URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	nitroswap.com
Domain registrar:	Namecheap
Domain registration date:	2017-09-05 14:33:19 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-01-19 22:06:03 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-01-19 22:06:06	104.21.63.188		Not listed	AS13335 CLOUDFLARENET	n/a	yes
2022-01-19 22:06:06	172.67.149.84		Not listed	AS13335 CLOUDFLARENET	n/a	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-01-19 22:06:06	http://nitroswap.com/author/EJ/	Offline	emotet epoch4 redir-doc	Cryptolaemus1
2022-01-19 22:06:06	http://nitroswap.com/author/EJ/?i=1	Offline	doc emotet epoch4 heodo SilentBuilder	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-01-20 08:38:59	a1d4e9c497ec94e9c1182741b7096c47396c0057014747c17e618e82538eae72	xls	Heodo
2022-01-20 06:13:31	ceafd90b9d8a1fa4ba9b8f81f1c3b138570c8768b75ac1ef0d3bb126cc6d497c	xls	Heodo
2022-01-20 06:00:11	0e985904fc4e727bcdcb2cb67a0a1c9cdb6e659de8ceef36f331f05ccf81e5fe	xls	Heodo
2022-01-20 05:52:27	6802d962671c5de15753c1ed53a75e0993691d66b44426226d8c24ad5b667664	xls	Heodo
2022-01-20 05:34:25	aec8e11077b3155936201e3011ee82bc5f9736383849d3070901ffc60cd62ca6	xls	Heodo
2022-01-20 05:21:28	5a1489af62963b07c39a536bcd6d0912b6e83fe7c5f14f9335660d0ec8e655cc	xls	Heodo
2022-01-20 04:59:26	ef8562b363253996a0a2f5902bafc7d8f345d05e3bef28c3791c48e10d14c78b	xls	Heodo
2022-01-20 04:49:02	042d4b59153d75848595e19536f77437dcb1a52e851dfa507596159c99c74adc	xls	Heodo
2022-01-20 04:35:12	3a62645fb0fa509d7ef475480849b1ae216c24ae4868b71e0a9b4cb2e9deaac6	xls	Heodo
2022-01-20 04:14:51	93e3c367bda53786b1288bbbcf96770a8865d3b8a3132a90a33d10bc91a31009	xls	Heodo
2022-01-20 04:02:14	1bf2fd1660e48510cf19cfb1f9211d2af3aa71753d2e3d7dd047de4296a7f678	xls	Heodo
2022-01-20 03:36:50	f43c7941272a2ffa5252dd03a62fcf67ebcedb4eeefb62b83e282df408cbd899	xls	Heodo
2022-01-20 03:19:25	89ac9846e80ef313bb3b47ec5d39721a42df0322689ec11f3fddf2ade55504cc	xls	Heodo
2022-01-20 03:01:08	e5cbcea06c596c35b817e23de0dd39377dd88d951c16e0ff97d2aea7aa748e38	xls	Heodo
2022-01-20 02:44:00	2543badd28fc1740c4784e313fc2627c75b8ffa4ab59f5e79dd74e37973a72cc	xls	Heodo
2022-01-20 02:37:26	f0e3c55ec4382d23917bb1166f8ee92b8bf2e9f8f07081506b47de8c14fd36b3	xls	Heodo
2022-01-20 02:15:25	e10cc43ac64c0bb9759a41c29d470c2c4a8a4b1c7c680d1785c14e635ca01aa5	xls	Heodo
2022-01-20 01:56:00	b73bd971894582e6cceddac7aa53c67b0266db1737bb1cadc0564f2d35fd84db	xls	Heodo
2022-01-20 01:46:34	5b9df9cf37e1922cc729345ae55312a8abcc8ca8911323da2a49aa7c7a8f2ae5	xls	Heodo
2022-01-20 01:35:51	655c64e52eaf67ca0c8fbab1fc2f1a5b2b0ed7a9fcb24d4b72af657167319bc6	xls	Heodo
2022-01-20 01:07:54	ffa7963791fe7d82893083a2d6d56830adadc54f6e5ab8996f30fd3ca472afe9	xls	Heodo
2022-01-20 00:59:43	aa68c6fe9d1119990397dbc46556a017468ff65d4e017efc019f94aa1a03e4ef	xls	SilentBuilder
2022-01-20 00:42:09	e671c9b26b2b246cc5789ad0668750051048ef78c28d162f0af953a4f52e6aa2	xls	Heodo
2022-01-20 00:30:05	b1ee7aa00b7884ed02a3f5ddc07419b6e8dd6e7382269d8cc5511f06431d5eaf	xls	Heodo
2022-01-20 00:11:22	7c70964c132fcec35a067531e95526ab0826f3e77ee4ed6ef1eb2a3b2420c68c	xls	Heodo
2022-01-19 23:56:17	88c52c4d1940f16219506b7c10ded1fa314e5f05e0aa03cf441a7dee30f41aa6	xls	Heodo
2022-01-19 23:43:49	0a00bdf339b8c80c70ccce5af6bd26246d2775bebcd7347412ca5761479b7952	xls	SilentBuilder
2022-01-19 23:24:50	c5ca000d7bfcf3b1a413dc211b2f207404f4a82351d1f3d07ca048fa9b98d063	xls	Heodo
2022-01-19 23:06:30	c48a780e4664704fea5ddb053288a405a134644cd21cf1b2a21050df56d28d94	xls	Heodo
2022-01-19 22:58:25	4f48ef3036b8e2b724cbf9ec618f35baf7cb5e2017dc5fae4825659a28b58e68	xls	SilentBuilder
2022-01-19 22:38:25	9395907b748740960ac38d3ba4faeb6248b7953da69f834daff192bb2ff1fff6	xls	Heodo
2022-01-19 22:26:46	48645d321856636203f209613f50ae87684d0e12bae3421baf88c25657717abb	xls	Heodo
2022-01-19 22:06:05	0489c8eacbd9fc0f41eaf2a57c614594beabb4760b930541d3486b76eb970e47	html
2022-01-19 22:06:05	d507a6a85d0f208c8662e6cde4d1bd419daefd9b5644146e4a51546fa37131ab	xls	Heodo