URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	vetsbot.com
Domain registrar:	GoDaddy
Domain registration date:	2021-12-31 19:13:30 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-01-11 10:12:04 UTC
Total malware sites :	3
Online malware sites :	0 (0%)
Offline Malware sites :	3 (100%)
A record(s) observed :	19

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-08-07 15:06:14	54.243.117.197	ec2-54-243-117-197.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	yes
2025-08-07 15:06:14	13.223.25.84	ec2-13-223-25-84.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	yes
2025-07-05 12:32:45	13.216.111.180	ec2-13-216-111-180.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2025-05-24 01:22:22	44.213.46.149	ec2-44-213-46-149.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2025-04-27 13:37:15	18.119.154.66	ec2-18-119-154-66.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2025-04-27 13:37:15	3.140.13.188	ec2-3-140-13-188.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2025-05-06 21:38:49	3.19.116.195	ec2-3-19-116-195.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2025-05-06 21:38:49	3.18.7.81	ec2-3-18-7-81.us-east-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2025-05-01 02:23:28	3.94.41.167	ec2-3-94-41-167.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2025-05-01 02:23:28	52.86.6.113	ec2-52-86-6-113.compute-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-01-11 19:38:05	http://vetsbot.com/wp-content/oWHIxL/?name=	Offline	macro xlm	FplPhoenix1
2022-01-11 10:12:06	http://vetsbot.com/wp-content/oWHIxL/	Offline	emotet epoch4 redir-doc xls	waga_tw
2022-01-11 10:12:05	http://vetsbot.com/wp-content/oWHIxL/?i=1	Offline	emotet epoch4 heodo redir-doc SilentBuilder	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2022-01-12 01:45:12	813438ff7ef652ea23e922f8a5e61c7f14ec49b270546d3ce47f66161707cc03	xls		SilentBuilder
2022-01-12 01:20:23	662f993ddf616adf7550191c5036d719e0cb02c2c5e1fb9b0e87d51598b71190	xls		SilentBuilder
2022-01-12 00:57:38	894ae1ab382fe85d09096d1997f468b8e5f327326c39e15bd1ba47f4c4d2f14f	xls		Heodo
2022-01-12 00:36:31	f9cbf3cdfa7ed91bca677fd8d8e1f0f53c193323abfbbb1ce4d7c6d2f1b9feea	xls		SilentBuilder
2022-01-12 00:15:28	59f00806db4a68a10acb6aa0f9ea1d21c2e8527ff2b82d0ab36196ba0bda9183	xls		SilentBuilder
2022-01-11 23:47:18	66f5d61a2c4246c3bc39141c46e41bdc84c3f12a7db0b2ec3090eace070392d6	xls		SilentBuilder
2022-01-11 23:21:19	bfe1c65501eb9a22ea914fe380d24127cdf99ce17fc20683f99a7b1e0ccc06f8	xls		SilentBuilder
2022-01-11 23:05:24	d616af039b685a1e393e85dfd6d3558a0a062fc2cd776bfdbfd55dd1cca9e55e	xls		SilentBuilder
2022-01-11 22:45:40	e48f10cc12e08a32f523982c024f49dca076b06c6bd47b5cdf3d43aee5097091	xls		Heodo
2022-01-11 22:16:01	14222deeec10d32091a2947e045833bd25c041a662f4090df26e50381cf922c6	xls		Heodo
2022-01-11 21:48:21	e7065618e785e98792d570656fd412ecf695c45ec5a8123d04cf4ee302d225bf	xls		SilentBuilder
2022-01-11 21:23:14	73a93604b31a5b4b301dad4849b63d5e6e48ef8d946f6fbff48b485b1bce7a37	xls		Heodo
2022-01-11 21:13:30	47d359db574e7e651cbf4e0b4d24fe1a2eb3f7b0e3170dbd84c2caae8c0d0a2a	xls		SilentBuilder
2022-01-11 20:54:26	2057afa974ff72e5f28439f4cdef17396772fe0edde04405fbcf8c5cb5a47888	xls		Heodo
