URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	bethelastjedi.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2019-02-26 15:47:46 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	7

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2019-06-04 14:54:45	173.239.5.6		Not listed	AS27257 WEBAIR-INTERNET	US	no
2019-06-04 14:54:45	173.239.8.164	icsvm3.webair.com	Not listed	AS27257 WEBAIR-INTERNET	US	no
2019-06-04 14:54:45	213.247.47.190		Not listed	AS8315 ACNBB	US	no
2019-04-12 13:13:15	184.168.221.70	70.221.168.184.host.secureserver.net	Not listed	AS26496 AS-26496-GO-DADDY-COM-LLC	US	no
2019-04-12 08:11:52	50.63.202.76	76.202.63.50.host.secureserver.net	Not listed	AS26496 AS-26496-GO-DADDY-COM-LLC	US	no
2019-02-26 15:47:55	104.28.16.202		Not listed	AS13335 CLOUDFLARENET	NZ	no
2019-02-26 15:47:55	104.28.17.202		Not listed	AS13335 CLOUDFLARENET	NZ	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2019-02-26 23:24:04	https://bethelastjedi.com/wp-includes/ID3/msg.jpg	Offline	exe Troldesh	zbetcheckin
2019-02-26 15:47:55	https://bethelastjedi.com/wp-includes/ID3/pikz.zip	Offline	RUS Troldesh zipped-JS	Anonymous

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2019-02-27 05:16:31	145b11a7232cc240c800b22ea2e86931a3e735d649f0bddb65883b64b4094392	zip
2019-02-27 04:12:34	f9031b2e0b9109787bdc85957e9a9d39ab8828e43d78419ddc3baea3129169b5	zip
2019-02-27 03:13:32	537a1ff4124ed06236068cbd98380862be5b487dbd109ecf4b451e15b52fb8be	zip
2019-02-27 02:16:29	3d3af12a8b4fe650bbac8a897c3e053142db223325208edbff36994081742cf1	zip
2019-02-27 01:11:24	2e7a584d0352295fc9d9965cf56b85321358817647f9b914326748d2d917b00a	zip
2019-02-27 00:40:24	06946331edc90824ca80f60b0bbedf274f2ca41fee2e6b07142547fff6e2d122	zip
2019-02-26 23:27:24	e93be7a020ac9b444ff3090ca809018fceeb5450d7d48d73d2995301392cefa5	zip
2019-02-26 23:24:04	701d3db21920f78b8ed2eb6b4286f858277928f50d567c9c6594bd1971e9c07e	exe	Ransomware.Troldesh
2019-02-26 22:11:29	2d90adea55f78545e9c97af31e8bd4fb700c58c3965e104a142f3e9809b489d1	zip
2019-02-26 21:40:24	fe24c34b7c4f8af913c70288aa87a676167f093735bc858f638a2b24a810e3ec	zip
2019-02-26 21:12:50	433b6a9164d32213d62f3faddf0549303739d9feb2254877247f66b9c42444b8	zip
2019-02-26 20:46:19	73b20883de34e4910253b4069f6ba093c159ebab63a3945c5519072023be37e9	zip
2019-02-26 20:00:16	df62ea18d1fd7e8e6580d4a8c5ba8a4d0db63995cb7811651d1130c724fa6065	zip
2019-02-26 19:39:13	0e08b71bf7bd23ecf9de20bdb72b5d5b5a496de4f4ca0780883a7e885edbc911	zip
2019-02-26 19:14:15	9ff24c157d31bba11b46baeb07d1931a1f5e79eedb461844e3993f0505f84183	zip
2019-02-26 18:53:11	4b62f3dc8ed015f9cec68ab79e15e2a6775a0d3c2f3dda1fcc91faaf67edb1b1	zip
2019-02-26 17:10:11	da379886f724524fa8fd4739e9d157f0ef93f36bd0353274d81a73adce2ad05f	zip
2019-02-26 16:48:06	4a9e564ce009f9e0cdbed4d620b4d77c3e3a55a1bba04004c26c22723169b415	zip
2019-02-26 16:25:08	f0b608cb873eb0d87402c9659ca5dbfb84df1769f43790707c13bbb759d9903e	zip
2019-02-26 15:47:54	a21481ee14d540295444c99bfa949c789f3254ae516af03ec69122f568eb818e	zip