URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	grandages.org.my
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-10-20 08:28:04 UTC
Total malware sites :	3
Online malware sites :	0 (0%)
Offline Malware sites :	3 (100%)
A record(s) observed :	12

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-10-11 16:36:14	175.137.96.169		Not listed	AS4788 TTSSB-MY	MY	yes
2025-10-02 12:16:56	219.92.137.206	ktg-137-206.tm.net.my	Not listed	AS4788 TTSSB-MY	MY	no
2025-09-30 19:00:07	124.13.10.171		Not listed	AS4788 TTSSB-MY	MY	no
2025-08-17 12:29:35	124.13.11.46		Not listed	AS4788 TTSSB-MY	MY	no
2025-07-22 20:23:46	115.133.57.92		Not listed	AS4788 TTSSB-MY	MY	no
2025-06-25 05:31:32	219.92.140.190	pd-140-190.tm.net.my	Not listed	AS4788 TTSSB-MY	MY	no
2025-06-11 00:35:57	219.92.136.67	ktg-136-67.tm.net.my	Not listed	AS4788 TTSSB-MY	MY	no
2025-06-01 19:43:32	219.92.140.104	pd-140-104.tm.net.my	Not listed	AS4788 TTSSB-MY	MY	no
2025-05-21 19:26:46	115.133.56.76		Not listed	AS4788 TTSSB-MY	MY	no
2025-05-16 11:20:55	60.53.37.124		Not listed	AS4788 TTSSB-MY	MY	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-10-30 14:59:16	https://grandages.org.my/office/ZLw4jy2bT5IfuBY...	Offline	doc emotet epoch2 heodo	Cryptolaemus1
2020-10-28 09:35:09	https://grandages.org.my/wp-admin.new/cbwgJzPnj...	Offline	doc emotet epoch2 heodo	Cryptolaemus1
2020-10-20 08:28:14	https://grandages.org.my/office/y6Uz/	Offline	emotet epoch3 exe heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-10-30 14:59:16	454bd8e173e8cc61165942ee4a1b1f4db21a4fa0ffd531152d8abe3cff974d4b	doc	Heodo
2020-10-28 09:48:42	5acee595ee1bc75adea710f92e969aa5c62d0a2693b6dc8c678b2bff8a4a7e51	doc	Heodo
2020-10-28 09:35:09	a8d759c3b4c570d5c7d196edd616d1816f0bf51f7d858bbbdcf8bb41f85242e9	doc	Heodo
2020-10-21 17:52:38	9123d7f744f93758038b7c1449dc781a63f98cb407d0066000c2678908a2e9f5	exe	Heodo
2020-10-21 17:26:39	06cd7e0cad357c4d88768746082b9fc04a26d7e91621274da00576fcf2092190	exe	Heodo
2020-10-21 16:54:20	b1b9d4755205b0dbe0871cbc9ec50bb3e84f85c402ce413f198c77001943b551	exe	Heodo
2020-10-21 16:23:36	ecf5296c7b9a0e32f1cefd19d910c481633d78a32d314f91e310dc8dd886d944	exe	Heodo
2020-10-21 15:47:52	ef9e47b6544ad6023952a8efbbf0bbc07f238d661e45a910ad9e844f94264ac0	exe	Heodo
2020-10-21 14:56:36	b0d27f09e8eb5044d99d93545cffb71cc26d605a8140753f546fc3b17929801b	exe	Heodo
2020-10-21 14:50:33	b06180cd61d50dc02cbbc833d96b064ba0b380cd178676719f040dc21d2fa0c9	exe	Heodo
2020-10-21 14:18:43	f17626d38281842b94dbb7a186697b9c2ab8747ba1a4a7a325a2c6ca4aa7d144	exe	Heodo
2020-10-21 13:50:30	ffd466ddd0d1f629b38c65bf0437b1d0abd97dfa7ce016844ec708418008a39c	exe	Heodo
2020-10-21 13:10:11	69de722d6291291b4ad4574da483784b80aac004be15d3db0cc9d354f9d5adbf	exe	Heodo
2020-10-21 12:48:50	b2c2f95782e74609b63e04bbaa580b7a9d56b7dc3f90355d99fa81016a88febc	exe	Heodo
2020-10-21 12:16:27	765ed4ca933da58d982b75ba0fcfe014bb29a99ed9fbad951a33571c4e4b70cf	exe	Heodo
2020-10-21 11:51:43	d5e84fe1ad20247cac8eee93dde80f093ff354b3583ca1045fce8bc96d8b02be	exe	Heodo
2020-10-21 11:43:40	32f201d5b537029751769cbffe886dac52e1c36fff6cb48835f1ed862d084335	exe	Heodo
2020-10-21 11:14:42	2234d26c29949f5f9fdfc991ef34a720240544d70d74ac2adcfc0b4308c6509e	exe	Heodo
2020-10-20 08:28:13	cd3caed0a1662e267505f951439e6e8d15d4e3a5a3d872afd80bb6226c0edb81	exe	Heodo