URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: shegah.net
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2020-10-21 16:08:03 UTC
Total malware sites :2
Online malware sites :0 (0%)
Offline Malware sites :2 (100%)
A record(s) observed :1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2020-10-21 16:08:06 85.187.128.34sg1-ts2.a2hosting.comNot listedAS55293 A2HOSTING- SGno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-10-27 10:08:05https://shegah.net/wp-admin/j7lajYdtwWCLhsbpdA7...Offlinedoc emotet ext epoch2 heodo ext Cryptolaemus1
2020-10-21 16:08:06https://shegah.net/wp-admin/form/664304/qQBH/Offlinedoc emotet ext epoch3 heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-10-27 10:08:05590e2f642c1ea60a025eee75c030e1876b5577a64d21cce198959fc4baa07ec5docHeodo
2020-10-22 23:14:4059235980108e00a0011ebeca9348c5a39ef6d6ec0b052e15ddeb825e9c21e3d5docHeodo
2020-10-22 22:42:2769af96e96aafc755df2b99ba9d1925a163cac2579277136ed1a6bc9b24d0bfe0doc Heodo
2020-10-22 22:26:0773afab923f309960ba6ef1f00b4d373abce5e6605b10a2b214ca42b7736f1f6bdoc Heodo
2020-10-22 21:42:208f46672fc4bd13f926555000c39b3ff624d7b96f41429e568aa2bad30431bbe8doc Heodo
2020-10-22 20:47:09188d183f83a1b99f55ae2810384c67e6f7be09014e6004bb5ddbf245abda02b3doc Heodo
2020-10-22 20:39:168ee4f19de24163c27f25fdcc15c7a6f33424aa314467bf393e23f9ee2a59e2fcdoc Heodo
2020-10-22 20:19:34ee5fa6da862f50e1ac9babeca493ba621ca3bc57ab73fb88480bc716457e36f0doc Heodo
2020-10-22 20:09:26837053e508d4b63b491b2e13135ab62be34d6cafbc9a8cbd7d763816dc17f4afdoc Heodo
2020-10-22 19:47:272a3debc28e12818dd54c53582337c7024a1cfb99138ea2baf06c6b45a36efc2bdoc Heodo
2020-10-22 19:08:350dd7566d93fe470be42c3b43f89d10022539dd21c040c3af9f234f5cdf3f580edoc Heodo
2020-10-22 18:47:58dfb6817c6e31d81f6a98945394150b500c04fb563d8fe9ae170733fc922f8421doc Heodo
2020-10-22 18:31:28d8bbe49377ebac547c2afa2ab29a64b774b4ddb3501f62becbaedf4d24c33a0fdoc Heodo
2020-10-22 18:09:212f11fb391c4e5106c86f7af02261b1ce605f84877b62af40538177fc258c9e05doc Heodo
2020-10-22 17:25:19401e3ed004f6a908758dcda91de701a2bf29c67379e11a3fa21438ceb5323864doc Heodo
2020-10-22 17:06:40c997bba83eb4e15d19a871e5f4e7f506eb780772858f744dd12742b9c678e897doc Heodo
2020-10-22 16:41:303d931f3056e01ac585facd9cd6b2295bd63dbc6e340ccc4d94549533f42558e4doc Heodo
2020-10-22 16:22:168c15a10ed4c619cdc9eefbb7d32596330ccb2dbc41b5e21841dd141fee55a85bdoc Heodo
2020-10-22 15:48:45fe69570cfe43c056f36d0a40929d53d4532cd181924613bda7436913979c33cbdoc Heodo
2020-10-22 15:28:5246035df42146415903e45c8938c23ce819bf83cb2e5328b555ec947a0d1b9bd0doc Heodo
2020-10-22 14:51:05af5bddd9f46abad7cf836d9faf757a676ba5bf9a7ee90e04c3a5cecd22c7fbd6doc Heodo
2020-10-22 14:35:02098b7a1d812c209b85974e1f187e3a670e02821164c1dba212da04d78e86ff33doc Heodo
2020-10-22 14:15:5873dbec89c21200a9e7dd1ec67b06b9efad9718584b71af252f4926418abf32f6doc Heodo
2020-10-22 13:39:167fc0ea2dff012c502278a94d7dddb537859be6ac340e8ddecd41eb42b169a7a7doc Heodo
2020-10-22 12:56:22fcc90ffa2119faa6417ad4df76ac4e324afd8f543b1e3896337c6ce2ba635a21doc Heodo
2020-10-22 12:18:514d7e619f0381816bed7d0ffb6ea0a43ebd6050cbfb10f691c1bf8d8466c11345doc Heodo
2020-10-21 16:08:0690828b96547b35641ebd76b91c0200f8f057974be00f528002acf24663c9991fdocHeodo