URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	immigrationquestion.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-09-23 22:10:33 UTC
Total malware sites :	4
Online malware sites :	0 (0%)
Offline Malware sites :	4 (100%)
A record(s) observed :	6

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	SBL	ASN	Country	Active?
2025-04-27 09:29:55	68.183.58.84	Not listed	AS14061 DIGITALOCEAN-ASN	US	yes
2025-11-06 19:25:44	162.159.140.166	Not listed	AS13335 CLOUDFLARENET	n/a	no
2021-01-15 03:42:19	104.21.68.61	Not listed	AS13335 CLOUDFLARENET	n/a	no
2020-09-23 22:10:34	172.67.187.195	Not listed	AS13335 CLOUDFLARENET	n/a	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-09-28 19:42:05	http://immigrationquestion.com/3x_beast/browse/...	Offline	doc emotet epoch1	Cryptolaemus1
2020-09-28 14:32:52	https://immigrationquestion.com/3x_beast/browse...	Offline	doc emotet epoch1 heodo	Cryptolaemus1
2020-09-28 09:30:35	https://immigrationquestion.com//3x_beast/brows...	Offline	doc emotet epoch1 heodo	Cryptolaemus1
2020-09-23 22:10:35	http://immigrationquestion.com/3x_beast/Ty9/	Offline	emotet epoch1 exe	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-09-28 14:56:49	08a4f15bc80d74cee9e99f6f8abffab083d993aeb388fdcc87491915139de532	doc	Heodo
2020-09-28 14:41:00	8ed37594d6584e0799753a477d07666bf837b8b655d82f4e66efd1b236209e5f	doc	Heodo
2020-09-28 14:32:52	05d211a76b7dfa7c4cdd3b5865e73248164464f5a97c5b3b51e0b6e06fc6fda9	doc	Heodo
2020-09-28 13:11:21	b707a42e65477c4ac5c370c7edab61f2c871f644d3929b80f820db0ab5588ee4	doc	Heodo
2020-09-28 12:42:59	7e6fc690af5421734b9e41997457b99056bf254674b8fc8d3d60b3c5abd27128	doc	Heodo
2020-09-28 12:24:36	2e750787b6970dfb2f978fee94ed58e74e0ccabc4c4f0e64e4965617f46999f3	doc	Heodo
2020-09-28 12:18:03	91646523a0f07719b33e85b40459fc5b5f963597e0c28b080523878c5d4f828c	doc	Heodo
2020-09-28 11:55:35	0e0e2e6f157eb18a7bc55e47cd2f995c5ae267df1f78d53f791d8ac40bac84d0	doc	Heodo
2020-09-28 11:35:05	77641e6ce42f0cfb1e07679d1910a7c600c2a36aacb8c3839596271c047dc0cc	doc	Heodo
2020-09-28 11:18:26	6eda12caeac224d7c0159af6d065da67699156e956daaa05d13b8f5b965d2649	doc	Heodo
2020-09-28 11:08:07	7927857c4b1dcec9436a825b84c90105e6ac82cc863b74f8aa821e36645fbddf	doc	Heodo
2020-09-28 10:45:10	2be4930444a8fa58818baa0167214374b9bf0fe31f99d57f232bea1aa0e2daa8	doc	Heodo
2020-09-28 10:36:48	50bef11268e4a6c5d13e83800177e1957fad3d991f8ceea729166bac747f69fa	doc	Heodo
2020-09-28 10:23:20	fa0f46641cea0c854f742cb2adcb3ccff954e2a14294e82a132640ae84267bb8	doc	Heodo
2020-09-28 09:58:44	2065fd11d2a063b505662e9a355469b1f6cd3e83ac8f3cc59a7fcfd1bdb6b4f0	doc	Heodo
2020-09-28 09:53:45	496411399a286edad62ecc5b25c4d2da4c6e10e7c521d21f46ed7600d3eccaa0	doc	Heodo
2020-09-28 09:30:35	984e84ac950ad50b540bfd1610b17d5c9c8b78c09f0645205575be175b5757cc	doc	Heodo