URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	pandemic-info.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-01-30 00:09:03 UTC
Total malware sites :	5
Online malware sites :	0 (0%)
Offline Malware sites :	5 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2021-01-30 00:09:04	176.123.0.55	hosting2.alexhost.md	SBL648235	AS200019 AlexHost	MD	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-02-05 19:04:06	http://pandemic-info.com/bin/mapdata1.exe	Offline	exe opendir	abuse_ch
2021-02-05 19:03:04	http://pandemic-info.com/bin/1.exe	Offline	exe opendir	abuse_ch
2021-01-30 01:46:06	http://pandemic-info.com/bin/mapdata.exe	Offline	Amadey ArkeiStealer exe Formbook	zbetcheckin
2021-01-30 00:09:04	http://pandemic-info.com/map.jar	Offline	Formbook jar	ps66uk
2021-01-30 00:09:04	https://pandemic-info.com/map.jnlp	Offline	java	ps66uk

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2021-02-05 20:14:59	f00a042bb3aa0fd344f98c2f2f868a70ae5ceeaaead2c66302b9a53199e8f991	exe	ArkeiStealer
2021-02-05 19:04:06	f2d2638afb528c7476c9ee8e83ddb20e686b0b05f53f2f966fd9eb962427f8aa	exe
2021-02-05 19:03:04	6ffd13100e26b005774349e84e514bc84391682d9a20e1a46862a3e7599bad7a	exe
2021-02-05 09:55:51	b2ca76052b184c69881e79f3f7549ae884f38a57f50f5801fa40aa953f20b11b	exe	ArkeiStealer
2021-02-04 21:57:28	db0561d243c64facc962cb65a8832c25dd1c95be774a3690e2c91502e92a6b06	exe	ArkeiStealer
2021-02-04 20:37:46	19a595917039b249ebebe0e98a532a61585b0a4189bdb44a28c73523feed14da	exe
2021-02-04 08:52:56	c10df7ff1234d45342b534153be81de8f252e88ae00413bdd476ddfc05d542e9	exe	Amadey
2021-02-03 23:31:39	320a5f1b26e4b73c4bde7e447f2505459b6e9c2b70c432a68bbabd84b46ca988	exe	Amadey
2021-02-03 20:16:48	53237c2782ec5dbdabb8350a3ef5e8c25662436052e92ae1300f3f41be984ea6	exe	Amadey
2021-02-02 23:22:03	69248232555fb6f59a356e23da4dd883def9d70a0da48ff491b951c008afe626	exe	Amadey
2021-02-02 21:29:19	031870de77730956ddb3d44812996171077d01364a1dc9ffbf27ab52918de6c6	exe	Amadey
2021-02-02 19:38:55	fec65142a9b98d138fa49f1f94cc4e25999220745b97b10c4531a3bdcf4bbef8	exe	ArkeiStealer
2021-02-02 07:45:26	fc96c80feb56e4d65f40682bb63a88e52682d05b760e13b1df8a7d454d16538c	exe	ArkeiStealer
2021-02-01 19:57:26	bed2f26c88cb673e07a6c880dd946151584a215f3da9980d6b14fba2d01ec6f3	exe	ArkeiStealer
2021-01-30 20:29:42	176bd9797524c68e89e2ce41b1c4975d5affd1aa6a193d71819b422f919fdf43	exe
2021-01-30 01:46:06	6e9a7610a7e46968d211763942cc8508e1c07cfbbde75f8a9ae70926eaf991ef	exe	Formbook
2021-01-30 00:09:04	17f5f3c52bac67d3f3dd336ddc8fd91441d07aaf9620d4769263b1fb725d22bf	unknown	Formbook
2021-01-30 00:09:04	c83c3569ebbbebc023fc7f5c2db9a08272bbcb8722dd5bd2389104f853993fdc	unknown