URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	billingup.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-08-12 11:18:54 UTC
Total malware sites :	4
Online malware sites :	0 (0%)
Offline Malware sites :	4 (100%)
A record(s) observed :	7

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 10:09:59	13.248.169.48	a904c694c05102f30.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	yes
2025-04-27 10:09:59	76.223.54.146	a904c694c05102f30.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	yes
2025-09-05 23:15:42	166.117.110.61		Not listed	AS16509 AMAZON-02	US	no
2025-09-05 23:15:42	99.83.161.153	a2b7bf3398455f345.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2020-11-08 14:08:18	156.67.213.77	srv47.niagahoster.com	Not listed	AS47583 AS-HOSTINGER	SG	no
2020-09-10 07:09:16	193.168.194.10	srv64.niagahoster.com	Not listed	AS47583 AS-HOSTINGER	SG	no
2020-08-12 11:18:57	206.189.158.130		Not listed	AS14061 DIGITALOCEAN-ASN	SG	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-08-21 14:37:09	http://billingup.com/wp-admin/ERU7N7WR7R5/6qpro...	Offline	doc emotet epoch3 heodo	Cryptolaemus1
2020-08-19 13:46:35	http://billingup.com/wp-admin/balance/s8n384ejb...	Offline	doc emotet epoch2 heodo	spamhaus
2020-08-14 20:55:07	http://billingup.com/wp-admin/available_disk/2y...	Offline	doc emotet epoch1 heodo	spamhaus
2020-08-12 11:18:57	http://billingup.com/wp-admin/MfFw298/	Offline	emotet epoch1 exe heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-08-22 02:02:38	d264878eae29d3da022f38e67a38560346ba42cbb6dbebbf0e6c852c666fb1ac	doc	Heodo
2020-08-22 01:47:59	6f6e1037eabcdd4495abaec04471ac97398c57eb88493b324e2d89ad9bd7af08	doc	Heodo
2020-08-22 00:56:30	564105a864ba17349c0c70d8c11883b4edaf7b9f653bc074d57ec92e33923d61	doc	Heodo
2020-08-22 00:31:01	2e74991bb85eca7f7f2a23a4d66723c0fd913e04060037642abc2f9525560cdb	doc	Heodo
2020-08-22 00:15:36	88fafca4b3195bc1843721aa1d78221a5d05be8d88f43ceb0e85aab917c67a43	doc	Heodo
2020-08-21 23:59:47	b199113c89d1f14f205054c9a7cce7b661199224054e035b6f5044205dc27cf8	doc	Heodo
2020-08-21 23:44:05	d09a4703239b8dd258d5174bc65647fa6b951cecfcb7c2f9c46a29a061a7a769	doc	Heodo
2020-08-21 23:32:02	31ef2257cdb7b9006892fb9754673511beaf648f6c3a899b9bff3031310a9acf	doc	Heodo
2020-08-21 23:13:41	cd51eb10684d011728e273a115ce4655403d5a5fb2d0ddf0d015e93aaba39852	doc	Heodo
2020-08-21 22:58:42	2d4370eba117c88617870ab941572195d2facde4eb4e1d768507d37840812da2	doc	Heodo
2020-08-21 22:41:41	e5c9f8c0ccfa47835d30be512636ad1b0e40d75587d5a309f586b67796aae5cd	doc	Heodo
2020-08-21 22:26:04	df8d09457a129b57c4740b237ac226b0e0245d035dc20930563bab681e98e8c9	doc	Heodo
2020-08-21 22:10:53	43057d3c74a6fbe3be2660879e861ae3d0b2118866abb1e3fe8bc169c526d957	doc	Heodo
