URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	cl2.platsandgo.com
Domain registrar:	OVH
Domain registration date:	2020-05-05 11:06:17 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-01-11 13:40:04 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-01-11 13:40:10	92.222.139.190	cluster028.hosting.ovh.net	Not listed	AS16276 OVH	FR	yes

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-01-11 13:53:04	http://cl2.platsandgo.com/assets/7VoE/?i=1	Offline	emotet epoch4 heodo SilentBuilder xls	Anonymous
2022-01-11 13:40:10	http://cl2.platsandgo.com/assets/7VoE/	Offline	emotet epoch4 redir-doc xls	waga_tw

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2022-01-12 01:48:24	8642a84875b30eeae2bec0b16db37715f4a2ff15caf6e5185a4012107ec1e87b	xls		SilentBuilder
2022-01-12 01:19:18	926c822e2c4d78b252f788d3fa75a77bfed1380ad50cdacf21f3efddf15b0b26	xls		SilentBuilder
2022-01-12 00:58:43	1b7581c8be4bf9197005067c42e581bcc1c41b10d6d9768daa8c4642f6e3ef7b	xls		SilentBuilder
2022-01-12 00:38:18	f7d338277f13461262faa21c960479146f4261acc6efe564964f5cd0370afd6e	xls		SilentBuilder
2022-01-12 00:11:26	05dc48ca9e5d5feb04a32c1ef3a8d18453a2a679e7257ce24856895a5dea268b	xls		SilentBuilder
2022-01-11 23:49:01	66f5d61a2c4246c3bc39141c46e41bdc84c3f12a7db0b2ec3090eace070392d6	xls		SilentBuilder
2022-01-11 23:19:42	44c675302c6fd62e15e5c9ae9bb98325870093ceed92a30601a13ad1dc2bd4f2	xls		SilentBuilder
2022-01-11 23:04:07	d616af039b685a1e393e85dfd6d3558a0a062fc2cd776bfdbfd55dd1cca9e55e	xls		SilentBuilder
2022-01-11 22:38:43	f326b9b9af87bd43878455ac75b4e61fadd71bdfcebf5b4508525cbbb4e8038b	xls		Heodo
2022-01-11 22:13:23	a3977aa3c358df0d9777be64e5c10b4a874fd0eac63183e92837d58038e5c4c1	xls		Heodo
2022-01-11 21:45:08	45c442f6c146351872c97982c2c6a60eb9bdea660e39f2ead262e6bca62abae1	xls		Heodo
2022-01-11 21:26:40	0bce8c631bc35e734c8be9fefb75ea3ce0e66a22e217c7ff6385afb1df2d0878	xls		SilentBuilder
2022-01-11 21:04:50	1db259b0063d26f9af684e7246d336250e289514a4e900eab1337ee9981a866b	xls		Heodo
2022-01-11 20:55:56	b5d8116e0b4f01eb2affa09d857d1be4df2e18dd793e4ab0b6ad28e0d5eadc15	xls		Heodo
2022-01-11 20:30:31	b3a64afe3a1360279c7354909eb0733a15870549ca068a851cb8dc7b672ee168	xls		SilentBuilder
2022-01-11 19:59:17	426fda840765e44250686f1102e902242babe0cea36a756beac6c0757a73c28a	xls		SilentBuilder
2022-01-11 19:28:48	e8ada03261f05e1c91d784bf58d10322d3765c686bb4a52278362e0e62288d1b	xls		SilentBuilder
2022-01-11 19:18:40	7b273da870150fa002d6651be951c45565ecfb209c9516b78a60d5e6274d4f9c	xls		SilentBuilder
2022-01-11 18:42:35	18e24e9b03fde05fa41b9d86aa612dbbd5deabcebbe97ee5b3a3b7fa8fb43f51	xls		SilentBuilder
2022-01-11 18:28:33	60fdf680c8e0272784588bf87ead2814df683a2fcb697522ddd4ef323166440a	xls		SilentBuilder
2022-01-11 18:11:46	b8600d1365521e1a2f83ae356900d38cf8c44b60594bbe30df2ac04418cd823e	xls		SilentBuilder
2022-01-11 17:36:48	1e4e0feb94cf74d61c7557fd8b7883f71b80547083bc339bc808b9703d4c03c1	xls		SilentBuilder
2022-01-11 17:25:19	0c9de24621d73ddfb33b0d2607b84d523a103ff59e318980f134dac1726e11a6	xls		SilentBuilder
2022-01-11 17:06:12	37e872cc3b4e9e0f9e1472f6865ac985496582ef138fd1646fe13bd14bb92c0f	xls		Heodo
2022-01-11 16:52:34	b326b87763654f966a5ebf61052d38487bb8b36b173e3db613ffe8329256a044	xls		SilentBuilder
2022-01-11 16:25:08	7955874a069fbde3eb5144ea8420f8b9e80d0c8ccd822c21b54150e53608116c	xls		SilentBuilder
2022-01-11 16:13:55	2f80ecbe8f3eb45c354fb36640dc4be6b13064be8550f2d49e41090e5c113b72	xls		Heodo
2022-01-11 15:45:19	445e137304a2c43b06f0c98f4655f6fc4d69db7ae73ddf9094295c48f0701047	xls		SilentBuilder
2022-01-11 15:41:59	f9fc5e8ea49eb490f5856598f8426488f3bcfb3bd1ba1c1d0d3ec01125db76a1	html
2022-01-11 15:21:50	0a0fe064ed83d5fb4be5577a78d4659be6d7fec5ee345f01edda10c2e6221868	xls		Heodo
2022-01-11 14:58:46	bcd9548679c87026f7119b2a46f731fa2d1c20fdd1ba546f5e20281b30ade8e9	xls		Heodo
2022-01-11 14:34:44	2b3edf1dce5ad17220c402308e28a5f2ca0032703557b04aa816d53bb30bb97c	xls		SilentBuilder
2022-01-11 14:23:43	361e7457bfd87680419fd11b82e2c11ba668205e8421b38cfcb7e879e5267dda	xls		SilentBuilder
2022-01-11 13:53:04	cab722a553d0e662a2c4e18e2300d30338fa957f7b0ade2c8f4450bd375bb8f9	xls		SilentBuilder
2022-01-11 13:40:10	504ea1ede30ebdbfd6124ebea795d999a198de2912ae99c7747486f1e28c7551	html