URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	kuangdl.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2019-01-23 16:07:03 UTC
Total malware sites :	6
Online malware sites :	0 (0%)
Offline Malware sites :	6 (100%)
A record(s) observed :	11

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2019-08-26 13:54:21	198.54.117.197		Not listed	AS22612 NAMECHEAP-NET	US	no
2019-08-26 13:54:21	198.54.117.198		Not listed	AS22612 NAMECHEAP-NET	US	no
2019-08-26 13:54:21	198.54.117.199		Not listed	AS22612 NAMECHEAP-NET	US	no
2019-08-26 13:54:21	198.54.117.200		Not listed	AS22612 NAMECHEAP-NET	US	no
2019-08-21 15:12:48	107.174.139.195	107-174-139-195-host.colocrossing.com	Not listed	AS36352 AS-COLOCROSSING	US	no
2019-05-03 12:21:07	162.255.119.114		Not listed	AS22612 NAMECHEAP-NET	US	no
2019-05-01 23:26:12	104.28.26.127		Not listed	AS13335 CLOUDFLARENET	BR	no
2019-05-01 23:26:12	104.28.27.127		Not listed	AS13335 CLOUDFLARENET	IN	no
2019-01-23 16:07:06	204.44.95.43	204.44.95.43.static.quadranet.com	Not listed	AS203020 HostRoyale	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2019-05-26 20:41:31	http://kuangdl.com/hfjdksfhjds/fb.exe	Offline	exe	zbetcheckin
2019-05-01 23:26:12	http://kuangdl.com/1.exe	Offline		JayTHL
2019-02-27 10:03:43	http://kuangdl.com/azo.exe	Offline	exe	abuse_ch
2019-02-27 08:53:13	http://kuangdl.com/RAT_Protected.exe	Offline	AZORult exe	oppimaniac
2019-02-27 02:06:18	http://kuangdl.com/RFQ-1519121nd.doc	Offline	RTF	zbetcheckin
2019-01-23 16:07:06	http://kuangdl.com/iv.exe	Offline	exe	zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2019-05-01 23:26:12	d3ba4e18df45400392efa50bf09f09f5efdb8e58e6af0b9a334e85eeb74e4eca	exe
2019-02-27 10:32:15	7dfd2b5bdacffb4dda87fbd8c98c7ccabbca64899f2eb7e50dac7919af73d4f7	exe
2019-02-27 10:02:04	d2d44639abdd35a4bea1fd49b67f3c582faa46cec9d274de0cc4174670189aed	exe
2019-02-27 09:59:25	306f53b91de843290700fe96e445045fd87476245778f69846acb43632c6ddff	exe
2019-02-27 08:53:13	eee4d211bbffe896f0de21854cb5adac6e10c85016986efd260b45c7022d7521	exe	AZORult
2019-02-27 02:06:18	ca0343ed68c8e87026f5a656e668ba5aca8445caf19ccddfa14409866d1ab8a6	rtf
2019-01-23 16:07:06	784b0331b5a76c714062e9b6039c3217dbee69b809ac401310b7d8a593006d7d	exe