URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: shiftcush.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-08-28 02:59:02 UTC
Total malware sites :2
Online malware sites :0 (0%)
Offline Malware sites :2 (100%)
A record(s) observed :299

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-07-17 16:21:41 92.113.16.7Not listedAS47583 AS-HOSTINGER- DEyes
2025-09-10 16:50:29 92.113.23.162Not listedAS47583 AS-HOSTINGER- DEno
2025-10-30 13:33:43 92.113.16.125Not listedAS47583 AS-HOSTINGER- DEno
2025-10-31 07:26:46 92.113.16.25Not listedAS47583 AS-HOSTINGER- DEno
2025-11-11 22:33:01 92.113.23.41Not listedAS47583 AS-HOSTINGER- DEno
2025-11-02 10:29:30 92.113.16.175Not listedAS47583 AS-HOSTINGER- DEno
2025-10-11 00:42:33 92.113.16.152Not listedAS47583 AS-HOSTINGER- DEno
2025-10-12 16:32:30 92.113.23.54Not listedAS47583 AS-HOSTINGER- DEno
2025-09-01 21:33:19 92.113.16.158Not listedAS47583 AS-HOSTINGER- DEno
2025-09-17 04:40:36 92.113.16.197Not listedAS47583 AS-HOSTINGER- DEno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-09-04 12:26:17http://shiftcush.com/cgi-bin/tlamvM/Offlineemotet ext epoch2 exe heodo ext Cryptolaemus1
2020-08-28 02:59:08http://shiftcush.com/cgi-bin/LLC/DVBIgolpv/Offlinedoc emotet ext epoch3 heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-09-04 23:08:59ecf75a280525c48d2e3c6aef0f1cac16e29bb39615a09f37a6d06adc1b2df839exe Heodo
2020-09-04 23:01:48427b2976e993b1b3121b298579f6e4bcb4fa6a79256e4d3ef545ab604a0e77c8exe Heodo
2020-09-04 22:50:1455f47d70a82e52bf444ab987f5058384f6c353ad59d06dfa9aaaff22356ca199exe Heodo
2020-09-04 22:36:0103b8ae0e473ff462b563c6e063bf88e4ccaeb15cf7282184113663da8adad4e4exe Heodo
2020-09-04 22:07:53606cbf83987f4832245eec6c5a27f0e2eb590d0a6d0df1d0ec852fe8b5a7ed6fexe Heodo
2020-09-04 21:52:58615899e25d586a1515fa3ddfd5a5d7a603dc097dde60944d3c7e270c09bf6d09exe Heodo
2020-09-04 21:47:29f98d4a2eca87e668d59b832972925eeb71a4e051b8db791a85d289d2de2bf3cdexe Heodo
2020-09-04 21:41:00c11c1a22ccfd2eb5b9b2457b64bd37fc0d318610de713b0090b7e880d735f3bdexe Heodo
2020-09-04 21:29:40de5b489d2f82de728909f8e6d7897f3be339481d7cbb05476b481194f6f96966exe Heodo
2020-09-04 21:21:07197f99e9f1af9625fe38e8bd8049fbf7b2d633986d4628aa918099549f1ee763exe Heodo
2020-09-04 20:51:479d16af5bb677af2e209d869c2826337bed455663169d4d449d021d5347845f1dexe Heodo
2020-09-04 20:48:18c245783cd7e22c887d5bd3276f33e3461b92ba68307c0bd6ed0a6788ab8cb93dexe Heodo
2020-09-04 20:31:15b0da4078b34a4f61d81bd513c2cc5f174868afbdc8cb554dd14c7c1e3d5c642eexe Heodo
2020-09-04 20:26:45a59cc89593152a329460670f2e7c5b928349baee3e415478935b465ac655194cexe Heodo
2020-09-04 20:09:171bc47841b03ad568aff403ed956d0d18180b6e8d56a6780d7474e743a6ef2636exe Heodo
2020-09-04 20:02:2979ec47f08a5f88d8c9c91ab60ddd6b2fbb85db3676bb9349c07db2c2775a1011exe Heodo
2020-09-04 19:40:108e9ae717543a63d5b8cd7d9dad575b7920b116b62bc7a02ff816b9e4cc3108caexe Heodo
2020-09-04 19:30:127b91aacdb528cb9564a84d4143abf351b2f8565405e1e96a2325e3939e126c30exe Heodo
2020-09-04 19:07:54d888bd7d02cc7834864ea921c154cbaf6245b09b120a906ec6332dca44fd0ba6exe Heodo
2020-09-04 18:47:1047b29f38ad1ed88da9baa7e4bcd38a4ea3c39518e235b1b7b3e2b532f06558adexe Heodo
2020-09-04 18:34:01b0c8d801b42a68f5ea169c3c92a0f238774ff6a213355f9628fd19c1104d6bbaexe Heodo
2020-09-04 18:23:206796db4b9b24fdc98949d2df732d25fab9534211535300db5a97d3050fc77760exe Heodo
