URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	brasilmix.com
Domain registrar:	Network Solutions
Domain registration date:	2001-05-11 23:18:11 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-11-30 16:23:09 UTC
Total malware sites :	3
Online malware sites :	0 (0%)
Offline Malware sites :	3 (100%)
A record(s) observed :	9

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-10-01 21:21:33	13.248.169.48	a904c694c05102f30.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	yes
2025-10-01 21:21:33	76.223.54.146	a904c694c05102f30.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	yes
2025-09-22 13:24:48	166.117.110.61		Not listed	AS16509 AMAZON-02	US	no
2025-09-22 13:24:48	99.83.161.153	a2b7bf3398455f345.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-08-05 18:18:38	52.20.84.62	ec2-52-20-84-62.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2025-07-31 12:23:35	64.190.63.222		Not listed	AS47846 SEDO-AS	DE	no
2025-04-27 19:05:47	208.91.197.132		Not listed	AS40034 CONFLUENCE-NETWORK-INC	VG	no
2021-11-30 16:23:10	157.90.177.160	static.160.177.90.157.clients.your-server.de	Not listed	AS24940 HETZNER-AS	DE	no
2025-07-30 19:48:44	199.59.243.228		Not listed	AS16509 AMAZON-02	US	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-12-01 07:30:18	http://brasilmix.com/l3pkut/o/	Offline	emotet epoch4 redir-appinstaller	sugimu_sec
2021-12-01 07:30:10	https://brasilmix.com/l3pkut/o/	Offline	emotet epoch4 redir-appinstaller	sugimu_sec
2021-11-30 16:23:10	https://brasilmix.com/l3pkut/fuWgoZsHm3ddKvIIS7...	Offline	dll emotet epoch5 heodo	waga_tw

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2021-11-30 17:31:58	2f8faddc346190064b9ba6bb717e5793158f4a194688d30c912e56b81e2f1360	dll		Heodo
2021-11-30 17:06:13	d435d8fbb72087f23a13857ca27e3872bd061150dd127d29f8be65c61e58321a	dll		Heodo
2021-11-30 16:54:06	2e8c573bf2cdd4f4172b87f808ea48c5927e0d2ab23d23924784b11128366455	dll		Heodo
2021-11-30 16:37:09	fa32057ace2dfe1cfd5918cfe9b666e5e3ed3e269f8393a0ef174819a6465a30	dll		Heodo
2021-11-30 16:23:10	98db836e3f74334d12a7e54ad1062e77228b9a3a7ef94f23a05aa0b7fc13d148	dll		Heodo