URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	redwingdemo.dukaafrica.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-01-31 08:56:03 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-02-05 13:43:56	188.165.3.138	ip138.ip-188-165-3.eu	Not listed	AS16276 OVH	FR	no
2020-01-31 08:56:04	51.68.119.89	ns3144222.ip-51-68-119.eu	Not listed	AS16276 OVH	FR	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-02-03 17:37:45	http://redwingdemo.dukaafrica.com/wp-content/Ad...	Offline	emotet epoch1 exe heodo	Cryptolaemus1
2020-01-31 08:56:04	http://redwingdemo.dukaafrica.com/wp-content/81...	Offline	doc emotet epoch3 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-03-25 16:17:07	e77fec5324124ecbeacc9dff612dc922166b7de228996a7f6b669559e1861c79	exe	Heodo
2020-02-05 16:35:46	bc3af4ac4fc3a4fd0cec3aa28d29c6a0106ca86aa57e145ad0ac92483c4bc948	exe	Heodo
2020-02-05 15:20:22	db767dc3b3ebad70d0cdfcbffdb21caa04a5f11a552790071a4ffa72bde9cfbb	exe	Heodo
2020-02-05 13:46:49	8a338aa5e4dbdc3707e393eea9afc480deeb12cfcbb35c256aaa7409d95e7836	exe	Heodo
2020-02-04 09:03:29	e0613d89854e76418b4b9e10e070f787b1455d35c692725474915959c72559c8	exe	Heodo
2020-02-04 07:39:52	a08378cd4cbae971fd29b9a4cd6a730e450de722059fbf113ab866e5217929b4	exe	Heodo
2020-02-04 06:08:30	886c4a5e2c859b400271b30f87cbe22be9123648119f8e7ec4b62308cc0387b8	exe	Heodo
2020-02-04 05:04:33	b713e7059eecd886dece75ef046e9ac5be92ed8fa9f3ce3b6d7661bbe3fad6ec	exe	Heodo
2020-02-04 03:58:27	56f07e1ad8fd85fb4673a768c5bd109b43241428077a95cbffd8165e3a9364c6	exe	Heodo
2020-02-04 03:10:09	86989c9155e7c7f65d67dd0a5ff915b42cdbe6e602dded04194a8789f08262f9	exe	Heodo
2020-02-04 02:36:29	e9a899df39c55773d123ccf372ca886941b4c7da1e42e87baec266b24cdaa6ab	exe	Heodo
2020-02-04 01:27:28	0d987112081c2e2e8dd25a18b65c37546a9e42580f0f96ea3e181adcb1126fc8	exe	Heodo
2020-02-04 00:55:12	93fc54f8af621ea9edc855dec2d25a519cf9f5f10d38f388665cefe9a5959405	exe	Heodo
2020-02-04 00:19:27	227fa73ffa3e08a7f53f10f06e4bb18aa3b7aa6e9aa33ab949b91a9631d9dc86	exe	Heodo
2020-02-03 22:50:31	08652f5ab0419a8cce61aa06b649256b7114d15fde9cbaad50077afdc86c23b2	exe	Heodo
2020-02-03 21:42:28	c1fa3b0e1a086ad5053bf376538379be7d2d7aff3ef3da22f0cdcb3c58df4be9	exe	Heodo
2020-02-03 21:34:13	06be4610a6b7fbc7659ea8c2904b1473a0d2925d225a67a8cc1f61ec8631ebd8	exe	Heodo
2020-02-03 20:14:50	67ec9894143eb4bf3b9741183717cf372fdf2532ae906d14471e2e10d9c7cb0d	exe	Heodo
2020-02-03 19:13:27	63c4162bc4c04d8b26744287280b0dea2c52b0649372aa509c2b77cde6aa69b4	exe	Heodo
2020-02-03 17:59:20	925b3d736f518e89a30e2b77b49daf9ecff02b1e5821efcab4c2995a60b4e96f	exe	Heodo
2020-02-03 17:37:45	197753da03ed1d957048fb3fa2c94b9fc5ccf0f24fbcce6279a67675fea7b4f1	exe	Heodo
2020-02-01 01:58:44	970df6100d8375af169bb259df2c7bb1ad641294e34ed57dc3ad02a38371b4c7	doc	Heodo
2020-02-01 00:57:42	c7f8a534675b643449abfdf573e7b23803ecce479e90653ba295ae4d5f82995e	doc	Heodo
2020-02-01 00:10:48	068c0fa7ec2b72cc8c87bf99a725b7e44c8a49a5b8461358acd77d6186504229	doc	Heodo
2020-01-31 23:56:41	be8e29291f74f6e6d6af939a01b396322fc81f5fad594008c08b46d63f558057	doc	Heodo
2020-01-31 22:25:40	66cf6a1cda9e240560d3dd09a638f88527ba60dc15d9d5716e63c8ad1df5e954	doc	Heodo
2020-01-31 21:18:34	3c898038b0729e908f29fc28f0b7b4032f71c1bc46d890ded09e2b435bb75256	doc
2020-01-31 21:06:54	7d36bd087bf192b32fc6a40a94b79081e1d7d25d356a9697a158b29bcc1d073a	doc	Heodo
2020-01-31 19:50:27	bc79e24ba2ac5c6cfe39026ed82318cd18feb73fd5f8987ffcf5b7f9cdd9af0b	doc
2020-01-31 18:19:30	1c1ee91ce47a73525fb005c941777860af76c0ce946b7e56c26d920e9cfd2c25	doc	Heodo
2020-01-31 16:48:27	3e43537c29e5174e6e982ff2cfa6b7752413a26de10839b58420ceb8a425c316	doc	Heodo
2020-01-31 15:24:27	b777b2c1bf49b5a05bd8241ae61fbcfa3c3c96cd899ef9ff4215bc6121945da2	doc	Heodo
2020-01-31 14:07:24	a7b7c834a9ba78a0dc99c2464438070f71eaef06ee9c57af57b9b11c4b0e3b2b	doc	Heodo
2020-01-31 14:03:25	8e0afd2fa4abbe847f9ff21eb7ac55c920eb69a98ebf7d214cd28aa32d5a5ecc	doc	Heodo
2020-01-31 13:04:48	1fdae9fc6aa69ff362c050d3b72b7ea035f4347be47b332d1cf733a6a60ebf62	doc	Heodo
2020-01-31 11:54:18	322bc97effba52663f35f592be159313057162f0b75287845c440a3971648cb7	doc	Heodo
2020-01-31 11:46:55	9d887063a7f3798027fe7987b0bc2141ddefde963883c48e1d3ad602fda96e0d	doc	Heodo
2020-01-31 10:23:27	21b6e7719a2afa773453d60937aa333af8e41f515ecf2f2f50301c235971e447	doc	Heodo
2020-01-31 08:57:47	64fed04221b3089f9ca965d7265619bad9d87b2d65ce2f55c04e3f3f95c5db4d	doc	Heodo
2020-01-31 08:56:04	fc244aba71a46c59805f50c5e9bfbed39277b6c94199062748330ab074a89a11	doc	Heodo