URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: systemgooglegooglegooglegooglegooglegoole.warzonedns.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2019-09-23 22:36:06 UTC
Total malware sites :22
Online malware sites :0 (0%)
Offline Malware sites :22 (100%)
A record(s) observed :1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2019-09-23 22:36:15 23.249.165.218Not listedAS398880 INVESTCLOUD- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2019-09-27 11:19:55http://systemgooglegooglegooglegooglegooglegool...OfflineAgentTesla ext exe oppimaniac
2019-09-27 11:19:42http://systemgooglegooglegooglegooglegooglegool...Offlinewsdl xml oppimaniac
2019-09-27 11:19:12http://systemgooglegooglegooglegooglegooglegool...Offlinedownloader hta oppimaniac
2019-09-26 17:27:04http://systemgooglegooglegooglegooglegooglegool...OfflineRTF zbetcheckin
2019-09-26 13:40:26http://systemgooglegooglegooglegooglegooglegool...OfflineRTF shellcode oppimaniac
2019-09-26 13:40:21http://systemgooglegooglegooglegooglegooglegool...OfflineAgentTesla ext exe oppimaniac
2019-09-26 09:58:20http://systemgooglegooglegooglegooglegooglegool...OfflineAgentTesla ext exe zbetcheckin
2019-09-26 09:51:04http://systemgooglegooglegooglegooglegooglegool...OfflineAgentTesla ext exe zbetcheckin
2019-09-26 09:09:29http://systemgooglegooglegooglegooglegooglegool...OfflineAgentTesla ext exe zbetcheckin
2019-09-26 07:26:04http://systemgooglegooglegooglegooglegooglegool...Offlineexe oppimaniac
2019-09-25 13:33:40http://systemgooglegooglegooglegooglegooglegool...OfflineAgentTesla ext exe oppimaniac
2019-09-25 13:33:18http://systemgooglegooglegooglegooglegooglegool...OfflineAgentTesla ext exe oppimaniac
2019-09-25 11:13:15http://systemgooglegooglegooglegooglegooglegool...OfflineAgentTesla ext exe w3ndige
2019-09-24 17:48:47http://systemgooglegooglegooglegooglegooglegool...Offline JayTHL
2019-09-24 09:18:04http://systemgooglegooglegooglegooglegooglegool...Offlineexe oppimaniac
2019-09-24 07:13:16http://systemgooglegooglegooglegooglegooglegool...Offlineexe oppimaniac
2019-09-24 07:13:12http://systemgooglegooglegooglegooglegooglegool...OfflineAgentTesla ext exe oppimaniac
2019-09-24 07:13:09http://systemgooglegooglegooglegooglegooglegool...Offlineexe oppimaniac
2019-09-24 07:13:04http://systemgooglegooglegooglegooglegooglegool...OfflineAgentTesla ext exe oppimaniac
2019-09-24 07:12:08http://systemgooglegooglegooglegooglegooglegool...OfflineAgentTesla ext exe oppimaniac
2019-09-23 22:36:17http://systemgooglegooglegooglegooglegooglegool...Offlinedoc p5yb34m
2019-09-23 22:36:15http://systemgooglegooglegooglegooglegooglegool...Offlinedoc p5yb34m

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2019-09-27 11:19:55179d3ba3a5ea61d00f5db01a27172aa7c08726b017351cfd3112fa4354afd264exe AgentTesla
2019-09-27 11:19:120cfc4444e5d9b7e4e936876f018288babcccd6c02869f64035fc36ef6dfdcf47hta  
2019-09-26 17:27:043e9f89bc7ec115378d756f36d2a616f5f8489480d4db5d594f56691328c74dffrtf  
2019-09-26 13:40:26cc119372d84ffd1433fa1bbc314cda4f9f8d3fe3b29b0d9a2fccc0ec11643471rtf  
2019-09-26 13:40:215874403d22ff464d331b037c30783c194fa887e264dd9b4e2409a2c512b1d118exe AgentTesla
2019-09-26 09:58:204976d7941500393fd1c39d01900d11cf9a787c3158966867096d1cfc3ae0c6cdexe AgentTesla
2019-09-26 09:51:044d6b858fab1c35ce2db54b4be9da957339e037529d540bc8712d8d7f90a5d6aeexe AgentTesla
2019-09-26 09:09:29bbeaa2b3c1708b78a6b159b32f657d08d86e3fe604933a548a3ebabef7300429exe AgentTesla
2019-09-25 13:33:4097b77b4cd52c9fe10b0d703f52d74ef11d8904d7f01d69405e8f458b93810a16exe AgentTesla
2019-09-25 13:33:18647f587a922e6b9e96c72c571297a13b425daca5acfe4aec3f0c46b20ae4793fexe AgentTesla
2019-09-25 11:13:15193eda8da556f290bbbc811005f4d47b8254f1310933033a14957faaef324ad7exe AgentTesla
2019-09-24 17:48:478c9611ab9a8a8dbc44f93e6f81cb2c46ed936cdde7fb88b9410d50bde750cfb6exe 
2019-09-24 13:45:1885852c127c5e69bd9ecf58eb50ed7a628ca2de1250ff8f8b266973ec4c32fd6dexe AgentTesla
2019-09-24 09:18:048c9611ab9a8a8dbc44f93e6f81cb2c46ed936cdde7fb88b9410d50bde750cfb6exe 
2019-09-24 08:10:29cb2a625a7939d50e44b263d928ae4b15cd1c5ca6553cd31dfeed84c2aa7eb942exe  
2019-09-24 07:13:168c9611ab9a8a8dbc44f93e6f81cb2c46ed936cdde7fb88b9410d50bde750cfb6exe 
2019-09-24 07:13:12db11958eed5cc5666f11798aa0a77b3cc78c04044959d004d7b93cc3c7f74c4fexe AgentTesla
2019-09-24 07:13:098c9611ab9a8a8dbc44f93e6f81cb2c46ed936cdde7fb88b9410d50bde750cfb6exe 
2019-09-24 07:13:04bea7337f0a2d1f179ac2611ca9eb558e2b029e0d04664b69b8f8172852b495cfexe AgentTesla
2019-09-24 07:12:08deec77cb015780d78ca9fed43b7ad96a564f846c56c8c5387c27a39d462e03a6exe AgentTesla
2019-09-23 22:36:177e7af5935c66ecf6d199b08c6c9f0b1736b08d777d64a1447fd4e30526a53bf5rtf  
2019-09-23 22:36:155862239ffbaeb203e8a21a772fa01d966310787d98914d2b08fedf5b7381d038rtf