URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: theanalysthandbook.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-08-25 15:07:53 UTC
Total malware sites :4
Online malware sites :0 (0%)
Offline Malware sites :4 (100%)
A record(s) observed :4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-04-27 13:51:58 192.124.249.164cloudproxy10164.sucuri.netNot listedAS30148 SUCURI-SEC- USno
2020-08-25 15:07:55 172.67.214.144Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-09-03 18:26:06https://theanalysthandbook.com/test/esp/m337113...Offlinedoc emotet ext epoch2 heodo ext Cryptolaemus1
2020-08-28 02:29:21http://theanalysthandbook.com/db_rp/paclm/ovnjw...Offlinedoc emotet ext epoch2 Cryptolaemus1
2020-08-27 14:42:07https://theanalysthandbook.com/db_rp/paclm/ovnj...Offlinedoc emotet ext epoch2 heodo ext spamhaus
2020-08-25 15:07:55https://theanalysthandbook.com/db_rp/2m/Offlineemotet ext epoch2 exe heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-09-03 20:23:58b0648be195b90dbea0bcd661f11641d1dc99de565cc9623fa916f9c923698468docHeodo
2020-09-03 19:37:14f50133085cf408fa42e3568d8466e35d6ae2ceffb26ec78fc25041eb5e5d7c93docHeodo
2020-09-03 19:27:12b4c26da2003c0bbd1df1fc293d4306987e7c99ab75a8627baa832df44fc0abdadocHeodo
2020-09-03 19:09:07d7dccaf606ccac241264d06440a58415ea545b955e3e2538954c3ab166c541c3docHeodo
2020-09-03 18:55:04c1924a497d65fe1edfe3f41fa1f0010c8b39633a80994803811dba21f11e934bdocHeodo
2020-09-03 18:36:2634e226cc8c168a37bf37367d93f797b8a5b449f27218a526e356a1da9deb245fdocHeodo
2020-09-03 18:26:065a198cbc9190e651ca5b22929375ed1038b0bed660f502cc70540812369b5b4adocHeodo
2020-08-27 17:30:1457dac421ffe1a98070334b279e5be3bd97ea21ee620e9d6cbf9dd0450c04a547docHeodo
2020-08-27 17:03:06e78a6ee75d01f036582642ab17d77ee25e5dca151ec9db5e328209d2be2ae236docHeodo
2020-08-27 16:44:021ed11ebc12a09924917104bea8ca68bf4f6c24654b6ad0e17100ca907a01d698docHeodo
2020-08-27 16:30:22c6081344c883e627f79612b8bcaf44b55befbbb92800f6a709696a3749180534docHeodo
2020-08-27 15:58:29d56d9d709306f23661f511e5201029bc098ddb98a2c5378c99d5314793b6b30edocHeodo
2020-08-27 14:42:0772a047a55409445c1767467b0e67391b0fbdb99be5b2e6a5457df52c7e2ef398docHeodo
2020-08-25 17:26:587dbec2e4e98fd69975c7ad6b0c67a8f14de371f86b74819854534feb2d963f56exe Heodo
2020-08-25 17:09:08a74d1eb76e7382064ea3fde36e218b11adb706562119dcd9740e0cd606e79681exe Heodo
2020-08-25 16:49:137bd09b7b03e754017f6b913d36c8a455ba29eb2847dda0ee539d231c95bdd64dexe Heodo
2020-08-25 16:31:149fdf360dbe37fcecc6f67e1eb4e107bb6aa8d165eac5e095a8bcdaf073d92e75exe Heodo
2020-08-25 16:14:2700750e8d1200f38f8f2c554ab0c25ee7786896ce06008da8677b7d0e1992c1fcexe Heodo
2020-08-25 15:56:51bd6fa3e053024cb208e1195993627dcf03550b04a277d6f0f298fbbaaa8901fbexe Heodo
2020-08-25 15:17:42ba2550ef28f3f9c0ee194712d3df7e6157f588788a35e8f615b24abf657ef7b2exe Heodo
2020-08-25 15:07:553492abef78c9cc389185c993af8ac086f185a3a9cb136d545abfd25f6966eaf4exe Heodo