URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	cl5.platsandgo.com
Domain registrar:	OVH
Domain registration date:	2020-05-05 11:06:17 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-01-11 20:25:04 UTC
Total malware sites :	3
Online malware sites :	0 (0%)
Offline Malware sites :	3 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-01-11 20:25:05	92.222.139.190	cluster028.hosting.ovh.net	Not listed	AS16276 OVH	FR	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-01-11 20:28:09	http://cl5.platsandgo.com/wp-admin/9H/?name=CVS...	Offline	emotet epoch4 redir-doc	Cryptolaemus1
2022-01-11 20:25:10	http://cl5.platsandgo.com/wp-admin/9H/	Offline	emotet epoch4 redir-doc xls	waga_tw
2022-01-11 20:25:05	http://cl5.platsandgo.com/wp-admin/9H/?i=1	Offline	doc emotet epoch4 heodo SilentBuilder	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-01-12 04:54:18	aa65a34067b0c50e89c1078d0c7ff08de43e5036241404574f846265de6ff6bd	xls	Heodo
2022-01-12 04:29:48	ab506a8e25b64558a0069af7f78035c4ae3848d8873a5ddd3542d01d2e195565	xls	Heodo
2022-01-12 04:06:22	e58cd1fc646d37b9fd8040d9f7f4110bb07cbdadb1f5dd4a55413acacd33807d	xls	SilentBuilder
2022-01-12 03:42:03	48d83d3b6c7ddfcbf30ed8ebe2feb9bc8b5c97dbec16fdbbec64d120181f94a3	xls	SilentBuilder
2022-01-12 03:16:48	61dacefdd04bb8f3dad303b70fe5f77e38e3a57632ba2b9b136e00dd94f7ed32	xls	SilentBuilder
2022-01-12 02:40:28	046d125d4eaf4ae30ad4a794405fd7c905b58db18824dfbe24dff1cd4cfd13b6	xls	SilentBuilder
2022-01-12 02:12:27	769ecd4d91e53cc734ede1b06a3935096e838020e44061032964dd769dda3968	xls	SilentBuilder
2022-01-12 01:57:22	29bd3f3218b35ec402cc8c174823b00c2f26b30556c45f2158d175895f9d40c0	xls	Heodo
2022-01-12 01:28:03	532105c51f0f4b68350191b68f17d6226112e97f273af215511a517604a1770e	xls	SilentBuilder
2022-01-12 01:02:13	9d277bf6e9b937c6b9d79db16b78f65ef5346b79c5c68fd3fda71a4e18171fe7	xls	SilentBuilder
2022-01-12 00:29:52	f9cbf3cdfa7ed91bca677fd8d8e1f0f53c193323abfbbb1ce4d7c6d2f1b9feea	xls	SilentBuilder
2022-01-12 00:08:39	f710943ccdadad818f80e208b3ea05bb57523b5ca7ff2e9647abe730a65afe5f	xls	SilentBuilder
2022-01-11 23:49:12	5dd8cf32347063a7b6b80c824526d1f58a3b8c99344eaea74dad15d687395f64	xls	SilentBuilder
2022-01-11 23:17:56	429e0de91bc404f5fc886f0618177f5bc49fe0da3940e98426c5d5cd8aed57cf	xls	Heodo
2022-01-11 23:09:52	5c5fd037c414e33a6538da72a5ea4ae89c8dac15b396b6a10e8504a0b5a7ee75	xls	Heodo
2022-01-11 22:40:20	cd8e0110b182d3afd4d91cc9be83efb4de17b54e76e93d861acbd9e981906fb0	xls	SilentBuilder
2022-01-11 22:19:06	1b07cb00b2a9790fd3d3dbc858112dc7308a0fa920fbc8a8ba019af5ea216752	xls	Heodo
2022-01-11 21:38:30	244f3b421f675868b3b87f562c2b307e3f4c3b914d67008406a8f9ed0594b4c1	xls	SilentBuilder
2022-01-11 21:29:30	9ade9daf48cb63c929cd8e7ec03ac77ed41d362efaa79453d0eda4553747c404	xls	SilentBuilder
2022-01-11 21:09:21	c7cc8c98988b0b5cdbd103db7c61f01a6e92f96f525c36f15bfaae039bb46cd7	xls	Heodo
2022-01-11 20:56:55	1224a3bcb32b16ac401374219c7e304bcfd5eba23875426fdbb6bd06345e9e9d	xls	SilentBuilder
2022-01-11 20:28:09	71c330e812adc3469c5ad9eec6c8d1621df5b40e181ea95271e30226a67e7145	html
2022-01-11 20:25:10	71c330e812adc3469c5ad9eec6c8d1621df5b40e181ea95271e30226a67e7145	html
2022-01-11 20:25:05	0dec37edf7d179a139b89569d030dc83a715e5d9a945d9dedc410c3fcdd09125	xls	SilentBuilder