URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: healthanalyst.xyz
Domain registrar:Namecheap -
Domain registration date:2021-11-01 15:51:19 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2021-11-30 16:47:06 UTC
Total malware sites :5
Online malware sites :0 (0%)
Offline Malware sites :5 (100%)
A record(s) observed :6

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-04-07 13:05:04 188.114.96.3Not listedAS13335 CLOUDFLARENETn/ano
2023-04-07 13:05:04 188.114.97.3Not listedAS13335 CLOUDFLARENETn/ano
2022-11-01 18:49:32 99.83.154.118a51062ecadbb5a26e.awsglobalaccelerator.comNot listedAS16509 AMAZON-02- USno
2021-12-09 19:24:25 162.55.190.232static.232.190.55.162.clients.your-server.deNot listedAS24940 HETZNER-AS- DEno
2021-11-30 16:47:07 104.21.27.133Not listedAS13335 CLOUDFLARENETn/ano
2021-11-30 16:47:07 172.67.142.159Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-12-09 01:24:09http://healthanalyst.xyz/6/DYUB0CRFQ0IX0FsiN/Offlinedoc emotet ext epoch4 heodo ext waga_tw
2021-12-01 08:00:10http://healthanalyst.xyz/jetbead/xjo/Offlineemotet ext epoch4 redir-appinstaller sugimu_sec
2021-12-01 05:24:10http://healthanalyst.xyz/jetbead/gLHu66vJ6uByY70v/Offlineemotet ext epoch4 redir-appinstaller Cryptolaemus1
2021-11-30 23:54:12http://healthanalyst.xyz/jetbead/gLHu66vJ6uByY70vOfflineemotet ext epoch4 redir-appinstaller waga_tw
2021-11-30 16:47:07http://healthanalyst.xyz/jetbead/XtmyyOfflineemotet ext epoch4 redir-appinstaller waga_tw

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2021-12-09 18:12:30e167804a6f36dc99e96909bcededa8a733dd8633037b8b52e8d7881d20446c16docHeodo
2021-12-09 18:01:56d69f3a0ab3de59ef3cd8461d88492993170d51dce254ee1097cb8abf5a0bf018docHeodo
2021-12-09 17:46:216b24094a69cf6e612d38e8b0a29ba0805cc160dc1a84be86c55dd8c7f59521a7docHeodo
2021-12-09 17:40:424e3c2a99198c29669026c373ba3cff9a3238271504a0a89cf52a7f8c8579cdc1docHeodo
2021-12-09 17:17:57d19b92d3bcc66036bc13058f935a9eac08bca63cb059a8a93a21909c5c4e20dfdocHeodo
2021-12-09 17:04:25abff6c4c0576b6f1dc50478dd91cf8aa9c1ffd442f54bf6afa9e46585c6b507bdocHeodo
2021-12-09 16:56:1360070dc681a9f7c4a79a3637402a55b5c3e8fba4a2df0ce681f0b1ff311a360adocHeodo
2021-12-09 16:37:13e7b9c7ae85b65f18519cf9daed5b665424eb5e90d9ea917793d93a57f0a8860adocHeodo
2021-12-09 16:27:166db713111922141d1e216988ca94471878eaf0cdefb37f14a61a6186c9590e19docHeodo
2021-12-09 16:15:0129ab4068dac49ad35bee5d3ae9be67726d2ea73c28d437bcbf827bfc5ca372fadocHeodo
2021-12-09 15:56:537c73a4da90b895e4add6c77b040582e03c9b358a4e9c2eb9d6c121371e2de1cedocHeodo
2021-12-09 15:43:338199cd2fde7e3cec9521cf7aa7dbafe51ba2ea897a8c132318fc85507b90d05bdocHeodo
