URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	ordertaker.jakagroup.com
Domain registrar:	GoDaddy
Domain registration date:	2003-05-02 08:50:14 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-01-20 10:02:02 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2021-01-20 10:02:05	18.140.133.180	ec2-18-140-133-180.ap-southeast-1.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	SG	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-01-20 10:02:05	http://ordertaker.jakagroup.com/2f77k7i6/E/	Offline	emotet epoch3 exe heodo	waga_tw

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2021-01-20 22:13:46	03ff40768f2c5dfb8c60c977b173ab72abc0932ccd13d139115bf7f0ddcdb323	dll		Heodo
2021-01-20 21:04:33	337e0b44a5ee2ba9f63ecb7cb50fad7d63834860673c11f6a2393029c0fa3e99	dll		Heodo
2021-01-20 20:44:47	1fcdc894a59ebed2691518c81963260f73b4347932a58a9a4891b2ee7e8e9289	dll		Heodo
2021-01-20 20:21:19	a1546aa90474c0bfc413f4d9fe6970b4013a4ed930bde487844ab10424b15b60	dll		Heodo
2021-01-20 19:00:38	bfba2365c855f99449bad54cb7ee5ddf678765f8e9dd43008586c753adcbf373	dll		Heodo
2021-01-20 18:39:14	09f4cf2fd6bdf70bfbd0be22532525478aabc29683352fe57b3e48f2cd04e19d	dll		Heodo
2021-01-20 18:13:26	1c5516decd916b6585c547e0ef23795cdb6f9c57412c29d4313e80d64088ed01	dll		Heodo
2021-01-20 17:45:39	68c0e8ab0e469eacb246eb7f24600dab885927bbb5c5e7098609fe39941b197d	dll		Heodo
2021-01-20 17:02:03	6bfc6aff91c8cd621776abb924c3dd0fcc1b9bfc759129197a1d987ee89d7c5c	dll		Heodo
2021-01-20 16:48:51	f93893b356aa2919ffd7b3e77a41c359cfea262ef7d5d926915baa3fc82b80b2	dll		Heodo
2021-01-20 16:43:56	2e859fadf0acded55dc2156b46b2efa8c5d08f94ed1b7c44372e4db56a49c21f	dll		Heodo
2021-01-20 16:29:52	3d755ea2b87cd02baf84d27618099f49500efb2c5ff5c6060c7d3d1adba7301d	dll		Heodo
2021-01-20 16:19:07	ce7da3f8c7538b2746c6d3900601de49100fe853237635d28f6fbbcfa4995e3b	dll		Heodo
2021-01-20 16:00:41	b6935632fb3c582bd31b0d4ed185091a152e3f2f4b889d3030a3b5967deb7c28	dll		Heodo
2021-01-20 15:44:07	5b865477ee99763cb4337bfc1c685a7b9e4f0da5d8cfa342fc0a3ceb2f7b3d17	dll		Heodo
2021-01-20 15:38:20	7d8bef27cd3b4c2e5af5d4160887c5666540f78983c75b3f03935d84e8afad99	dll		Heodo
2021-01-20 15:25:24	0199744ec82448f293192138bc1cbe2d3637a5571e658c669e50dc226085a816	dll		Heodo
2021-01-20 14:57:32	8c2e8d3e94db155b44f504c8a65ae01b6f2563d8678aac1e0c6ce994510110df	dll		Heodo
2021-01-20 14:49:19	30e82b5194505d20617987a5200d18206f3fe58faa5420d30cc3f8539f8c0a40	dll		Heodo
2021-01-20 14:29:53	a5520b1af57634c67131b99cc63d53fd378df4655206feecddd7c990c80b7bf7	dll		Heodo
2021-01-20 14:21:21	3a973c680636b077588a4b5335d802e3178e67c7404b23c714660a324ed82617	dll		Heodo
2021-01-20 14:11:57	9d00775e4b029a571e03202b7c08c0784118629e4980e9dd0afee7165606e503	dll		Heodo
2021-01-20 13:56:09	67ef09317eba7a828a135b7d98b5ff3eb1a2e31021f139528b5d23f217180ebe	dll		Heodo
2021-01-20 13:44:10	3521b58119861ecab45462855ee7e5fadacfbfa3a5ce01efac9887e67d558d5e	dll		Heodo
2021-01-20 13:20:10	3b7468f0ea55dd381842c1defff985661bf8d20257e3d537b2e9c1afb1f55165	dll		Heodo
2021-01-20 13:15:45	c1c7f1f952213bd7edd527bd177b692c8f52fc3b3a8ab3d5b975843a1b113663	dll		Heodo
2021-01-20 13:00:37	ca7b273390fa125823a530875616f15706e7e536a50747835d3e4bacfd49b96f	dll		Heodo
2021-01-20 12:47:02	77a0c5802a47277ddb6da2a39a545fa4e5ae568c5df510dbb385d9ff77e30688	dll		Heodo
2021-01-20 12:30:27	03a4ef74794c1ed55ffd3d09340dabc5e0d1d6da18efead3efd752847746f46e	dll		Heodo
2021-01-20 12:24:18	ccd215c4148ef623ed06cb5af7ca676d2fc3d11b8d209b256c5ce230e70c197e	dll		Heodo
2021-01-20 12:06:26	48a8d4dcec42ad3b3a1f5a25afd351746281481e4ae5e346b5065d2778bacce6	dll		Heodo
2021-01-20 11:55:25	ed9d7eece68a69a8c783bbce49383f563e6a9df61b5dbe23856585165413963f	dll		Heodo
2021-01-20 11:37:09	273af0eb20c299eaf7c3890ebf4bc5846d08a43bafe57622e5913b5062193a49	dll		Heodo
2021-01-20 11:28:56	da811d9690107966707637c9422d8e46606f949ff4cf70770a91ab02c6aef768	dll		Heodo
2021-01-20 11:16:38	d0e1678a713e46b272231e06e63845275d372eb77da10974e504e4f7ed03d2e9	dll		Heodo
2021-01-20 10:59:24	6c29110e6b58313a21fa521492ed231c9e26bfe781d7ebeb38f3e18c18e52d64	dll		Heodo
2021-01-20 10:51:16	28d3ccadc73183153ea914335435176cfe884ca648c088ed20ca9ac4a0d59248	dll		Heodo
2021-01-20 10:34:17	6e6db19b8eb1324841a2d22f2cde3f1de3aaae2471912d50f6b71f66d73b6990	dll		Heodo
2021-01-20 10:21:52	70be629c161233fa59df045173ce88c40073b6c773e8c8c19e9c61f961939a37	dll		Heodo
2021-01-20 10:15:27	83198be4669f5283f38179838cf092c6200efb9e487d26544d7655347c00d091	dll		Heodo
2021-01-20 10:02:05	acfbb209f0928760abb5a53b5b57ce01aec39d462aa961e317410ca2ee7a0756	dll		Heodo