URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: old.liceum9.ru
Domain registrar:RU-CENTER -
Domain registration date:2021-01-28 07:10:22 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2021-11-30 21:57:08 UTC
Total malware sites :24
Online malware sites :0 (0%)
Offline Malware sites :24 (100%)
A record(s) observed :1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-11-30 21:57:10 5.189.243.213213.243.189.5.rightside.ruNot listedAS12737 RIGHTSIDE16- RUyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-06-10 21:06:05http://old.liceum9.ru/images/Tb/Offlineemotet ext exe heodo ext Cryptolaemus1
2022-05-22 00:12:15http://old.liceum9.ru/images/DiazQsBnLhW3zpKRe/Offlineemotet ext epoch4 exe heodo ext Cryptolaemus1
2022-05-22 00:12:08http://old.liceum9.ru/images/Yh/Offlineemotet ext epoch4 exe heodo ext Cryptolaemus1
2022-05-22 00:12:07http://old.liceum9.ru/images/P3kTyZjKSLHIcLhpJ4/Offlineemotet ext epoch5 exe heodo ext Cryptolaemus1
2022-05-18 14:07:04http://old.liceum9.ru/images/R/Offlineemotet ext epoch4 exe heodo ext Cryptolaemus1
2022-03-19 00:09:09http://old.liceum9.ru/images/tmLFI9hthCg2Awyvy/Offlinedll emotet ext epoch5 heodo ext Cryptolaemus1
2022-02-23 06:30:06http://old.liceum9.ru/images/images/NKeRl/Offlinedll emotet ext epoch4 heodo ext Cryptolaemus1
2022-01-18 08:41:04http://old.liceum9.ru/images/GU1MZ5T1/?i=1Offlinedoc emotet ext epoch4 heodo ext SilentBuilder Cryptolaemus1
2022-01-18 08:41:04http://old.liceum9.ru/images/GU1MZ5T1/Offlineemotet ext epoch4 redir-doc xls Cryptolaemus1
2022-01-17 15:42:05http://old.liceum9.ru/images/Fst/Offlineemotet ext epoch4 exe heodo ext Cryptolaemus1
2022-01-17 15:38:04http://old.liceum9.ru/images/OOMyfZV5psUow6/Offlineemotet ext epoch4 heodo ext xls Cryptolaemus1
2022-01-17 10:07:04http://old.liceum9.ru/images/159_23/?i=1Offlinedoc emotet ext epoch5 heodo ext Cryptolaemus1
2022-01-17 10:07:04http://old.liceum9.ru/images/159_23/Offlineemotet ext epoch5 redir-doc xls waga_tw
2022-01-14 02:50:06http://old.liceum9.ru/images/076277JLMQAVJ_9309...Offlinedoc emotet ext epoch5 heodo ext sugimu_sec
2022-01-14 02:50:06http://old.liceum9.ru/images/076277JLMQAVJ_9309/Offlineemotet ext epoch5 redir-doc xls waga_tw
2022-01-13 02:13:05http://old.liceum9.ru/images/jcqrej-12499525/Offlineemotet ext epoch5 redir-doc xls waga_tw
2022-01-13 02:13:04http://old.liceum9.ru/images/jcqrej-12499525/?i=1Offlinedoc emotet ext epoch5 heodo ext Cryptolaemus1
2022-01-11 21:12:06http://old.liceum9.ru/images/0/Offlineemotet ext epoch4 exe heodo ext Cryptolaemus1
