URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	grupostt.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-10-26 08:49:02 UTC
Total malware sites :	1
A record(s) observed :	3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-05-01 13:20:21	50.63.178.125	125.178.63.50.host.secureserver.net	Not listed	AS26496 AS-26496-GO-DADDY-COM-LLC	US	yes
2020-11-10 00:48:28	192.124.249.19	cloudproxy10019.sucuri.net	Not listed	AS30148 SUCURI-SEC	US	no
2020-10-26 08:49:04	192.169.175.166	166.175.169.192.host.secureserver.net	Not listed	AS26496 AS-26496-GO-DADDY-COM-LLC	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-10-26 08:49:04	https://grupostt.com/Categorymap/INC/FfWccLPLeG...	Offline	doc emotet epoch1 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-10-26 15:20:28	a71b3a986a9ca1ee5170f891348a8553af640d554b3b578b71bb80eb2e5bf935	doc	Heodo
2020-10-26 15:08:25	5c37b77c7f6e4cedce26a757d3eb71bda296bfc32490713789ef1724b0a38f1f	doc	Heodo
2020-10-26 14:44:35	499873b64612e9b7ca3b2724e0eb79f68532bdf7cb8527d5b3328bfbb5ebdd2e	doc	Heodo
2020-10-26 14:21:16	c854591c30dd20a4c6b14791ce0ec5cf30d24fa0305b8862dd1a10f255b64e94	doc	Heodo
2020-10-26 14:05:25	8147739aff1074f3aa45f6505332f254c1d2750f1f4cdf2047acc545a8656032	doc	Heodo
2020-10-26 13:48:19	5997e3c32bcc3a6e5f160f819589680d30b890f4fe2faef068e92c7deeb02685	doc	Heodo
2020-10-26 13:30:24	a9aa803b3c3f9f462ec1bd17a2380b956e9872f917bf9a7232c1a96c6aba68c0	doc	Heodo
2020-10-26 13:26:37	6e10d04f75eb03084b24cc9c1d08bf78c573375fdf35af45724038245061e11c	doc	Heodo
2020-10-26 12:58:12	5bdfa0c917624bd7de8b3378352e10dfc48b33bd79c14f27cc5b3e9dfe1d1ed7	doc	Heodo
2020-10-26 12:41:05	bb93640e7a962d06bda3911de02f559229a6bff1cbe867bf5cd47c457b69064d	doc	Heodo
2020-10-26 12:35:52	81c551477e20018dc6980134d9c3e9f964fd1c50ff65ac4e0ed7e6471aa058e7	doc	Heodo
2020-10-26 12:15:09	7440dda8e555e9035377fc29f2d9172549267ddd4e94229023c0109b5d2d9e2e	doc	Heodo
2020-10-26 11:55:25	448ac203510436aa6fb70c37c6bf2d4ed7569e681d6d3f27512fde7a1fd0990c	doc	Heodo
2020-10-26 11:40:11	b9fc022daee293920cbd24996a54077b6c3492d2acf2940125d91c00d1a080ed	doc	Heodo
2020-10-26 11:25:07	65b185e47d9fa98e4c806da6b3de32659443f638f9044da783976ad16917d4a7	doc	Heodo
2020-10-26 11:11:19	a95d76e7de33604c21ca0ae2b22b2515d5f809b3431a70116bab4040d8a58fcb	doc	Heodo
2020-10-26 10:58:06	d6f7bdb1b5ff4287a1bb5679161b98f7941f0091197b37d04fba163501754706	doc	Heodo
2020-10-26 10:41:18	7568f48fe0645ea9cdd165c0432da115295430c4e8064301c518360ad8153dbe	doc	Heodo
2020-10-26 10:34:55	cdaa8083ad98d4428f440e3983393841a1f33fd12ff7faad18b086ba96ada9e4	doc	Heodo
2020-10-26 10:07:08	7cd78f0dd2838afaf16e0a384bc676b109d168f0897e94118224c33618e8f18d	doc	Heodo
2020-10-26 09:57:20	65c041247137b7d9c65793ffa57b76456395fe67c3c05c88529df1782f93e13a	doc	Heodo
2020-10-26 09:41:16	9762f0902c126e23616e568584e425bc839fdcf0b75e9fc97500df619ae00c26	doc	Heodo
2020-10-26 09:18:09	9af2f05de765a45971676b59ecf0e914ab7bd8f58efb309540daa8f547516314	doc	Heodo
2020-10-26 09:09:13	30bc83ac54af7daaa68b9ddd196573bb37aac565bbc36b08de6b982309510bf2	doc	Heodo
2020-10-26 08:49:04	89bf3f020a319d280f23c2d73350b2f27605753475a51c10ec6dfab4393a5a40	doc	Heodo