URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	fuwa.com.vn
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-09-21 18:21:43 UTC
Total malware sites :	1
A record(s) observed :	23

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	SBL	ASN	Country	Active?
2025-09-19 10:50:47	188.114.97.3	Not listed	AS13335 CLOUDFLARENET	n/a	yes
2025-09-19 10:50:47	188.114.96.3	Not listed	AS13335 CLOUDFLARENET	n/a	yes
2025-09-24 10:17:35	172.67.175.198	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-09-24 10:17:35	104.21.17.114	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-29 19:43:18	104.21.112.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-29 19:43:18	104.21.16.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-29 19:43:18	104.21.48.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-29 19:43:18	104.21.64.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-04-29 19:43:18	104.21.80.1	SBL681411	AS13335 CLOUDFLARENET	n/a	no
2025-04-29 19:43:18	104.21.96.1	Not listed	AS13335 CLOUDFLARENET	n/a	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-09-21 18:21:47	https://fuwa.com.vn/cgi-bin/1o4x7vuik/	Offline	doc emotet epoch2 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-09-22 02:03:29	b47a1743a01e5885f50abb8a2bb9ad539a52c6b38e1fe97ace7c7165c384a523	doc	Heodo
2020-09-22 01:36:20	81f0521a22118d4b0d1ab491183c0e961d22f56fb43d063febfdbf53348add1f	doc	Heodo
2020-09-22 01:03:01	09354d76c301e3e65f29aceb76a3bbfa8cd5bc590010a3eaf044b7050c3e61b1	doc	Heodo
2020-09-22 00:39:56	0489a6b94e2c6206bd2730cc32c8f873d1ac1af2ad02bdb69a77a8078460741c	doc	Heodo
2020-09-21 23:57:26	62f036b925c8b4c5c90b88eaf15e774481a952ac6e1c7596916e10054b82dace	doc	Heodo
2020-09-21 23:45:07	6aaa5d1200a0ddb1900acfe0f5b79eac2ce5b928d30db37c4f21e43cea55d69e	doc	Heodo
2020-09-21 23:14:40	0b406d237fa37888f1acd0ffc4b59577ffd5e45b792a835c2141483e2206ce9c	doc	Heodo
2020-09-21 22:48:35	74c1fc2f43a4a426a9f4ffbc4738e6107d95009d67a202f0c8a2a1b80ef60937	doc	Heodo
2020-09-21 22:31:54	ce745f41bc3c216b25b5d553cff68854d633377995317973429dc64180aa89ef	doc	Heodo
2020-09-21 22:28:53	caefda78ff290b2ad9de3f8ee864f985144a3caeb6e307e034427b5f621184da	doc	Heodo
2020-09-21 22:19:27	04b6915557c386d4219e56049dca6eeef6f30b41f45fb525d36977e248fbf4ec	doc	Heodo
2020-09-21 21:48:13	b0c1e64b3b04df99668587d56d89c513ced13de50d8596e1d49a2eac66c96049	doc	Heodo
2020-09-21 21:32:12	a8f76389eb48147fbdfcf5e3037911b1d933d7e0a1da38d58125ee2b9084b561	doc	Heodo
2020-09-21 21:13:27	9e23f757e5e389aaaedeada32671c3f7a5620ec100069483a67b7305697a88c9	doc	Heodo
2020-09-21 20:39:16	e6573ea6cfe0bdb4f9b3d43b7b68207d18fb492c9ed35aaf6bee52d0d681a9dd	doc	Heodo
2020-09-21 20:03:42	5af136d60a366d4fa170883a816b530f4ef2828bfd11eafe0204c4f202deb748	doc	Heodo
2020-09-21 19:52:31	0375b4835fb4def35254dd37af3b71c8c92dbafb8af44ccf8f7ff85e3751ffb7	doc	Heodo
2020-09-21 19:23:33	cabe0605dd6140798ca1573bc18bbc38043b41d7e8bc202fb6ce104462a88595	doc	Heodo
2020-09-21 19:01:50	e4bf7ba6d49953f6d305ed245b9ef7be426ea9b211bbd8aee04948809159fda8	doc	Heodo
2020-09-21 18:39:46	e60647cfe1adde616c890f3e26971215036da239a61dc90bf5ef9fbaaba6dd65	doc	Heodo
2020-09-21 18:21:46	ea13635d8fae6f813f3021e4d264e12f874aba0cadf496e53a82fdd80faf37e5	doc	Heodo