URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | ejeana.co.ug |
|---|---|
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Status unknown |
| AdGuard : | Status unknown |
| Cloudflare : | Blocked |
| ProtonDNS : | Status unknown |
| OpenBLD : | Not blocked |
| DNS4EU : | Blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2022-03-14 19:25:05 UTC |
| Total malware sites : | 5 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 5 (100%) |
| A record(s) observed : | 63 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2022-05-21 11:28:22 | 34.88.93.29 | 29.93.88.34.bc.googleusercontent.com | Not listed | AS396982 GOOGLE-CLOUD-PLATFORM | FI | no |
| 2022-05-21 09:46:53 | 5.188.88.48 | Not listed | AS216368 PINVDS | RU | no | |
| 2022-05-17 02:09:11 | 35.228.140.43 | 43.140.228.35.bc.googleusercontent.com | Not listed | AS396982 GOOGLE-CLOUD-PLATFORM | FI | no |
| 2022-05-15 02:01:10 | 8.211.138.50 | Not listed | AS45102 ALIBABA-CN-NET | JP | no | |
| 2022-05-12 00:19:28 | 188.225.75.186 | 931169-cg59419.tmweb.ru | Not listed | AS9123 TimeWeb-AS | RU | no |
| 2022-05-11 10:31:36 | 46.173.219.228 | SBL668586 | AS47196 Garant-Park-Internet | RU | no | |
| 2022-05-11 05:50:18 | 5.188.90.160 | Not listed | AS216368 PINVDS | RU | no | |
| 2022-05-11 05:12:44 | 185.251.89.101 | Not listed | AS35278 SPRINTHOST | RU | no | |
| 2022-05-11 02:58:57 | 185.251.89.97 | Not listed | AS35278 SPRINTHOST | RU | no | |
| 2022-05-10 08:42:56 | 46.173.219.208 | SBL668586 | AS47196 Garant-Park-Internet | RU | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2022-05-18 10:53:07 | https://ejeana.co.ug/m1/ctf.exe | Offline | 32 exe Smoke Loader | |
| 2022-05-17 15:30:15 | http://ejeana.co.ug/m1/ctf.exe | Offline | dofoil | |
| 2022-05-17 15:29:04 | http://ejeana.co.ug/m1/PaymentNotification.hta | Offline | dofoil | |
| 2022-03-22 17:36:06 | http://ejeana.co.ug/m1/m01.jpg | Offline | dofoil | |
| 2022-03-14 19:25:09 | http://ejeana.co.ug/m1/cc1.exe | Offline | dofoil |
The table below shows recent payloads delivery by this host.
FI
RU
JP