URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | gstat.securityguardlisting.com |
|---|---|
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Status unknown |
| AdGuard : | Blocked |
| Cloudflare : | Not blocked |
| ProtonDNS : | Status unknown |
| OpenBLD : | Not blocked |
| DNS4EU : | Blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2020-06-29 06:45:05 UTC |
| Total malware sites : | 1 |
| A record(s) observed : | 3 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2020-06-29 15:16:37 | 185.244.43.119 | Not listed | AS204490 ASKONTEL |  AE | no | |
| 2020-06-29 06:45:06 | 62.173.145.113 | ejh.oge | Not listed | AS34300 SPACENET-AS |  RU | no |
| 2020-06-29 06:45:06 | 95.181.178.221 | Not listed | AS210756 EdgeCenterLLC |  KZ | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2020-06-29 06:45:06 | http://gstat.securityguardlisting.com/setup.exe | Offline | geofenced Gozi  ISFB ITA ursnif |  JAMESWT_MHT |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2020-06-29 20:31:21 | a7593bf31c35cfe506f19633175cb6e025dfdbbfd39fb792156502fe33b11b12 | exe | Gozi | |
| 2020-06-29 19:40:19 | caab488d7ceaf20f99521bff6dfaf9dc53d6148bab088ba15b031fc69b87772d | exe | Gozi | |
| 2020-06-29 17:54:05 | 34451f9d7751fbbd510951c459f9f626f7c61604da674e6d344a5787ace323d4 | exe | Gozi | |
| 2020-06-29 17:36:29 | 36838238ae8e92246e324823e5bb7ce7f9f4e8856bcc3036e2c5a28a74e433ee | exe | Gozi | |
| 2020-06-29 17:20:30 | ab3f7f5b81faff08479b6e7fdd572fd163f31ca73c2919873fe7691091d7701e | exe | Gozi | |
| 2020-06-29 16:38:34 | 5dd5a4849252ca774d60e8c68560dedfc7941c1c996e22513afaec9c662061a4 | exe | Gozi | |
| 2020-06-29 13:30:04 | 1f5872b81920463f1a5424b86e34d7a1a66e8fa7e68153ccd14f36ada3a1e43c | exe | Gozi | |
| 2020-06-29 10:26:38 | 3fe5fdbdc141727dc6b70a7c8e2c7700a0eef1ee6236d7a5cb62b15c75ab9f26 | exe | Gozi | |
| 2020-06-29 09:24:51 | 1f1f38914a548cd04bb1793d17e50cf8e7b7e0ac027217d5f0aaa6ede159a259 | exe | Gozi | |
| 2020-06-29 06:57:32 | 56cb618af797072fc01cc1d24ac0d11574979a69e34b6ef6cd51023ea724c07d | exe | Gozi |