2021-12-24 16:24:04http://old.liceum9.ru/images/7F/Offlineemotet ext epoch4 redir-doc xls sugimu_sec
2021-12-01 17:04:09http://old.liceum9.ru/images/szkJRSDe/Offlineemotet ext epoch4 redir-appinstaller sugimu_sec
2021-12-01 05:24:10http://old.liceum9.ru/images/52ygHGcl/Offlineemotet ext epoch4 redir-appinstaller Cryptolaemus1
2021-12-01 05:24:09http://old.liceum9.ru/images/WePqBp/Offlineemotet ext epoch4 redir-appinstaller Cryptolaemus1
2021-12-01 01:32:20http://old.liceum9.ru/images/52ygHGclOfflineemotet ext epoch4 redir-appinstaller waga_tw
2021-11-30 21:57:10http://old.liceum9.ru/images/WePqBpOfflineemotet ext epoch4 redir-appinstaller waga_tw

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-06-11 20:01:39182a29bbd79a08af6b57aa6b1f310eaf36027c481e502faf1a1fe368563a438cdll Heodo
2022-06-11 19:43:160bcaea83696c8910785e20437b335f963c18b2c3c06aa7f532404f2a1ff5314ddll Heodo
2022-06-11 19:27:1499cc61cbdc615aaebd26501433b16d5396eb71401eab8a49ecdada6a66766341dll Heodo
2022-06-11 19:21:27548cdd88ee5da6184e87dbb55318956f4be4c473c02c64c4860308ce795cfd3adll Heodo
2022-06-11 18:55:16d91c1cc22f32908f7b19e465c0c1147e44cf3470f918e5fed6343973d3077491dll Heodo
2022-06-11 18:46:2378bc8707ff584561bce2083d6570e2d06bb0fea3e7350a3d2efc2526a2509026dll Heodo
2022-06-11 18:29:35a8b4935f586c9ba8a638fddda8db8caca20aa4a755ccd5b05d0bb243a32afa3edll Heodo
2022-06-11 18:00:498fd22a8903650480706c483837023f5403fbc6c6bae7d5bbaebba92a67988d52dll Heodo
2022-06-11 17:45:4720d10da92bb2c1c4651e1bba0d4d51d670d5bfbe94391a6b0935c527b7a672b2dll Heodo
2022-06-11 17:38:48d7624a1f568ff7aeb6956d17772e084aa98791991c797a183a078e1fc5ea5562dll Heodo
2022-06-11 17:11:086a4efe853f5763b8c93ed94e7f3ad7a8d1b57f648d610778807686bcc86be70adll Heodo
2022-06-11 16:47:5166f5c0bd0c0be80f3ffc9979cfe8267bfcaee92c9c5359b54e739b035ccd9d69dll Heodo
2022-06-11 16:26:115e1da18647a3dd733ff546488e9d2e40d8283c1cdaa3bffb3c7101247dd391c9dll Heodo
2022-06-11 16:02:06cedcc4a048adf3e1f99d699067a7176f59c35d39bec57bf94d3d45cacea5a385dll Heodo
2022-06-11 15:46:34b597816e7c4cdd585f6833a9553fc2f886fc1674fa710f058262255847d55ecadll Heodo
2022-06-11 15:28:38817e7d3bcff94d63d4a1322b367b778b89ce3c14a37f536efecf04f115d6c999dll Heodo
2022-06-11 15:16:525986dfc067c5921256d7b249e481a51e76af920b903d0c3dd3de2bef698f44e5dll Heodo
2022-06-11 14:54:120e699552d2bb1e223f7a3627eb363015a8e30a6184f9e016a079e97776234e24dll Heodo
2022-06-11 14:47:20b8eea6710697fa0276e194cf15ac5469612daf11cacac28b134aa5d65fa9613fdll Heodo
