URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | uvibrands.com |
|---|---|
| Domain registrar: | Porkbun  |
| Domain registration date: | 2020-10-15 09:30:25 UTC |
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Status unknown |
| AdGuard : | Not blocked |
| Cloudflare : | Blocked |
| ProtonDNS : | Status unknown |
| OpenBLD : | Not blocked |
| DNS4EU : | Blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2020-10-22 20:38:03 UTC |
| Total malware sites : | 2 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 2 (100%) |
| A record(s) observed : | 4 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2020-12-14 16:03:08 | 35.214.240.126 | 126.240.214.35.bc.googleusercontent.com | Not listed | AS15169 GOOGLE |  NL | no |
| 2020-10-22 20:40:09 | 104.18.48.233 | Not listed | AS13335 CLOUDFLARENET | n/a | no | |
| 2020-10-22 20:40:09 | 104.18.49.233 | Not listed | AS13335 CLOUDFLARENET | n/a | no | |
| 2020-10-22 20:40:09 | 172.67.155.28 | Not listed | AS13335 CLOUDFLARENET | n/a | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2020-10-29 23:11:03 | http://uvibrands.com/QIG/ | Offline | emotet  exe heodo |  Cryptolaemus1 |
| 2020-10-22 20:40:09 | https://uvibrands.com/QIG/ | Offline | emotet epoch1 exe heodo | Cryptolaemus1 |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2020-10-23 00:07:48 | d3e983af30e9e48dd650933b6f2431f4b3dcd5bc7bfa089c363fad920f1b4ea9 | exe | Heodo | |
| 2020-10-22 23:55:42 | 857ceb3d53a04bbb6f5aafcdbf5a9f06eb2d1ef8b949b23ba452a50547eb961b | exe | Heodo | |
| 2020-10-22 23:28:35 | e844aef43e6b948af4512a4d7d23901409676120e3df98aef0315a2022f615cd | exe | Heodo | |
| 2020-10-22 22:32:52 | 29c23aa23e15d583e20d928b64d4fa5507f9dc730e0d5f8a9c82371688bd7470 | exe | Heodo | |
| 2020-10-22 22:25:15 | 63a94d3116d5aa72ab18789dc8df29db6a2bde75d257f2d4aeeccaf0884e76d3 | exe | Heodo | |
| 2020-10-22 21:32:24 | 6ddfe680a77812384ca1a492ed34908ef05b9da52e5d8959929a567ff54c0472 | exe | Heodo | |
| 2020-10-22 20:53:42 | 3d1cc975358fa0a302a89c24ab804aaa49556414a647c1f05c5b97c0b9546d15 | exe | Heodo | |
| 2020-10-22 20:40:09 | de5e71b2fe5b6f1f6e7f975e694560ebe4621a553a0065614796c01f59363362 | exe | Heodo |