URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	phelieuthinhvuong.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-03-08 07:33:09 UTC
Total malware sites :	6
Online malware sites :	0 (0%)
Offline Malware sites :	6 (100%)
A record(s) observed :	5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-09-22 04:09:32	104.21.15.168		Not listed	AS13335 CLOUDFLARENET	n/a	yes
2025-09-22 04:09:32	172.67.163.37		Not listed	AS13335 CLOUDFLARENET	n/a	yes
2025-07-04 08:28:20	172.233.219.49	viridian01.parklogic.com	Not listed	AS63949 AKAMAI-LINODE-AP	US	no
2023-03-08 07:33:19	171.244.32.131		Not listed	AS7552 VIETEL-AS-AP	VN	no
2025-07-03 17:44:23	69.16.231.60	lb04.parklogic.com	Not listed	AS32244 LIQUIDWEB	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-03-08 10:08:11	https://phelieuthinhvuong.com/scarica/azienda.zip	Offline	agenziaentrate Gozi ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-08 10:08:11	https://phelieuthinhvuong.com/scarica/contratto...	Offline	agenziaentrate Gozi ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-08 10:08:11	https://phelieuthinhvuong.com/scarica/Direzione...	Offline	agenziaentrate Gozi ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-08 07:33:19	https://phelieuthinhvuong.com/scarica/cliente.zip	Offline	Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-08 07:33:19	https://phelieuthinhvuong.com/scarica/impresa.zip	Offline	Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT
2023-03-08 07:33:19	https://phelieuthinhvuong.com/scarica/AgenziaEn...	Offline	Gozi ISFB ITA MEF MISE ursnif	JAMESWT_MHT

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2023-03-08 10:08:11	120b092e8d8212a7c0e796ac320dd10c56c8b801aa8fb234cb577d5f0dabc05c	zip	Gozi
2023-03-08 10:08:11	29547f7ced48000841e1ee6e5da03bcfb21722d9e60687356ab2d1e000733f21	zip	Gozi
2023-03-08 10:08:10	b57e90f3f5326920735a5ebc884b4ad1b28e97b48bba4615ab6e7092ea386bd2	zip	Gozi
2023-03-08 07:33:12	6a11b49472e5ea497098f11ab66bde3fb6fa1a6762b73cf08f1dfa83efae22e6	zip	Gozi
2023-03-08 07:33:12	0284ebc8b81dd2894fbdb7ca298d1c2c85c41630b9b9ab99aed51aec86073aae	zip	Gozi
2023-03-08 07:33:11	b883d0faf8a9f2396a311b6005ab68073ff0e6a09cafbdc7b58a8439d52409a1	zip	Gozi