URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	dhsh.com.ar
Domain registrar:	NIC Argentina
Domain registration date:	2016-12-17 17:44:38 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-06-24 09:02:04 UTC
Total malware sites :	1
A record(s) observed :	14

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	SBL	ASN	Country	Active?
2022-11-20 04:55:14	188.114.96.3	Not listed	AS13335 CLOUDFLARENET	n/a	yes
2022-11-20 04:55:14	188.114.97.3	Not listed	AS13335 CLOUDFLARENET	n/a	yes
2022-09-18 01:07:27	104.21.87.34	Not listed	AS13335 CLOUDFLARENET	n/a	no
2022-09-18 01:07:27	172.67.140.114	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 21:24:24	104.21.112.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 21:24:24	104.21.16.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 21:24:24	104.21.32.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 21:24:24	104.21.48.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 21:24:24	104.21.64.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-27 21:24:24	104.21.80.1	SBL681411	AS13335 CLOUDFLARENET	n/a	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-06-24 09:02:12	https://dhsh.com.ar/wp-admin/H38msg/	Offline	dll emotet epoch4 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-06-24 12:52:52	08e398e1bd22f220d6f3255c50f73b6a3588bfb8f973b39d70b828ca62179f6f	dll	Heodo
2022-06-24 12:38:16	cd03020eb6c62801bf7a76711a50f12af7fbef9cf707203d2f2690e4c41e0e05	dll	Heodo
2022-06-24 12:26:43	b45ce784cee70ec9be16a76468480abac1655f7bf03bdc05d3fd8c34b6365344	dll	Heodo
2022-06-24 12:18:41	40d9ee9e8414bab759dd1e6042b6cd09c57aac919a59e76a4d0aec7aee654c8c	dll	Heodo
2022-06-24 12:01:26	3defb424a6168aedfc8cba3d3c25f2f3d1dd12dc75ba98be063f03d778acf3b3	dll	Heodo
2022-06-24 11:56:11	69c4dcfda5f6e17276bb99985cf9bcb7f2a5e694348941bb3c3a4fe30c156fd6	dll	Heodo
2022-06-24 11:46:35	8f2fd684a65d90969fbb41fdd51ca0c9ecf58c6c5ec4b440a799fad07a4d486d	dll	Heodo
2022-06-24 11:34:16	d9d0ec1f5fbe646a6f775d845caf9c648f1029054c95ec9413219e812f5dc6f2	dll	Heodo
2022-06-24 11:19:50	35fee41dcffbe18b83b887a0747156f1ecddcada547f110eb6e2a969e016d507	dll	Heodo
2022-06-24 11:04:03	83b4a5b182da95839294497a1c768785e1e12deb7af416614fa2680cc6c48d5b	dll	Heodo
2022-06-24 10:44:32	1836abb90fb7d95256caa37d504d7e632b934bc7eccb42274937d45e80f76c2d	dll	Heodo
2022-06-24 10:30:24	5ae2ffdc8296c4a97a507c29684ea4e3a078df8ddb3fe7b88a0fe5c7732eb6bb	dll	Heodo
2022-06-24 10:11:50	0fda6907dbc1a01f870e564e16afa8b799706f57663401a680bc316e5bfef714	dll	Heodo
2022-06-24 10:05:15	ede987c4ec7cea89d61ca23932cf239ecc0fa346e25c875be9ac041b118736f2	dll	Heodo
2022-06-24 09:47:58	57ff1082561531214499878a857744a975d1e8803eec19142b1b58496745bfdb	dll	Heodo
2022-06-24 09:37:56	e882c3edfac56d5e7333ea11e513510cecdeb044cc52b496d43bb2d1a83ab991	dll	Heodo
2022-06-24 09:15:48	55cd3cba88631fb115cc00b71a33ef3821379ac2a25c060e2bd33da0e60e5714	dll	Heodo
2022-06-24 09:02:12	655502d2be60c76507e9c26237a439323de8d219418bbd16ab9096592d918bb7	dll	Heodo