URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	bikzandy.com
Domain registrar:	OwnRegistrar
Domain registration date:	2020-08-17 18:17:03 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-05-17 00:37:04 UTC
Total malware sites :	1
A record(s) observed :	5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-06-14 17:30:23	64.52.80.206		Not listed	AS399629 BLNWX	US	no
2023-05-23 08:39:37	89.23.107.8		Not listed	AS215540 GCS-AS	NL	no
2022-12-18 22:04:06	79.137.207.108	pihole.aeza.network	SBL655606	AS210644 AEZA-AS	DE	no
2022-05-19 11:30:54	45.81.224.7	vm4164906.25ssd.had.wf	Not listed	AS204601 PODAON	NL	no
2022-05-17 00:37:05	46.8.153.210	artanwiga.example.com	Not listed	AS16262 DATACHEAP-LLC-AS	RU	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-05-17 00:37:05	http://bikzandy.com/meta.jpg	Offline	32 exe RedLineStealer	zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2022-05-19 11:30:53	d0289e833b1db2267791e8348668b194ef8b475c41256d80692f5ad9223c38f0	exe		RedLineStealer
2022-05-17 00:37:04	114fbb0c82a2027da02fc1b88930598a667c6ebf4bcd764f6a4a83dd3c5fd40e	exe		RedLineStealer