URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name). This page shows all malware URLs that are associated with the host duratransgroup.com.

Database Entry

Spamhaus DBL:Not listed
SURBL:Not listed
Firstseen:2018-08-21 11:12:46 UTC

IP addresses

The table below shows all IP address obsered for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones).

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2018-08-21 11:12:49103.233.1.157Not listedAS46015 EXABYTES-AS-AP Exa Bytes Network Sdn.Bhd.- MYyes

Malware URLs

The table below shows all malware URLs that are associated with this particulare host.

Dateadded (UTC)URLStatusTagsGSBReporter
2018-09-18 13:00:07http://duratransgroup.com/rPLfgwJVGOfflineemotet exe heodo Clean@Racco42
2018-09-13 05:37:08http://duratransgroup.com/1721558FYLUIW/BIZ/US/Offlinedoc emotet epoch2 heodo Clean@JRoosen
2018-09-12 11:33:18http://duratransgroup.com/1721558FYLUIW/BIZ/US)Offlinedoc emotet heodo Clean@unixronin
2018-09-12 08:36:58http://duratransgroup.com/1721558FYLUIW/BIZ/USOfflinedoc emotet heodo Clean@unixronin
2018-09-12 02:09:35http://duratransgroup.com/Sep2018/US_us/Service-InvoiceOfflinedoc emotet epoch2 heodo Clean@JRoosen
2018-08-30 06:35:45http://duratransgroup.com/561613UXJ/oamo/US/Offlinedoc emotet epoch2 heodo Clean@JRoosen
2018-08-29 18:32:25http://duratransgroup.com/561613UXJ/oamo/USOfflinedoc emotet heodo Clean@unixronin
2018-08-22 22:20:32http://duratransgroup.com/umFXhtZDb4V1j/Offlinedoc emotet heodo Clean@JRoosen
2018-08-21 11:12:49http://duratransgroup.com/umFXhtZDb4V1jOfflinedoc emotet heodo Clean@unixronin