URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: naabayafoundation.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-12-23 03:49:33 UTC
Total malware sites :1
A record(s) observed :6

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-01-30 07:39:02 161.97.163.71vmi1318069.contaboserver.netNot listedAS51167 CONTABO- FRno
2021-02-11 07:33:46 198.54.117.197Not listedAS22612 NAMECHEAP-NET- USno
2021-02-11 07:33:46 198.54.117.198Not listedAS22612 NAMECHEAP-NET- USno
2021-02-11 07:33:46 198.54.117.199Not listedAS22612 NAMECHEAP-NET- USno
2021-02-11 07:33:46 198.54.117.200Not listedAS22612 NAMECHEAP-NET- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-12-23 03:49:46http://naabayafoundation.com/wp-includes/4lzYQ8...Offlinedoc emotet ext epoch2 heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-12-23 18:39:38768f3c029cc79ae21d7c732487da93f0e8c7d19a83737f9ce7e107e3adc9054cdocHeodo
2020-12-23 18:03:48bce89cd09be85ac647d834fb41cec14c3f695ddd559477288bd3853accb78258docHeodo
2020-12-23 16:40:320339f21444ef1ad35fc320d6879ea93b08d3aea53e25aaf3c5b841a2cdad855cdocHeodo
2020-12-23 15:37:3097c84b3491b00cb32b26ac143d29922be55d22afa87aa8e8b05006b50c34cf78docHeodo
2020-12-23 14:57:1994d804683ab1c9195ece193461e872d75b4835c2ee0fc73886dcca02a89463eddocHeodo
2020-12-23 14:28:08395efc9f98f81ccdcbfe6f9bffdd0e0ea5a2611e4542e43f1241c649713bf46ddocHeodo
2020-12-23 13:53:52036504550e6290a5bd9b8c67b1e7c22de77c5034c8b51865ebe1c1f8d4d339b0docHeodo
2020-12-23 13:26:29a7b7abb4d144045e42bf5e55e294d5b67850d11ccaac312734570ccca072851fdocHeodo
2020-12-23 13:01:57e9df17a69800a02dc5484a6fc60d1e9f19f7059ed8f0ef9c7847beecc39968a3docHeodo
2020-12-23 11:28:55cb4f991bd4228ec60ab6af1bab6193e68f4fadf3a30b226e7ee9cdfe893113a0docHeodo
2020-12-23 11:01:3849f4475b4c4b63927d612bfcfc707d4a25237813c727333fbcb42fec441757dcdocHeodo
2020-12-23 10:47:438e6a0c5576e309e8d8bc23d6103bc9d355ac27c354d69992c7fe8650d39e10b2docHeodo
2020-12-23 09:58:35d03bdc5b9f72efd01d6cb79bfb3a1a2abb46914234af6d3439f4879a1af9d35bdocHeodo
2020-12-23 09:35:04f989bb90fd752549af52988b47a9cf55638f97c26ea723457efd21cdab409da5docHeodo
2020-12-23 09:26:54318cf158cf886f17e7e947feaaf989f25e514c91bec35e9dcca2a4f2ef4baa95docHeodo
2020-12-23 09:12:43a8a5d52ccfe6f7bcc1ef7c99087ec90083ea7e3851e760b0653bd4189d54bc9edocHeodo
2020-12-23 08:39:02383bbcf6e40f5db6ccf0a07f33eb55614c381daaae647ebf0ed8db148d4ab7fbdocHeodo
2020-12-23 08:19:59f0a4ee510f94aaef257225740c62c4a65b2da3ced23ca6b1513b9fbe11fd3cd8docHeodo
2020-12-23 08:01:3760029fa95c17ba479a9ed424abc3a3f684111997424360741b67de478d0bcd4ddocHeodo
2020-12-23 07:52:421b1cb32d2f4a43f7bd1699dd46b55f8deed32e31065c9f13c69f2610b96d41c6docHeodo
2020-12-23 07:36:28a59e3318597fa65b37e597175045690d391ef038c7e58869d71ba50ab499cc64docHeodo
2020-12-23 05:09:5764df2f4241becefb0876d62be5908b4d62620e2aeb97828cb2819d952d106f11docHeodo