URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: castlenkings.com
Domain registrar:Instra -
Domain registration date:2018-02-25 14:04:06 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2022-01-11 12:55:04 UTC
Total malware sites :6
Online malware sites :0 (0%)
Offline Malware sites :6 (100%)
A record(s) observed :16

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-04-27 12:14:38 23.227.38.65myshopify.comNot listedAS13335 CLOUDFLARENET- CAyes
2022-01-31 10:40:54 188.114.96.3Not listedAS13335 CLOUDFLARENETn/ano
2022-01-31 10:40:54 188.114.97.3Not listedAS13335 CLOUDFLARENETn/ano
2022-01-11 12:55:05 104.21.4.131Not listedAS13335 CLOUDFLARENETn/ano
2022-01-11 12:55:05 172.67.132.27Not listedAS13335 CLOUDFLARENETn/ano
2022-09-22 13:20:55 188.114.96.5Not listedAS13335 CLOUDFLARENETn/ano
2022-09-22 13:20:56 188.114.97.5Not listedAS13335 CLOUDFLARENETn/ano
2022-08-02 12:40:44 188.114.96.2Not listedAS13335 CLOUDFLARENETn/ano
2022-08-02 12:40:44 188.114.97.2Not listedAS13335 CLOUDFLARENETn/ano
2022-02-18 08:44:35 153.92.7.139Not listedAS47583 AS-HOSTINGER- GBno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-01-13 18:05:05http://castlenkings.com/wp-includes/CFpH_1214/Offlineemotet ext epoch5 redir-doc xls waga_tw
2022-01-13 18:05:04http://castlenkings.com/wp-includes/CFpH_1214/?i=1Offlinedoc emotet ext epoch5 heodo ext Cryptolaemus1
2022-01-12 17:24:04http://castlenkings.com/wp-includes/225869-8347...Offlinedoc emotet ext epoch5 heodo ext Cryptolaemus1
2022-01-12 17:24:03http://castlenkings.com/wp-includes/225869-8347...Offlineemotet ext epoch5 redir-doc xls sugimu_sec
2022-01-11 13:15:05http://castlenkings.com/wp-includes/DxR/?i=1Offlineemotet ext epoch4 heodo ext SilentBuilder xls Anonymous
2022-01-11 12:55:05http://castlenkings.com/wp-includes/DxR/Offlineemotet ext epoch4 redir-doc xls sugimu_sec

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-02-09 04:29:4132c5d7473d1c258194e9e895e67e5658192fcf8f62192bdb12e5b0b09ec45765html  
2022-01-14 18:03:300d689f583f780d0dbd3e9197bac7b961ad20c2a5d4e0df322ec0308f43eac999xlsm Heodo
2022-01-14 17:43:358af80399bba56ded76bb3e7373388d1354841bbea61dfab0094215403def66c0xlsm Heodo
2022-01-14 17:26:4376e281e4666c4a90938595d81796364bfc4521ba33fddeecae09aa8fdb0c3b93xlsm  
2022-01-14 17:11:222243ada22b4c83d5f5470d40be8a9a88035c7264ad4404dad0776975a93da710xlsm Heodo
2022-01-14 16:49:278a1759da5cf30cda277162bcabe0a579ee44c76e90293cad589f0d6f1e36310bxlsm  
2022-01-14 16:33:452b25518c74a4620e944ebbb70b30787175d702d7c2b9dab5072d25bda750f042xlsm Heodo
2022-01-14 16:16:41689555499fd2dff9a85acca987cf63ecb004150fb9428e7336b11a90eed8a4a6xlsm  
2022-01-14 16:02:118af12a9f834703c63edad17992c5c74f775cae7734f8a363b88ab13d0599c6ffxlsm Heodo
2022-01-14 15:54:26dac736a5562b2a96cece573228b50c17f369d3912fef2b92dc5ea40d5c427034xlsm Heodo
