URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	swmoz.demo9lec.co.za
Domain registrar:	n/a
Domain registration date:	2021-04-01 08:09:35 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-01-11 17:48:04 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-01-11 17:48:06	129.232.136.231	dedi703.jnb3.host-h.net	Not listed	AS37153 xneelo	ZA	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-01-11 17:48:06	http://swmoz.demo9lec.co.za/dgcothq/3629720WVWL...	Offline	doc emotet epoch5 heodo	Cryptolaemus1
2022-01-11 17:48:06	http://swmoz.demo9lec.co.za/dgcothq/3629720WVWL...	Offline	emotet epoch5 redir-doc	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-01-12 00:02:31	697ea1260245ebb08b7387e6d6f4eddd9f9d37d4849abb996244b79526827a11	xlsm	Heodo
2022-01-11 23:57:47	c82f282fe8e4c3583e5e4d834ae90565ff0b3fb958513688b442153cc57c82fb	xlsm	Heodo
2022-01-11 23:29:20	1df00c09db9bfcf4e493dacdef73f2b732cd06ae4b931bd356516667a44c47e2	xlsm	Heodo
2022-01-11 23:03:07	57bb4eb8428998738c8860427c1c1de98d681120512901d8174f8fc2edd545f9	xlsm	Heodo
2022-01-11 22:34:48	eadf1f43941284bcf91014295d0353b4d71e409b16b8f8991dbdf11ba404bf2a	xlsm	Heodo
2022-01-11 22:10:34	8a9101b7343bf1a4608ae17b84bd290c1e40f510ec792e9c5d3cc5ace4ca5490	xlsm	Heodo
2022-01-11 21:38:00	20be5590c08561d3a5be97621400daf8528533950a589089a00a259da40668d8	xlsm	Heodo
2022-01-11 21:23:01	69fdc8b909b3d9e8de4ffafb89dff475c99a4e3ac57eda41c014cea8ee8ddcb6	xlsm	Heodo
2022-01-11 21:05:19	c4bc03a927a72a21be0b15c8c55124264c456a940a325d8071f5cbcb7032f1c8	xlsm	Heodo
2022-01-11 20:47:32	6c410c1ef971638f6cb6b26c9c1613bd8cb7c3bb10ea63146e40405c80cca38a	xlsm	Heodo
2022-01-11 20:21:14	be28d13f222be634d640dd982c04039f80c9ada5efc2eb126adca4c9a3595d6d	xlsm	Heodo
2022-01-11 20:15:06	9a67c9f6fd753a0ebb03e8eff1557ea4fdb517b473c8be64c1d4f6a94da900c5	xlsm	Heodo
2022-01-11 20:06:15	051d5f4c4102ef6ac6b09bb70a215e4d78b98be24d8a20d7cf483e656d34109c	xlsm	Heodo
2022-01-11 19:34:57	95761ae4efbb60ee498b7d56d6c84e48753a21ab59a655f5439b47167baf6ea2	xlsm	Heodo
2022-01-11 19:14:35	c7361097a3fd04904faaab145a9e15e79e0a3f772aa9f0e374e8ecb7e2bca145	xlsm	Heodo
2022-01-11 18:45:19	9130d8068b2ef10c7127ddbc23715591e0bd026c0ce94a36c26d92b99ee8e524	xlsm	Heodo
2022-01-11 18:23:06	60a2fe4a87a42aef09d57e41fa80f438983821928336d78cd14ce1042e638b6b	xlsm	Heodo
2022-01-11 18:01:40	2c337e62c2e3a1a3f742a2c7977a24bec7e8458e31a0cde9ce590cc53ff5a819	xlsm	Heodo
2022-01-11 17:48:06	94fc2ad122ed454bc9372a45f62f10e8f65f77f51f5acc8f871f72454aa449fd	xlsm	Heodo
2022-01-11 17:48:06	750618fa0e29db1c757b6210b2f85f409c638f79b64db3d2d0a12723c292fefd	html