URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	bocnemdanang.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-12-29 15:47:04 UTC
Total malware sites :	1
A record(s) observed :	3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-29 23:21:01	103.221.223.39		Not listed	AS63760 AZDIGI-AS-VN	VN	yes
2020-12-29 15:47:06	103.221.220.216		Not listed	AS63760 AZDIGI-AS-VN	VN	no
2021-04-26 21:32:34	112.213.91.61	mx9161.superdata.vn	Not listed	AS45544 SUPERDATA-AS-VN	VN	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-12-29 15:47:06	http://bocnemdanang.com/alfacgiapi/olnMao0HGVTk...	Offline	doc emotet epoch2 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-12-29 23:37:34	2ac4c55baa15d3719031c845766adf59717598fe67e7434f595f28120c916528	doc	Heodo
2020-12-29 23:27:06	2527707f508b47e4031c1bf43ad94b728ab6a4847c208dd3f7e592ed49d36f6e	doc	Heodo
2020-12-29 23:02:29	cb5d63f90240367ececfe0c32a70c72082527a0040fe434a6f463bd4574d4157	doc	Heodo
2020-12-29 22:43:19	cf47feaaa13dd8578065c7ff33e3b1f716e4b71f679b8fe7d10fd33cf1ca8b70	doc	Heodo
2020-12-29 22:27:18	5ede6ac6d693be37c6eccad46485cb39e33d1cd99649329d0424215f3d404cc6	doc	Heodo
2020-12-29 22:13:29	d6480e873d81be6637d3ba474138b40d9773c0d9294fc530019ed6f3d1fcb1d5	doc	Heodo
2020-12-29 21:56:46	e7fe9ca43e289dc2bd9bf4266a4626a9383a283009072a247ecc6c1f84c45e0d	doc	Heodo
2020-12-29 21:40:26	13d0f6d6781f118733432842c8144f7e2470b4afdb146cb9312dabf5a2b797fe	doc	Heodo
2020-12-29 21:27:57	d61737a9f3206f943c7569e31f9ce318fc7f361f86b01309bc476a1e2c7571a0	doc	Heodo
2020-12-29 21:17:07	c646ad33be355d18204f947f227e88997569facb081f5a09a9f0b82c5127dafc	doc	Heodo
2020-12-29 19:20:10	eb762ceff6eec6519ea345df6e5eff8b01a57f121c2a12ae7c3b8a379df36691	doc	Heodo
2020-12-29 19:07:09	a4054bbf81bc4f704dc9ee14d6f2e5df7b22f91edcd2fb569c14c1fc82064bda	doc	Heodo
2020-12-29 19:01:05	7d77b9454a806c93be95b1d074c15973e31b0b0c91b3c708d4202c88b9e09dac	doc	Heodo
2020-12-29 18:47:55	4ce448dc3c0b2a786f0f0de325a7955364c6b13783c5dd27f2f721496bc783cc	doc	Heodo
2020-12-29 18:30:31	bebd8b69fdc463522ae3279b65b75959d443315eb96d862429b1aee2c217c8c0	doc	Heodo
2020-12-29 18:15:38	abff62bfa148c0606f2b0f545934c0ddaf4b00cc13c5f3c051a22f8d53b089ee	doc	Heodo
2020-12-29 18:00:27	d1b055f730d56fef75cd826b96c669e9aa16832079dfa132b8a1e4ef76e2351f	doc	Heodo
2020-12-29 17:49:38	9fa52c70fcab1c705956b5dce3f72bf83251745b40bfee40f746d15ba50f1f74	doc	Heodo
2020-12-29 17:43:48	494a26f5709a52d89db5822a1418d544fd4aa3f9e2e051ee517f2ad32432592d	doc	Heodo
2020-12-29 17:32:32	7e3a0828f54f87c238b13d6aa6de650da7e32e1309211ff09fd9113646454428	doc	Heodo
2020-12-29 17:14:23	2b998037b5b5525e6d7db5d1ee65710a4d25ffdb4a0082b76c2a58a58ed70b74	doc	Heodo
2020-12-29 17:08:36	976cbb476135bec88e0c027ca567bece0feb9f03a777d1ff0d0be97288df5068	doc	Heodo
2020-12-29 16:46:35	5e4eae5b36795c653f766853756f64d8b52ae90fb156eff926aa40f2540239a6	doc	Heodo
2020-12-29 16:32:07	e1b4b9220e75c5eeb36a17070699eff10144d4def48bfbed1c5698447740ea48	doc	Heodo
2020-12-29 16:22:38	9e8e9da79ceb229ae85c9db0b90211541c80c35d6b07b45031fbbed646bff3b0	doc	Heodo
2020-12-29 16:04:54	124887797dca2ad4d4a16a53439033033cdbec96a28b5ee788dcef410b4a42bc	doc	Heodo
2020-12-29 15:47:05	f6b6fffe0fe89481910e5173abb556c5fbd9e6e8f9006bc12e27fe996c9358cc	doc	Heodo