URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	saulet.astana.kz
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-01-24 19:10:11 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 23:43:56	195.12.114.75	adilet.gov.kz	Not listed	AS205516 NLS-ASTANA	KZ	yes
2020-01-24 19:10:14	95.59.124.162		Not listed	AS9198 KAZTELECOM-AS	KZ	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-01-28 01:14:08	http://saulet.astana.kz/wp-admin/69ki2_htp7z3hm...	Offline	doc emotet epoch1 heodo	Cryptolaemus1
2020-01-24 19:10:14	http://saulet.astana.kz/wp-admin/open_resource/...	Offline	doc emotet epoch1 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-01-28 07:59:36	256954bf735b73749d5fd67afbf6e789abb356f02cec192954e129996801d642	doc	Heodo
2020-01-28 06:49:32	9cb664f1e4189925744979c21e305e2af11f98b2fedd6d32c4e3d5745b51ce07	doc
2020-01-28 05:31:46	61d0d2aa3f2b0af2db0d2e4037ac0753965f1d03e0231b17a3695337b66ddd79	doc	Heodo
2020-01-28 04:41:23	e5f579ac649c7d63c79885d849d0631d7a0fdddabb60cc9fe78f0583a9d00396	doc	Heodo
2020-01-28 04:01:09	20cdcb97c92b8c58397ab1170823f96ce0db2c3e93d4859bd06fb23302687d30	doc	Heodo
2020-01-28 03:00:50	2946e66d3c28fea77d3dc9314e7f9452564f9800fb9904657fef915985f3936e	doc	Heodo
2020-01-28 01:46:03	a021057a2d983bc13e1f6b1516cac0041546aa046e6822c87e09c6c8ba870b1a	doc	Heodo
2020-01-28 01:14:08	d6b962cebae3c20b5db1e4ca260810416f6b990cfa21b0d9e0c8c27ffd1222b5	doc	Heodo
2020-01-25 02:27:24	7a257b44a9fb62afa665bf698344474aa5ad6ab256a2ba1692223bb491dd938e	doc	Heodo
2020-01-25 01:26:25	2c766cefc72ed82b965682d731703859bb9e88bfe41720b32db5fd80a5c1c630	doc	Heodo
2020-01-25 00:28:47	84232ef58a9e4bcd7f0694bb51bf6ddf5969514899f00cee26e1a3d01ed204b2	doc	Heodo
2020-01-24 23:54:23	de72ecd5468e8d098273998dbaaa0402d34eb0966456c717a0c5adc75b3ac2ba	doc	Heodo
2020-01-24 23:24:50	051068762703a365ffb6c23bce9729d7c58f0cff7656580f486c6ce128f9e930	doc	Heodo
2020-01-24 21:53:25	c20bb59f9e7d85bf81173ebe6277c9d3961963762d212abcec41f05238d3e2e6	doc	Heodo
2020-01-24 20:50:36	a4ebb7bf9eda6bed80e85600dc0ef35e2df109053e7925adc5e7e7b8bf4fc432	doc	Heodo
2020-01-24 19:36:34	fadb42916d1b74f1293ad6a0fb9e79a5d8c485ad3dca747689a927986e2aff08	doc	Heodo
2020-01-24 19:10:13	04968d184a007ce4f7b1dd2461cc7326a08cfef6857b3a2967b60ef14d3388d9	doc	Heodo