URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	thedigitalsquad.net
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-10-14 18:10:04 UTC
Total malware sites :	3
Online malware sites :	0 (0%)
Offline Malware sites :	3 (100%)
A record(s) observed :	7

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-28 03:02:23	65.108.78.242	server.cpanell.top	Not listed	AS24940 HETZNER-AS	FI	yes
2025-07-16 05:01:42	13.248.213.45	a67c48129651a0940.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-07-16 05:01:42	76.223.67.189	a67c48129651a0940.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2021-01-15 05:03:22	104.21.68.50		Not listed	AS13335 CLOUDFLARENET	n/a	no
2020-10-14 18:10:05	172.67.186.220		Not listed	AS13335 CLOUDFLARENET	n/a	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-10-19 13:35:10	http://thedigitalsquad.net/sitemap/Wy6wU0/	Offline	emotet epoch3 exe heodo	Cryptolaemus1
2020-10-17 01:41:03	http://thedigitalsquad.net/sitemap/eTrac/	Offline	doc emotet epoch2 heodo	Cryptolaemus1
2020-10-14 18:10:05	http://thedigitalsquad.net/sitemap/attachments/...	Offline	doc emotet epoch2 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-10-19 13:35:10	445c44e77d25ed5e5a7c174a3641cc52b5dae72abc7915578fcf6683c9b05247	exe	Heodo
2020-10-17 08:38:22	4ff23dc1f01527658819824659e03edb6ee7d16cdf8704e61548acf040415238	doc	Heodo
2020-10-17 08:12:20	ff9996026d66c80170010bab3d84d0ba1ecac3a6b87f8e694008feb0bc0b3d4f	doc	Heodo
2020-10-17 07:36:33	a9c15187e473446421b0e900dcd094ee8be1c5ac010d6d2a19bcc988f60d7ddb	doc	Heodo
2020-10-17 06:36:55	82886986ef5507c85b6e17a8904a70bb3b67212863f5f835fa7bc3392d070f80	doc	Heodo
2020-10-17 06:09:10	3ad213e4b7d2660593144245f06a9ba71b10e326cbf5996b2f632ed5457e77d7	doc	Heodo
2020-10-17 05:59:20	127e5f88e44a1886181820087f5a2d1bb09ecec7ca49c027c33c9cdead79c1ac	doc	Heodo
2020-10-17 05:46:15	6d5ed047cba0f40a2bd108fdb285520a5590c29ac64b7a9d32a20719905f1e7c	doc	Heodo
2020-10-17 05:25:38	d718b0058aaa9406fd6bfdf6d7f13e8963789c2c0b331e70fd6e8edd6b1f22eb	doc	Heodo
2020-10-17 04:49:42	69e669abaf2af59fb872755c1dbaac25b25cc27d4dd460db7162fe8b3ebdb158	doc	Heodo
2020-10-17 04:08:00	7563b098e425087d70e59bc0ad1d712d39ec6286fc63eaa9a9eea68f9a7ede26	doc	Heodo
2020-10-17 03:35:40	8358ae3aef04560a786b84a17aa88a981d700993291a3b11aa001fab16829ad9	doc	Heodo
2020-10-17 03:10:23	c85fe8825461de0503c8b9b612f01c88a1124e0c33ace58d20c22cf40c4bd03f	doc	Heodo
2020-10-17 03:01:37	cc0b6720262ce77c846acb19ec1f31511f0f465f1bfd03bd5e8bfb3c6b3e9828	doc	Heodo
2020-10-17 02:33:43	61cf4ff84de3e35dd24e8df00464aa832912b8c378cbffc5da91abc576c809fd	doc	Heodo
2020-10-17 02:06:52	19b133b4ad7b5c3072ca746a89f06864d39ca4c8985ddfb2eeadd125ff5cd7a7	doc	Heodo
2020-10-17 01:41:03	055030f2d18fed27b4bc4f3e461f0eceb8308cbc3182ec2eca899c70d9aee715	doc	Heodo
2020-10-14 18:27:46	b89bb990fae404896ef0862b76296dd30ec5a0c65b2fd307e60abdc5821a9ea0	doc	Heodo
2020-10-14 18:10:04	7f12ac5050b001bf7409ea74f6b6dad0f8bd7d4fc74773887b8ed8e571d12cea	doc	Heodo