URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	webservicesamazin.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-07-14 16:11:04 UTC
Total malware sites :	28
Online malware sites :	0 (0%)
Offline Malware sites :	28 (100%)
A record(s) observed :	5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-07-07 17:08:50	99.83.154.118	a51062ecadbb5a26e.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2021-07-14 16:11:07	128.199.243.169		Not listed	AS14061 DIGITALOCEAN-ASN	SG	no
2021-07-14 16:11:07	163.172.213.69	163-172-213-69.rev.poneytelecom.eu	Not listed	AS12876 AS12876	NL	no
2021-07-14 16:11:07	208.83.69.35	ignignokt.mudkips.net	Not listed	AS22438 CLEAR-RATE-COMMUNICATIONS	US	no
2021-07-14 16:11:07	185.21.216.153	thisis.feralhosting.com	Not listed	AS200052 FERAL	GB	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-07-15 10:44:05	http://webservicesamazin.com:8088/styles/file11...	Offline	32 Dridex exe	zbetcheckin
2021-07-15 08:58:06	http://webservicesamazin.com:8088/js/Invoice%20...	Offline	CobaltStrike Dridex excel	zbetcheckin
2021-07-15 02:22:06	http://webservicesamazin.com:8088/tpls/file5.bin	Offline	32 Dridex exe	zbetcheckin
2021-07-15 02:22:04	http://webservicesamazin.com:8088/bundle/file11...	Offline	32 Dridex exe	zbetcheckin
2021-07-15 02:16:03	http://webservicesamazin.com:8088/bundle/Invoic...	Offline	Dridex excel	zbetcheckin
2021-07-14 21:02:22	http://webservicesamazin.com:8088/templates/fil...	Offline	32 Dridex exe	zbetcheckin
2021-07-14 20:59:17	http://webservicesamazin.com:8088/images/detail...	Offline	CobaltStrike Dridex	Cryptolaemus1
2021-07-14 20:59:11	http://webservicesamazin.com:8088/wp-content/fi...	Offline	Dridex	Cryptolaemus1
2021-07-14 20:59:09	http://webservicesamazin.com:8088/wp-content/fi...	Offline	Dridex	Cryptolaemus1
2021-07-14 20:59:08	http://webservicesamazin.com:8088/styles/file13...	Offline	Dridex	Cryptolaemus1
2021-07-14 20:58:57	http://webservicesamazin.com:8088/js/file1.bin	Offline	CobaltStrike Dridex	Cryptolaemus1
2021-07-14 20:58:51	http://webservicesamazin.com:8088/bundle/file4.bin	Offline	CobaltStrike Dridex	Cryptolaemus1
2021-07-14 20:58:44	http://webservicesamazin.com:8088/img/file6.bin	Offline	Dridex	Cryptolaemus1
2021-07-14 20:58:36	http://webservicesamazin.com:8088/images/file13...	Offline	Dridex	Cryptolaemus1
2021-07-14 20:58:29	http://webservicesamazin.com:8088/wp-theme/file...	Offline	Dridex	Cryptolaemus1
2021-07-14 20:58:20	http://webservicesamazin.com:8088/wp-theme/file...	Offline	Dridex	Cryptolaemus1
2021-07-14 20:58:09	http://webservicesamazin.com:8088/styles/file1.bin	Offline	CobaltStrike Dridex	Cryptolaemus1
