URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: moraniz.co.il
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-07-22 04:57:03 UTC
Total malware sites :18
Online malware sites :0 (0%)
Offline Malware sites :18 (100%)
A record(s) observed :5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-02-25 11:13:05 88.218.117.47s-vps-il-636.upress.ioNot listedAS209622 upress-drb- ILno
2021-01-13 20:13:29 104.21.23.32Not listedAS13335 CLOUDFLARENETn/ano
2020-07-22 04:57:05 172.67.208.121Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-01-13 23:31:03https://moraniz.co.il/wp-content/JyBIh2c20PCYrh...Offlinedoc emotet ext epoch2 heodo ext Cryptolaemus1
2021-01-04 23:02:03https://moraniz.co.il/wp-content/inf/Offlineemotet ext epoch3 exe Cryptolaemus1
2020-12-30 02:48:05https://moraniz.co.il/wp-content/180MykKQ8ESTLw...Offlinedoc emotet ext epoch2 heodo ext Cryptolaemus1
2020-12-21 16:33:05https://moraniz.co.il/wp-content/ovFoPY4G24csbG...Offlinedoc emotet ext epoch2 heodo ext zbetcheckin
2020-10-27 14:07:05https://moraniz.co.il/wp-content/public/YykKeJWZ/Offlinedoc emotet ext epoch3 heodo ext Cryptolaemus1
2020-10-22 15:51:05https://moraniz.co.il/wp-content/Overview/uiNSp...Offlinedoc emotet ext epoch1 heodo ext Cryptolaemus1
2020-10-19 10:40:07https://moraniz.co.il/wp-content/report/gl2tamny/Offlinedoc emotet ext epoch2 heodo ext cocaman
2020-09-28 12:51:34https://moraniz.co.il/wp-content/public/Selvgnz...Offlinedoc emotet ext epoch1 heodo ext Cryptolaemus1
2020-09-21 12:33:12https://moraniz.co.il/wp-content/879lgVo/Offlineemotet ext epoch3 exe heodo ext Cryptolaemus1
2020-09-18 15:49:03https://moraniz.co.il/wp-content/eTrac/8tuUwn65...Offlinedoc emotet ext epoch1 heodo ext Cryptolaemus1
2020-09-16 15:36:04https://moraniz.co.il/wp-content/Scan/az7jlrtdz...Offlinedoc emotet ext epoch1 heodo ext spamhaus
2020-08-24 09:18:34https://moraniz.co.il/wp-content/72734409736/Ku/Offlinedoc emotet ext epoch3 heodo ext Cryptolaemus1
2020-08-21 16:10:34https://moraniz.co.il/wp-content/INC/hdt32d8355...Offlinedoc emotet ext epoch2 heodo ext spamhaus
2020-08-19 08:50:11https://moraniz.co.il/wp-content/attachments/Offlinedoc emotet ext epoch2 heodo ext spamhaus
2020-08-12 08:11:04https://moraniz.co.il/wp-content/invoice/zsnkgr...Offlinedoc emotet ext epoch2 heodo ext spamhaus
2020-08-10 07:57:33https://moraniz.co.il/wp-content/docs/Offlinedoc emotet ext epoch2 heodo ext spamhaus
2020-08-07 20:43:03https://moraniz.co.il/wp-content/swift/y2h1nrqqh9/Offlinedoc emotet ext epoch2 heodo ext Quakbot ext spamhaus
2020-07-22 04:57:05https://moraniz.co.il/wp-content/mYrTjVJXg/Offlinedoc emotet ext epoch3 ZLoader ext TrappmanRhett