2022-06-11 14:28:38c5c53ee33dda3ebd902f9f0245bea484d57179601bb1ceefe13a59188fbf993ddll Heodo
2022-06-11 14:09:253e039b6e5edee4200704365d5110760c6cf301de7deb59403aef5076df2ba0ecdll Heodo
2022-06-11 13:58:249f8dfcdf48504153ceb2413429954c74f4e16f2a392ddba97f797d6fc27f08cddll Heodo
2022-06-11 13:26:23e3bd411ceba87403240776a249eb9b6a807923c58d46fa9a156206cb64b6cc35dll Heodo
2022-06-11 13:11:463d5575a2df8b9639310f9c608baab7d8077ca405006c8b3a22f9ab8fcac7d10ddll Heodo
2022-06-11 12:56:5952d546133e4c060f789380a9d7b5ed6e6192080dddac0dba3451cc13ae51313bdll Heodo
2022-06-11 12:38:368a0165ad2be671142355682ec643467f691092c27c4893344827460117ae78e0dll Heodo
2022-06-11 12:28:1950376e6b1c40d0cebf1b36d5962bb381b80b720089917263f90e1eaf6f1cd706dll Heodo
2022-06-11 11:54:116a7f55600f5717184f9181221f6b08860ac72d84d4def2c93d2d250d74310fbbdll Heodo
2022-06-11 11:40:38f4fe164ea4fb5d09cb9e35a4c6386da907a42d1ef1d8d35848c6315d7b896690dll Heodo
2022-06-11 11:18:41562116b413ea4d3e66d4bacb09d05ac01a62e0f0308e1f31857620e14ff19d4ddll Heodo
2022-06-11 10:59:58f424dcef1ac67b37c8c36bcdd824a0d55d770e590d8baa414d55a43aa67c3a9cdll Heodo
2022-06-11 10:49:10d8364b9514d9c1832af105a5725da293912cc172a8a7bc1aef6174f68901500ddll Heodo
2022-06-11 10:29:26677d60623bd1c80b143ef41c995663e82a303e2cb930a7a9d1b5a2c6517875bedll Heodo
2022-06-11 10:11:51dcbc25a2e78781a45de36877878250da77dd415b4af20b1260d99543891f2785dll Heodo
2022-06-11 10:05:575d818c0146d1c07393212e12f98353f73ab6e00524cf18a9886fce0136a7388ddll Heodo
2022-06-11 09:38:40cbdf43c3069a6c1a3955aaa46f62bd1b39d86326e195f06cfa2e47b6af85faa5dll Heodo
2022-06-11 09:25:12731733fd0b11cb7884eb2dcaec3f99b8244f6a5143201399bd0b880b3940600edll Heodo
2022-06-11 09:09:18e6d1b0f8f4e0d842fbe827358e4c54524172a021651ee9ba8ab81b44ede35930dll Heodo
2022-06-11 08:42:29ac6bae01132683cb35d7fb3ead0879dc0da9a19cf54d02ccd45e51b4045f39c5dll Heodo
2022-06-11 08:28:002da417a5dc076b3b8c89c89d3e500b0dd6006ac58d386783416740ccdb014f87dll Heodo
2022-06-11 08:16:5292922090a315d656f90a5bd1d702041a3ee1499d7a21ff5affbbee2f7dd4182fdll Heodo
2022-06-11 07:58:310401a33b26bd0048f5e9c4aa83dae168c444cfaf90be76a383ccadec6a56ee4fdll Heodo
2022-06-11 07:45:0640a88ee06bf87eeb5bc8e7f3a2543b3120f9bd5f341feebb1ee5d9572432c3fbdll Heodo
2022-06-11 07:24:49c927d2a6d72bf130bc7a21de1fa4594585f6772f625c0343ecf7d516d2840d70dll Heodo
2022-06-11 07:15:530f9a7d34ea587bc8f4541dcb948a8c4e1a85a4ddc27dac5d176fb1bd3b278f2fdll Heodo
2022-06-11 06:55:57527eaae51c9bc71a0bd3f4e516d6dcaebd08b61671990ca4f63afdd7ebf76cc8dll Heodo
