URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	dominiqueimmora.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-03-09 09:24:04 UTC
Total malware sites :	7
Online malware sites :	0 (0%)
Offline Malware sites :	7 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-03-09 09:24:11	103.57.223.9		Not listed	AS135905 VNPT-AS-VN	VN	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-03-09 09:24:15	https://dominiqueimmora.com/scarica/Agenzia_Ent...	Offline	agenziaentrate Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-09 09:24:11	https://dominiqueimmora.com/scarica/impresa.zip	Offline	agenziaentrate Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-09 09:24:11	https://dominiqueimmora.com/scarica/cliente.zip	Offline	agenziaentrate Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-09 09:24:11	https://dominiqueimmora.com/scarica/AgenziaEntr...	Offline	agenziaentrate Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-09 09:24:11	https://dominiqueimmora.com/scarica/azienda.zip	Offline	agenziaentrate Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-09 09:24:11	https://dominiqueimmora.com/scarica/contratto.zip	Offline	agenziaentrate Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-09 09:24:11	https://dominiqueimmora.com/scarica/Direzione.zip	Offline	agenziaentrate Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2023-03-09 09:24:09	1f233fdb94239fa884321a91d14342c1a66e64ce02dc64378cb7c53669d5ea28	zip	Gozi
2023-03-09 09:24:05	b883d0faf8a9f2396a311b6005ab68073ff0e6a09cafbdc7b58a8439d52409a1	zip	Gozi
2023-03-09 09:24:05	6a11b49472e5ea497098f11ab66bde3fb6fa1a6762b73cf08f1dfa83efae22e6	zip	Gozi
2023-03-09 09:24:05	0284ebc8b81dd2894fbdb7ca298d1c2c85c41630b9b9ab99aed51aec86073aae	zip	Gozi
2023-03-09 09:24:05	b57e90f3f5326920735a5ebc884b4ad1b28e97b48bba4615ab6e7092ea386bd2	zip	Gozi
2023-03-09 09:24:05	120b092e8d8212a7c0e796ac320dd10c56c8b801aa8fb234cb577d5f0dabc05c	zip	Gozi
2023-03-09 09:24:05	29547f7ced48000841e1ee6e5da03bcfb21722d9e60687356ab2d1e000733f21	zip	Gozi