URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: tetrasoftbd.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2019-02-22 21:06:02 UTC
Total malware sites :3
Online malware sites :0 (0%)
Offline Malware sites :3 (100%)
A record(s) observed :11

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2022-12-20 17:23:46 188.114.96.3Not listedAS13335 CLOUDFLARENETn/ayes
2022-12-20 17:23:46 188.114.97.3Not listedAS13335 CLOUDFLARENETn/ayes
2025-04-27 18:48:51 104.21.112.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-27 18:48:51 104.21.16.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-27 18:48:51 104.21.32.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-27 18:48:51 104.21.48.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-27 18:48:51 104.21.64.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-27 18:48:51 104.21.80.1SBL681411AS13335 CLOUDFLARENETn/ano
2025-04-27 18:48:51 104.21.96.1Not listedAS13335 CLOUDFLARENETn/ano
2019-02-22 21:06:04 103.19.252.10Not listedAS135407 TES-PL-AS-AP- PKno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-12-20 17:23:46https://tetrasoftbd.com/ius/index.phpOfflineBB11 img Qakbot ext qbot ext Quakbot ext RR17 TR vhd zip Cryptolaemus1
2019-04-09 13:01:06http://tetrasoftbd.com/www.tetrasoftbd.com/AdYu...Offlineemotet ext heodo ext spamhaus
2019-02-22 21:06:04http://tetrasoftbd.com/REF/llc/zLZCf-ENfx_ritXq...Offlinedoc emotet ext epoch1 heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-12-20 17:23:4697f533b2a1f3f57dd1a7004ff7731813562c468e0ef9547dd8eaec173aed811azip  
2019-04-12 08:49:355873729a33644ad485c78f19c464eddf0bcede944c0cb70744823b33e822358ddoc Heodo
2019-04-10 16:26:2926b5d6c8934dbf593f2cc541bacac6e7812d71ddec256eb7bb4e9dd61b9c13b4jsHeodo
2019-04-10 13:49:307853439472ed9cd4358d92492c3abbb44d2ae46a2e3fbceebea2bcd858e4ebaajs Heodo
2019-04-10 06:47:22fded1345d0108bf6da569dbb8b00e143b393e89c87cb201965cd1da0631ad4a8js  
2019-04-09 22:00:157ddfffb789cb316a55ff6f7c0dea5a703dbe3cbdd25d70cf6cc60481e90a057cjs Heodo
2019-04-09 19:30:16acf25e3037e9664ba1b431d3eab0b2f0418313cb8fd610f771aee77959ada080js Heodo
2019-04-09 19:00:16de119eb7ffbe8ba216a974c74bb70daf1e24aee83770fd4d19e449a96daa400dzip  
2019-04-09 18:32:1268af1c3207973cd2968f86822a859a10a44c9b2534c60398be11baf4e11dc947zip  
2019-04-09 18:07:11d9ebabfe02510cc99294cbb04dc335f9b025300b60a2ea54aac2eae7ee00ebc3zip  
2019-04-09 17:38:197e7f7287126a39c892cb19a99a4b423d44c05edc865c81b4ef056e13c6993b3fdoc Heodo
2019-04-09 17:09:1909aab77d8262bff03f3f248d7c57bcef951c77fbfe7804271a686a38c65e1afddoc Heodo
2019-04-09 16:38:15e22e6d51feec8322afa902548c00e0fe5577c5396cec91dfc6ab667d86c127c7doc Heodo
2019-04-09 16:07:1076be863e92e0774d2a46a90cd1249a22f692797ff83297c78ff70aacd4548abddoc Heodo
2019-04-09 15:37:155c83ab6f44b361a3225461edbb19b706a4e93d51fe0cb9131a62a30d23b6db03doc Heodo
2019-04-09 15:06:123c1cef7865984c52e42b2562cf0159b3c09bf0a384c7fa08c3ff92862b4da14bdoc Heodo
2019-04-09 14:36:1248172e9c6e67f30e18b821c1232b558184327dd6dad274ff70357426d3e984b1doc Heodo
2019-04-09 14:05:1475976f6bfbbf5bc1fb47a93838fed6b7553cf611c8b618f777f4e20815f9b344doc Heodo
2019-04-09 13:34:127b1c9bf1ef30c27476121148fd481f8c5ab68e5d99b255632367f4197e751ceddoc Heodo
2019-04-09 13:01:063f73fd0b80db6f017da962bf4342bb449b3c00ead1a32a5b02e9867829e258fddoc Heodo