URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-09-23 01:34:04	https://akgul.av.tr/sys-cache/payment/	Offline	doc emotet epoch2 heodo	Cryptolaemus1
2020-09-16 22:24:03	https://akgul.av.tr/jfuyb/LLC/KJZZZDC02d999rAKol/	Offline	doc emotet epoch1 heodo	Cryptolaemus1
2020-09-14 13:45:08	https://akgul.av.tr/jfuyb/Documentation/	Offline	doc emotet epoch2 heodo	spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2020-09-23 04:14:55	5cb9f67f8d803e2b5cbdfa3f2be7bb32a7cde2670256be9d0c998626a49ce7f2	doc		Heodo
2020-09-23 04:03:26	18ccda5cbdc33dc68b217344cb63c776f444cbef19c75a2cc96e73cac848d039	doc		Heodo
2020-09-23 03:35:11	b171914b2e5a10fd997e51268f01a70b254f0aa55080906c36c6159bd325c9fe	doc		Heodo
2020-09-23 03:11:00	29b732cb0e36fa5a789f66f7d4cb5ff8905ce6ac1b8e18e29d056b439e177cc3	doc		Heodo
2020-09-23 02:44:32	a7305cf8e088408136fdfd5deadd230a7d00a03b1cc3fc12fc0705a30b4e0ae7	doc		Heodo
2020-09-23 02:35:33	f81dc1dd571c29424756de4b14efa593fdea619f32694846535c4820c9acf375	doc		Heodo
2020-09-23 02:11:21	10fe3df8f6540696c8eaf649bc752e30d5533b0203869ec0839cf045227620ba	doc		Heodo
2020-09-23 01:34:04	c6e601d3f1268441a2518c331465ffd7acd22aae6e1526662ffcac834946f259	doc		Heodo
2020-09-17 03:03:18	1888c0e8ca2680933a24093dd103357ec73394ff7b627ef3b2c9272817a6e829	doc		Heodo
2020-09-17 02:55:09	d452df085e4fa1e9de2c26da033abc9944b538757f876b06980b6ec948953f08	doc		Heodo
2020-09-17 02:21:24	4a302b44df11e4712e28d8e684fd9be280473a1f16ede2d69ee10c7aa97122a8	doc		Heodo
2020-09-17 02:00:50	3f4bf548088814d982137a7a86ee7ef03c92225d8190047c8f06d3a98440b63d	doc		Heodo
2020-09-17 01:47:28	52d1e34446e3375a5113383a78e7bc3a0a6c4a1791c2ef347e56564217852ca0	doc		Heodo
2020-09-17 01:31:23	9292f6dd43458e974f0c4a39a5574e21b543c84949612bfd88587187d0ab6a81	doc		Heodo
2020-09-17 01:14:08	0ee3ee6d46932766c0b60ab6d06d8791a97c6cc37289e03f7d74543916ca8145	doc		Heodo
2020-09-17 01:02:34	f8fc724bbea7e936d3992ae10d584f731a9769e20cf21f0c9b1520d4479407a8	doc		Heodo
2020-09-17 00:44:55	e0ef54d4ccf770a88f53ddfc67ae2684ecc6a5af1261cef668c18943ebacae96	doc		Heodo
2020-09-17 00:16:53	205acd1fb78f111640a402574b079502d97b9c3e17729869e6931d30842a8b16	doc		Heodo
2020-09-16 23:48:55	c0a665fc668d444e9238e57cc6599bd2617c430d10562c067b9dd5a609bbadea	doc		Heodo
2020-09-16 23:41:06	4be9c13137a7afe484e5ef71a404a5b9b910d2ca17ccfcb7524ead6a5e530ace	doc		Heodo
2020-09-16 23:18:08	9517199ff23937f5824cedaa844f795b50e7ed9d127a62219051249d5da76b63	doc		Heodo
2020-09-16 22:56:19	40afaa1f04f40b23a4002e09b26fbc3ca750eb0aa30a69c04b3c5cd33af2185a	doc		Heodo
2020-09-16 22:41:07	97214e11cc4031687da4e0f6bd8d5c8d1d671f191e3e0cd29ff774dd79df8d3c	doc		Heodo
2020-09-16 22:24:03	4ff425a974e9720cc0bf4d6ae70d4d57ec4edba20d9949e1c2dce87d6f7b20b8	doc		Heodo
2020-09-14 14:04:32	55893c0cc8ef597e993ef13a63a900b29c09d7903bb693d3a0ff3f77b917eeca	doc		Heodo
2020-09-14 13:45:07	bd3461849b4d660b627fc4a1ff34e6dcc2b26ce09e69643366c02d920f8c49d9	doc		Heodo