2020-08-21 21:51:22	214116ae52ad96af88fa41e0ea271fecb493e2afbc403bc3ca2c184ffd03d996	doc	Heodo
2020-08-21 21:37:57	d594bcea91f0259160c0122a56ad8ec4a7896173295fb3b2c197781cb1bbfddc	doc	Heodo
2020-08-21 21:22:10	83e013279f45dc89d5efc3717634b746a611baee472756272e91e1673d8fc3ef	doc	Heodo
2020-08-21 19:50:18	b99da0701a16d0df2895790bf84db62ee0da6b42fa8ea0c2a5b103a131d98f13	doc	Heodo
2020-08-21 18:18:46	2722912646668099c2c0bca95e61e654df8a201fd127ecb8ae5d6ba79299768f	doc	Heodo
2020-08-21 18:01:39	43638c344ac4a446af722c229682fee9a8434923ce1cf6dd1a19bd2a0fc78c21	doc	Heodo
2020-08-21 17:55:42	dfb4a0445bee97a362ee8ea96a3cb6444bc3ef4b7c96beaa5edf0508e6343c56	doc	Heodo
2020-08-21 16:51:43	4ab72d91d0e85daec3f451ceb24b75e35a698aec75707fa853f10d780396df0d	doc	Heodo
2020-08-21 16:29:51	583422020b6a3b13f25301f8010f577f735b052fc27666b44a6f860493f38f49	doc	Heodo
2020-08-21 16:05:39	cafc557261c0f9e0e43f24e43efbf14505b54d38271152c48e4a6dd3279769c7	doc	Heodo
2020-08-21 15:50:18	78a36b1f41b0c09c31d6bc4665036ff311e872b98404bb726312e26f0d559803	doc	Heodo
2020-08-21 15:25:04	c6c8fb9bb0d155bb4fe8b4b7904de586efbf5c79f49877313b380b848ad12da1	doc	Heodo
2020-08-21 14:37:09	7c303f2995b9790217a53cc1a703eff629341dc40df6b24d79eba161ec7810fb	doc	Heodo
2020-08-21 13:54:52	52f93265171c4daa8a38ef46773660e8b83d21d2a1bd660a0e52efb67cde6ebe	doc	Heodo
2020-08-21 13:34:04	01298d83e8f16304e95326dc2aaeba75fb90913b8e359ba16ffa314513f6ef63	doc	Heodo
2020-08-21 13:14:08	a13897aff5bbdee2bf78782be00ac516731e334463b3846c57df74c6167e97c8	doc	Heodo
2020-08-21 12:52:18	92ce63816306ff769b615c927a2677d7a4d1eecdbe7e6bc825ce4a446df1bc7e	doc	Heodo
2020-08-21 11:21:04	bce60944d3f355c0b0204703032c8c88b18863aab47ce9c419f3b2b9bead9c9b	doc	Heodo
2020-08-21 10:59:00	dc04253b8a3088bcaa9837abf3c06c8b61ed9ea8d51892fd57179d01768e2749	doc	Heodo
2020-08-21 10:40:58	8a887dca0fea26577923cdf9c4985eac7870541eacebc98ac38b51a4bda04ab7	doc	Heodo
2020-08-21 10:28:11	a8f4d3cce2e44d80f854033bc5abd85b25fef08d58f6cd0c2e3624ab6c5833bb	doc	Heodo
2020-08-21 10:10:12	c07947f8f6983f089fb52a6d4c76836c1a4ee17e1e9f190785aee2a75333479c	doc	Heodo
2020-08-21 09:39:12	eea83be73bb6b63138b070ecbc75bc0af0a8f6540fb9125735eda75701adc2b5	doc	Heodo
2020-08-21 08:06:52	9bef601df3e482ea5b723a710c2086bab43312b7c275da979b1765cb7660f060	doc	Heodo
2020-08-21 07:46:51	566d8a72704b070c381499196ca3cdefc19da30efc64b92ddf11eb6e6569dbe6	doc	Heodo
2020-08-21 07:26:53	bf9fe3f7b66ae5baa3877c2da0edf95f1434298010128ce61c76f6bb6c4c46e0	doc	Heodo
2020-08-21 07:07:43	54352cd25b7c6901b81eda69dcdca9f9177865d644ff9bf018890b9ce49d3580	doc	Heodo
2020-08-21 06:51:18	4b4b63f7cc990424de9bbf63496dac50958cc5c9b300b463c8a7d4a878535413	doc	Heodo
2020-08-21 06:17:32	fd2732589c07dc97af78689360772ace939ebdbf5c47132f7df607d9e24a267d	doc	Heodo
