URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: revol.vn
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-09-29 15:09:13 UTC
Total malware sites :4
Online malware sites :0 (0%)
Offline Malware sites :4 (100%)
A record(s) observed :10

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-04-27 12:18:49 188.114.96.3Not listedAS13335 CLOUDFLARENETn/ayes
2025-04-27 12:18:49 188.114.97.3Not listedAS13335 CLOUDFLARENETn/ayes
2025-11-05 06:53:23 188.114.96.12SBL687667AS13335 CLOUDFLARENETn/ano
2025-11-05 06:53:23 188.114.97.12SBL687666AS13335 CLOUDFLARENETn/ano
2025-05-28 17:18:06 104.21.26.240Not listedAS13335 CLOUDFLARENETn/ano
2025-05-28 17:18:06 172.67.168.156Not listedAS13335 CLOUDFLARENETn/ano
2021-01-13 20:35:40 104.21.29.89Not listedAS13335 CLOUDFLARENETn/ano
2020-09-29 15:09:13 172.67.148.180Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-10-26 22:20:06http://revol.vn/wp-includes/Reporting/HGdutdVHB...Offlinedoc emotet ext epoch1 heodo ext Cryptolaemus1
2020-10-22 21:43:04http://revol.vn/wp-includes/Reporting/ly0n7k-0066/Offlinedoc emotet ext epoch3 heodo ext Cryptolaemus1
2020-10-20 16:11:04http://revol.vn/wp-includes/public/9o8crg2-11/Offlinedoc emotet ext epoch3 heodo ext Cryptolaemus1
2020-09-29 15:09:13http://revol.vn/wp-admin/public/g2ucb3/klu1pzof...Offlinedoc emotet ext epoch2 heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-10-27 01:59:346562c1ec0d60cdfb002adb4ed15dbbf2f2f3f717002fbe8151e35d3755eb4358docHeodo
2020-10-27 01:51:55d5fc142bfa2e0ab5cc22067cb316b2f73dbf3cceed7fe452a46028fe26c38610docHeodo
2020-10-27 01:34:4239bc04da6b9d4faad7b5cae654c8f59ad7ac01b3fb70e293d8fbf1b5b6e15c61docHeodo
2020-10-27 01:06:5398ce88c9f247c75c579d1893aa0e20cd63f5a61f4b7ab7a70b4e138e34fed993docHeodo
2020-10-27 00:52:4152d4dcd449517b101bb99988f9b270b9785a8987cc4edf558f18fa0bbd5bb438docHeodo
2020-10-27 00:45:2034552d4adde7395abb5b114284e79a47c0aab68c0ab1fc62affe993b7373852edoc Heodo
2020-10-27 00:25:137f3ad8f66409867f25e71e87520c6c5bef13981bf27cab43e285638a3681292bdocHeodo
2020-10-26 23:59:045af94d5b1e905c40d01805e011b493589549f37de4d6eb3e1b68044d47d8988cdocHeodo
2020-10-26 23:34:49d51e0046c1cfccdbbee59aa82fdc5780aace64ee8225348e067170db0a442ba6docHeodo
2020-10-26 23:03:24f620c363a605c7c11abe0ed6c9f919168781361df2901e24752c0ebd428c4854docHeodo
2020-10-26 22:53:2873d1b4c3fb5a035d592fd68fb3393cbfbd659c6fb165d4aebb3c1abd953aa593docHeodo
2020-10-26 22:33:094e166862bb4b0cd09fb6d5fde9004ac49c14d9ac11f8e9d37f551c815721128adocHeodo
2020-10-26 22:20:06300fe8a8206fc96bf8007311c265ecd86c75124818fc9b9f3424286f106da398doc Heodo
2020-10-22 23:28:3759235980108e00a0011ebeca9348c5a39ef6d6ec0b052e15ddeb825e9c21e3d5docHeodo
2020-10-22 22:40:47eedc1f3d57d4274cbfc97e09ca0975f97fff204e89fe92574f9e3964a569c9d7doc Heodo
2020-10-22 22:19:43de172d512ec3cc9e02fe2834be3639ea0cfdc900b82d65acb581575290fc2d70doc Heodo
2020-10-22 21:43:048f46672fc4bd13f926555000c39b3ff624d7b96f41429e568aa2bad30431bbe8doc Heodo
2020-10-20 17:18:035048d7b27c53cf32d071bbfbe3a208164d350d1d9ef8d2bcd423631b5d1b21dcdoc Heodo
2020-10-20 16:54:22e59ffb1d8684c5f593de0d953edca68b56546935b4c9eb2bfc7b55958865826fdoc Heodo
2020-10-20 16:33:132578a0f788096c10b3bcb14ac8c024f44b035e361ca8e1af809c81fb4cdc6ad6doc Heodo
2020-10-20 16:11:04f86eebc5209b2e92bd174a3c00c80a3b021c7ab0ba5c60b46e91b9d92d8f23d6doc Heodo
2020-09-29 15:09:13f973136adc63c4e41033c24a450790d40f8fa1a4e235c23d9c3a61e42b439be7docHeodo