URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	kahata.lk
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-10-26 09:23:05 UTC
Total malware sites :	1
A record(s) observed :	7

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-12-29 05:40:58	162.214.110.131	server.smileysrilanka.com	Not listed	AS46606 UNIFIEDLAYER-AS-1	US	no
2020-10-31 13:51:41	138.128.174.10	leuvvo.com	Not listed	AS33182 DIMENOC	US	no
2020-10-28 13:00:18	172.67.167.135		Not listed	AS13335 CLOUDFLARENET	n/a	no
2020-10-26 09:23:18	34.71.165.202	202.165.71.34.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	US	no
2020-12-28 09:39:40	74.220.199.6	parking.bluehost.com	Not listed	AS46606 UNIFIEDLAYER-AS-1	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-10-26 09:23:18	https://kahata.lk/forgottenl/2ZCVSG8THJ7VHIB/Kd...	Offline	doc emotet epoch1 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-10-26 18:20:11	494b69d41cfb03a099041f1f8a9b94df29cc109ed9706f41afbdf31b5176a3a4	doc	Heodo
2020-10-26 17:46:06	d90ed0030c1275bb1ddd893fd29e73bdcd9ba1321e78c8a7525f30e5786c4431	doc	Heodo
2020-10-26 17:17:41	cf10c7d0f84a73aa5df5e36396d655dd4c5aab34723e4465fc328187d7dae754	doc	Heodo
2020-10-26 16:53:02	ab5a5093d4781106a29fbba85d9e9b11cd417d333cf923a06240da02a0e576f9	doc	Heodo
2020-10-26 14:17:02	cb7ba7a31e5fb8bae2b722fa5deb8ada4ba392a89068d2ae985850a4470f2e45	doc	Heodo
2020-10-26 13:53:40	5ed48d52b3361971f8fd0a9853c6a6850c0f012769a71d3f68e2808845ff1f09	doc	Heodo
2020-10-26 13:37:12	c4840ad377c3998eae6bcb0ef239f283ecbbb3c896e8004fd674d10234a00189	doc	Heodo
2020-10-26 13:27:16	6e10d04f75eb03084b24cc9c1d08bf78c573375fdf35af45724038245061e11c	doc	Heodo
2020-10-26 13:01:09	5bdfa0c917624bd7de8b3378352e10dfc48b33bd79c14f27cc5b3e9dfe1d1ed7	doc	Heodo
2020-10-26 12:40:39	bb93640e7a962d06bda3911de02f559229a6bff1cbe867bf5cd47c457b69064d	doc	Heodo
2020-10-26 12:25:49	6da9962dbe01ce3030f39f6b03578ce1952a166115cd43bca0a654924443de55	doc	Heodo
2020-10-26 12:19:05	95227869de8a78a3849b2366b12e97b15206afa1aa96bc293f009afb7906bfce	doc	Heodo
2020-10-26 11:58:40	fe14a4d7748bf0a3cce3ee87081d8deea4fd019340725af83271e36693b11389	doc	Heodo
2020-10-26 11:48:45	8fa6b4ff0a164073304538a362010521446ed8adc11963e56a59640c1e957e6e	doc	Heodo
2020-10-26 11:29:37	5eb5558d4c71465be427ddf9b051aa164d5ae1dd3b28ca9ff2d0e40ddc2d01d7	doc	Heodo
2020-10-26 11:15:31	7782e6d54b09e02d28229fa2c1269f117aba4f28b27044855cc3fe4414fb1f4f	doc	Heodo
2020-10-26 10:52:48	6d91807585909756c047d6afd49811e9e0b4ff3bd9f57329990dea30b6948dd0	doc	Heodo
2020-10-26 10:47:34	ff954aabba6a98a93a3e714a0043dc95e352d61ac86dc2b921ddcf1b5b7b2bb2	doc	Heodo
2020-10-26 10:34:26	cdaa8083ad98d4428f440e3983393841a1f33fd12ff7faad18b086ba96ada9e4	doc	Heodo
2020-10-26 10:18:26	396869e454b55a2adb6f0f3f13f4cc4720706003fc29e5d26be8dbafd129420c	doc	Heodo
2020-10-26 09:51:46	ee5922fedb91e7b89b4f1589d57a626eb370fb451659b95c6cd1a028c0643f80	doc	Heodo
2020-10-26 09:38:38	eae4719f917beb5858ab2c6234b7207c53b3742b1d8e86db08cf5a74e860bc2d	doc	Heodo
2020-10-26 09:23:17	cc893eeed02465c72ddc6837a915957f91f098a3ab183b0e72629bb49c2a3a11	doc	Heodo