URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: azerfinans.az
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2022-01-11 13:36:04 UTC
Total malware sites :3
Online malware sites :0 (0%)
Offline Malware sites :3 (100%)
A record(s) observed :3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2022-10-19 14:11:59 94.20.21.50ns2.extraweb.azNot listedAS215148 DT-CGW- AZno
2022-10-31 19:28:17 85.132.67.196Not listedAS215148 DT-CGW- AZno
2022-01-11 13:36:05 85.132.79.162ns1.extraweb.azNot listedAS215148 DT-CGW- AZno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-01-11 13:38:04http://azerfinans.az/S7NBXCSR/PxRmcN8vYq/?i=1Offlineemotet ext epoch4 heodo ext SilentBuilder xls Cryptolaemus1
2022-01-11 13:38:03http://azerfinans.az/S7NBXCSR/PxRmcN8vYqOfflineemotet ext epoch4 redir-doc Cryptolaemus1
2022-01-11 13:36:05http://azerfinans.az/S7NBXCSR/PxRmcN8vYq/Offlineemotet ext epoch4 redir-doc xls waga_tw

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-01-12 00:03:1505dc48ca9e5d5feb04a32c1ef3a8d18453a2a679e7257ce24856895a5dea268bxlsSilentBuilder
2022-01-11 23:47:4566f5d61a2c4246c3bc39141c46e41bdc84c3f12a7db0b2ec3090eace070392d6xls SilentBuilder
2022-01-11 23:19:3344c675302c6fd62e15e5c9ae9bb98325870093ceed92a30601a13ad1dc2bd4f2xls SilentBuilder
2022-01-11 23:12:42a7fe36211a0be63df4c3929830b8fc4e21fc0548b5446377ce9c83b3d1fd9339xlsSilentBuilder
2022-01-11 22:34:220174c6534f42113ca8854a6ae91e267fb1915bb32b5760b52bbb551aa1580da2xls Heodo
2022-01-11 22:18:4614222deeec10d32091a2947e045833bd25c041a662f4090df26e50381cf922c6xls Heodo
2022-01-11 21:50:15446d074d88398efd9a59c8bdabf3f4909ae1bc5c12c418b98c3f185459844fafxls SilentBuilder
2022-01-11 21:22:32dc1a568534305e8dd82443bd62f3fefe364de2073558c8237bbe099593714259xlsSilentBuilder
2022-01-11 21:13:13c7cc8c98988b0b5cdbd103db7c61f01a6e92f96f525c36f15bfaae039bb46cd7xls Heodo
2022-01-11 20:44:31416e811b6839dbe39092f82dbb62064350da5400ce2e1fd94870f305f5b2b77dxlsSilentBuilder
2022-01-11 20:18:17d92b0ebb1f64086c8c4d5b238f3683a3319bcf041cdfc9e6736f742a260a5ce2xlsSilentBuilder
2022-01-11 19:58:563f4ddde39dc20ae5a2558fe48b7341187c1bba0dbd1c95a32644b14592a38653xls SilentBuilder
2022-01-11 19:32:2824160ff88a8c4ee8d12c4cad09dbd7e744c2bf1bfd24b636cb436cb047d3324dxlsSilentBuilder
2022-01-11 19:10:29afe04f54612c86612a56bf8a3a228a2aeae275f4730552228f8a4bb6f71c292exlsSilentBuilder
2022-01-11 18:53:36fbc4a5db3ab48741c10a226dae4e2b64d924110962224bef57910478251cf3c7xlsSilentBuilder
2022-01-11 18:23:355567612a01ddde62a81334d73dc09a4e0f78d8e552d2686d44eb3e3910ecf13dxlsSilentBuilder
2022-01-11 18:10:39b8600d1365521e1a2f83ae356900d38cf8c44b60594bbe30df2ac04418cd823exlsSilentBuilder
2022-01-11 17:46:1238b51ee1239079bda9d7d55d94ad241f9595a1bad8a9538a140cd3504ce559c0xlsSilentBuilder
2022-01-11 17:29:3614e585c42b502e7e5ba9cd07618751748e748fd0a938c114c51a379de2d1082bxlsSilentBuilder
2022-01-11 17:08:06659c21119c192bd5c4c698d0e9c0ef6c5d0ed38bf40907318ccbc4dece45ec76xlsSilentBuilder
2022-01-11 16:50:141cdf6133fd1d4138849b8f2b29f199d90ccce54c369b74a88a14e8329e1051c3xlsHeodo
2022-01-11 16:32:129e3e47f20134301b475d2d5477000f2ff061b7e2ccf7c02aa892d300c3da3b36xls SilentBuilder
2022-01-11 16:15:41071d6c9a40d6721f41c7064edb52f46d766703ea2e9bbe033939b6d60f24604bxlsHeodo
2022-01-11 15:48:005b8d0b12d4a393432ef70e1832915b20c0a39b948c524ac301e3ae5f9794b84dxlsSilentBuilder
2022-01-11 15:24:50f88047040dd90ee2899d1109879063684362d3f51c39d80a332dc83d908ea39fhtml  
2022-01-11 15:13:233a3a5f5444557caa3c86b58560956c0a0452818a2349ef7328bb8c948e36d465xls Heodo
2022-01-11 14:59:18d2c48bc93b2b0711be6bafd81a7eeddc944514e110ef2e1014151dac42e8ab62xls SilentBuilder
2022-01-11 14:35:22045946e253af3bae2e2ae5be021b6a2032c8fd4df027ced949a3a9a09310928fxls Heodo
2022-01-11 14:21:227c1004454dd200c8e01f09e796c996a70ee951164ec546ae10634a41c1eb4d22xlsSilentBuilder
2022-01-11 13:54:1685b88ed279f103f41ae22a4adc9e432be6770a9d241fa124e7a62bf857995c8bxlsSilentBuilder
2022-01-11 13:38:04a672f734a98a5b287eb96d134893701f055f20573dd9f9d778b1e7953b00a944xlsSilentBuilder
2022-01-11 13:36:052baa530bc9e6a55d0dcc5aff7aaf8962fc46568598ead8f1370cd8441385a4c2html