URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	nz.welcome-to.com
Domain registrar:	n/a
Domain registration date:	1999-12-16 03:08:19 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-01-20 12:12:03 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-02-09 22:20:58	52.65.108.11	ec2-52-65-108-11.ap-southeast-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	AU	no
2022-01-20 12:12:07	13.211.150.114	ec2-13-211-150-114.ap-southeast-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	AU	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-01-20 14:07:06	https://nz.welcome-to.com/liitbu/N18R9QR0vbTFtV...	Offline	doc emotet epoch4 heodo SilentBuilder	Cryptolaemus1
2022-01-20 12:12:07	https://nz.welcome-to.com/liitbu/N18R9QR0vbTFtV...	Offline	emotet epoch4 redir-doc xls	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-01-21 07:23:49	6407591df6ce61f946e24715faa6fba1b1f3221e2baf22f6c4f5a64f1ea98eb5	xls	Heodo
2022-01-21 06:58:14	3ca3bcd5771a06938cc8e8c44cd2c85b794376401b469fad7e5d4b513449fa27	xls	Heodo
2022-01-21 06:53:04	aba8e5024172cc0cd240eda2c379e91825cb922f0c5d56d82a560dcb15eef097	xls	Heodo
2022-01-21 06:31:35	2f51046242d3bd4fc8a58e9ee765707e09c8efbc4bd58b302262b181e9960bf1	xls	Heodo
2022-01-21 06:18:10	8d11a955d5a1c9ef68952d7f5bfe36e84c201e60f9ec3033571bba32d20665dd	xls	Heodo
2022-01-21 06:04:23	ce8ed57f03c2c3733b81f29e38332753051c9d5917d62760190dbc6b9dcebf45	xls	SilentBuilder
2022-01-21 05:42:12	29111d8e5e8306e76660db292e7232ab39e901955014eede21e912c931a09b5f	xls	Heodo
2022-01-21 05:31:17	595457287262641f193afae7ac66120029ef90f2ba59b310fce3d9335b1cf304	xls	Heodo
2022-01-21 05:11:10	2c9af469fcb89bb2e93d1ac70ce0bec912b78d5c3cbadccc3040c18dd03f5e41	xls	Heodo
2022-01-21 04:55:01	0e9d63baddd3ed98bd278e9eebbe7724934f24c1e6d98d9734fb88180dbe9d41	xls	Heodo
2022-01-21 04:36:20	13c3fec523cfe8ac14a7e78a8e2ca86dfd3b8bb8447eb7e733e7b1207de5bea6	xls	Heodo
2022-01-21 04:19:23	dac57112411305935ad4318c4ff4f495b8b39f84f001b64d83ea3ae69a994b02	xls	Heodo
2022-01-21 04:04:14	bcebf33c0812a0eb18e5261449f212582882eb706df65f5d2f2dd9d3b2c05da1	xls	Heodo
2022-01-21 03:46:53	aaec559a9461b2ceb6da5a557186641e67370e83fddc9b23237f6f92c0e22fc3	xls	SilentBuilder
2022-01-21 03:45:28	539a3855a176457a29262e61d738250050450a8a6adb2b1e9c8961a40a6cad57	xls	Heodo
2022-01-21 03:26:48	69b593eea6e0daa0631dd50e821d30622e6117fbb7e591c5e4b734722d6b5c4a	xls	Heodo
2022-01-21 03:08:14	21e23ea56b3d3198bc790c23569c989367c1907f23680e1760b7e76250e87549	xls	Heodo
2022-01-21 02:46:41	d84d60a9e9f466b7e002480fcc1866ca8824a44db59b31dfb9477d8ffb21c4cd	xls	Heodo
2022-01-21 02:26:17	82dd39849f520450c56ac21901abda18f16d08294e0c9569e659ed9133781c7c	xls	SilentBuilder
2022-01-21 02:18:05	eca323ddf5c863072e76cef170025ffcb611946ac3656f641ff0d2a0b17aa382	xls	Heodo
2022-01-21 01:56:26	262c6da8c94de82acce05fdf2a570305c71d940ea6c58416eb020eac64242c27	xls	Heodo
2022-01-21 01:36:08	9fdb19b415f24dfd571c8289d1952dd827d1fb2a14e8776e495da67e5b38a176	xls	Heodo
2022-01-21 01:21:28	4520398e8aeabb1aed9cd4899a2ac014545d9ad9383959288cf2470f9c1c4731	xls	Heodo
2022-01-21 01:03:34	8aa9a577a3bd2b2fb4b35339f5593a8a3f1c7635247b6fe78fbbb2983a8cdd4f	xls	Heodo
2022-01-21 00:46:49	358e8e25ef848f0530a1b2094f471f68415b1b8f84cf21e6f9f1dbb774759140	xls	SilentBuilder
2022-01-21 00:42:51	b056a3191538792998936cef580c7cd75e9b49d40a53452f6e8dd20d5814934e	xls
2022-01-21 00:27:56	649143ea8e6ec1173106ac1bc3034951327ffc75a1d8324a1b80d280998e2fa2	xls	Heodo
2022-01-21 00:13:32	9296f02a362c27b1e3a3b4119ede64ea52b6c0430fc70517e5146730c23c987d	xls	Heodo
2022-01-20 23:52:05	531278b90b12ac32bc7671c1f2a52ccc15afe992249b5dda28ae98885b954c99	xls	Heodo
