URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry


Host: fccatinsaat.com
Domain registrar:Isimtescil Bilisim -
Domain registration date:2017-04-10 10:13:13 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2022-03-29 15:46:04 UTC
Total malware sites :1
A record(s) observed :2

IP addresses


The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2022-06-18 14:04:15 45.151.251.8luka.veridyen.comNot listedAS209853 VERIDYEN- TRno
2022-03-29 15:46:06 204.11.59.91bh-75.webhostbox.netNot listedAS46606 UNIFIEDLAYER-AS-1- USno

Malware URLs


The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-03-29 15:46:06http://fccatinsaat.com/wp-content/Cw3aR6792f/Offlinedll emotet ext epoch4 heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-04-01 01:21:37a08a53e086a4400c7fba0e7ae50dff29bab8e554b17fa1407f431cbcd1acfd28dll Heodo
2022-03-29 17:28:24cbcede8f11cd11a000a3cacdb2f90dad851c5bf2f044c35f39da9ce39923ca7edllHeodo
2022-03-29 16:29:3967106a6108bfb6b8ed8006a102164a9a66637a57de78a37fab408b9e029d403edll  
2022-03-29 15:46:06786be7e98cca9b83ccb2830735599cafed4a848b8b10b867c19d4fd3bdeb6bbbdll Heodo