2021-07-14 20:57:56	http://webservicesamazin.com:8088/vendors/file1...	Offline	Dridex	Cryptolaemus1
2021-07-14 20:57:54	http://webservicesamazin.com:8088/bundle/file8.bin	Offline	Dridex	Cryptolaemus1
2021-07-14 20:57:52	http://webservicesamazin.com:8088/css/file4.bin	Offline	CobaltStrike Dridex	Cryptolaemus1
2021-07-14 20:57:11	http://webservicesamazin.com:8088/fonts/file1.bin	Offline	CobaltStrike Dridex	Cryptolaemus1
2021-07-14 20:57:09	http://webservicesamazin.com:8088/css/file5.bin	Offline	Dridex	Cryptolaemus1
2021-07-14 20:53:07	http://webservicesamazin.com:8088/wp-theme/file...	Offline	32 CobaltStrike Dridex exe	zbetcheckin
2021-07-14 20:40:50	http://webservicesamazin.com:8088/fonts/file10.bin	Offline	32 Dridex exe	zbetcheckin
2021-07-14 17:54:09	http://webservicesamazin.com:8088/themes/Invoic...	Offline	Dridex excel	zbetcheckin
2021-07-14 17:54:04	http://webservicesamazin.com:8088/img/file2.bin	Offline	32 Dridex exe	zbetcheckin
2021-07-14 17:38:33	http://webservicesamazin.com:8088/css/file7.bin	Offline	32 Dridex exe	zbetcheckin
2021-07-14 16:11:07	http://webservicesamazin.com:8088/fonts/file3.bin	Offline	32 Dridex exe	zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2021-07-16 11:37:19	036273355f6f950af30cbc0cfdc5523a7ab379e58cb2f66c95623cf1ae2e851a	exe	Dridex
2021-07-16 10:54:45	97ba94455db3e0259e67f4be2f7c0dc16f4a1493e881ff82dc4cd3a3c11134ba	doc
2021-07-16 10:42:43	791d5245da5b79ab8a0c3af821e1d3e0806728c3b74176613f51ab8219b2d2b1	doc
2021-07-16 09:09:55	c9df658451b7a1b6921f458380276bfed20dfb12636220c4f8bbee22bb93f229	doc
2021-07-16 09:09:39	28232eda9588a70a540369504c2b275b7c4c412328a32208d9580330af20838e	doc
2021-07-16 08:27:01	d737862c68f5ef1ae75c5d713ca26e6a9d313f03c616d6fad369c904851dfe69	doc
2021-07-16 06:31:54	4a016f238e376fc448ac2a78b97ab96b71ca44feaf04abcd9e05432f538208e2	doc	Dridex
2021-07-16 05:45:28	01ef4276955f26ed480073749d44ef5402b5771478af68674d519b808ce803d3	doc
2021-07-16 05:38:42	c4f1bc3b201eea1e8226d2c8701d2f7c3641282b9e21ab0f8f72df45a1bb4f2f	exe	Dridex
2021-07-16 05:37:47	b6587631ba47dcd1790e7dd379f73852cee70185a8502f898bfd93e9580d5c34	doc	CobaltStrike
2021-07-16 05:31:26	e0dd0f0cb5617424dc0675c0f8459cc26693cdf3b688fb7d33673f899fdc1a8a	exe	Dridex
2021-07-16 04:21:27	3accc9673d2374229ffda51598e98611357bd0502f72f29b16d70dc389f47131	exe	Dridex
2021-07-16 03:14:29	17ce3fefe240a4ce6b7af0dec19e00e8ecb8264271d7f0b356d66cffbe0d558d	doc	Dridex
2021-07-16 02:39:48	ecaaa3a14f4e90d31391180b0b045fb4368b7a9cf6ccaf0451723ed5fb42a492	doc	Dridex
2021-07-16 02:32:24	bff8bde10296c5f7d8440926fde2024c10f2693ca441a73d8b169094e8a19603	doc	Dridex
2021-07-16 02:30:12	d5cbd2a7676668d473599aa8b457c437a6b655cde407d83865b05a39239427a5	doc	Dridex
