URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	varafood.com
Domain registrar:	n/a
Domain registration date:	2000-07-06 17:15:09 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-02-03 15:17:04 UTC
Total malware sites :	1
A record(s) observed :	3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-08-29 18:30:42	27.254.96.235	cs95.hostneverdie.com	Not listed	AS9891 CSLOX-IDC-AS-AP	TH	yes
2022-07-05 03:15:24	103.208.24.33	103-208-24-33.idc.pop-idc.com	Not listed	AS135063 POPNIXCO-AS-AP	TH	no
2022-02-03 15:17:15	64.29.151.221	hostedc40.carrierzone.com	Not listed	AS30447 INFB2-AS	CA	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-02-03 15:17:15	http://varafood.com/Ajax/cnM91G/	Offline	dll emotet epoch4 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-02-04 10:28:17	b6e4ec2f6af9d3e80425457387f75a230bcfe3f2b679e7bca34aa56eca495b5e	dll	Heodo
2022-02-04 10:09:55	d7741152b7695ca0dc171760c37c6f153bd8d03605fa4f6d5cb1713e6dc7c53e	dll	Heodo
2022-02-04 09:21:33	cf2c296bafcad1373c95a712990b56f60d1f3716bed64814f5b419dfbd5bfdd5	dll	Heodo
2022-02-04 08:18:25	735f71dac15dacd2b0947695c6fa5b09c9448959020d0ed9c96e085b4a8e6ea6	dll	Heodo
2022-02-04 07:24:51	3e2252d87ff00393c5442b0f00635a34cf03e60217a34393feb86e37024c8932	dll	Heodo
2022-02-04 06:40:11	80408ba28594234ce87be7bc96c207abb2c895e1a93dc821e11c8d14ece4de2f	dll	Heodo
2022-02-04 04:56:01	ef01dfbdc7e4b05214861d51bc248258d155ad57bb0eaf26cee4fb1afd039ee3	dll	Heodo
2022-02-04 04:44:04	1ba3e38cb967737b73538573344e0a1c5909adcbeef0cefb4f358e60ff5d8326	dll	Heodo
2022-02-04 03:04:31	613a465619f13655aec688d2282b337331a9220c03800384525c67a03a7debd9	dll	Heodo
2022-02-04 02:44:03	d0f3554794d5a3a72864cc26cb76f9a5d4188e078048d1633ad990dd8d400e26	dll	Heodo
2022-02-04 02:37:57	781598858e0776ded411d11b53e7909d8f02b992b0aeb037d9566f83944fade8	dll	Heodo
2022-02-04 01:35:46	c6d0ccc829388ac841a8a8f5cc722ceb2a6fd7d3fc34d485b057b3664e66a5d3	dll	Heodo
2022-02-04 00:31:40	96d98cd42fe86bd413df9f918edd05bd22f27d7ddcc169ff59ce8d3daa8df5e8	dll	Heodo
2022-02-04 00:22:43	45e1eff418e056d444fbc14f86e1430afe2e0ad92577284e779b805f111216ad	dll	Heodo
2022-02-03 23:27:04	74472f4ae96cce6e18e124e8cad5891fc178225211078de3afc23e304a6feb43	dll	Heodo
2022-02-03 22:19:23	299418de8af469bbbf799108275190173268734e138d8478804ded54995999a5	dll	Heodo
2022-02-03 21:22:46	903d0a55211723dd075194ae095f5c5cba048b0da1659b53b9cb0510c50b7978	dll	Heodo
2022-02-03 21:07:24	e4bee2ca0a16414038ba4ab0ffda87907600d8eba4ae2275b535dbb2cb799e32	dll	Heodo
2022-02-03 19:41:43	8e20e8efbaba910231583c794bfd6dfeabadfc3a9a746ec67af7f68c21bfeefd	dll	Heodo
2022-02-03 19:27:49	1d2329790d5c3f9bbd9206432a0061eb5ff5215988c98dad269656c25486cc8f	dll	Heodo
2022-02-03 18:21:21	f3cd1b382555c6998b3081cd16b23612dca759ad8ca4af8cea2ea79fad121079	dll	Heodo
2022-02-03 17:40:51	b4e13c70bf270d42f31e8045a4424defe90b6e3376a7835c1e4f96e8fae8adeb	dll	Heodo
2022-02-03 16:00:23	5447cccfdec8d02098ab8621579eb6f3e26c83730fbf2c1826611ee6b8c427e0	dll	Heodo
2022-02-03 15:17:15	391a0d2412355cf0c5da0af88297b1c96942af33d1739f73c6a8e917a049bad9	dll	Heodo