URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	contrid.com
Domain registrar:	eNom
Domain registration date:	2006-05-04 05:41:32 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-03-24 21:19:03 UTC
Total malware sites :	1
A record(s) observed :	7

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-28 01:55:31	13.248.169.48	a904c694c05102f30.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	yes
2025-04-28 01:55:31	76.223.54.146	a904c694c05102f30.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	yes
2025-09-06 01:14:03	166.117.110.61		Not listed	AS16509 AMAZON-02	US	no
2025-09-06 01:14:03	99.83.161.153	a2b7bf3398455f345.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2022-07-23 07:54:27	3.64.163.50	ec2-3-64-163-50.eu-central-1.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	DE	no
2022-05-05 22:05:09	91.195.240.87		Not listed	AS47846 SEDO-AS	DE	no
2022-03-24 21:19:06	157.230.59.34	server.contrid.net	Not listed	AS14061 DIGITALOCEAN-ASN	US	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-03-24 21:19:06	http://contrid.com/6vwkQmRU/	Offline	dll emotet epoch4 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2022-03-25 07:24:38	536b029a89168cfbc9fcd0269a79b884ac75c4195868289552dcaded1d5423dd	dll		Heodo
2022-03-25 06:08:52	afbe6aaf8576692e7e3886bfe5fa22b8fcb686fe1d9b34af91d2077eae3f27a2	dll		Heodo
2022-03-25 05:19:31	9d814beba1750caefc11e126ae39dd0be12d71b0eb67e932c5c2aa29e58fa738	dll		Heodo
2022-03-25 04:47:22	7470b4296b39b080af53f1c161c61f362f2e21bba9036d4f3feca620d36a78c5	dll		Heodo
2022-03-25 04:21:49	8e0eb212ff62f6438d927bd342789c0e4cb04a2e2cf6bd26d66391380822b942	dll		Heodo
2022-03-25 03:21:49	154f66b4782aed103df90b5d972b94aa9eb790926f21492f42afd9d50c8edaa1	dll		Heodo
2022-03-25 02:45:40	bfccfe10da83e67eeab3fceee3b8efb6034f04cb9e6b8fac722fa4f1ff1d141f	dll		Heodo
2022-03-25 02:15:19	ff3114fcf357f2db75992e1b1fe052cfa6f576dd71ec08d6bdb41d77f4a4252d	dll		Heodo
2022-03-25 02:01:51	e4345c94e443f77ed3cf171d14289b8790cc67fca8f3fafab7fc2c54aba7a3f9	dll		Heodo
2022-03-25 01:11:17	f048d5efe56b80d008776bd8d14def36be896684877fb95f877a8b2d664ab6f9	dll		Heodo
2022-03-25 00:06:26	77739cf0508a11d7201bf4c476d59d519f4c121bec845435c823d69f19b4f628	dll		Heodo
2022-03-24 23:46:59	926c22048f2223c11e0e967ec7148166a4e764f70667edb67bc0d3aaef2a635d	dll		Heodo
2022-03-24 23:01:23	6f39b2f239446c994c49aeb08fd2c08d8db54aa450f36d8e4418a7a85b23f642	dll		Heodo
2022-03-24 22:18:12	29c89d17d9d443c70e64d5a24a497655522fef2483694cb46aa474c0a92ced2e	dll		Heodo
2022-03-24 21:42:04	6a75ed035dc607c39c9f33a1ca561a30c6fb3f1f01267318ef978a71a8b74847	dll		Heodo
2022-03-24 21:19:05	b73f17b77bc9b1b01f31ea6e5bf166876479dd56a0ff14ff600017d11cbcae65	dll		Heodo