URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	nurtandemir.com.tr
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-08-25 17:06:34 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-08-25 17:06:36	93.89.20.2	93-89-20-2.static.internetadresi.com	Not listed	AS43937 PTNET	GB	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-08-28 15:02:05	http://nurtandemir.com.tr/n/	Offline	emotet epoch2 exe heodo	Cryptolaemus1
2020-08-25 17:06:36	http://nurtandemir.com.tr/blog/invoice/lb4dp6b8w/	Offline	doc emotet epoch2 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-08-28 16:24:14	2c6b043d45764a9009211c7dbfab4a8aa0aa8a8dbb459535224ed9bc4c398853	exe	Heodo
2020-08-28 16:02:32	389eff273bedf8f0cda12d05b777d12107a17250fb8f1fd849b794fafaae6ac3	exe
2020-08-28 15:39:35	c4c4d8cce22d07f6853c2d9a73b880e49f2f2c8d74970b8dad68b8c9e9cc2d16	exe	Heodo
2020-08-28 15:15:29	3a8b80dacae75e172b4b2bba3fadede9ef58e679e31f85ba0df66109a264e6c6	exe	Heodo
2020-08-28 15:02:05	4ca3f3d9bee3d73daa585eaeba5b7474598ebf0bd60385b425cb4f2143120eb5	exe	Heodo
2020-08-25 21:02:13	52d5f65c1708917e116f0217caac8d2a8ebdc93b3b349f9f42b7d7c1b13d69d6	doc	Heodo
2020-08-25 20:29:54	96eef74c59d9b8b47979fbaf2552a9735dcddef28df0b5b87655a4c849f9d853	doc	Heodo
2020-08-25 20:02:56	c83c6353d36706d9ede8b73d387db5ea74ea2977900f849d802d7cf17669c266	doc	Heodo
2020-08-25 19:38:46	ebf572465108b8645ca9637d9c17b4fe717d4d99f3d4dd29046a22a8f608bceb	doc	Heodo
2020-08-25 19:22:11	5419b1d842aa8d13493c5ac67bfd2839472947b3345c2f6552dc69521575959f	doc	Heodo
2020-08-25 18:59:54	2005da08cf5f5e5489e2eee91a32b61ee7c2da83fcbd47f566eb7a3a29388151	doc	Heodo
2020-08-25 18:38:05	cd5de7d65b2e9b1096050ce5dc17eab61c74558a8570d384af33e78dd2d9b025	doc	Heodo
2020-08-25 18:01:12	2585dca9439553fc132aa07924ab669bd0ac2b0efb4dc154f3538472be3d5425	doc	Heodo
2020-08-25 17:44:17	d5f40d452d9a860469d5230c2770b2dd97806bcf9734af4d3f76218dba8e5c8c	doc	Heodo
2020-08-25 17:26:56	a739a31e32ab7fa601d4f3c3b816aaad621608deb572db4c84030ea4f4e8df20	doc	Heodo
2020-08-25 17:06:36	5ea798c77e148ba56c705159bad7572cc32b08d35f1490759356a6d114d50a2d	doc	Heodo