URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	dienmayminhhung.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-01-26 16:42:21 UTC
Total malware sites :	1
A record(s) observed :	3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-28 00:49:05	202.92.7.54		Not listed	AS135905 VNPT-AS-VN	VN	yes
2022-04-15 09:34:32	103.75.184.25		Not listed	AS135905 VNPT-AS-VN	VN	no
2021-01-26 16:42:30	103.28.36.127	share-linux18u.nhanhoa.com	Not listed	AS131353 NHANHOA-AS-VN	VN	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-01-26 16:42:30	https://dienmayminhhung.com/upg0hv.rar	Offline	Dridex payload	Myrtus0x0

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2021-08-26 20:15:53	afdeb5e0e6d3aa53c595a511d0c634fb21c48a6533a8be7fd26ff6a6a4cc2a95	dll	Dridex
2021-05-27 15:19:02	33b1c1abf2bef29b9357da2cf360f99f30834f22a01c9f82899e4dae649814f7	dll	Dridex
2021-01-27 15:38:21	fddf10eb6f8ce32fd76128f6e56ebec8271533824aba02c7403fab2e8bdb079a	dll	Dridex
2021-01-26 16:42:29	cfcc473a5f83f83517a1c4917dd2c330be6252bc95fcf176e9b783fb694f6f31	dll	Dridex