URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	lojamalwee.com.br
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-01-06 04:56:03 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2021-01-06 04:56:04	104.248.115.89		Not listed	AS14061 DIGITALOCEAN-ASN	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-01-06 04:56:04	https://lojamalwee.com.br/wp-admin/k9vtvdNS/	Offline	doc emotet epoch2 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2021-01-06 06:35:45	5cdeb766f37fabf36c2ba04b505360b64db16bba5291a143a43a631460461122	doc	Heodo
2021-01-06 06:25:03	58001f5ec36572e012d9fc92f1023b65d43d242a1149320dbe68809be7c31e42	doc	Heodo
2021-01-06 06:07:16	1a2240a1b93c241221a8801762613ffcdbe8840b783abbbbf0de723ca86d4f95	doc	Heodo
2021-01-06 05:45:41	0d2300b21335b3970387211b786e26ea564160d0c1e12fa35df520811e33455b	doc	Heodo
2021-01-06 05:32:14	648e5645035a4f1fcf9eadf628bc815abdad364c4921ba6e08864c154685af88	doc	Heodo
2021-01-06 05:17:57	6357ca03d61fbda5c6bb4c9d077bfc05fde8629d6e1a780c1c450d30837a660d	doc	Heodo
2021-01-06 05:04:41	0de801b837a312d3b8f2261ee67cc0aed27efeaf1bdb8caa282dd4efaa314b96	doc	Heodo
2021-01-06 04:56:04	1090c1c45565f035052f990a44c78e9c8f1f64175646a9c18053300e09fbb120	doc	Heodo