URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	media.euskadigital.eus
Domain registrar:	10dencehispahard
Domain registration date:	2017-03-14 11:39:13 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-01-18 13:46:04 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	17

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-28 10:34:39	212.227.85.120	ip212-227-85-120.pbiaas.com	Not listed	AS8560 IONOS-AS	ES	yes
2023-05-22 13:02:56	79.116.30.202	79-116-30-202.digimobil.es	Not listed	AS57269 DIGISPAINTELECOM	ES	no
2023-02-26 10:31:20	79.116.152.58	79-116-152-58.digimobil.es	Not listed	AS57269 DIGISPAINTELECOM	ES	no
2023-01-05 08:31:16	79.116.53.161	79-116-53-161.digimobil.es	Not listed	AS57269 DIGISPAINTELECOM	ES	no
2022-12-23 18:00:57	79.116.52.18	79-116-52-18.digimobil.es	Not listed	AS57269 DIGISPAINTELECOM	ES	no
2022-11-17 05:20:17	188.26.207.234	188-26-207-234.digimobil.es	Not listed	AS57269 DIGISPAINTELECOM	ES	no
2022-10-03 19:15:43	79.116.42.134	79-116-42-134.digimobil.es	Not listed	AS57269 DIGISPAINTELECOM	ES	no
2022-07-14 19:40:22	188.26.204.114	188-26-204-114.digimobil.es	Not listed	AS57269 DIGISPAINTELECOM	ES	no
2022-06-23 16:20:58	79.116.53.197	79-116-53-197.digimobil.es	Not listed	AS57269 DIGISPAINTELECOM	ES	no
2022-03-24 17:49:02	79.116.23.134	79-116-23-134.digimobil.es	Not listed	AS57269 DIGISPAINTELECOM	ES	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-01-18 13:46:05	https://media.euskadigital.eus/assets/z8L/	Offline	emotet epoch4 redir-doc xls	Cryptolaemus1
2022-01-18 13:46:05	https://media.euskadigital.eus/assets/z8L/?i=1	Offline	doc emotet epoch4 heodo SilentBuilder	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2022-01-18 14:28:14	7f8c95e3849529c50f1972686ebd92fbc0223cbd1df540b3f68ed40894ecaaf9	xls		Heodo
2022-01-18 13:59:06	722ded1cbcabef90968fdf9be67676481bac9dd847289d7f23e7625a66087723	xls		SilentBuilder
2022-01-18 13:46:05	e8c201e598dffb072cfec5a0c99bd0c62911db9d15b80cfc0268dad6eb0cf07d	html
2022-01-18 13:46:05	8808bca9d3fe1c1b081455e20513352831ddfbe9b65a42171b8754c2d8931e97	xls		Heodo