2021-12-09 15:15:125aee37b45c0c6370d6c4b8046356675ddbe62d8cb42dfcc602bc350600df64e8docHeodo
2021-12-09 15:09:53052fa4aa100211ec170bc835ccee15ab601aafbe131ec86a16b553a0b2f17b4adocHeodo
2021-12-09 13:00:08422cdaf95ec5f430f907c9acf9538f9b76473c10d984ea3370753d2bd8a5d7fadocHeodo
2021-12-09 12:39:2454450694083b6b9c2fc8c86d6398811f2c4ac6dab3e87faafd892813c9a23a01docHeodo
2021-12-09 12:11:53dcdf1d6c0f3863cb8d96185840e8a08edd2111eabd27720a6fc9019c0f0b7e91docHeodo
2021-12-09 12:01:493b8b1b6d67f96e2a8ffe58449d0360eb577a46dcedb376d01d0f925c3e6fe857docHeodo
2021-12-09 11:44:364aec6177778f357b4014f543abadd7fec5b5ac8df13e8a4c7c9dcfe1f4458aa1docHeodo
2021-12-09 11:32:085a020c775495fd172147770c6d358ebee40450aa5a0d04d4cdff89a358c27fffdocHeodo
2021-12-09 11:05:116f42b72cd9319ce52dc6e13ad170721e4529a8eae6eaa39b519edfc3f0a56ef0docHeodo
2021-12-09 10:50:30b686a2a27d4060e8449649268808f123dd6221556d3e38e515c9f518e607e648docHeodo
2021-12-09 10:26:35432f46caef1c57fcba7f2de3ddfb215a25f0c4e488158953d499b97a7813e808docHeodo
2021-12-09 10:18:597f43c252d0ed571cde61f6bcf49f8d2f8355425eb372db11373b799d41da9308docHeodo
2021-12-09 09:59:05cd1ea8af51f9a123bb2d33fdc34cfaae4db38a389f31d57a7acfac513eba59f3docHeodo
2021-12-09 09:51:39e4b74b7a1143cf9a19b71f201e7a6390aceada8b97a41ac9b5b8f7280f95161ddocHeodo
2021-12-09 09:39:1029e87923e29c788d8cb137f11271a8127ec002297114741eff5cba332f6433dedocHeodo
2021-12-09 09:13:47c9d72a364fc932e0640d75bf31c594c0b095b54ad6d551c12c07bdf369657c2edocHeodo
2021-12-09 08:50:13bbf2c0adc0daeed0d3a4f362e12631d3c5659695a8549e4035b7c9baf8cbe2badocHeodo
2021-12-09 08:38:351a5ddae23beb24dcc434b2fb006ca45239931c0c4a12d95f58d4f5059c169634docHeodo
2021-12-09 08:27:23205f5d06947e589c658f45ddb9ce1ea9f44e649eaa58399381761253b1f84343docHeodo
2021-12-09 03:05:4623675edd086358b68b73c2f2bb2a2836f9fc376f428a3cd804057e6e64f28d4adocHeodo
2021-12-09 02:20:4459b2d3031b08465bf98f55d0744f4ece332d09bb6b4cb53b636793e4152378a2docHeodo
2021-12-09 02:09:32035c2f86f6544996a52f4fe3d4f40e0b226fc0ea839636dca320cd7b44c0ee6edocHeodo
2021-12-09 01:40:170ac10c9194dc423e5827161416b0727c2ec83370c29909329c3efb374d606f06docHeodo
2021-12-09 01:24:0966356adc9d791563ff02cf99eda994eed62a671cdc9f62036f567bb5b5dacbb9doc Heodo
2021-12-01 18:31:3288348096ce2f00c83b5de584f98a7304208f0d25d541886a92b70e404835e8c7html  
2021-12-01 08:00:09e17d9994ef0198bb034d1e88ae2d8690c7386e7b408e5149c0bcbd7b2d79e773html  
2021-12-01 05:24:09e17d9994ef0198bb034d1e88ae2d8690c7386e7b408e5149c0bcbd7b2d79e773html  
2021-12-01 00:29:54e17d9994ef0198bb034d1e88ae2d8690c7386e7b408e5149c0bcbd7b2d79e773html  
2021-11-30 16:47:06e17d9994ef0198bb034d1e88ae2d8690c7386e7b408e5149c0bcbd7b2d79e773html