URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	gasket.digitalcitrakreatif.com
Domain registrar:	CV. Jogjacamp
Domain registration date:	2020-06-01 04:56:28 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-12-07 18:48:09 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2021-12-07 18:48:29	128.199.112.216		Not listed	AS14061 DIGITALOCEAN-ASN	SG	yes

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-12-07 18:48:29	https://gasket.digitalcitrakreatif.com/hhkq/y4l...	Offline	dll emotet epoch5 heodo	waga_tw

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2021-12-08 00:16:33	a1a3c90e58be5b9a7815a2f004c55075bbca4a5398008b90db56fd02f83beb13	dll		Heodo
2021-12-08 00:07:39	4d22d3c92f253167e688d6bf8047ea10bade919f63efb8c4ed3602205f45d627	dll		Heodo
2021-12-07 23:46:51	4fb58d658f7be1575bbf4e9f059d6d6096ff7116119cf6b86bdb20d573317295	dll		Heodo
2021-12-07 23:34:42	ce3074cb2e1d5bb2099b1c7769690eb1dbc8f62a2ee9612d9a23b4dd5f930d9e	dll		Heodo
2021-12-07 23:16:55	6af0f57b38bad0e51d1a3f4990e88d7a69ca1fc772e1a336f313cb4ff123b3a5	dll		Heodo
2021-12-07 23:02:05	9c15c5a2681ddb49e6639cc029b73b125b0d8e5b03e98565c1b193af13a70249	dll		Heodo
2021-12-07 22:37:40	ca9ed94023921ec514ea886d7bcefffc6b7d338683fc9afcf4549bf7881e7420	dll		Heodo
2021-12-07 22:20:54	cc30e5f555367e42c584dbfff14d43772e8a9dde13f5072e603a58529ff9ef5f	dll		Heodo
2021-12-07 22:03:30	870d6770effde8fc3ceedc1263903e7afdd48e38d6106a984a0a510eb8ba2e66	dll		Heodo
2021-12-07 20:56:29	13a125dd0443fe7a48ea144c6fa1e4eff68cccd4dd75e2a3679414c288ef22a2	dll		Heodo
2021-12-07 20:38:48	63211d2f599e262734ea2c575dc1127b6340391b6ecd517af69b8c1141395602	dll		Heodo
2021-12-07 20:07:27	395fb089b9d251e1a7c35d27a1b72b0174629613190e94c2d5ef26be624b37d1	dll		Heodo
2021-12-07 19:34:33	3f98ca932f63009fb8038d608f77e2f93c3180b8a7216f4eeffdbdabef21e356	dll		Heodo
2021-12-07 19:17:13	e1d24f6e8cd65d8259ed8764657bab473352bbd984df981a80ff8c4e10684599	dll		Heodo
2021-12-07 18:48:29	8abba113793861afd4fd24492d8424938d11821cfc3987ce5a1142f53d5d15cc	dll		Heodo