URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	nikolas.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2018-12-07 16:09:01 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2018-12-07 16:09:03	162.241.217.219	box5514.bluehost.com	Not listed	AS31898 ORACLE-BMC-31898	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2019-04-11 17:03:05	http://nikolas.com/wp-content/lFHqk-eM4EEjV6ojP...	Offline	doc emotet epoch1 heodo	Cryptolaemus1
2018-12-07 16:09:03	http://nikolas.com/IRS.GOV/IRS-Transcript-treas...	Offline	doc emotet heodo	malware_traffic

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2019-04-11 22:26:09	b6cfe1983ff1d2fb772c8e68fcbd69f805d5b488ded023a6c13de39965af95f6	js	Heodo
2019-04-11 22:04:17	7ca4540e7f5caf44b46378c7861c9403373c7b752034f5ef7d4bc06d2c1e28fa	doc	Heodo
2019-04-11 21:45:17	e2a11a63b4671b0f5f73973dd064e0bac6e5b79ccafef064488da5a3b885146d	doc	Heodo
2019-04-11 21:33:15	7712ca3ce8eaafbec596710a4164a651155ec63070955212b6c770edb7f13c1a	doc	Heodo
2019-04-11 21:01:24	4cbf340b5b3e21206fcdca35016b0d5045f2c509f982961585407c451ae2a238	doc	Heodo
2019-04-11 20:30:16	3501e4e4c86e7f0acf77d18b68f9adce40422224d04d148e27ed02578df76c92	doc	Heodo
2019-04-11 19:58:22	a5ee1d697ca24e67bbd9dead396d2fd94f3a785bd8f9969ce51e5a8cb8fe6bbc	doc	Heodo
2019-04-11 19:27:08	b1a6afc983ad35e8c5cae8e6ef315e43f6555983a863c141872698c9135959a6	doc	Heodo
2019-04-11 19:12:10	d194ff91d5c737ca5fb69b24e3118a426e54b65e968824691eb9bd463f6cc4d1	doc	Heodo
2019-04-11 19:04:19	713f84fc17d6c37720e731f364ff47c9dee7f3142872a24d35f81b86973b3b1f	doc	Heodo
2019-04-11 18:48:07	181915f7fa382ade554714cab6f2819e9c9ff984d466fed79d1feab803cf50e7	doc	Heodo
2019-04-11 18:42:08	ad23b779d4003171a8b5780144004d88e5b01c16e74b2d6ec91c2805f57e6da7	doc	Heodo
2019-04-11 18:31:12	7184986780a4c1f14b49e53f064518f0c5c12b47d12a5ad687a0df344b6188f4	doc	Heodo
2019-04-11 18:22:18	48e3f8e6c681906cd7761367509c928ac0baef0060568a9bd5bb5abe3f84f30b	doc	Heodo
2019-04-11 17:50:18	8a1a1d1ca48c3886c2dd482907ce8981495899d7e19bb0c2e0b873bcc7e62ec5	doc	Heodo
2019-04-11 17:18:18	91eb83248be3b3e24d6cdf4eee9eb181c117bd051d7845742a166f5654e1fe49	doc	Heodo
2019-04-11 17:03:04	778799ba6d4bd50f09c563b1a2a92fe0bc08e451a8440f0d05d3f5d84bf0114f	doc	Heodo