2022-01-14 15:32:1601e14e3c803705655e2068d80e77f2e2103118f38fa43791e069273b46c8cc0dxlsm Heodo
2022-01-14 15:15:3325ffc4f1a9abeb750423f929d563d90c09121eee81a928f86f02f8e4421f5c7bxlsm Heodo
2022-01-14 15:00:086d309b2f00848aad2b4bb6ebe146e8bdc4dddb271c9ce170a5946cef29ccbe41xlsm Heodo
2022-01-14 14:27:57a972c47050ae7cf97f0c52155e8ab1462d5a9606eaf7140f1ee56f1e8a45dbb8xlsm Heodo
2022-01-14 14:07:24d75b9fb536fb81677c1647eb63af1579bc3f2e7d21a22325d4d17059d3a851ddxlsm Heodo
2022-01-14 13:59:241f33cccbde25d58a817b0b6355084b8d0694bb104019808808694c2e6bbe2fbbxlsm Heodo
2022-01-14 13:28:418241a915f1a80d0c6898233cdfef1c73d4e00a2b17c41b4bf84984d9b4234f46xlsm Heodo
2022-01-14 13:16:27e1f0eb778a09fec529aa7aff9d665828b18007c8e52d62565a552f606c04442fxlsm Heodo
2022-01-14 12:54:28ca10d23a4990ebac124b1dda44768d00c6592d955ed3ed5814954a99c9f8f5d8xlsm Heodo
2022-01-14 12:29:5932d0f9e54a6069ab7da0486acc774eedc286fe45dc94482bde716d22565355cdxlsm Heodo
2022-01-14 12:14:297ae8d061dd1dd74a37ac33eced5d361e376cc4b919bdfd82338595f8e17d1e46xlsm Heodo
2022-01-14 12:04:06b57a55f2405494bd567fe9fd7d0b20a4dff80c22cc57b45a3646dc9e19ac69f7xlsm Heodo
2022-01-14 11:35:2877c84a4f67f70d068261158ddf09d5e98292a7d86397fb95dec8f0092a67d25fxlsm Heodo
2022-01-14 11:04:18127c23bfe45f05520e25aa2ee365653314949ad5bf52a5961e3b97b42ee942a4xlsmHeodo
2022-01-14 10:52:570e9ecd9a72922bccbcb8e10f539cb80caf27d6e4a3d3fee85db032623821a4aexlsm Heodo
2022-01-14 10:24:194ae00681a3df217ac3d3dc4f3e7b9a154540d3047f51504700e9f6d937e6a29dxlsm Heodo
2022-01-14 10:09:402bddcf7091fe815708701ec5e688ab154d2d422c7bb736a50dec1ad373b77d8cxlsm Heodo
2022-01-14 09:53:333e81aeff6c3de374e2eccaf42502eb484fd572d9cfd1b165fb2d05169913a6e5xlsm Heodo
2022-01-14 09:15:29efe6738d4ba36185f68784a158eaafecfa97f2a854ae278b8d193f6edc65ed2fxlsm  
2022-01-14 08:44:278930ee76733f7d47386802541a1c011bacf01d3a97b98801b53dc4906502f824xlsm Heodo
2022-01-14 08:18:216f172f29fad74cb96e7bfa67cff818457f78054d98f4fe83a8147104da2b7a17xlsm Heodo
2022-01-14 07:52:282cb32cce5af951f826a1a62921237a45f2734472193d1e7ef2285c566b44dc3bxlsm Heodo
2022-01-14 07:34:142f8585e901dad97e223c520854756f6026457c7e3a00cc91fd5af8387d6c0e7axlsm  
2022-01-14 07:17:4493797babbd39191ec7414750b549df061089d4b224c2465baa56820ed3583b66xlsm Heodo
2022-01-14 06:42:300766c61d5d861dd6db71ee8f535e5f405f9d7ae80dfc5c83938e000d2b4ba58axlsm Heodo
2022-01-14 06:08:45d8fd315efba4dd6e72aaf30eb91ac6bbdc046717708c740158751ebf6a9e18d4xlsm Heodo
2022-01-14 05:54:22a4fac371acf37f2dfbd34397e355ade1361d93fd5c85013e9a902677149da2f4xlsm  
2022-01-14 05:42:02992922c0dd74c7f68096c93f4df4d4fb642f1503e40b7b20eef156edebe70839xlsmHeodo
2022-01-14 05:22:01ff585f534b9fcb8f660da3a92bdf92629e9d66cc31aceff6d3cf69be3aa2da60xlsm  
2022-01-14 04:50:13be9b720458252f06a6688c838079c24730523961b9242c3a0c76ef5c4c1ac949xlsm Heodo
