URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | vitaltea.co.nz |
|---|---|
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Status unknown |
| AdGuard : | Blocked |
| Cloudflare : | Blocked |
| ProtonDNS : | Status unknown |
| OpenBLD : | Blocked |
| DNS4EU : | Blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2020-05-29 14:54:59 UTC |
| Total malware sites : | 5 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 5 (100%) |
| A record(s) observed : | 6 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2020-06-09 14:25:16 | 178.62.36.47 | 562086.cloudwaysapps.com | Not listed | AS14061 DIGITALOCEAN-ASN |  GB | no |
| 2020-06-06 09:28:20 | 209.141.49.37 | 2.tor-exit.neelc.org | Not listed | AS53667 PONYNET |  US | no |
| 2020-06-06 08:29:14 | 192.241.128.245 | Not listed | AS14061 DIGITALOCEAN-ASN | US | no | |
| 2020-06-02 04:33:04 | 54.177.141.92 | ec2-54-177-141-92.us-west-1.compute.amazonaws.com | Not listed | AS16509 AMAZON-02 | US | no |
| 2020-05-30 11:33:23 | 52.186.159.223 | Not listed | AS8075 MICROSOFT-CORP-MSN-AS-BLOCK | US | no | |
| 2020-05-29 14:55:05 | 52.255.206.195 | Not listed | AS8075 MICROSOFT-CORP-MSN-AS-BLOCK | US | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2020-06-05 13:03:14 | http://vitaltea.co.nz/ned/kris-stub_tPvCfLzh221... | Offline | encrypted GuLoader  |  abuse_ch |
| 2020-06-02 10:23:02 | http://vitaltea.co.nz/kidi/swaaap2020_kELYbpn10... | Offline | encrypted GuLoader | abuse_ch |
| 2020-06-02 10:22:51 | http://vitaltea.co.nz/kidi/bt_qxAIlDSP182.bin | Offline | encrypted GuLoader | abuse_ch |
| 2020-06-01 08:36:02 | http://vitaltea.co.nz/xx/net-x_SVsddcSkXN90.bin | Offline | encrypted GuLoader | abuse_ch |
| 2020-05-29 14:55:05 | http://vitaltea.co.nz/ned/n-bin_GuMUo43.bin | Offline | encrypted GuLoader | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2020-06-06 08:38:33 | a7678289aea04547206ccecf0c7f5d0bcf5d4bab322fff070b085a498c999172 | unknown | ||
| 2020-06-02 10:23:02 | 1c844ac66f6fe397f63c2d164ac9a50f417b0a1b738746d5f4e8af500ef63179 | unknown | ||
| 2020-06-02 10:22:51 | ea64773fe66dea4f4a641218399a64c1b4ff5271974293837fc3e76a1a76f4f6 | unknown | ||
| 2020-06-01 08:36:02 | a1fe28dc35e365ee2edb1749bd9793e02b98357284b5c33869ca6c09530c1365 | unknown | ||
| 2020-05-29 14:55:02 | c8501ede4441f3dca8df4803b8eaaa4d32ea49200b19f53ab15c96b3d1f021e2 | unknown |