URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	southernsunpathology.com.au
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2018-06-28 04:33:09 UTC
Total malware sites :	4
Online malware sites :	0 (0%)
Offline Malware sites :	4 (100%)
A record(s) observed :	56

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-11-15 07:22:59	16.176.95.34	ec2-16-176-95-34.ap-southeast-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	AU	yes
2025-11-16 04:01:53	13.237.116.9	ec2-13-237-116-9.ap-southeast-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	AU	yes
2025-11-17 00:07:50	52.64.222.114	ec2-52-64-222-114.ap-southeast-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	AU	yes
2025-11-13 08:37:03	3.104.56.84	ec2-3-104-56-84.ap-southeast-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	AU	no
2025-11-10 17:46:56	13.54.56.142	ec2-13-54-56-142.ap-southeast-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	AU	no
2025-11-10 00:05:28	54.153.231.184	ec2-54-153-231-184.ap-southeast-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	AU	no
2025-11-08 09:03:46	54.253.236.100	ec2-54-253-236-100.ap-southeast-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	AU	no
2025-11-04 02:46:52	54.252.172.13	ec2-54-252-172-13.ap-southeast-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	AU	no
2025-11-03 04:01:08	3.105.236.187	ec2-3-105-236-187.ap-southeast-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	AU	no
2025-11-01 18:20:18	16.176.40.196	ec2-16-176-40-196.ap-southeast-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	AU	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2018-06-30 06:12:15	http://southernsunpathology.com.au/Overdue-paym...	Offline	emotet heodo	p5yb34m
2018-06-28 23:04:12	http://southernsunpathology.com.au/Overdue-paym...	Offline	doc emotet heodo	Anonymous
2018-06-28 05:37:03	http://southernsunpathology.com.au/Hilfestellun...	Offline	emotet heodo	p5yb34m
2018-06-28 04:33:12	http://southernsunpathology.com.au/Hilfestellun...	Offline	heodo	JayTHL

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2018-06-30 08:35:27	027c6eff88fad90897f116eb96b21980bdf0d89f36f72df4960726e3334331c6	doc	Heodo
2018-06-30 07:18:37	027c6eff88fad90897f116eb96b21980bdf0d89f36f72df4960726e3334331c6	doc	Heodo
2018-06-29 21:52:01	276e5e230766222ed208b1d4d1bd994acc2e763ca71c6d28f41a17988375d099	doc	Heodo