2020-09-04 18:05:47b0f2a6124e20dcd682897892d48e3023e569b7b9d3ea23974df724a6881eb3f4exe Heodo
2020-09-04 17:53:0465639b2a6580c7fab5716ee7f996d27f1553f7a465436d52e553ca8c5bdc206cexe Heodo
2020-09-04 17:30:17996475dbbbd257ce5dbf2f4125b33199811ef9c227b005f8a480b3d044c747ecexe Heodo
2020-09-04 17:06:48a57f0ad9aa8641166e3abdf66d83bda561506cd80a3e92efd2e33dab38a1105eexe Heodo
2020-09-04 17:02:53d138cf439231fd572612d801f54a47c9d18384336e6106808f974fb839fc4cfeexe Heodo
2020-09-04 16:38:230eb2386f641d453403899c23502e85533c7cb6574edd33a7c4dfc902c725b809exe Heodo
2020-09-04 16:23:2229003bc6676250a89dd6834f4289d8bdb82c44412183b2e9ec0ce5e76b203f5eexe Heodo
2020-09-04 15:51:39755ced8f99b300981f0ba27d897138e7a04e130017dac88205b7297ba700120fexe Heodo
2020-09-04 15:40:458b9a633498afd2ab125e536342759a5130e99479beb558358f05d1ab001ac323exe Heodo
2020-09-04 15:23:214c6b481fee756a5c51d50145cbd20ca7000213679a425e7cf2aba47fb2296c03exe Heodo
2020-09-04 15:11:46da1290e96adebd98b8ca68b9feb9539aef2d943db740984c78ba85ef187eea1eexe Heodo
2020-09-04 15:01:0726851f95ce8b86bd440ea2ecfecbaebd9d1f3371669c4a91d885c4272f6ac095exe Heodo
2020-09-04 14:46:1746362cc3554caf8412afeaeaa49f9848310569538e646ee65e1d3b27240820e6exe Heodo
2020-09-04 14:37:21d9ba12d8b41dfe0927ffc3f2224e438b1c8edd086cc7ee0c719957b6b9b3e2d0exe Heodo
2020-09-04 14:03:165a5675f4973d524c3559b93173f5f7a6549cbc614aa9214ce9cbd6d940dbdccaexe Heodo
2020-09-04 13:50:494d3adff11d529143c245bf0e9be13364f0a966b4a838dcb5dee7a1093eb5823bexe Heodo
2020-09-04 13:26:40c6109232bba5d0e0e0c42e0309bfca820bc231e3c95bccf324e7a9611bee3426exe Heodo
2020-09-04 13:24:15322815449716e0aa760ea7806c67e7a27249232039e4a2fe2f5556f4749753f7exe Heodo
2020-09-04 13:11:32db1dbcd4b11ccc7964dc687466f244209daebf378345d7bed4e18504ccc09b33exe Heodo
2020-09-04 13:01:529feeefc36ff1c5bb10a3762b053af065d2dace620349d264d696c7c37643e899exe Heodo
2020-09-04 12:38:10e52651cbc21e97238de451762009e3b891eb6970e43194ed93dbef7c2cb11c2bexe Heodo
2020-09-04 12:26:161da8923adc326005efd669a2f79b8a09fe88c8cf5ace3682b4594b02ec6bb146exe Heodo
2020-08-31 20:46:266970e09526535a9d873da6d3384eb043b9ac352593fa8df427f6ed72ca6795c4doc Heodo
2020-08-28 15:15:36fe67dad19921f5aa8094f795c7d533572b3d6d386e1d3b9d1490738b2150e066docHeodo
2020-08-28 11:56:0756385c138dcd6e1f59be2fadd0cb3e78305d5a8b74de904c00ca85d68aa84809docHeodo
2020-08-28 11:35:34f518586d760ddbf3ef58ae4e7f8bc570d1154c9756e793135770a886901385cddocHeodo
2020-08-28 11:00:41c5a9757906c65f2a2961bd352aa8d42181b2b26e9cf2b82e01d6e824d94bc00adocHeodo
2020-08-28 10:45:02642f14769b07ea8ab51a202c4f9b39fc9d7a2a6181baefed723a2d581d729a7adocHeodo
2020-08-28 09:14:59cb74e6583da3957d6fc1c0e3335350497207614a8b8a39c78b13b5818d22af08docHeodo
2020-08-28 08:50:235fcecf8fdfc590ef687d6590209ea3c2ea0ad746b5f4746e537cd64813fce05edocHeodo
2020-08-28 08:13:38f54d6deaf0de0c28779afc333e940e4205cedfafd09a18bb1cc653cf3b2073d4docHeodo
2020-08-28 07:49:15a03a331036791b2d25681114c722041029d9e995c684190654e5f664efe761a0docHeodo
2020-08-28 07:22:09ba1bac226c7ba525e1b2706a7f0a7a0ddec1272db21044df1e28cfd777804a3fdocHeodo
2020-08-28 07:00:58a4e35918b2db5a325a398c79bb0cd310e6d1c70f405953dd8f0335f3c9cc8f2cdocHeodo
2020-08-28 03:58:327e0d6fc8bc7a69d5e27e2130c83b434512af52a5337145098c2426f62abf97eedocHeodo
2020-08-28 02:59:0858ac855f738650f20afd4ac9c528c1f3de9f4a83ff0cfc1c59e409d7c4e56181doc