URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: sweatshop.org
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2018-05-10 10:59:03 UTC
Total malware sites :19
Online malware sites :0 (0%)
Offline Malware sites :19 (100%)
A record(s) observed :31

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-04-27 08:03:25 13.248.169.48a904c694c05102f30.awsglobalaccelerator.comNot listedAS16509 AMAZON-02- USyes
2025-04-27 08:03:25 76.223.54.146a904c694c05102f30.awsglobalaccelerator.comNot listedAS16509 AMAZON-02- USyes
2025-09-05 18:26:24 99.83.161.153a2b7bf3398455f345.awsglobalaccelerator.comNot listedAS16509 AMAZON-02- USno
2025-09-05 18:26:24 166.117.110.61Not listedAS16509 AMAZON-02- USno
2019-09-08 16:10:58 52.58.78.16ec2-52-58-78-16.eu-central-1.compute.amazonaws.comNot listedAS16509 AMAZON-02- DEno
2019-05-07 16:15:13 159.8.210.3523.d2.089f.ip4.static.sl-reverse.comNot listedAS36351 SOFTLAYER- NLno
2019-07-24 05:17:32 52.23.148.124ec2-52-23-148-124.compute-1.amazonaws.comNot listedAS14618 AMAZON-AES- USno
2019-07-24 05:17:32 52.201.79.206ec2-52-201-79-206.compute-1.amazonaws.comNot listedAS14618 AMAZON-AES- USno
2019-04-27 12:35:10 50.63.202.4444.202.63.50.host.secureserver.netNot listedAS26496 AS-26496-GO-DADDY-COM-LLC- USno
2019-04-27 12:53:44 50.63.202.5050.202.63.50.host.secureserver.netNot listedAS26496 AS-26496-GO-DADDY-COM-LLC- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2018-11-19 19:59:07http://sweatshop.org/EN_US/Transaction_details/...Offlineemotet ext heodo ext cocaman
2018-11-19 19:59:07http://sweatshop.org/EN_US/Clients/092018/Offlineemotet ext heodo ext cocaman
2018-11-19 19:59:06http://sweatshop.org/3WDQQK/SEP/Business/Offlineemotet ext heodo ext cocaman
2018-10-03 15:08:03http://sweatshop.org/EN_US/Attachments/10_18Offlinedoc heodo ext zbetcheckin
2018-10-01 09:10:31http://sweatshop.org/EN_US/Transaction_details/...Offlinedoc emotet ext heodo ext unixronin
2018-09-27 02:02:01http://sweatshop.org/EN_US/Clients/092018Offlinedoc emotet ext heodo ext Anonymous
2018-09-26 22:02:02http://sweatshop.org/DOC/Invoice-983079Offlinedoc heodo ext zbetcheckin
2018-09-26 21:52:03http://sweatshop.org/FILE/Invoice-07051/Offlinedoc zbetcheckin
2018-09-24 23:09:58http://sweatshop.org/3WDQQK/SEP/BusinessOfflinedoc emotet ext heodo ext unixronin
2018-06-15 18:30:38http://sweatshop.org/IRS-TRANSCRIPTS-019/1/Offline JayTHL
2018-06-14 05:58:09http://sweatshop.org/STATUS/Invoice-356153Offlinedoc emotet ext heodo ext DecayPotato
2018-06-14 05:57:50http://sweatshop.org/IRS-TRANSCRIPTS-019/1Offlinedoc emotet ext heodo ext DecayPotato
2018-06-13 11:46:06http://sweatshop.org/DOC/Invoice-983079/Offlinedoc emotet ext epoch1 heodo ext Cryptolaemus1
2018-06-07 17:00:08http://sweatshop.org/STATUS/Invoice-356153/Offlinedoc emotet ext heodo ext c_APT_ure
2018-06-07 14:08:14http://sweatshop.org/Zahlung/Rechnungs-Details-...Offlineheodo ext JAMESWT_MHT
2018-06-01 22:51:35http://sweatshop.org/Companies-Invoices-June/Offlinedoc emotet ext heodo ext Cryptolaemus1
2018-05-31 18:22:33http://sweatshop.org/Votre-facture/Offlinedoc emotet ext heodo ext Cryptolaemus1
2018-05-18 08:46:47http://sweatshop.org/dnqN0nl/Offlineemotet ext heodo ext payload JAMESWT_MHT
2018-05-10 10:59:08http://sweatshop.org/LYDNgpecYG/Offlinedoc emotet ext heodo ext Cryptolaemus1