URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	luchies.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2019-06-11 18:31:02 UTC
Total malware sites :	3
Online malware sites :	0 (0%)
Offline Malware sites :	3 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2019-06-11 18:31:03	77.74.54.129	2.swh8.zylon.net	Not listed	AS8312 ZYLON-AS	NL	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-08-12 14:32:07	http://luchies.com/2K0ku_p3GkCgKzz_sector/97yo1...	Offline	doc emotet epoch1 heodo	spamhaus
2020-07-30 12:57:07	http://luchies.com/scripts_index/attachments/df...	Offline	doc emotet epoch2 heodo	Cryptolaemus1
2019-06-11 18:31:03	http://luchies.com/11-Jun-2019_e762a23d.xls	Offline	xls	Anonymous

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-08-12 14:32:07	943cc9e88fac99177ed6673c09f8609dc97f07ae2cc4b2cd8d0923f2fdc20b1c	doc	Heodo
2020-07-30 12:57:07	2b1348c02f7399c92e368a60d71bb36361928f1b0ce7e6ea18a2414dc8c36588	doc	Heodo
2019-06-11 18:31:03	751a31e4705a4d0ccf08590ba4a1a50096651b6a045a6f5462716cff4d224c82	doc