URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	kingcone.ca
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-08-12 23:27:02 UTC
Total malware sites :	1
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-30 23:16:16	151.101.2.159		Not listed	AS54113 FASTLY	US	yes
2020-08-12 23:27:03	148.72.78.140	140.78.72.148.host.secureserver.net	Not listed	AS398101 GO-DADDY-COM-LLC	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-08-12 23:27:03	http://kingcone.ca/wpps-backup-core/QZCtC/	Offline	doc emotet epoch3 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-08-13 14:46:28	f392265c903b4cad60edb998054c18fcb2cfdfe7e9e068ad6119545be62062e6	doc	Heodo
2020-08-13 14:14:11	8d7640adaf6a576ce6484be49d372141feaf9dd38837bf8da72271ce7ae7e127	doc	Heodo
2020-08-13 13:51:55	59c83ecca1095f3f5a073bdc09552cb7ed9b230dfdc93dee59f18e2a38e849ea	doc	Heodo
2020-08-13 13:24:10	eeb469414b6509fdd0d204f306b29d55021e2de94608991794b5f59c2add1e07	doc	Heodo
2020-08-13 12:11:06	3a957d2e54e658d116c346dcaf0dab5ecaec5e60bf7125b32087746f27cbe35f	doc	Heodo
2020-08-13 11:52:56	86c0cc8d6327a374689e50a0d8bc139919ce31d297cce113a4e93bd78b8cd8a0	doc	Heodo
2020-08-13 11:22:44	c30a4592cd8e7e2a97b2ee19d0061553ccbd7cd1b7e2af8bca2dd6913a1bccb5	doc	Heodo
2020-08-13 10:56:46	d9d595a78d3bf3bab0e65cd5eb3a71ba4bb95ed7850e84862d01930ceefd1c35	doc	Heodo
2020-08-13 10:33:41	e9fe379c503723a5883c5b4b3e4227a3a35c0fd4cec4716f859a2f981f6eb732	doc	Heodo
2020-08-13 10:01:48	147ff91d2f978f8abd623f6a25e0599903cb53c9a890255e3fcede1cb0fbc8da	doc	Heodo
2020-08-13 09:32:01	620d84fae4b584f528eb0044177ac950380d8c41d764dc1615871a80ecdc4ae7	doc	Heodo
2020-08-13 09:12:12	27d0c48e8224b8b6607cefeec92b1672e7d61628e58bf2574cb30f1fc9518d2f	doc	Heodo
2020-08-13 07:44:15	5478e4974b64a8471ba220eb079a7dec82a9ceba893c8d56e165235a8df47f25	doc	Heodo
2020-08-13 06:10:13	e1b7a11726c385bcad71dfe791b165802cc625ceaf2f1550a5a10f5f222ea90d	doc	Heodo
2020-08-13 04:38:00	10531f315432369a9c0706bc00ac1405445316044a9ec07b03de6606a6a9f9fb	doc	Heodo
2020-08-13 04:20:19	cd0aaf460944efd580dcc39bc1dd0460f88f2c3c17e303694ffa1eae5020eab2	doc	Heodo
2020-08-13 04:01:17	fddf4cab73e6e2ff5c40c7fee09d52d5eb903e6bd17ad77aa292c6ded707f394	doc	Heodo
2020-08-13 03:46:10	bd379f0e0dcc9c8c75d70a99df9f95dc56d70fd92cbf446a21dcb7b22ded59f9	doc	Heodo
2020-08-13 02:13:50	97e52709f1f9169fb2a3d0cfc7852f811d067999ed1bdc700c6b66bc7dc23765	doc	Heodo
2020-08-13 00:42:04	e26bbe184e43c8251aee307aa6d392971f7facdda4ce50f9733a966dc7905ff2	doc	Heodo
2020-08-12 23:27:03	b439b2e90f88ae55ec1a481faa17242107321fa3b55ecb53369b8d0a5113db17	doc	Heodo