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2021-01-14 00:50:18841f665e7fa0dafb08a148c375fc49b0594eecdf01d44cc9b7ea8e6c6b5fe024docHeodo
2021-01-04 23:48:518bfa4975bb6e9271443b8cff6fc6193caa2d12fa08bb8d23252f5e9dd69c7adfdll  
2021-01-04 23:34:29f3bb9f2709c7540b30511de9115091f9c8dd5f2e07d836d9fb0e2fbbe1d6d719dll  
2021-01-04 23:18:1239d2ec71bf61010459051f1abc25df0f310a63897a17c78be332f7559999b61adll  
2020-12-30 02:48:05b418b8729a429df3b5029222db61b762411c34971aa6c76b3fed3d12146a984ddocHeodo
2020-12-21 16:49:197ee01a4978b804b8e176bbc9f7eea70279d41256589cc11e1e4ded7b9f0b4cf3docHeodo
2020-12-21 16:33:05ffd9679a4f59308c0fd56928d63e6a320a692b0bbddb19164230e3bd14d013b9docHeodo
2020-10-27 14:07:05799de3c0b3c57093a424c4e80e471b26b7f7d121e6e4b75a250304ed59ab9d6fdocHeodo
2020-10-22 17:51:299473776ba71d7fb4c1ce5c3d5d0b87d00fc361ae37fd75fd5b7375f30b9c3107docHeodo
2020-10-22 17:28:24b02a934a10f405b76ee0aaa46e19847d9ecf1718d49ef72233e83d4c5468a626docHeodo
2020-10-22 17:08:3800844bafd3dc1431f9661d11e58935bcce4d3b622801cf77904fa51330a84b85docHeodo
2020-10-22 16:43:25d4d6ebf49d6bac5195321c922c5c9ea2b7632f88adaedd8c54a00d98578ff2dfdocHeodo
2020-10-22 16:26:51f5ea3c1fdc14d93a641aed549436c491220ccd2571f6bcc627d23ff0c5e37b1ddocHeodo
2020-10-22 15:51:0533d8282536536c651d28cb08401045d2a01d13e2606369788ecf8ffe2136a4b6doc Heodo
2020-10-19 10:53:338780053d1e68259563c48118551444e53c11fce44df152b8972395360d886478docHeodo
2020-10-19 10:40:07dcf80e8a25b494d2145d4a432b9d83ec9e5beedcddc5bebcdbc9c98935017482docHeodo
2020-09-28 13:10:2666f8513c73d539502d24299e8e516103baa2c1d3bdb23ccba8e29861463f211bdocHeodo
2020-09-28 12:51:336bf0c29b676a14ea5bce84f7837e298ea09f7d14c0856ff46639e8e418131888docHeodo
2020-09-21 13:43:352c1881a067e51370c17e6f89606d9510c27ef368e49e01fd51d287901a8ce8a4exe Heodo
2020-09-21 13:31:34bedaa1181a950c960fd296f410c7eed49dd9f7c25877692a752ebc6e88d53f6dexe Heodo
2020-09-21 13:12:0333dcc60f4c5ee3d521d0b90fbc838d8ee0d40eda7181dbbf9570016cc2902621exe Heodo
2020-09-21 12:55:335380848a8d20ba96a214e33f1ba82d87cb1b53578b76a0830c9a94e76704f49fexe Heodo
2020-09-21 12:33:12d1f39d495fa25a7fd77fac93e4c1a4848281b8571e0f57d199293a9fa3fd116dexeHeodo
2020-09-18 17:24:1039ab2007df6e588e7a2eed34c24f22b1584c9fde9877b59dd8b7441962940d38docHeodo
2020-09-18 16:55:540afb7c179025ddfba82f253e521171894baccb916aadce3f0c6cd8014f706940docHeodo
2020-09-18 16:21:29c1c7c1c836f1ba36f773936527d4d7afc53a36b7d4f5c191a08fa9b84c2af7c6docHeodo
2020-09-18 16:07:34c150a6907d073e3342215712f5898b7b4f1bbbd09664f2163c973bbcae0e2c40docHeodo
2020-09-18 15:49:03f29f9e052c3a007bc95c6c8a2b6463b7c5c439a993ade91294d4a0fa6cd37ef0docHeodo
