URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: gtassistance.it
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-08-25 21:28:21 UTC
Total malware sites :1
A record(s) observed :2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2020-08-25 21:28:22 35.214.218.167167.218.214.35.bc.googleusercontent.comNot listedAS15169 GOOGLE- NLyes
2020-08-29 09:57:29 72.5.65.111Not listedAS12182 INTERNAP-2BLK- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-08-25 21:28:22http://gtassistance.it/siceco/lm/5466/bLI/Offlinedoc emotet ext epoch3 heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-08-26 10:06:17c2e1752a4bd5a694402e04334b50e8efd9714164c9fe3dd70d2e3b1dde45d600docHeodo
2020-08-26 09:45:31a653ed7fc7b44191a6e35885e211f29497f5a16fe3bf716c6ee745cbe315614ddocHeodo
2020-08-26 08:11:1690706311f68ea29bbbcde95593221febb3c17d6a4dd687990ec5fbefa3b527aedocHeodo
2020-08-26 05:41:11e6f9b7b28fba2eacf7e7a6f9c54aa57f312d3993840e83a17cdb1b867992744bdocHeodo
2020-08-26 05:25:34aac96c07ed5e765bdcc64f7eca5cbbb8e6009283e1d10f8a1ff1f822a3a4b25bdocHeodo
2020-08-26 05:06:084f28bcb0c2d54cffc2810fbd3d3e10b0d2dbc20e043c476526947e9e7e7ee7c8docHeodo
2020-08-26 05:02:34edf042c7f48eeca9b83d2f316eaa34a7274b386a0ace0c3dd4a97227852a64cddocHeodo
2020-08-26 04:28:028bf9a63b2f36c474f3f20fbc3d268d1183e77f8479ffdb272f60027db9f66cc6docHeodo
2020-08-26 04:09:01885506e9990187ad03eebbf630b4a73e3c6a73266a7bf9997fd18fee0504035ddocHeodo
2020-08-26 03:56:41012064617c3b69bcf41076e01a3ae44346db3ef00153e7f114c0850e7863324ddocHeodo
2020-08-26 03:31:53e9017cc8b425ecc8518bb34458a30045dcd446e2ace97b4e0209d0ac3a13de53docHeodo
2020-08-26 03:13:28391b29bbfeca47bf67b0fc05596c5c478efe548b39e530b8cb8d32b3f4ae6df9docHeodo
2020-08-26 02:57:3413586126b01818c527e7eac512c8eafd4cf047bbd75e7b629b5e6fb6a407b500docHeodo
2020-08-26 02:31:15e5e2607f45c68befee2ce476555035c2c2551e2afb187952a82afb93cf6fb773docHeodo
2020-08-26 02:10:236e6592776210c618525c5b5caf06d29e8c25d2177b3f7dfd1a86deace9520dcddocHeodo
2020-08-26 01:53:12ad4c1465a9c3713992b6fd761417e5c47a9986ad08c70f4551ed239fc9376219docHeodo
2020-08-26 01:33:2402b772df112f40ad435b9b0abba31d1918394f14f5cadf7cce0b73a1fca06053docHeodo
2020-08-26 01:15:3843ea239dfae5a4b79c29b5ab2e18e6e2bb2456d1912663dbbf6762ab93a53694docHeodo
2020-08-26 00:54:19e9f2cec35496ad75bdf4de5734aa4f4f7306f46a6c5dbd03329c65a706516c3bdocHeodo
2020-08-26 00:30:58d897abf4abbb70845e61775f409d37276cf220d2a1974fba7eafe0415e89ed2cdocHeodo
2020-08-26 00:13:07f1e8c8ed894dab23c0dc79fea7ede95c07d0db4022fae65dd650a7884fc165f4docHeodo
2020-08-25 23:53:11d9837b1903f0cc74cedf8b2bc7a74da61ae878ce54cfd439816af5919b5e846fdocHeodo
2020-08-25 23:31:435caf6a0047706e0e584daa8e6a31c7e7ab30bebf4be51d8aa72f9629794a8386docHeodo
2020-08-25 23:11:17787e426fa820bdeb365b0848eb4416fae5e3e15969c0931509f88db6f8724d4edocHeodo
2020-08-25 22:49:21e3056c02d20728d79c09d5b6c78054fae5c45336ed6ac191c6f5e6802aeca1bcdocHeodo
2020-08-25 22:27:07481687ed49cd8f8a3d87484048c7ef7ed5398b4bbfce5dc0d8afd8c86d0b67e1doc Heodo
2020-08-25 22:04:45d20011bcfb209e6b0f23255c75907a43cd4cf4bb1a007736331854d8d5bb8abcdocHeodo
2020-08-25 21:41:085266fb5179fc40c9b032f6b38213aa59dbbe2df76ab0a3ebb44bfccbb2d0d997docHeodo
2020-08-25 21:28:21a288df88ab9b14c02291c83e72ef3049ac9c7841acb973adef7799af2f804c42doc Heodo