URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: universalpetroleum.com.pk
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-10-16 09:42:05 UTC
Total malware sites :1
A record(s) observed :3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-04-27 22:32:17 135.181.212.206lin140.itlinks.comNot listedAS24940 HETZNER-AS- FIyes
2021-03-23 17:32:52 108.167.152.254box6511.bluehost.comNot listedAS31898 ORACLE-BMC-31898- USno
2020-10-16 09:42:07 192.185.148.125192-185-148-125.unifiedlayer.comNot listedAS19871 NETWORK-SOLUTIONS-HOSTING- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-10-16 09:42:07http://universalpetroleum.com.pk/wp-admin/INC/l...Offlinedoc emotet ext epoch2 heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-10-16 23:09:13bf79372e0c3a2b7a3b0df0f3994621206443404f5c382b8ad5e5c609c6b0e043docHeodo
2020-10-16 22:40:59c041d525830dc0931ba8595f644dd8464550c8e62933d48ba6801f11460b33a9docHeodo
2020-10-16 22:19:3823600bb2ceb80154b049764a263e10cc02148048a332d10edf6458fc4b2cc34cdocHeodo
2020-10-16 21:42:457bc4797a66cfb8dbdc6f95c5568595d0229200838644a798b7228d1bde86b554docHeodo
2020-10-16 21:28:388215f350c6c5d2b5f615bcf7260cb9eeb60747b75a9e6a8e4b9c3ef3b70b8cfedocHeodo
2020-10-16 21:05:19b5bfb66f6635a3c1197ff846a3c54681e117da7e608d1447f0c34861f88ef070docHeodo
2020-10-16 20:32:3865e2d908e6ada4277630aa4113bdde311bd7e49c0e6e656f3102bbb4f61924e3docHeodo
2020-10-16 20:10:4601b41659d4b3ca5ad9f986d2029f5aa621310edb658267e5f478bd784df82874docHeodo
2020-10-16 19:58:018cca5e7fe35ef9fbd67206c7b0e279dd5678cd3c578d93c0091733df4fb01445docHeodo
2020-10-16 19:26:57983555bf6e5340b9a14130644379b3ed4d7c6ccaf937b3e800ae1c1b1164dc25docHeodo
2020-10-16 18:55:590a0ac374574dd78365ae4b5e84357a2387d99dd14752f6a53391324841412b19docHeodo
2020-10-16 18:51:00334cbaeae02aab74b5bcf567ec6fb87be96ca6deead23214dcfb4fc36598b5f7docHeodo
2020-10-16 18:41:05ffa06f345711cab1bbf64ad42a6ab9b9264655ec20d39fd3ab37d4e950c98b8adocHeodo
2020-10-16 18:09:5734ee1271131f57aa2f657049d06dffbee18342c401fa938e4b023ab21831c2e6docHeodo
2020-10-16 17:45:42f7843f9dea6ba5411f94a3fb69fd520310ae4ed660632a9adbdb40a7aa65a85ddocHeodo
2020-10-16 17:34:05e07a28bf930b88ae86abcb35ec1ebfafde47d78f4eb537440b0b37432afdbb30docHeodo
2020-10-16 16:47:584bead4acd3e94b0d94cb2d3be3f50f5d9b5dd425a0d5d5caf6af43b13539d717docHeodo
2020-10-16 16:06:38ef0e715e1da6a1717d119a57d6ec4f961a3a700f9a807b1072fae419151807d8docHeodo
2020-10-16 15:48:04e33080e4baec5f692b6a9902fbf0661cef6fd33fdc1ace3cd95e64fe9c70118edocHeodo
2020-10-16 15:04:205d3294aeac345f3c7f5fc36fafe0997b3a7140045bb1b001649713f9ecf5002bdocHeodo
2020-10-16 14:29:0941b726329c763a097034a2dfa26775648a8594cba8ea2c6604391618c5798a2edocHeodo
2020-10-16 14:13:5066ad2d1939fed89f992a25cbdd0aa594a8c4e2065358f7142dc648ea2f5d8317docHeodo
2020-10-16 13:22:587925fefb0bb1f5625a8189d9ee045b2f5f7ed06a22fc3a75a5c4cafe11f466e0docHeodo
2020-10-16 12:32:44edb4f70584295164d9d97ecd140501fed80903b2d3149447f60b6dff1a991a82docHeodo
2020-10-16 12:09:01de1e044b0692b4790189c84a6a3bff006ea424fc6ab7a94f3063c76dcf38b463docHeodo
2020-10-16 11:23:54928ec3474e204aa23a9fe0971c55669cb5ad9a752f46fdb16c46c974035fdd9fdocHeodo
2020-10-16 10:23:5201f98b1a31eaf93128b65347f3fc0e25b853d2535e9d828263002b80f0e445a0docHeodo
2020-10-16 09:42:06331449b7cf090472612be3eaaf098869cd351983a12f809e5b6dc3860d35c556docHeodo