URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	rocketbagger.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Blocked
AdGuard :	Blocked
Cloudflare :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2019-10-09 23:19:01 UTC
Total malware sites :	3
Online malware sites :	0 (0%)
Offline Malware sites :	3 (100%)
A record(s) observed :	8

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-28 14:36:05	13.248.243.5	a16e665f42988324c.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	yes
2025-04-28 14:36:05	76.223.105.230	a16e665f42988324c.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	yes
2019-11-30 15:44:30	184.168.221.59	59.221.168.184.host.secureserver.net	Not listed	AS26496 AS-26496-GO-DADDY-COM-LLC	US	no
2019-11-28 12:33:42	50.63.202.41	41.202.63.50.host.secureserver.net	Not listed	AS26496 AS-26496-GO-DADDY-COM-LLC	US	no
2019-11-30 15:01:10	184.168.221.62	62.221.168.184.host.secureserver.net	Not listed	AS26496 AS-26496-GO-DADDY-COM-LLC	US	no
2019-11-29 17:54:35	184.168.221.39	39.221.168.184.host.secureserver.net	Not listed	AS26496 AS-26496-GO-DADDY-COM-LLC	US	no
2020-02-19 12:11:35	184.168.221.35	35.221.168.184.host.secureserver.net	Not listed	AS26496 AS-26496-GO-DADDY-COM-LLC	US	no
2019-10-09 23:19:04	107.180.9.42	42.9.180.107.host.secureserver.net	Not listed	AS26496 AS-26496-GO-DADDY-COM-LLC	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2019-10-15 17:27:14	http://rocketbagger.com/0iayq/7m39842/	Offline	emotet epoch1 exe heodo	Cryptolaemus1
2019-10-15 07:18:14	https://rocketbagger.com/0iayq/7m39842/	Offline	emotet epoch1 exe heodo	abuse_ch
2019-10-09 23:19:04	https://rocketbagger.com/0iayq/rbac8wae-povv6x6...	Offline	emotet epoch3 exe heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2019-11-30 15:02:55	411840419bc6948956e10d549a55797a0618cb936915fa09ae014b7dacacc06a	html
2019-10-16 20:22:02	6b1772ff8e8870c714b4acea5275000a20adce2982bdd0f0f99d1df778728d27	exe	Heodo
2019-10-16 19:35:53	9adce19fb00715bb64552e54796e9bec193abf3a84db92c67578158839e53373	exe	Heodo
2019-10-16 19:35:29	9adce19fb00715bb64552e54796e9bec193abf3a84db92c67578158839e53373	exe	Heodo
2019-10-16 18:50:02	58977bb211c036dbdd3ca821e6a76b6225aaa30382438dcc2de7843e685e3b3d	exe	Heodo
2019-10-16 18:49:52	58977bb211c036dbdd3ca821e6a76b6225aaa30382438dcc2de7843e685e3b3d	exe	Heodo
2019-10-16 18:03:43	11f9207a18156c349d2f237639caea7a3aa77f2907620c9e8d959ef4e20f05ce	exe	Heodo
2019-10-16 18:03:21	11f9207a18156c349d2f237639caea7a3aa77f2907620c9e8d959ef4e20f05ce	exe	Heodo
2019-10-16 16:30:46	279528c7d30318ff4d2b6633490ca457715f873f7a442b7991344dd7a7819e1a	exe	Heodo
2019-10-16 16:30:22	279528c7d30318ff4d2b6633490ca457715f873f7a442b7991344dd7a7819e1a	exe	Heodo
2019-10-16 11:08:09	fb0a0f10cbebefb5dbe6034c3bdfe246179e444c68a6e36c4d20232d52fc07a7	exe	Heodo
2019-10-16 11:07:39	fb0a0f10cbebefb5dbe6034c3bdfe246179e444c68a6e36c4d20232d52fc07a7	exe	Heodo
2019-10-16 08:01:05	e760fc0b42582d93198e24a1eb9f335eee399ed61e04255cdec3b3edded2abfc	exe	Heodo
2019-10-16 08:00:29	e760fc0b42582d93198e24a1eb9f335eee399ed61e04255cdec3b3edded2abfc	exe	Heodo
2019-10-16 00:14:37	3b84df99ab9980cfb87380d48f8819bd217eea2553e3e3d2a2942ab35a1688e0	exe	Heodo
2019-10-16 00:14:08	3b84df99ab9980cfb87380d48f8819bd217eea2553e3e3d2a2942ab35a1688e0	exe	Heodo
2019-10-15 21:11:07	908619a387352495ff2ea2d8e46c70aa1e390dd5f6a87e5898d5eb146e30cf85	exe	Heodo
2019-10-15 21:10:24	908619a387352495ff2ea2d8e46c70aa1e390dd5f6a87e5898d5eb146e30cf85	exe	Heodo
2019-10-15 17:27:14	4ccb4e885119ed8356f145caa1856f0b617701c6fe85e2523a499ca4e2959da2	exe	Heodo
2019-10-15 17:17:42	4ccb4e885119ed8356f145caa1856f0b617701c6fe85e2523a499ca4e2959da2	exe	Heodo
2019-10-15 14:57:28	5a51b5ef825d24b6c6e80a155a2a58d9f5a80f6d34b3f45059a38c6073116c09	exe	Heodo
2019-10-15 13:24:37	0bc19c1c25a5884dd846841150c9de183a78a509e6480536e5ff723eef4e188a	exe	Heodo
2019-10-15 10:19:43	447a57b8ca984ee2d39cfe7e879a2a79bd6382d025f733a7553da87a4b1761c7	exe	Heodo
2019-10-15 07:37:14	83b59305347b3939113353adcfd1f8cefa64f97a7ef58dde3d579471b4f0b935	exe	Heodo
2019-10-15 07:18:14	03150e8e65c02b6b7d8475ebf3c8f4bb79290fa56422a87614d236033ee2b48b	exe	Heodo
2019-10-10 12:20:42	f8842162354595fcf7d7b14c9aa9b7422dd432c166fe4b82c1eba6bbc69ea078	exe	Heodo
2019-10-10 11:07:45	5b3bd23e42579e4c74adb320ee1adcd9d658cf08c9885f2eb2cccced13d33e3f	exe	Heodo
2019-10-10 09:29:28	5c337f8f46e5fdad2ab0e4999cff0c47665baa67c097b9adf3f42184ba430063	exe	Heodo
2019-10-10 07:28:31	d1b2855bba105a08d0debd5c9e21ee29d07d04e90f09adca230da7f83f701867	exe	Heodo
2019-10-10 01:01:26	ddecacbbb1f58ccee7d1590fe0bf717c847fb75bd8ddf606927cfb2ea418dcd4	exe	Heodo
2019-10-09 23:19:04	b6c5d6655ef066545f8b9b8094c7347bf283e771b8f9b46b8e8f6e08144dcf13	exe	Heodo