2022-01-11 20:23:44	dd5655dd2bb0e1d2dec7b8b92b7795dd64bae918b46c32fa5144129822729d56	xls		SilentBuilder
2022-01-11 20:01:04	3f4ddde39dc20ae5a2558fe48b7341187c1bba0dbd1c95a32644b14592a38653	xls		SilentBuilder
2022-01-11 19:29:29	3d2ad015f60956cee32029cb7d6fee846f34a91d0f6dae2b68cfde31c99b4a77	xls		Heodo
2022-01-11 19:18:48	e9a7a09bdacc562bedc71638c17bacb72b445281366d192033d7c8c85f83ce7f	xls		SilentBuilder
2022-01-11 18:43:01	18e24e9b03fde05fa41b9d86aa612dbbd5deabcebbe97ee5b3a3b7fa8fb43f51	xls		SilentBuilder
2022-01-11 18:34:08	2dcae7d32f68eeb64a9658e7622b2a2e0468e041f884512917151e320f0c509f	xls		SilentBuilder
2022-01-11 18:01:45	6808535f95480e34f3c2c575420e072a74fa57f20d5c69a99b7bc614f19d7b1a	xls		SilentBuilder
2022-01-11 17:36:44	26356d230c56228215ac800ef5e4b0341a653d88d8ebb1c162ccd53a51a94c35	xls		SilentBuilder
2022-01-11 17:26:16	a88483cdfd340711d7a65d74a5646e6bc7159a4af250074e0fea6db954177753	xls		SilentBuilder
2022-01-11 17:12:59	659c21119c192bd5c4c698d0e9c0ef6c5d0ed38bf40907318ccbc4dece45ec76	xls		SilentBuilder
2022-01-11 16:48:40	1cdf6133fd1d4138849b8f2b29f199d90ccce54c369b74a88a14e8329e1051c3	xls		Heodo
2022-01-11 16:29:38	9e3e47f20134301b475d2d5477000f2ff061b7e2ccf7c02aa892d300c3da3b36	xls		SilentBuilder
2022-01-11 16:10:33	d4ab41fa48cb03ac55da7c05e857ea1b5a88a2b31cde074f3036f6129662a10f	xls		SilentBuilder
2022-01-11 15:53:05	2b6937e90b3f57eb3f26b8a3f50b86def03b2d4b3bc30d93e1af1c96656bb4da	xls		Heodo
2022-01-11 15:44:02	1a7c9977fb4cc867ea2449c65ba392c578b883d5025f0f9559a79bbd4365c942	html
2022-01-11 15:17:11	17832170dc965d40f1a4b7b5abf6dd5f8d131468c82c281388bf6f6967b77490	xls		SilentBuilder
2022-01-11 14:57:16	d2c48bc93b2b0711be6bafd81a7eeddc944514e110ef2e1014151dac42e8ab62	xls		SilentBuilder
2022-01-11 14:41:52	89224af568d4e29e7836c2961d33045490b337a9d5d40db852137e1f2dbbfbf9	xls		SilentBuilder
2022-01-11 14:25:01	7c1004454dd200c8e01f09e796c996a70ee951164ec546ae10634a41c1eb4d22	xls		SilentBuilder
2022-01-11 14:04:22	06b383970ed4fab68a430bc021dd0744b77518ec82ef09f6d167c8edbf50fd53	xls		SilentBuilder
2022-01-11 13:46:50	7550a2a99fe2768446351c653515cda693fc4978cdb437177efcc2133117efbc	xls		SilentBuilder
2022-01-11 13:12:39	c17cf152edefc6ce2ed0a5fa783f3bbfd6348b41a22f0da9cdd2722311ddfd62	xls		Heodo
2022-01-11 12:54:11	6b28b200163448c423b79b68a70f8d07d925445d48edb48526d9dfdbf68d47c1	xls		SilentBuilder
2022-01-11 12:49:12	f218c6867a0a060d313d1592c39f606f2193f4d587a404b4372971a6344d0f16	xls		SilentBuilder
2022-01-11 12:27:53	2c100919fb5cad55230897d07dbce3bc2b04df71b4776e51ea5d68390e308b40	xls		Heodo
2022-01-11 12:12:30	c26e7bcb1137bc26303dc119131a3e3e229acc32c7ed38d1792aa7a620c7ae8a	xls		SilentBuilder
2022-01-11 11:46:39	24898aa5a8e0dbd0a57a3238d597dc260a2d27c3279b8b804d3e37ed6d9879ca	xls		SilentBuilder
2022-01-11 11:17:48	93f2d3c86229e3bcb68a7d438023c3d13faab8d441501184deae4191276d2901	xls		SilentBuilder
2022-01-11 10:50:09	24d40155f01f53b41ac50f15270b889bf926d0fc1a67fcd4e56889e3c5858155	xls		Heodo
2022-01-11 10:34:59	8cb32c1832c04deb3bb5583cb17fe575735a9736e91e1bdb7c96f93fdfc6d5e5	xls		SilentBuilder
2022-01-11 10:12:05	848c31751f843b5816b2bfccddeb6b9021467ce7b31d3b0d2b4917ef91bf21ca	html
2022-01-11 10:12:05	d65d9758d8b711595ed8a266156ff62e5ce6632d70f3d7cf0f3123a89484fa59	xls		Heodo