URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	grafitio.id
Domain registrar:	Digital Registra
Domain registration date:	2021-11-16 18:09:11 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-01-18 13:31:04 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	18

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	SBL	ASN	Country	Active?
2022-01-18 13:31:05	172.67.130.193	Not listed	AS13335 CLOUDFLARENET	n/a	no
2022-01-18 13:31:06	104.21.3.139	Not listed	AS13335 CLOUDFLARENET	n/a	no
2022-01-25 10:31:48	188.114.97.3	Not listed	AS13335 CLOUDFLARENET	n/a	no
2022-01-25 10:31:48	188.114.96.3	Not listed	AS13335 CLOUDFLARENET	n/a	no
2022-11-21 13:01:04	188.114.97.9	Not listed	AS13335 CLOUDFLARENET	n/a	no
2022-11-21 13:01:04	188.114.96.9	Not listed	AS13335 CLOUDFLARENET	n/a	no
2022-10-16 07:34:09	188.114.96.5	Not listed	AS13335 CLOUDFLARENET	n/a	no
2022-10-16 07:34:09	188.114.97.5	Not listed	AS13335 CLOUDFLARENET	n/a	no
2022-06-02 03:44:57	188.114.96.2	Not listed	AS13335 CLOUDFLARENET	n/a	no
2022-06-02 03:44:57	188.114.97.2	Not listed	AS13335 CLOUDFLARENET	n/a	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-01-18 13:31:06	https://grafitio.id/x74j/O5tdtY/	Offline	emotet epoch4 redir-doc xls	Cryptolaemus1
2022-01-18 13:31:06	https://grafitio.id/x74j/O5tdtY/?i=1	Offline	doc emotet epoch4 heodo SilentBuilder	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-01-18 14:27:42	b9810a3ef7017dc112cfcc5135ce71644e58ec3b5dbd596f2110d2dfb339502e	xls	Heodo
2022-01-18 14:12:42	4b5e1f6a6cc6ea2d649a5e3cc210effc33b1804e7a4931d4b0696af2ff98db29	xls	Heodo
2022-01-18 14:03:32	7f8c95e3849529c50f1972686ebd92fbc0223cbd1df540b3f68ed40894ecaaf9	xls	Heodo
2022-01-18 13:53:58	722ded1cbcabef90968fdf9be67676481bac9dd847289d7f23e7625a66087723	xls	SilentBuilder
2022-01-18 13:31:05	82846b92a1d14ddfc9bd3749e9d9c3eb2561cb3f969b4aa7c1a34fe1eef50adb	html
2022-01-18 13:31:05	895e52ebe7c38eec3e599f404e671b1821baab608ba0050d1883f77fc229cc69	xls	Heodo