0ce8b70924dad788644337b554401120bc56b	dll		Heodo
2022-06-13 14:40:38	9e2dfaad453561dd3130d3328907d6ea83e80dd9afb6d3c7cc352f765e7748d9	dll		Heodo
2022-06-13 14:22:57	40dbbc388a110b0ad4172cf431d76e2cd5b765354ae33775a26de4a22f1bedf7	dll		Heodo
2022-06-13 13:58:34	635fe40b035720090f7377635ba89bf38e5c7acf2d5a28b17ce63215ec8c82db	dll		Heodo
2022-06-13 13:54:08	8d9b9fe3472d30537353051b2677bdfff719a110c9a9c31597617e8814a660d7	dll		Heodo
2022-06-13 13:31:04	1d39e74911b901de0d71873bbd99aa33d43506e178a7ea31d884bcb8cf96085b	dll		Heodo