URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: ongthanhnam.com
Domain registrar:Name.com -
Domain registration date:2020-05-14 10:41:26 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2021-12-09 11:41:08 UTC
Total malware sites :1
A record(s) observed :1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-12-09 11:41:09 212.16.185.86swe02.stablehost.comNot listedAS12552 GlobalConnect-AS12552- SEno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-12-09 11:41:09https://ongthanhnam.com/ugnbest/2iVHb5sJGvLLqC7Bj/Offlinedll emotet ext epoch5 heodo ext waga_tw

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2021-12-10 00:34:286100f4a7603dec0d082f6c893a52f78f0f26bd81cbde62e5a8647dc5db4c8fe0dll Heodo
2021-12-09 23:45:368638ba951ee7fb8190c3eb3eb652f5be54e1aade46317d166f31cca004db0be6dll Heodo
2021-12-09 23:36:26f49bc4d1d34868ae3774aae0bee9c5436e27dce4b4023bbd590ed5f87dca434fdll Heodo
2021-12-09 23:24:439d6305eff3b7c440a86ebba99db57a9b9b89c4fa3e68704150733d9234748a57dll Heodo
2021-12-09 22:59:08da9b28ef7a3b580ec473a7b56aa168f0d37d771e97614d454821eca2869b7ebadll Heodo
2021-12-09 22:26:3164bc34bded6b90ac1be429c399ef58da48c06ce82f3436d2c2f8601b5f19454fdll Heodo
2021-12-09 22:16:29898f2dc5d0e08f198af1b1fb98fe558423fc4a1f59c5f9c64a105f50e6b48fc7dll Heodo
2021-12-09 21:11:013c4d6392b7f5d0b04102a8ed5e844f95a03b04bc6f1d30a6f7dbf7e8ac08e1efdll Heodo
2021-12-09 21:03:4129c59c62689ad97da6da985d85820159cd2ff82c1f21db4d77c64e700f75d366dll Heodo
2021-12-09 20:43:4481848e14602ed038dcfdeaf8c83e44ad9884e48a23381f84c0d5c5bc75f5ce4edll Heodo
2021-12-09 20:11:233f4a3ae8eb59d93156c7997ced082811aa59bf421bb88d1b7fddda11269e1db9dll Heodo
2021-12-09 19:55:04d34aac87412ae8003b3f31f114324e8c8e8816c02ca1a5f25d9e6cb3414f1aa4dll Heodo
2021-12-09 19:25:43c6dd54ce0de1bafb7f799399d2eb01c0e892fa51a3c2c30450606211b5760ddedll Heodo
2021-12-09 19:09:0756977c00f07680a926bd16e22aff662e340de694472c89256821c911eaf7b09edll Heodo
2021-12-09 18:59:55ebcccc190d59a58e73adff672566550fef7120cfea4faf43c5fb4dedf7ae8628dll Heodo
2021-12-09 18:49:331d41dbb16ec52f8cc74db10fa65ff652c5044820f62b31429dbfa347b073363ddll Heodo
2021-12-09 18:19:14b961c1c72fc5ed1152652c699015bbba197229f74b6f8b82da56bb3a8743a08fdll Heodo
2021-12-09 17:53:5740534495202d37b7588a659451b0b95c27a3ed7fc9be21f73422e12b70bb5087dll Heodo
2021-12-09 17:41:118fc0719d4a9228a46b9f7efbb89cfb86f45b4b0a257ff23d0f7edd7cfba530b6dll Heodo
2021-12-09 17:04:326c749e580076f05d154c50b4a49e90f40328d838708ec6b9bba73cd370970fd4dll Heodo
2021-12-09 16:48:1199b4680f9ae669d74ecf688abe4af7b8db63335861970017bde4f9b553523989dll Heodo
2021-12-09 16:23:37083b9bb225db0138b05c79dae5d2acef50ed62f679efb63926121a845639bca5dll Heodo
2021-12-09 16:15:327b3bb5320be442800f3729b80e6260d6dde674350623a560d06e21367063fe45dll Heodo
2021-12-09 15:40:0471c112a4bafcbe588ff46edaaa47df72dfeca1bfad0b6a54083d2bb895238cbfdll Heodo
2021-12-09 14:52:58de2e9ab1dbf71bde10c7151ed54cf57016b09e0217295e535c75a9af66cf2f47dll Heodo
2021-12-09 13:00:38e4dc01ab8951e1985c4bba52f41273778021090f02511a50c72143a3befcad22dllHeodo
2021-12-09 12:48:5624b3eea6ae9683d14f353da8c436502b967dbab3c38ed5a507e25eb79d837e59dll Heodo
2021-12-09 12:08:243c3397fd6cf30a47de4885728d4d967e83b5c03a695ac18a01ef539f4b614326dll Heodo
2021-12-09 11:41:09d3fcb0e5be1df3e0fa7871c2ebf4b01cd93f063668a185e6b5b794626bff7a95dll Heodo