2022-06-11 06:29:547d61148d217780e71ce6751be40adbaaf57fc1cbd0e0b1a97d3f4a465beb68a7dll Heodo
2022-06-11 06:16:45e4cedf0e8d460a6d453ee056cfd34824776b2f8f75c265480093c3dbd2f15c00dll Heodo
2022-06-11 06:08:42bf2eb1f522588663a122c23ddb36d910f45cdc3700ece9b0cf216077e36f3d7ddll Heodo
2022-06-11 05:41:06ceed6e1ffba19a535d436e4770e5397824e85d7527b0557fd4686f567d46753bdll Heodo
2022-06-11 05:24:429ac97dc09312889c4590c802e0098e2d2bc498f0ee7533e3f8519f39366805d1dll Heodo
2022-06-11 05:02:23370ecb0e1ef0143b00ef98936b024737e30a31d45c7b5ef3144ef5b0b0aad37cdll Heodo
2022-06-11 04:46:3964b64449910096c5a11b83d9d304e7bf0acc9e640100482efee8aa2fe46df621dll Heodo
2022-06-11 04:32:2463124298acca2b5fa057a78e8a5e0611cd25a03f8ccf74da12ed422eb97277b8dll Heodo
2022-06-11 04:12:1922c1d78d300b55b54cbd2ea9ab8becafe6609e201989e7f37f99ae151f339503dll Heodo
2022-06-11 03:55:414142b0032bee54f217a139af32759a6558eeceec00863f884ed01965b6ce3094dll Heodo
2022-06-11 03:39:235283b03da550737a14a7bf032a62cd2b5dbcaad9befb3b10b4a18534c4a55126dll Heodo
2022-06-11 03:17:52e5d90c12192829294bb159a3aec6e9bbcbdeb3fa28b13c6758d778410c84a656dll Heodo
2022-06-11 02:57:13b80474b7f469c4565fedbc4951224d73655b1adc559383287d2786af932ee968dll Heodo
2022-06-11 02:51:12968f7dd6ff9f382aa60be43de5210b30ee073253e149552dd889038cf0eb976edll Heodo
2022-06-11 02:30:56553c4de805ddc5e128ef7c72fade6f8818ec1b082bf37c1d265e3ad12d0ca713dll Heodo
2022-06-11 02:19:59c79a1d7cf23fce40c42c8f77d68cf5449bb753cc120d2f927c851f17e9526560dll Heodo
2022-06-11 02:00:25c96da0eaeb165013bfdc7873764528d9fa9a4394021fc451d444eca047cc674bdll Heodo
2022-06-11 01:35:20f509a1d42d80590d8960c577d6a8b1f651d276f4b7d7134426c6ca4af7296bfedll Heodo
2022-06-11 01:12:4058f75d6cbcbc3012d20383650d28b5e813d4039829c67cf90e385576b9c1509adll Heodo
2022-06-11 00:56:33933a326d1dfe90019fa6e93274a14203e030edb2df2bcb3f19021ec16a855e12dll Heodo
2022-06-11 00:38:382ca42804d8f156b2997cc7f8358a80775705e4b9f114db2926a900a203274600dll Heodo
2022-06-11 00:11:46c17dcc9de325b16df5c57560468c2f1c3896eb53f03cf28f2c7a1495728bf6a2dll Heodo
2022-06-10 23:47:246c9cff7bf509cec7d1a4dbdff3146e806c36828be65ae069b52e1b63b98e77ffdll Heodo
2022-06-10 23:26:09c62c353d75c3d5da368333a79294a4b064cbe4f3426d73d55af7c5a7d2b8f45cdll Heodo
2022-06-10 23:15:40965b77a4d673e88640974c1ded5e71ee2a2da51d399c200ea6231542c0af73fddll Heodo
2022-06-10 22:36:43fbae7996289c521de5db81333ce4e8c7763038bae1eaad27a36a6427e15fec01dll Heodo
2022-06-10 22:31:06fa98ba5e563bd09f55b60305578b610d4f7192cabe21840a422fae2099ee491edll Heodo