2022-01-14 04:32:16ec237a7588cb70688e3f57edf9ec59126b234f51b996b68000604002a379dc5dxlsmHeodo
2022-01-14 04:25:318705d70c0665223e1bdafd9d3ab2a3d0d2afa50f899b976f4a480293ccc715eaxlsm Heodo
2022-01-14 04:00:20a49399789b01cd98a86c1e039af45a87a2c9ec07d14956bb189152912239bc4cxlsm  
2022-01-14 03:34:22296171d1b92b175041ee3829e60a6880b93861ef09614e912d112777fc2fe13axlsm Heodo
2022-01-14 03:17:08cb0d9916b6be6d3b9d52d057b5b8aa3b223284abe331467dea72eca27165a618xlsm Heodo
2022-01-14 02:55:360e2db8bad325d450826ee98740532c44b36d70a95f31178c85a50f4e8ee9c8b0xlsm Heodo
2022-01-14 02:37:20d7e424ccc4f316f9abbabc2a3b0bc47b61daf071111fed745056ffc823c541c1xlsm Heodo
2022-01-14 02:14:4577f9047608db228251671697e703de19448819776d18446a1c5cbae840087e02xlsm  
2022-01-14 01:53:225388d17d28ba671fbe8a27779a4ff0a97c15a00c1a91e946824b81b38c6d8e90xlsm Heodo
2022-01-14 01:17:55d55979fab69e6383de91fecd3232f4f013cc7eb8de5a4a0090c6e0a371765b4cxlsm  
2022-01-14 00:58:2828d2e274a082c7de870cd52bde0f9bb929bcb9331d7ce9e85f5c9bb6948a59dbxlsm  
2022-01-14 00:34:365e752b11e5c8a995688ec34e8bacbf253a0450479c1c2582dbd770d004babe51xlsm  
2022-01-14 00:08:43948bece3441056d04af338e263063315d45921d28cf536276011fab5b2127a00xlsm Heodo
2022-01-13 23:46:42731ec98a6308e19709812083b3dfba8b079aa48f36b486f2f06d7170de5d1541xlsm Heodo
2022-01-13 23:37:44e15f4ab1af0935e26f54b19c1221a5dd41698713dfa44c327a206ffd708f3ceexlsm Heodo
2022-01-13 23:05:4188d07eac813b81a446e976b9d46feb95a86d3e4d0cdfb6e604d42bba8757db02xlsmHeodo
2022-01-13 22:39:06792a7b8e75aa51f90c66ee711faf429dfe3220b038cc3725ee935083fcb60e0fxlsm Heodo
2022-01-13 22:34:533acb79e666d3707fa30bea2fc66a8432f80c7af6af0b835810549c9b20d03838xlsm Heodo
2022-01-13 22:07:35a2c4ed091b3f72777bb52bb63738e0cd8b5fc88eb4408d1ebf355c431920a2f1xlsm Heodo
2022-01-13 21:23:128956b950352fe247497f8aa4a0738a1fd22c1e32a643a1e98ecc416229fa29f4xlsm Heodo
2022-01-13 21:10:06f1ec4f871b40968083790f9f1e19eaf6c17301f20743055e00b6382b3d5b2f55xlsm Heodo
2022-01-13 20:51:433ee5184a13e445cfb1886d07497ad642ebcf9b1d33fa9628d60e50e8cfa882e3xlsm Heodo
2022-01-13 20:27:293be68616e8943e1a8b35ae8d39c7e26e6f949d3f5ce41072a3037bfafe766c14xlsm  
2022-01-13 20:02:3686a1ee206571860bb3bad454634ec72849381988ddef82b11da1360046a070a6xlsm  
2022-01-13 19:38:058b8691c729c4aae4cda2049c3fcbf3153562829da68bfd3121e61dc3f9bf2cfbxlsm Heodo
2022-01-13 19:09:27f6319e708e7c942acfec28dcc5e23df293475f01d892e4992d9717277f79d6eexlsm Heodo
2022-01-13 18:47:124a3a254a975f87ed78ab0ab53de0a7f8ab2235a1bc8abea99ade0593d3c2c450xlsm Heodo
2022-01-13 18:21:245cf53f9f40389a8c56abd3a90681dadd27c0db904fbc2422ec9baa37e84c1584xlsm Heodo
2022-01-13 18:05:04aefebee74f868174371b6f9925e3484198f01753d2e1ed58c2b99a6c2e24de08xlsm  
2022-01-13 18:05:043a759c797e6bd4eba81b38af941b83b582091099fcde511834e0589f16074ebchtml  
