URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	hairmaxsoftware.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-03-16 20:52:09 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-03-16 20:52:17	70.39.251.76	server.rpatechnology.com	Not listed	AS3257 GTT-BACKBONE	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-03-18 21:16:08	http://hairmaxsoftware.com/software/D2g/	Offline	emotet exe heodo zip	Cryptolaemus1
2023-03-16 20:52:17	http://hairmaxsoftware.com/software/qKMFckuq1Uc/	Offline	dll emotet epoch5 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2023-03-19 15:01:11	be61a644a5628af836c31999fe086557299fd03a191d09530a42c43fdc994963	zip	Heodo
2023-03-19 14:16:41	1788dd53cc40c7e90ee78abd3359d443634554fa53afaeb50eae4ae6e97335f0	zip	Heodo
2023-03-19 12:03:26	7d32e76c1926b13ca4c53be8cc97198bf20c2fbd8e2c9059b6d48f6b8113dcea	zip	Heodo
2023-03-19 10:38:11	04a95cb0c9112e2ed0f508ec0c74929eb5004415532d47e1b89b1d8c7831b362	zip	Heodo
2023-03-19 09:22:16	1e14be915ddbda0a3bce27f9aae927edf7f4c713f449f6027b02f9ae2d1cee41	zip	Heodo
2023-03-19 07:39:39	063697eafd3493a9fac109a81566287ef326bc87d7b6ca508c14e13dfb19b70d	zip	Heodo
2023-03-19 05:17:13	d2c5dfd1a79b7b3bc1d973a3079eb9db7934caf3c907959668474a818375f4c2	zip	Heodo
2023-03-19 04:41:55	059efb61e6ac1967f94665d4ec1e0adb9ae47d13920b5d308306d735e2a22744	zip	Heodo
2023-03-19 02:01:16	af68e7b3fd40de9c56f886a3a70460991611190ab037f4a996146bce87609520	zip	Heodo
2023-03-19 00:58:20	76fbc6eeedd6a05c77649ded97e928d9d5ab6a07adf5ca69bf19bbcd591e4bae	zip	Heodo
2023-03-18 23:40:42	b5c43726ac6b60ef52f82821006c0bfc97c1fc6e897c4aae306c57e01b3acde4	zip	Heodo
2023-03-18 21:36:26	38f8671b7e43e062faed32d5f0712d32c37b5a06b2032dc733d43ebf60f6ff1a	zip	Heodo
2023-03-18 21:16:08	60b1afa336edfa0c8a45ec274513a18fce3e6365d76723f16bf7dd5e66216336	zip	Heodo
2023-03-17 09:29:44	fd79e8fa5e3801101a1305b6aba7a5e7fdc852ed9036d6d9a5210be414a5cc5a	dll	Heodo
2023-03-16 22:32:31	0b8682fe1ee1d9a8ad485452179e9c8651c682660591077e0fb7077e89af81bd	dll	Heodo
2023-03-16 20:52:11	b6dac05e61ee711e5e56ab6dea94ae3d400897ecc76544a0c6fd9817ac91ec88	dll	Emotet