URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	darbazi.org.ge
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-03-17 08:41:03 UTC
Total malware sites :	11
Online malware sites :	8 (73%)
Offline Malware sites :	3 (27%)
Newest active malware site :	2023-04-23 09:12:11 UTC
Oldest active malware site :	2023-04-23 08:36:06 UTC (Age: 2 years, 7 months, 19 days, 23 hours, 35 minutes)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-03-17 08:41:06	91.212.213.30	www15.serv.ge	Not listed	AS47810 Proservice	GE	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-03-21 22:08:07	http://darbazi.org.ge/language/iyQMh/	Offline	dll emotet epoch4 heodo zip	Cryptolaemus1
2023-03-17 08:41:06	http://darbazi.org.ge/language/E5Zr4JruIyd/	Offline	dll emotet epoch5 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2023-04-23 09:12:11	fd79e8fa5e3801101a1305b6aba7a5e7fdc852ed9036d6d9a5210be414a5cc5a	dll	Heodo
2023-04-23 09:04:12	fd79e8fa5e3801101a1305b6aba7a5e7fdc852ed9036d6d9a5210be414a5cc5a	dll	Heodo
2023-04-23 09:00:15	fd79e8fa5e3801101a1305b6aba7a5e7fdc852ed9036d6d9a5210be414a5cc5a	dll	Heodo
2023-04-23 08:56:10	fd79e8fa5e3801101a1305b6aba7a5e7fdc852ed9036d6d9a5210be414a5cc5a	dll	Heodo
2023-04-23 08:52:10	fd79e8fa5e3801101a1305b6aba7a5e7fdc852ed9036d6d9a5210be414a5cc5a	dll	Heodo
2023-04-23 08:48:12	fd79e8fa5e3801101a1305b6aba7a5e7fdc852ed9036d6d9a5210be414a5cc5a	dll	Heodo
2023-04-23 08:44:10	fd79e8fa5e3801101a1305b6aba7a5e7fdc852ed9036d6d9a5210be414a5cc5a	dll	Heodo
2023-04-23 08:40:10	fd79e8fa5e3801101a1305b6aba7a5e7fdc852ed9036d6d9a5210be414a5cc5a	dll	Heodo
2023-04-23 08:36:05	fd79e8fa5e3801101a1305b6aba7a5e7fdc852ed9036d6d9a5210be414a5cc5a	dll	Heodo
2023-03-23 22:49:51	d3dd064d5e494ce23acbc3ee95ba094d9257def9c9de61fae0c7eb4e3e374da4	zip
2023-03-23 20:58:44	ea903958184fdf9accd344c3db36e7918a91bf5972449c301879a3ee67ba9577	zip	Heodo
2023-03-23 20:25:50	c7a764d32acd9cfbbfef131804cb5c5cdc2bb3fb96bb250bbe9930b8d69b1a4f	zip	Heodo
2023-03-23 18:29:12	704795218c812e9e22569d60c83e4d53afcd88b056ffc069ceadd19da8fd6d2c	zip	Heodo
2023-03-23 17:40:14	68981c3d80d738efef9da7f435edb8cb069667fc3c8a19dea41ed05c44095cab	zip	Heodo
2023-03-23 05:57:33	d6b8432227f1daa325e502519d02ced0de65be49bf003898f1d83cda4fca29d1	zip	Heodo
2023-03-22 18:34:31	b1120c4a97415607039327346f5017b981469ebed8778f010d83e8d5fd394e3b	zip
2023-03-22 13:16:36	98ac85e40373cd16f6910cfd4bd092ab15a6eda3b513bd09da39b6a29fcb3504	zip	Heodo
2023-03-22 11:15:32	65c582b4af763c0d479bb52e80e2866104115644acb061ad46271606ae71fc56	zip	Heodo
2023-03-22 10:04:57	c5fc19176e3b7d86b5c7ddaf2f0dd92ac5fa326008cc45eeb813874903e90ced	zip	Heodo
2023-03-22 09:22:11	85a4d72d3b4cc661fe38e69758f6ef221cf10e1a6d2e249e36311de6efe8f2c8	zip	Heodo
2023-03-22 06:31:52	7f8e76b4032f73ca0fbc56ff02e6806a5e89794ca39cb8e4a0a1a4269d0556e1	zip	Heodo
2023-03-21 22:08:07	71e5b8bcc439d7c28ce77eedbb8416f8934ad7565c1631ec8208a0b2bfc174ea	zip	Heodo
2023-03-17 08:41:06	fd79e8fa5e3801101a1305b6aba7a5e7fdc852ed9036d6d9a5210be414a5cc5a	dll	Heodo