URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	grambazaar.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-08-27 15:16:07 UTC
Total malware sites :	1
A record(s) observed :	14

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-08-07 13:00:09	13.223.25.84	ec2-13-223-25-84.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	yes
2025-08-07 13:00:09	54.243.117.197	ec2-54-243-117-197.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	yes
2025-07-03 14:16:51	13.216.111.180	ec2-13-216-111-180.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2025-05-24 11:03:58	44.213.46.149	ec2-44-213-46-149.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2025-05-15 23:23:06	3.94.41.167	ec2-3-94-41-167.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2025-05-15 23:23:06	52.86.6.113	ec2-52-86-6-113.compute-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2025-05-06 14:43:36	52.71.57.184	ec2-52-71-57-184.compute-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2025-05-06 14:43:36	54.209.32.212	ec2-54-209-32-212.compute-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2025-04-28 22:05:33	18.119.154.66	ec2-18-119-154-66.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2025-04-28 22:05:33	3.140.13.188	ec2-3-140-13-188.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-08-27 15:16:09	http://grambazaar.com/wp-includes/YKCHTKPBFXO/n...	Offline	doc emotet epoch2 heodo	spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-08-28 07:50:08	f35f09ee31dc9ba4c3d871882fadeeb10ed716f5a87be56e6129b111b6e5e34a	doc	Heodo
2020-08-28 07:21:59	e0e627529fa1a4b42a95c6b2b297d3505e734a44828709620e3de7a37a4ac4a9	doc	Heodo
2020-08-28 07:00:55	88050d35083b23cbad8c80519f05c4c66eac22c93834338cbe483737e6b2951c	doc	Heodo
2020-08-28 06:38:35	2507d621fe85fc30dc544957a545cbf5ce274ab84800ad014786c512d4a988a9	doc	Heodo
2020-08-28 06:07:31	9c6f98f54b5f8b43d3ced2c547a09d7ea30578c696263ad60666ea9e75a22daa	doc	Heodo
2020-08-28 05:50:34	642f0b1333a6ccce34906af2c3332ee52c9580f7b91ce7e4fb658e0915b43e73	doc	Heodo
2020-08-28 05:50:07	642f0b1333a6ccce34906af2c3332ee52c9580f7b91ce7e4fb658e0915b43e73	doc	Heodo
2020-08-28 05:30:21	719703764819a3ae83679118e6bb21f6978fc85b753b794d004f4f45cab344d0	doc	Heodo
2020-08-28 04:06:28	d15d207c796247cb72e865fb89b2d86126c3ae9e3f7f84d6d799a5c179fee17f	doc	Heodo
2020-08-27 23:55:36	56a5251ecbef61368cccbef64fcec4d5a5d2355f2187f9a26708901b205441e6	doc	Heodo
2020-08-27 23:39:13	c9fd82536c7ab23bb6fc3e34bd11940d5c580abd2ec8aa7d18034aae20df426b	doc	Heodo
2020-08-27 23:25:23	11c312c328c81fa2af83814e88c2d139706ece407f9f15943e71fd5c0e87fe93	doc	Heodo
2020-08-27 23:07:07	6e90df31ca22290bcfbe1534826b71d5f71962a9c1841911be1bfae3fc033d39	doc	Heodo
2020-08-27 22:55:48	fc2c979f533e79f45f858febf1103743fc092cc5882960c399a2d7764a067fc1	doc	Heodo
2020-08-27 22:54:41	8f33d7ea4a7ba61871627527e0d0ca62bf82f56d8a40448ced4087f3654fd8de	doc	Heodo
2020-08-27 21:20:13	ea1ce5f9d12c67465b28319cf9b23a41cf938fe17878362a3a58f68bd85a9703	doc	Heodo
2020-08-27 21:04:03	8924cd43cae04cf71c93149b8d2a6729ae28edc120bff304e833416121085341	doc	Heodo
2020-08-27 20:49:27	493671484f84dad38024d17bd7abd744b827836b03d67c3d1ae8f24e2617c29a	doc	Heodo
2020-08-27 20:32:57	e6edc4b1f9c852d2f31179fa566f367f0fb60ab7637e50e54140302337c113f2	doc	Heodo
2020-08-27 19:00:50	3cc0ee030a2e6d7220610ed865fa51b8a143362067b1dcb5078807ac98a7f54d	doc	Heodo
2020-08-27 18:42:20	b9e2a8c85d83c0a54743d72c3e4f2433957898eafc163f465c6b2450a30f4447	doc	Heodo
2020-08-27 18:23:05	43d4b9d64d2adda1b182ebd6118f6d144e5362e9add5459f33c8d539ba93a0e3	doc	Heodo
2020-08-27 18:05:08	3a13bb9f65644d87b9e28eda53834cecc03be1ff8f059b9cefa61e5570ff76c1	doc	Heodo
2020-08-27 17:48:46	cf7c5c9932e84c5e7b4581ed4ab33d064f13bac0d2cf382eb274c72730bebf5e	doc	Heodo
2020-08-27 17:30:27	57dac421ffe1a98070334b279e5be3bd97ea21ee620e9d6cbf9dd0450c04a547	doc	Heodo
2020-08-27 17:03:00	e78a6ee75d01f036582642ab17d77ee25e5dca151ec9db5e328209d2be2ae236	doc	Heodo
2020-08-27 16:44:44	1ed11ebc12a09924917104bea8ca68bf4f6c24654b6ad0e17100ca907a01d698	doc	Heodo
2020-08-27 16:30:42	c6081344c883e627f79612b8bcaf44b55befbbb92800f6a709696a3749180534	doc	Heodo
2020-08-27 16:06:36	9e9c4d5ee91bf05ccf73c05e7de8d898aa379f1069060435224af69ee06ce086	doc	Heodo
2020-08-27 15:16:08	72a047a55409445c1767467b0e67391b0fbdb99be5b2e6a5457df52c7e2ef398	doc	Heodo