URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	amplamaisbeneficios.com.br
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-03-17 08:58:04 UTC
Total malware sites :	1
A record(s) observed :	5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-10-08 06:12:08	18.228.228.27	ec2-18-228-228-27.sa-east-1.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	BR	yes
2025-04-27 23:32:40	191.6.196.89	web-ded-393064a.kinghost.net	Not listed	AS28299 LWSA_S/A	BR	no
2022-03-17 08:58:13	187.1.136.68	web15f16.uni5.net	Not listed	AS28299 LWSA_S/A	BR	no
2025-11-11 19:08:38	177.12.171.254	www.congelado.kinghost.net	Not listed	AS28299 LWSA_S/A	BR	no
2025-07-03 05:48:57	191.6.196.19	varnish-farm88.kinghost.net	Not listed	AS28299 LWSA_S/A	BR	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-03-17 08:58:13	https://amplamaisbeneficios.com.br/contratos/MW...	Offline	dll emotet epoch4 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-03-17 19:41:44	b3d0dae65296c76f0204f75c5e6b9c75fdfe3f8a37ef8b365430b8f74890b579	dll	Heodo
2022-03-17 19:09:55	05ceb6a38d3d2ae1935616b4993359563f45b7d357b84ca0368874e350bc2f31	dll	Heodo
2022-03-17 18:44:48	2567299cc5b8a036d6f47ae1383191e00520145fcd3dc4f9990f8df3ebdd7d3b	dll	Heodo
2022-03-17 17:50:43	b780a7a3a6d6225ee9f46eca258658b586f58e11e19cdc98f86e90e62a364a6f	dll	Heodo
2022-03-17 17:06:46	6240b1382d1b514d36ac1f42a4b72d23391da891b201e28c102586ecb32f988c	dll	Heodo
2022-03-17 16:53:15	6f6e4f987e501839b775b7b5747d4aa26cf8986e635669f4ba4a22f303c4ca63	dll	Heodo
2022-03-17 15:39:36	3e8632cf50a1f6550d9cced568e7d48fcd9080ea76fb88a1d1c3d6210bcb1053	dll	Heodo
2022-03-17 15:33:54	125f6cc3e582731abc8a2126c9c5048f336e18cf40ecee377a6321d5272d049c	dll	Heodo
2022-03-17 14:46:01	64b826abff89032148a4d12d7d253587f2b5152f084ffecd33408561abd2fce7	dll	Heodo
2022-03-17 13:02:25	9691d4f25c0d4e609cf1ccc78769a05a447d358242216d23b8dcdc8e7222581d	dll	Heodo
2022-03-17 12:20:43	70710a581743b7e83f350348951a523114b71f5f0a1b2c4d4a713031f7a62695	dll	Heodo
2022-03-17 11:43:20	083d457d208ad35fa8a86dc39bfc32d43a2feffa59d698736d66c0fda6253af9	dll	Heodo
2022-03-17 11:23:01	b44c1f302cd49fe4bceb2afffd03dc87234eaaef6779dc0588ef965afd058311	dll	Heodo
2022-03-17 10:18:27	f44668570cfdc87c702bde33204ba646f9d384ea5dd02480d05aac69ad133dca	dll	Heodo
2022-03-17 10:02:58	7554407aaa07f67c2e79ddab35b39e5bd5474fbb2021456b5ef3bf4ef9e7940c	dll	Heodo
2022-03-17 08:58:12	c0c59f4c6d836d48e1d8633a01f120d39a645e45d378fa0fd5b7ccec1725a132	dll	Heodo