URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | dl.natgo.cn |
|---|---|
| Domain registrar: | Tencent  |
| Domain registration date: | 2021-07-17 14:01:58 UTC |
| Spamhaus DBL : | Abused domain (botnet C&C) |
| SURBL : | Blocked |
| Quad9 : | Blocked |
| AdGuard : | Blocked |
| Cloudflare : | Blocked |
| ProtonDNS : | Blocked |
| OpenBLD : | Blocked |
| DNS4EU : | Not blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2024-10-15 15:26:06 UTC |
| Total malware sites : | 1 |
| A record(s) observed : | 6 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-10-29 10:39:50 | 43.242.74.207 | Not listed | AS133774 CHINATELECOM-FUJIAN-FUZHOU-IDC1 | CN | yes | |
| 2025-10-17 07:20:26 | 103.120.91.136 | Not listed | AS146817 FXNET | CN | no | |
| 2025-03-07 16:38:29 | 123.129.241.202 | Not listed | AS4837 CHINA169-Backbone | CN | no | |
| 2025-02-18 05:37:14 | 45.125.44.203 | Not listed | AS139180 SDYXT | CN | no | |
| 2024-12-26 07:40:43 | 116.211.143.47 | Not listed | AS58563 CHINATELECOM-Hubei-IDC | CN | no | |
| 2024-10-15 15:27:10 | 61.183.42.119 | Not listed | AS148981 CHINANET-HUBEI-SHIYAN-IDC | CN | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2024-10-15 15:27:10 | http://dl.natgo.cn:888/natgo.exe | Online | exe |  abus3reports |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2025-05-09 09:04:43 | af5f7d8ac829874abcf7dc6cf4a496b71754d0072ba558f6a3a3f3f2a23edecb | exe | ||
| 2025-04-04 00:04:08 | 3f5b5bb18a985903f496619bf6a542afabbd8af39264cd4f0c53b6c97a954586 | exe | ||
| 2025-01-28 14:40:22 | f475bfcda0d395620c5cc0beaf51aff371c3506966a73c001fc9a0812b6633e4 | exe | ||
| 2025-01-10 08:18:58 | bfb33859043c4c8c1f67a2ac473fe8853b750b44b6f52fad496b6156b475871f | exe | ||
| 2024-11-26 04:55:09 | 1a032bc7c649d0c8a4f1d057b4ce3fa59ccdc7aa8cade2a17b30757b51a6cf01 | exe | ||
| 2024-11-18 03:40:55 | c3dad66b05d6242e377d974937efe83d2eb142f3a0d3eae393e1b6f873cec8cf | exe | ||
| 2024-10-15 15:27:09 | 0026014d1d7e27c48b5e036a593d7a60f7e8f313394e2b4df59b139f078a4cd2 | exe |