2020-09-16 16:27:551eec30220413e90b375f35ef61ffac96a2ee5935691c294537f5813892568340docHeodo
2020-09-16 16:05:33e882979684968578df7329a0032967c88b2f999b1ea55833f8637259b4124accdocHeodo
2020-09-16 15:36:045d14e239e0b682a017dbf08451448be3d2d22cc13571b0fd1915d0a2610e8d80docHeodo
2020-08-24 09:25:494e8f55d2574a24de96d673eed255197559109992b7b9a7c79376d546c6133526docHeodo
2020-08-24 09:18:34246f7645c4a062f0f47817e628539b1a1d5cf8bdfbb1b4e9d436f186315aa63cdoc Heodo
2020-08-21 19:50:31c23c13d2d134c96634d942166257baa97b35c635a000d8bc2f654fdbd6a86e4adocHeodo
2020-08-21 18:18:46e3a1db9625e95bab4a009a18804f0e89bb1233d33af7e255b6e304a51b582450docHeodo
2020-08-21 18:01:1248b6551e86b81eed2eee275cf1d833e44580745dc6f578ee3fe8c139e0c205d7docHeodo
2020-08-21 17:55:58c344af97c40ba39fe3b63c36dffa41cc3d2d51a8443aa1e04d06d55f219b5e89docHeodo
2020-08-21 16:30:3739fdd6312e1018b87d627a2e5a95f4aaacaa51b3c415a3fd8e3fe1c924355ee1docHeodo
2020-08-21 16:10:3490fc79dd55c6c29a2e6762ddaa72098f61ef09ecd37fa51a69f0d8b59e4cbdd2docHeodo
2020-08-19 09:03:36409122eb219c5db47542b67fd19278d68e792c7b5a9d4d221a3ba140e0bfd947docHeodo
2020-08-19 08:50:11eabb0d96b6305e12e9b8530211c58a20acd991bb00a802156a1cf60c83d54cbddocHeodo
2020-08-12 08:13:19a56d5701d53cd34f450eb0a957c6f5c0716a835bc9c9070e315e22f71889b72bdocHeodo
2020-08-12 08:11:040160fb33a3b7b03284dceff60e218282693ead61eeef4d2f8bd7387b09cf51c6docHeodo
2020-08-10 12:21:0138aec6035b9dc07a41f0b344d8a84b416a54ac964178c2a9a23e139287ffceb8doc Heodo
2020-08-10 11:34:353279305c76025d9335931768dfb6a02880eebae4e37850754d311dbcb3052bd8doc Heodo
2020-08-10 11:02:34407736ca4a4bdab4ea158b768aacc22239f4c364a9a0911bdf0531d5b6857456doc Heodo
2020-08-10 10:46:200a635c6914b1d696e249b62eda3f0fa60f54bbc2c24939308a6f45b0a601796fdoc Heodo
2020-08-10 10:18:22df1f8dc5bdb2922872307a97d663e7a17bf750c84e97d3a48d9f92422a7111b9doc Heodo
2020-08-10 10:05:40b1a486493dfaccd3d95b45d85742514fbe0a6e13162a5caee9e160c8333f19c5doc Heodo
2020-08-10 09:48:294ef3be78e6d5e7488bfec47d05dcb528ae781bbfcccf27d5775eabaf583ec691doc Heodo
2020-08-10 09:21:05823905fd21de95f90cb999a5c563bfde685d25fd1354b031ccda7b5eddfb0828doc Heodo
2020-08-10 08:46:5600c383eacd7b63d195a48209dcf50a472af7a4691c0282eae92de08d0a1d44eedoc Heodo
2020-08-10 08:26:496be0d7b3de87cd34b500d16c52771c2f1058f7a9bc2185e7f757cc577419bc00doc Heodo
2020-08-10 07:57:333ed0591ff0b06363dd4747fd9c7c2ec4b33d7c1a73fbef3cc6d86e9980d7fcecdoc Heodo
2020-08-07 20:43:03867cc2d98b2d4af8647e4f88dd6479a9dbd032075b4e1928b3015563c9f27910doc QuakBot
2020-07-22 04:57:0402c7fd8ed2ff395eb8c7eb3caca1e0cec299f4db7480e6d19829069ce541bc7ddocZLoader