2020-08-21 05:56:56	35853b796b01221acea0248aa545c1bcebf39e890c9ac82ee261ee7d866c2a46	doc	Heodo
2020-08-21 05:38:32	af3988b7856704b5467030ee792d90beff86f1f453c3280c8d0f822b2dc9898f	doc	Heodo
2020-08-21 05:13:52	29489d8ec25a46a76a0bb977cba3d4260eef3e2520e1b060a323df2c5f8cd8fb	doc	Heodo
2020-08-21 04:51:36	346bffecd143569cdd0fb796380eb297dbf4b03fbb9c68edf994501847763d20	doc	Heodo
2020-08-21 04:34:42	3402c51be7936f3d75b8105bc6c6bee636b7607af54f6bf539ef094dc1c848c0	doc	Heodo
2020-08-21 04:09:28	b008c2a5a3f325892c0b9e4b83ede888637a59c8b5e320968165589ba583af7e	doc	Heodo
2020-08-21 03:52:47	913271f10fdbf26cf67c0c6b3b0f0f501848bf25f539c04feb5553f95307bd95	doc	Heodo
2020-08-21 03:37:57	7a13dbbd4da1bec806c6eb1b585d5d1be3e682b691fed51ea02a818a10686100	doc	Heodo
2020-08-21 03:09:39	860c1beab2153836d0fc30dce5b6b48b4ba96f3690404c504ebb1283ef780302	doc	Heodo
2020-08-21 02:53:25	4ab707775fa2390fd9243175abdd54e81f7bf91607d4d7fc5c97be1d43f8606b	doc	Heodo
2020-08-21 02:30:22	1d4d8969d69882c83a3c783bea8ab1443a88303f332c7bba708ee7b9d1b66b78	doc	Heodo
2020-08-21 02:13:56	cf389f980f89f48fd9d0034671e37a29e4adb713b95955948d75587c8c1070b2	doc	Heodo
2020-08-21 01:57:15	1125770ca72ec38466e63abb84b14f1128a7b5fdee91ab098dd25c53230e1537	doc	Heodo
2020-08-21 01:42:36	ee0ecbcd1c840072ab9f352930a3d1d53c1669f8ea22577bed152b6e644a6c74	doc	Heodo
2020-08-21 01:28:15	a9e3f7e51587de888af2572366b7bba2977c4bfebb39aabfef4a75dcf968876f	doc	Heodo
2020-08-21 01:10:49	827b61d3f0f0d3d42ee69919ecdb9a190e3939c7d32cf425f7cf355276a3d2d4	doc	Heodo
2020-08-21 00:56:57	3c86a0b190ac5ab87b216155e1a11d7a756739986e3545d994fce52d209cd64c	doc	Heodo
2020-08-21 00:38:20	5aef84eb7042aec5b21c949a61c3beb6aae3ed2e1d897d383e802a60766af3cc	doc	Heodo
2020-08-21 00:20:58	31e1775c43a698b705e2a0e7b26e8b8942b04b51bb902f9008fc355c637c2c4b	doc	Heodo
2020-08-21 00:01:40	ba157ef26a5a82a7c5380c26dba2cc7996739287eb02f8af8e4080b08f02d946	doc	Heodo
2020-08-20 23:41:23	db5d466d972210f819496f74e47cc8db88a065acde70d9d2ac61221eb8746003	doc	Heodo
2020-08-20 23:18:09	aac3f9b6d09a48b999dbe421aba8e36591e5f245f960a292bbf0cd518c23b922	doc	Heodo
2020-08-20 22:51:51	ea9a29f42ce90bd0cc4aa2b4758dc76ce4a5d639dcbe1ee8f4f0b61632793577	doc	Heodo
2020-08-20 17:50:07	172af56801cf4f253a30974aeeddb1910408d1417b4d8bffbefe887436c3b633	doc	Heodo
2020-08-20 16:18:59	8dd88a3f7fe5c11e889ecb67746468f4330f31b6dfa803bde99ef3875379bebe	doc	Heodo
2020-08-20 15:20:53	0c03dc40a8db0afc9ae714106e0bf60601869368336a60842cde31c0a3c8b55d	doc	Heodo
2020-08-20 14:53:31	18898d58822870334064b88a2224dc8d236210978f732a70cf80f3617e5a6445	doc	Heodo
2020-08-20 14:31:37	1c61a6fec7f540e75cf3ee83531b0da27e40c95f3aef4f8fc750c911d731c1ca	doc	Heodo
2020-08-20 14:10:07	2d76fe1bacf66d80f4a8dfd102f00c77dcf12834e0adad890869fe7a75d45c2a	doc	Heodo