2022-01-20 23:37:20	8c1d4b99c5902b2f07b695625c439802eb241110c2f528604a333a18120266c4	xls	Heodo
2022-01-20 23:18:19	79ab6a611483efd4c9e4394ac5c6a91c458857820c4c4b9bdecf0cab92acf8f2	xls	Heodo
2022-01-20 23:07:30	c3782f393e6dca8cbded5a7bbb73789792cd1bf807f4f71cd863b12992beda95	xls	Heodo
2022-01-20 22:42:23	a72795a18fa2b90928f307e227b1f1a57590672870b3acc9e8cb0eb4d38bdbff	xls	Heodo
2022-01-20 22:37:08	7758c1ef7b05f4e4e7e283eda2aba34801589c1ed656610c149a5b1a1a0b7fc3	xls	Heodo
2022-01-20 22:25:20	8a39d34f5c3133db2f6137b02545e312f05bbdabceda4bd830948380fa4c98c7	xls	Heodo
2022-01-20 21:57:40	3b63534dcaf71bdf8293d2a3ce3310a02d2eda37deac68d5ccbdc89cfbc8f408	xls	Heodo
2022-01-20 21:41:24	245057c2c16d698dc5399ecd43ca39f9e0b35885a19cc42cd2650eb8e17d0c00	xls	Heodo
2022-01-20 21:32:31	817f4c96e056390228a3d9ce57239ad521627a3617b13e4043dc99c91569ffcc	xls	Heodo
2022-01-20 21:17:37	1d51a274899e8d9f5f0d731c91c8308a7437c80c22a0d67f92aa4ed958175e85	xls	Heodo
2022-01-20 20:49:54	8697b2c64ef08e5e4bd5ca43dd988dc5ab701d50fb022b74e7413b95a7dc7c02	xls	Heodo
2022-01-20 20:22:35	43a573dc9dd0dc79dcf228467e8e6820f4a4f8bf344660ea43eb11bb7b3c93f7	xls	Heodo
2022-01-20 20:10:22	4102ee23d580a34ad9a1790ea81e7d9739cae27b843165e0daa30b9450585db4	xls	Heodo
2022-01-20 20:06:15	da9d3b84063bde0697546e7a9b3e2ab5f8283698dfb032f76018f28b367146f4	xls	Heodo
2022-01-20 19:44:55	402b387ff9eaca12395e5ea30d7252c77d49ce1d1478784bdb329641136043ea	xls	Heodo
2022-01-20 19:28:44	0d3ad48559d571f0d260229669d7eb06fa1f724387f2389bd3e44a234c4d33fe	xls	Heodo
2022-01-20 19:13:45	7a01c853bc0724dd09208ce377a70f2959c37b14fd10bce9c0445437dbb57c6b	xls	Heodo
2022-01-20 18:58:58	4e012706695112b7e19ba7cb073f14b4858bbe382890106a21cadf220bcd050f	xls	Heodo
2022-01-20 18:46:00	40dd74fb1fba55980387dff7f457cfee8778be09fd503bc397f747bd97d82ffc	xls	Heodo
2022-01-20 18:37:21	2dea7ee99b9ee3e1af8311223fd46e439e34208c91a1b4a4926afff5c0f25265	xls	Heodo
2022-01-20 18:13:39	093eb9276d5df2490f9dc0dd324349648f030d92ca6d4ab24d386d1d0eaea799	xls	SilentBuilder
2022-01-20 17:52:18	ca1baf60faa9486403587e0fac3c548db3aa5b6fb42897e1569020682499e319	xls	SilentBuilder
2022-01-20 17:36:16	88f602cd8f6b66886acb349720da52c3f5fdb367fe8a72f76812af27347cf32e	xls	Heodo
2022-01-20 17:16:06	92f65a0fe643c1d601633944790e1263b9dc30881b77636627c624581aac4acb	xls	Heodo
2022-01-20 17:02:28	bcfa7cbaded9c6144689692a9ea193431c16e7bf18e7ab361ef65fce375d93be	xls	SilentBuilder
2022-01-20 16:44:21	b3973d991b4f3e3870404c40bf59257bd40f4207f10dd5a6c34a8d4e29e0f7ea	xls	SilentBuilder
2022-01-20 16:31:07	3bc531482cc543cfaf67ec3c0d55382b129889d770be69196b05221058020958	xls	Heodo
2022-01-20 16:10:22	a3182153bbc02b08e54fa468a6a470ede9822cc612dfd6c8f523b9cb5cd4984e	xls	Heodo
2022-01-20 15:50:00	d0e970149a72b878303b425cbeb058aac6d74f1b94b2c3e150e40ea7da2e9072	xls	Heodo
2022-01-20 15:33:46	dbb17e696e6cab92c31a2e8e002262e5381c211d44af8d6c9ee5fea7f6f3386d	xls	Heodo
2022-01-20 15:21:08	2bc45370dd6eed0f3059fe82bd82d8aeca954819c9ad8ea823d36a8e01c7e92c	xls	Heodo
2022-01-20 15:04:34	bfb6705f630bdd22900dbc04de2805a63b70dd5b36a8985087a1d4be51308fd9	xls	SilentBuilder
2022-01-20 14:50:51	1db2ec499c11b096c4a468a878a9e6bb791183ca2156eb2e8c233fd7b172b607	xls	Heodo
2022-01-20 14:44:07	489a8d75e0335e05d649b0e5cae103a142020fe00909e4e1f2d83704f07fff84	xls	Heodo
2022-01-20 14:19:04	6d56c4a60ec2d451673ce2ce76e1fd89e23fa89a05c872736d78e15020cabe71	xls	Heodo
2022-01-20 14:07:06	5c8cb7136b7f89772e79c0a2f6ead69434dbd7cd66ed030ca620de279c9b20a2	xls	Heodo
2022-01-20 12:12:07	adad1a7bd34ffb17dc320c833f8c8dac36859bf3f3e92d4a9c68530a9c5851e2	html