2022-01-13 17:24:56dc8adc8e13d3e5a64f2d69f2163da90a19cd80594bf4db6b8d17c381312d28b6xlsm Heodo
2022-01-13 16:59:193fc26c9fd1f5685b0dbd0bf5f56d85f5ae94056eb3a8ab041389b3f2948cf3f0xlsm Heodo
2022-01-13 16:30:39304e17c2ef41373d5b2ded923de19336a227658abf49881fe446df0cfcfac00bxlsm  
2022-01-13 16:20:10f2c2b34b3d0b8b5e85cfecf0bb20d225e589c18841538e9283f91302bb27bde3xlsm Heodo
2022-01-13 15:56:304f9ce5c9c9dd88a6a01a3df3299e0aa43da3bad195036c22b141f28769708334xlsm  
2022-01-13 15:41:24febd9978510715acb1f4bb87d04412fb1e3e6e2720329590b6b146de515d2d85xlsm  
2022-01-13 15:21:2373aba3d6a7b537481c898581b8ccc0131152c0d0fc93500b4c562db824073360xlsm Heodo
2022-01-13 15:00:0641750a936f4e59a899e45972dd3ccf154305807c52bd7e5f5b19344e909f86baxlsm Heodo
2022-01-13 14:39:305d7049ddd0c94d31087e9b7809dd67ab2c097e01ffacb571225e7ab561f57f39xlsm Heodo
2022-01-13 14:03:22109868bbf981851bac44548c11bee90f08fd3c83e06c9b9539f568e047f45e0axlsm Heodo
2022-01-13 13:39:0393d3e72ebe801f6ce7a577d88f1cb395aee4124d390adf1b4d2711786623e0d6xlsm Heodo
2022-01-13 13:27:40ecfec056329e9b2c1bbc3d7b8fb2233f0c0e519db0f43bc96cb2ee795cd6dba0xlsm Heodo
2022-01-13 12:57:25ec54edb8fa77d810e6deba4e6105fe4fa06c193915fbe03ddad082f3e24da369xlsm Heodo
2022-01-13 12:29:565ad7f42f07f5db39587cb7d2ead9bbc7e88e6a223eee99e1745617ad3e17f290xlsm Heodo
2022-01-13 12:10:1248d8ba8e0832a4ee318f4fb4653345ed1d8e48e2bd90b55648e18d541e534d92xlsm Heodo
2022-01-13 11:45:17cd1b8b06a27b93f21a8da161ab4af2768ecdcbe5f8f5122d89c33caf145da46cxlsm  
2022-01-13 11:14:47915354db100b6c7c744bede05828fd397ef2ab000bced2ac46e799b5d5a8e9d5xlsm Heodo
2022-01-13 10:47:01726be01c1600c33b9a3d322885ca12383ec5b64546bb389670176f77f7faf162xlsm Heodo
2022-01-13 10:23:58d47dc5f481df3ec15f19e8625c29b0beaf33c401b23191b818c9ecf885e3c8dcxlsm Heodo
2022-01-13 09:59:282b8b0ca757e3eccb527d9ce11a9a8815f5a9ce3c6d2ed5a8711d4c109e88bd71xlsm Heodo
2022-01-13 09:49:38ca6662f6a52a16a294b7d873a1f4b60f6ed054cb1cbaf3207081f30380c573e2xlsm Heodo
2022-01-13 09:10:21ae4c37f20738b2bc766ca1b1437dd27be15c5a86e663f8ce3fc8be6762483305xlsm Heodo
2022-01-13 09:01:452cfe6cc60d786a8b94d9d3114d344fb74c21e5ce5391dea3d1550df17fee05b4xlsm Heodo
2022-01-13 08:32:099e1460b0a4debafe9636cf43ad6de3069afc41e53b2c0c09b6337bd165a7bcefxlsm Heodo
2022-01-13 08:08:147fc994decafbc81cd090c28c1de605c93e2ae18f645faac2d1f6680b85ef7c13xlsm Heodo
2022-01-13 07:34:5227142990970a1968021bca00b4005ef206e3a553179b2e717e82ebfe8a8af1b9xlsm Heodo
2022-01-13 07:21:246169a4500b717ca5de60b77b01c2c1ddf5dbe18bafd0af142248d5066eef19ecxlsm Heodo
2022-01-13 06:54:0449ec26f8a352003e43a32615495ae4554e0bb8485ef889e7ba57cf869f026c4cxlsm Heodo
2022-01-13 06:41:48259272a5032f537239c61ba1c8b5bdd26e8e6c4f1ec9b54ee52eaeeac5f5690cxlsm Heodo
2022-01-13 06:13:088e2712e45fb0cbdc5a565ba4f5582ef6b0d871a0159abaed0fb6c4d519382547xlsm Heodo