URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: si-morgh.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2020-08-14 18:45:07 UTC
Total malware sites :1
A record(s) observed :13

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-09-17 18:57:58 188.114.96.3Not listedAS13335 CLOUDFLARENETn/ayes
2025-09-17 18:57:58 188.114.97.3Not listedAS13335 CLOUDFLARENETn/ayes
2025-09-21 14:48:16 104.21.95.155Not listedAS13335 CLOUDFLARENETn/ano
2025-09-21 14:48:15 172.67.145.151Not listedAS13335 CLOUDFLARENETn/ano
2025-05-01 13:57:55 104.21.112.1Not listedAS13335 CLOUDFLARENETn/ano
2025-05-01 13:57:55 104.21.16.1Not listedAS13335 CLOUDFLARENETn/ano
2025-05-01 13:57:55 104.21.32.1Not listedAS13335 CLOUDFLARENETn/ano
2025-05-01 13:57:55 104.21.48.1Not listedAS13335 CLOUDFLARENETn/ano
2025-05-01 13:57:55 104.21.64.1Not listedAS13335 CLOUDFLARENETn/ano
2025-05-01 13:57:55 104.21.80.1SBL681411AS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-08-14 18:45:10http://si-morgh.com/wp-includes/brMYT734/Offlineemotet ext epoch1 exe heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-08-15 07:44:58a643581df62ef6e14f15a1c4c3716973cb318af792dd377f3f5a1ef5a7ff68b4exe Heodo
2020-08-15 06:51:0137715e7082ae3afebd0375b1a18ed861a7d5d06a000842f6d9b853cf58fd4160exe Heodo
2020-08-15 06:23:33c16252a1978344a11efe9ac7d6c6c42678942e9a27ec0de52c0bb3c4a461e84aexe Heodo
2020-08-15 05:56:217b08868998e6cc3049f7facd0f8fbcfec00e50555730bcd3f616642e39fd008aexe Heodo
2020-08-15 05:37:0412f249478eb2a6a704bb9d45acfd8381c58bef19aace983516fb7313da63f452exe Heodo
2020-08-15 05:05:2977792f37489ae52f5bf16fb85ad129194c994b935a8cb07191ffa27b79759d4bexe Heodo
2020-08-15 04:48:2572f29d2f3bd1d0a61fbc934835a0ccea53b444a812a903273fa841c30865f84eexe Heodo
2020-08-15 04:37:1568ea79f32e4f457198352683d65c51d8c965a7e51b7b426544e6be2cb3b3d52bexe Heodo
2020-08-15 04:06:00a2759905d53fb6ffd8d30e7b9e042ae41f47c5ec3bac07f259f9e5d066fa25ddexe Heodo
2020-08-15 03:35:37ed9d2c7db5ee802e7dfbb3d026208e27ee67eed2024cc51158864ec9e3111d1cexe Heodo
2020-08-15 03:02:4037277bd6763f9fc0a1a05185ccc3a29964543911cba66dde502e16f420c3fab6exe Heodo
2020-08-15 02:35:1664e61ec48592cd4f4f841e2c89b963805ab9f5ce321e4156350133b757205d0bexe Heodo
2020-08-15 01:03:030b30a08a8a2a9fef3901abd11210bf62d62f78380c569fde231b819afb8aba71exe Heodo
2020-08-15 00:42:409ba8e9fc58a36fdb84acacefe1bfd8db80375826d9dc13dd039cabbe6aff8821exe Heodo
2020-08-15 00:03:0059512b6e2631c8a5d039404e3c9ffe9bd6d3769c2a7f4f534c27389b24df5c75exe Heodo
2020-08-14 22:30:46c6111c0233fd1040d0157ed5b266d46d0f269975c1793d8576d7a397b9307b7fexe Heodo
2020-08-14 22:13:222cd958410a7e0fd8c90d1433bc3a0a93774aaa6cfc2fa922bbf7e647c91e6629exe Heodo
2020-08-14 21:50:35ee6fe9a1f4978d4d3bd335c84a6bd5c9deb5b915ca9cc9eea6644e202a2da0f0exe Heodo
2020-08-14 21:37:36e204991fcf11e359aee68f7e648d8563c5ea2b6e79909b5dac91fe252edbd2bcexe Heodo
2020-08-14 21:24:55d90257b4a28a919d543636a527dfc5e6001c60dee2817b3eedfbcfa0505d7bc9exeHeodo
2020-08-14 21:00:212458939fb7cba9fdac32f18834be9704676099577eb923581211d955b3157727exe Heodo
2020-08-14 20:21:55b73029b57e21319753d7d1beb2a266a92197ff9f7f3e94a83582e53201ab05c1exe Heodo
2020-08-14 19:55:33d6911fbcda10ea1de28c70dc5da0210f478ebc04917c276bb543720ff7e24f44exe Heodo
2020-08-14 19:28:359db8e149457d1f0bad324e2b00ea8c389f2ec76ec82af56fb8063332dc400f00exe Heodo
2020-08-14 19:03:2230c7b16057696258840215078687028baa6138317bea19b99995f6ee94a076e6exe Heodo
2020-08-14 18:45:105140c2ac403ed4dc5fc1321ac1c65c0962691a1df33f1dc868ab85ddc8dbe5ddexe Heodo