URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	nhatcuong.xyz
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-10-26 17:51:06 UTC
Total malware sites :	3
Online malware sites :	0 (0%)
Offline Malware sites :	3 (100%)
A record(s) observed :	4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2021-01-13 18:16:35	104.21.21.204		Not listed	AS13335 CLOUDFLARENET	n/a	no
2020-10-26 17:51:10	172.67.200.82		Not listed	AS13335 CLOUDFLARENET	n/a	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-10-29 18:58:09	http://nhatcuong.xyz/cummins-onan/Overview/uGGl...	Offline	doc emotet epoch1	Cryptolaemus1
2020-10-29 00:09:05	https://nhatcuong.xyz/cummins-onan/Overview/uGG...	Offline	doc emotet epoch1 heodo	Cryptolaemus1
2020-10-26 17:51:10	https://nhatcuong.xyz/wp-content/Szx94QD/	Offline	emotet epoch2 exe heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-10-29 06:05:43	d06c24a09106daa1032a15c8cff9c4eb399881b463ccefee9a51744197fed53c	doc	Heodo
2020-10-29 05:32:40	6dd8b8f7c8acd972e6fa7b0ebe0452b0f6ccb671e5c4ba12d156e8d376a542d2	doc	Heodo
2020-10-29 05:16:41	4f2f8a8fef03110fe0af0be6dda05249f96b6a915b1c7d1a9fcaa7c9f79ce288	doc	Heodo
2020-10-29 04:52:39	41ad376a9521ae341bd5a60e9084150f0745b92fb26a5b44001e11579d180316	doc	Heodo
2020-10-29 04:28:37	b9275b6099be967ff38eaab7ab232ce6ec1f903fc98fda4de1f2c057d3f85f70	doc	Heodo
2020-10-29 04:01:55	b213e87540cb4152478d07f8211e8c5210925f974e403ec713ce5e5f9f4eadf1	doc	Heodo
2020-10-29 03:50:50	192e7f20388641538ab4e7e243d6c81dfd520107bc8854005b2096b31981a624	doc	Heodo
2020-10-29 03:27:40	772b14f20e166cb1f21d538a8d1dd0c81dc22a2907ca07f299a1c90053c25d5e	doc	Heodo
2020-10-29 02:53:38	230145518bd1bee6679f4ebc0546c94c0e1b45c47e78117a0e523ada0cf39ac5	doc	Heodo
2020-10-29 02:40:10	9a82999019fd20e3e31fabe6fd23e85218b9c833d75b08c3ab428710b9de9ff3	doc	Heodo
2020-10-29 02:24:17	01832091bf1c1ecee3623274c0a9d173d305fb1b0f1059cafa86eab41961f498	doc	Heodo
2020-10-29 01:47:27	754b3e1caf1ff6a8d35d59b3ba921a8ac224f6118520865d02140c0277724a73	doc	Heodo
2020-10-29 01:17:04	baa7a5c8cd03cdbad3f018274a9ce821b056f2d7bbb6bdbd6285485e3b56338e	doc	Heodo
2020-10-29 01:15:09	1057624fd741f170fc4a05bb538ab9a3d863abf1ca31d713b1d13cd57a03e8c4	doc	Heodo
2020-10-29 00:45:23	c70d77f7786f19c28c6d7b174832b42fc69d47808b6aa5ee197250ab24b32cba	doc	Heodo
2020-10-29 00:34:56	f8b55420ef4b3052e8b71f5a228e16219e3f6372d19e8c3e175e8fac7482824e	doc	Heodo
2020-10-29 00:09:05	f49637e7159ed3b8f29519c003193985c2d5de0638a9386d637a2e62a8910160	doc	Heodo
2020-10-26 20:10:02	4bee4960989682523426cb7bfa389518370ccc51095164cf410fe265eef4c2f1	exe	Heodo
2020-10-26 19:45:18	209e5d61901dcef7e693f1bbbf4a0ccf2aed282dd41d03acbf67420fe00b8b65	exe	Heodo
2020-10-26 19:38:48	54b286923a9675550a9941fed418b0ab2dddefc148fee6b1e6ab1344145ac2c3	exe	Heodo
2020-10-26 19:01:30	b4faf6fecc6114d59116f6d634270ba47eb1bee4143ba921705b88f65c90c609	exe	Heodo
2020-10-26 18:40:40	b7e2318502c6d0b4c5759480e639a3a4c8726acdcc30a6199f7f467fadeef113	exe	Heodo
2020-10-26 18:23:12	7c387eb30ee8e37cc80f8fe655cae67a392ea069ae938e06b7274c886ee0f1da	exe	Heodo
2020-10-26 17:51:09	0f4d8160c7889958a6f191858f07dadd4220aaa4b6e5733f18e4044a31f075d7	exe	Heodo