URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	mekund.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-06-23 13:06:35 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-06-23 13:06:37	84.38.180.33	lucia09.adminsoffit.cloud	Not listed	AS49505 SELECTEL	RU	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-06-23 13:06:37	http://mekund.com/mkcxskjd.exe	Offline	Dridex exe	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-06-23 16:36:50	0534cae2c207ceadaf65549e06cfea182d3e273005a71a7bbe0e75857e4173e8	exe
2020-06-23 15:45:21	e0cbb8b2273513a3e96ab7f29afa2b05c24e497bea467a869089c8e25fb95068	exe
2020-06-23 15:16:36	ec5c427c6ebf8bd614eea2346509bad3b37f0a090bd2217a1a11835dd9df2562	exe
2020-06-23 14:50:23	9122fe00cd6923c208294ac018d614fdfd07b910ac029f616686a6c7461168ea	exe
2020-06-23 13:56:32	b4f32ff1f6a1a6db2497781d64c19868972dbc35be7ff881b63771c96a87a054	exe	Dridex
2020-06-23 13:45:13	b65a639e435aa80ece4326d85052f980a9992788d4b9b7fb94141d7e82ddc960	exe	Dridex
2020-06-23 13:06:36	d6ddd24040b1f1ae7f42c84ee15f52efa36054e7ed4bb47d177d6b5108c9e5f6	exe	Dridex