URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	bambathamobileloans.co.za
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-01-20 17:49:04 UTC
Total malware sites :	1
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 15:37:07	102.130.118.247		Not listed	AS328364 Host-Africa-AS	ZA	yes
2021-01-20 17:49:07	102.130.121.41	cpr40-za1.host-ww.net	Not listed	AS328364 Host-Africa-AS	ZA	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-01-20 17:49:07	http://bambathamobileloans.co.za/cgi-bin/X/	Offline	emotet epoch3 exe heodo	waga_tw

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2021-01-20 21:40:58	03ff40768f2c5dfb8c60c977b173ab72abc0932ccd13d139115bf7f0ddcdb323	dll	Heodo
2021-01-20 21:24:00	7072ef571dde71561419877d4ab14d97136c059ffa69bf289cf253efa06723bb	dll	Heodo
2021-01-20 21:19:17	1086ea49af6bad26c6bb2720cc6baad1fd8264c643444118790f4c3d1eca5ebe	dll	Heodo
2021-01-20 21:00:56	3710b548e10e1ca1a5648a0a2df7b9620ed8bb5ef61ca1ce2b2d4b9d9547a871	dll	Heodo
2021-01-20 20:49:27	74679b915a9a7f011bca955ee58935af85f2502095336845f67a38f9db9c2a44	dll	Heodo
2021-01-20 20:41:49	6cbf4e69bf6c2a02be477a75eaa4dbf6717ac0a5a6f8388a328980a367cd4c7d	dll	Heodo
2021-01-20 20:22:48	3a580559a9d7972bf1fcda68e05c50c8723c8e7a8e4e720e468b5273b23e34ad	dll	Heodo
2021-01-20 20:13:00	6e1bd07a726e55944eea239668249c03c0423e549c53f655d16c92e1728116bb	dll	Heodo
2021-01-20 19:55:28	ae5d3379b6ebb3b587385475e9712f03bb4624df9ac7864cc4b8c7ba8b45da38	dll	Heodo
2021-01-20 19:39:03	0d70da1ebd4131691f55ea43b0debc9bc4981c324ff382721500f70050b5262d	dll	Heodo
2021-01-20 19:19:03	d8cb5bb4a366b6e40a9a315e22827e297de9811f74838d781af8045175ae6961	dll	Heodo
2021-01-20 19:03:24	cba9181638c4941392d14263b58855743eba5c73471ab79821890afc96d4d9c8	dll	Heodo
2021-01-20 18:56:49	999423dbc9ce1fabe62c9a28a0ffc5e2ec88a981d43d1b3b27206289c97a1ec5	dll	Heodo
2021-01-20 18:39:14	862ea7f1392d0f756ec3ad0e75d5ba0508960b5cb9c3d1509ad200a7a5189091	dll	Heodo
2021-01-20 18:29:59	d72fae43fb4c0088d3aca9db3f4450b0f0a8e3368b2f0527aad364b9efc13f23	dll	Heodo
2021-01-20 18:13:26	a375dccf8bae1650588f5501fcb409b51589bf2bd806c78fd28e37bfcbcbb2c5	dll	Heodo
2021-01-20 18:03:29	109ef806734c5c3c5a13cb3f03badfb7ffedd06837a5fdc756840a230b404b24	dll	Heodo
2021-01-20 17:55:25	073fb1d49910c03c3dcd519d5ab0b4be8a8c2bb00822fc7a92d05d22d9815b73	dll	Heodo
2021-01-20 17:49:06	65c80b8c1d96eb54c20f38fa4a0827f8e1f7bfcbe70671aafd338863e5ca01a7	dll	Heodo