2020-08-20 13:47:55	dc62b29f01e0debdb807f4adaaa4c22ca3f21e5fd5a48e7b2cb6b994d76cb36a	doc	Heodo
2020-08-20 13:27:33	f2c11a8f3f6306050420e37c8c1c24cfde3ca7e03cb703761581c1e5f6f75757	doc	Heodo
2020-08-20 12:54:49	29b52f890109db1441bb1fab0d062383405b49e076d6f8c04c40644a9cfda15f	doc	Heodo
2020-08-20 12:42:46	c128930805475cc08cad774225a789ee3c5c540905ced9d87342acdb10b007e0	doc	Heodo
2020-08-20 12:29:28	66adaecff904f859044c0d2aacc5bf77afc7928a3827c0e75dda7e79c0c29601	doc	Heodo
2020-08-20 12:12:13	093c4c10f1ad0e417b62968802b3cf0b3e4b43b59ff54f6c894a005b3de57b54	doc	Heodo
2020-08-20 11:44:10	0fc24e52f38dc2987ac5826abe05dc4861ea6207d44b82b557222611f19173c7	doc	Heodo
2020-08-20 11:16:57	65bd1b927dcce32a7171cec9e1e26732660728495e44d5f85a73f898aa2186d6	doc	Heodo
2020-08-20 10:56:08	9f32a654f894dafb884f98c4e30ab391b1fe3f15478273bedd8397903990c781	doc	Heodo
2020-08-20 10:34:57	568471d2d31e15f9b46076ae0167cdda7da49957b7cb120d330a0e450bc2c7f3	doc	Heodo
2020-08-20 10:07:13	9b8093f8e43a21459619460b9e991aa75ce552e9671b0d1b47ac7b3c638c8faf	doc	Heodo
2020-08-20 08:34:46	0efd74cc9a3e2043ccf2d1aed8696b82a65a9c96293fe1ca3c6958f41c818543	doc	Heodo
2020-08-20 07:55:43	6e647b837da2262825372b4fb5ccf78f780e467cdcc593c348153bd1619dbf86	doc	Heodo
2020-08-20 07:25:29	bbfbe727d8a5b53456c3b234d64899d7789a885517c719fb9c26c890e009318a	doc	Heodo
2020-08-20 07:05:33	69c2a1bce768da5d21eed415b83bc479973e4e65421f547162c172f4ec9c1953	doc	Heodo
2020-08-20 06:46:05	7db98c5dd25366b108f368bf466ec5c8150e52fd5a135c50f7ed9db682fcf3ac	doc	Heodo
2020-08-20 05:53:33	a184a094e50174dc9dc8c5c22ac016c02f3605fd19c733c49ad1ebf02c493f65	doc	Heodo
2020-08-20 05:15:25	6caf84cf6a6cadcdf4aa5f45a9f87b63c16cdf6486f53279c0ce48676edfc142	doc	Heodo
2020-08-20 04:50:50	c5efc23a6bc4da1660b4c6c3b4755581990f7c00591cfdce1350df652c03a3f6	doc	Heodo
2020-08-20 04:29:56	b26d580deb9ff666c0dc35f4cc7c9d88038fe0f3c8bf48c4aacd56dfc05c4cab	doc	Heodo
2020-08-20 04:01:58	29524d934f54a27deecaedd3e58de8a4490eddc04ac913bcb37c3ca1354c5b06	doc	Heodo
2020-08-20 03:40:10	580ae2c3801f24f8be8cc24b136f1d795787ace030c75c837410f5d827ca02e5	doc	Heodo
2020-08-20 03:25:55	521688de7a4f5ae13f0d5348c2d0c4604f43a409de9751fd4ba6d791f4adc281	doc	Heodo
2020-08-20 03:07:33	c87f4bdfa6467b9965457be5f3000c92e8115c4df1d44a926577901e5e0eb5dc	doc	Heodo
2020-08-20 02:52:06	60bb16533f938460519528657d8b785485622e3471330a87fa5894fed506eed8	doc	Heodo
2020-08-20 02:36:48	d302615d23c61c639ad53db79f2e5e6e3aedb53e0404821c5c02064f7913910f	doc	Heodo
2020-08-20 02:21:06	b32f302c129728edd895136f299f0e68031f9554b42be4fd2dd35f80a9b2a750	doc	Heodo
2020-08-20 02:00:49	be8b2b9dcb90fbaed4e7bc6186fd5dbad93c77fd80cee44717c88ac07641368a	doc	Heodo
2020-08-20 01:43:39	96f7d13cfc1edad4f9381ae98cab2336d39557b2230d88583c92284d6616b4e5	doc	Heodo