URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: chukysonewca.vn
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2022-01-11 16:27:05 UTC
Total malware sites :2
Online malware sites :0 (0%)
Offline Malware sites :2 (100%)
A record(s) observed :5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-04-27 15:27:10 160.30.113.55Not listedAS135918 DVS-AS-VN- VNyes
2022-11-24 20:30:07 103.75.187.25Not listedAS135905 VNPT-AS-VN- VNno
2022-03-10 06:23:57 103.75.187.23Not listedAS135905 VNPT-AS-VN- VNno
2022-02-18 17:14:04 103.75.185.14Not listedAS135905 VNPT-AS-VN- VNno
2022-01-11 16:27:11 202.92.5.142mail.kingtourist.com.vnNot listedAS135905 VNPT-AS-VN- VNno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-01-11 16:27:11http://chukysonewca.vn/cgi-bin/9641226MXM8912/?i=1Offlinedoc emotet ext epoch5 heodo ext Cryptolaemus1
2022-01-11 16:27:11http://chukysonewca.vn/cgi-bin/9641226MXM8912/Offlineemotet ext epoch5 redir-doc Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-01-12 00:13:29c82f282fe8e4c3583e5e4d834ae90565ff0b3fb958513688b442153cc57c82fbxlsm Heodo
2022-01-11 23:51:592bcd5baa2d280f6afd51a5beb204c382fce0fa58f20ff76076d27cb2323e8ac6xlsm Heodo
2022-01-11 23:24:421df00c09db9bfcf4e493dacdef73f2b732cd06ae4b931bd356516667a44c47e2xlsm Heodo
2022-01-11 23:07:2857bb4eb8428998738c8860427c1c1de98d681120512901d8174f8fc2edd545f9xlsm Heodo
2022-01-11 22:44:3199223483d99394011b572cfa63b22fd53a04ef616a9e93ce78e6e9d11c9fbb9dxlsm Heodo
2022-01-11 22:10:158a9101b7343bf1a4608ae17b84bd290c1e40f510ec792e9c5d3cc5ace4ca5490xlsm Heodo
2022-01-11 21:39:2720be5590c08561d3a5be97621400daf8528533950a589089a00a259da40668d8xlsm Heodo
2022-01-11 21:31:3671da6e57fe5adfa0b06f8ba9525e6db95e7c25246179fa8563561d24e79e6c65xlsm Heodo
2022-01-11 21:13:14929fd76e8373d3c14a1fa542d4222dba73cb21f0c5cdaa0c8b7acea0a53d8f0bxlsm Heodo
2022-01-11 20:51:34c2cb81db208398e070c47e7d03e76709142dec85ddaa985883536283a0acbb14xlsmHeodo
2022-01-11 20:17:2679a935edd516953713a4d4565e5dfcbbb08f17b9633f31d84e0e042a5de4c178xlsm Heodo
2022-01-11 20:00:38eabf9bfbdc503869315be500dab8f676c77bc6111c99ebeaec1981e1dc95af9cxlsm Heodo
2022-01-11 19:37:59e55ce4bc7ca054665ac48b9640d2f0f3bc4a83af6c95b4019b28c4d49ba669b9xlsmHeodo
2022-01-11 19:11:1300c8843cc08ecd83f55f5b22eeeef2c14ff4207192bac3795cb0409569b2defbxlsm  
2022-01-11 18:53:528225d340f62e0a9d2fd91acc14510e7df52c5649f1edfe0ba62e00f859d597ccxlsm Heodo
2022-01-11 18:23:4660a2fe4a87a42aef09d57e41fa80f438983821928336d78cd14ce1042e638b6bxlsm Heodo
2022-01-11 18:07:21f84d3863143cbe9c97859d10c99e61155092470c08e9aee090365490450a4f00xlsm Heodo
2022-01-11 17:45:19bb42c503ef90a3b580fe241d3935057273211a16974921ce0999f778cfe35f7exlsmHeodo
2022-01-11 17:27:246913af2de9271a92bd9c7c9afe4923a08f237459d7e1e03d171e96fa291e39eexlsm Heodo
2022-01-11 17:03:48fe9b66e9750d5a9622c8cdf80c0fe282396305c32affe31e612bb8a69485ea80xlsm Heodo
2022-01-11 16:40:36314beb338f0644b4900ecc03c9ae919a0cb841f556fa61e02d205c281c278206xlsm Heodo
2022-01-11 16:27:1052a11dfd615002c31bf05059a13beb72e9c999a50fa3083f0186f951f93bc766html  
2022-01-11 16:27:0734f56237f58ad36e22626f2d62e82abd70eb30b63248ad4c559d7b179508d3d0xlsm Heodo