2022-06-10 21:58:47a47199842915a6ca00eb3cb6379514acf50fd075f70c83ce60826359323573d3dll Heodo
2022-06-10 21:30:572f7f9e9693c4fdc11065019721d78fdf173fecf5d9e9cdd0ed50ab0b4904c836dll Heodo
2022-06-10 21:15:4249734c6baa87878beeac3dc5e3d044b6840326d028c1916f7f07deefb30c6b51dll Heodo
2022-06-10 21:06:0550513ed259ee8a1ef5a34beb6c8100aadfc62c55c48c73a9ccbcacf21aea2430dll Heodo
2022-05-23 08:04:51dff0095f5e24bc8b7c51fdfadde377fa319b679a279e4236fa6bd845cff163c0dll Heodo
2022-05-23 07:38:24461450f429ee8128ec00522196d281cbdf3970db7aa2a5772eaa045be0fdccf7dll Heodo
2022-05-23 07:23:20a38c810efd565f119a7d7bcbd06255ef14c8e3ac0a6ecdbc478cf7a44949d05adll Heodo
2022-05-23 07:16:40e3316fbe94ab1999ab3fe4925e77c975b0ceaee00a0d3b134c1462d93301251edll Heodo
2022-05-23 06:57:2130ab2eaa3d2d083baf7722a8dfbe653e7ac0099a4c9ca73a19e7439c9692afe9dll Heodo
2022-05-23 06:38:22fb5b12b24d3aa998378c998f9977b6e1c70e8b0d2a22bcd57e9b440632eb99fadll Heodo
2022-05-23 06:18:37f9e60e62254196ef3251913e8925de78649739acec7a27cae10160768fb16680dll Heodo
2022-05-23 05:52:511956479dd75a844186b8a75cc0903ab728a1afbaa9cac0c9a9015c6cb0056d14dll Heodo
2022-05-23 05:42:190a1457e175ae0ec2a350006e57edcaa6ed44487590ed0e7c3a6aa2183bcee924dll Heodo
2022-05-23 05:13:30df40dadbd574271b1818cceb700ee29145feb679c122dc378cf5a0a2bbfbf266dll Heodo
2022-05-23 04:46:2175706f597c1039a61b114f292853c2ce3b8c08955ada8019a267720cc5e17247dll Heodo
2022-05-23 04:42:3621d5984922e9fd0c1f225c4fcaf45a6dbc07c6c2e7668e2f2cb1caac2b370e98dll Heodo
2022-05-23 04:14:52b3416f20391932a58574822c7c488a041994e16887e532f377f08e767594951cdll Heodo
2022-05-23 04:01:009b7c98afffe12c89b4bb09e0a6b99a698500bae8d394dfbec837761e94b18bf7dll Heodo
2022-05-23 03:35:340fdc7d4fddbd2b9a0944dd80c2db4fb64eaa25b53bf5e8a8897ffa01f14cd563dll Heodo
2022-05-23 03:09:3014355ce7712636691c6991c5103ca98ea47d66cd5b57492ef36d775f66bf62e4dll Heodo
2022-05-23 02:49:05513d842d37792426ee0fb64629ff8d67e9c3883a15e40a52754b03efa01ad0cfdll Heodo
2022-05-23 02:43:3380eab9f12c27355e325f1b9471f3826609a068ecd1ec01b094c84e12bddc4e4fdll Heodo
2022-05-23 02:12:5387b022c28cb9e12a6e173b20c50f38b8c3e8e7a0f91aaee5b004f3d186b0f639dll Heodo
2022-05-23 02:02:410a33989a043ffa708874fb195c1f81806f72f29be8c4d2dd8f3d1d46157a0108dll Heodo
2022-05-23 01:42:50e8b1d306ed1690696e7ab4c159c8ab09b35a7efce422902e1466ec37c5c2a2b8dll Heodo
2022-05-23 01:22:498f923318333abd4c3299a3f39d7ca4c925b4592823ddd02236556206b4e12466dll Heodo
2022-05-23 00:59:09ee3223adfbeb749e812445a8ca47f8e991a73a043d0d235a4b129a3781347653dll Heodo