URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	utdifguizdidiz.ru
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-07-02 19:09:32 UTC
Total malware sites :	1
A record(s) observed :	4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	SBL	ASN	Country	Active?
2020-12-15 20:49:21	45.182.189.251	Not listed	AS273045 DATAHOME_S.A.	PA	no
2020-07-18 13:18:10	217.8.117.10	Not listed	AS49505 SELECTEL	TM	no
2020-07-02 19:09:34	217.8.117.63	Not listed	AS49505 SELECTEL	TM	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-07-02 19:09:34	http://utdifguizdidiz.ru/2.exe	Offline	exe phorpiex	zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-11-29 10:33:14	38637b0bf898df12f7549c595eb255b38995e8da8058bff700428d90e98052c1	exe	Phorpiex
2020-09-01 01:17:31	4acacf2ce809228cef96a81a0800bdb497c7aefb2b278420e88ee9dfa49d24d8	exe	Phorpiex
2020-08-13 17:19:22	b184adeced754138a237d5ac1fc2bf9d9edc481693c84812f92e3872935ce088	exe
2020-07-22 09:31:31	cdb2b4c85d67ee5d29410f0411776be88c42a21df4c153b831db9562f7a5f8da	exe	Phorpiex
2020-07-21 05:20:07	14cfe158bf4e24e7df5d2845bf9f73d7a3d1965535998a4ebe368076b874f6e8	exe	Phorpiex
2020-07-02 19:09:33	7885b8275f0732b84c0a8b7a212cdd9e27be2a408b9385d911fbdb0563c55115	exe	Phorpiex