URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	shaadow.net
Domain registrar:	Ligne Web Services
Domain registration date:	2020-06-11 06:02:24 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-11-02 14:29:04 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-11-15 09:26:16	https://shaadow.net/spii/	Offline	js Pikabot TR zip	Cryptolaemus1
2023-11-02 14:29:18	https://shaadow.net/te/	Offline	Pikabot TA577 TR zip	0x48215333

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2023-11-16 09:41:45	970ce082aa7de573b092c1372beee2c5e755785339382e96a704efeeeb591e3c	zip
2023-11-15 21:35:30	3d4c0928a71e9b706b632e9ce93470fbe3b787d1e3439c48b0a737c29b3453e5	zip
2023-11-15 09:26:16	16d68cc2265ecabe6f4e7772655b137c13460c25b9f4914c112f64274972aaa0	zip
2023-11-03 14:52:21	bed609d4a5c840f6e6dcace12bcfbcbb7c8b2ff9e26cfc1a7ad69ed08848de44	zip
2023-11-02 14:50:08	9d9b4febd78e2833c79d4cede4946b0e562b9c340c732ea4d70f10a6c454c382	zip
2023-11-02 14:29:18	44b060b4c92e24aa17907fa15e9e864adef8d72db526bb9cd4c69b0c8b486beb	zip