2021-07-16 01:49:01	36063ca68cf6aff2388c22f8c1a53db75f292f3fe9446f8355fb74d3390cd3ff	doc
2021-07-16 00:54:40	908967fb8a14010c68e6f136974b47ae1ebdec6b2c71d71f5c0502ad8c5d0a85	doc	Dridex
2021-07-16 00:29:11	fa8142ac6a9744a1a1606dfb7090b8e77491861bb642f265c90491ca2bc4f07f	exe	Dridex
2021-07-16 00:29:09	5a3b76b3085ba1efee7031f040554636670ee61031768c1002e563f26d48d50a	doc	Dridex
2021-07-16 00:00:48	a5ae07473849ade19d43dc4e192a54dc6865e92ec3b9df2fec6b90014e13275e	exe	Dridex
2021-07-15 23:56:28	3f73a13bbe94d9044bf76f6b66afdb90af8e6c150d2ceda8bc51faf152fd6d2f	exe	Dridex
2021-07-15 23:52:17	e2513cdde6122ff672fd083f66437c6677fa473d161cb81cafa0dd0d79d6e977	doc	Dridex
2021-07-15 23:49:56	d2a9b22d3174934695941d76e7ccb6f1179996d746042fab2b498a3e80961a58	exe	Dridex
2021-07-15 23:49:34	3f73a13bbe94d9044bf76f6b66afdb90af8e6c150d2ceda8bc51faf152fd6d2f	exe	Dridex
2021-07-15 23:49:00	fb9bdd0b2ef96444ca944c79f91e648b4935f75395d8cc265c3caab7ed38e256	exe	Dridex
2021-07-15 23:46:13	f1beb410134eddabdc61daad7dbf0272e22a3559a35d81f5f831c41f19f40129	doc
2021-07-15 23:10:23	ee9729e8f3fbb953938edb3537e4d53a483e5ac45bdcb1bda80bdb1d36602d79	doc	CobaltStrike
2021-07-15 10:44:05	f00e60f5f094abfe9448d10cb84194e73c0e0f2cb52f00d474d6420cb001c579	exe	Dridex
2021-07-15 08:58:06	0780d67931c09ff7844aac62d057c059ff029b93c35c436038afa65420f83a9a	xls	CobaltStrike
2021-07-15 02:22:06	f1da83287dc71efd8d39d03f2c349830826b9c8698b0a7bb6cc6e7eb959428da	exe	Dridex
2021-07-15 02:22:03	f00e60f5f094abfe9448d10cb84194e73c0e0f2cb52f00d474d6420cb001c579	exe	Dridex
2021-07-15 02:16:03	2cc14e8b36412790f8ba35b56ca5aa42e3308d4e3bb13a068890a6b2edaab5aa	xls	Dridex
2021-07-14 21:11:45	1e7cff422cd9fda456283527e027500af16f9ceceeb23467d55839286b14a8ea	exe	Dridex
2021-07-14 21:11:42	4600e7951a48232623a4c9eaae2209d2a56e6d174d9a5da837fcc4be143f67fa	exe	Dridex
2021-07-14 21:02:19	7bc8e2b75d876bfbd12297c6eb01d2a09f0694242ad22559e1be6736dc237a37	exe	Dridex
2021-07-14 20:59:17	9af4b3b8c67d21fef69dee132cb686d1cb9e34e2d5e807b05c2a92e48f08dd39	exe	CobaltStrike
2021-07-14 20:59:11	1e7cff422cd9fda456283527e027500af16f9ceceeb23467d55839286b14a8ea	exe	Dridex
2021-07-14 20:59:09	8e2d3f6bc5f7b639638d2f5ec751bc2985f1636005131623c5d2c448885c5d89	exe	Dridex
2021-07-14 20:59:08	672ace07423b11c65be0e0cfcdea8e8a17517b033324b418a1b92d6139daa18d	exe	Dridex
2021-07-14 20:58:57	956e66f820c127b655c4e59af455c4cc827d43b111f4cf260b6da1d30ac443b2	exe	CobaltStrike
2021-07-14 20:58:51	7c4ec96ba82e79cb37c6829a595dc09b76568a5dadd82c743c3f9a69c985ad83	exe	CobaltStrike
2021-07-14 20:58:44	8e2d3f6bc5f7b639638d2f5ec751bc2985f1636005131623c5d2c448885c5d89	exe	Dridex
2021-07-14 20:58:36	672ace07423b11c65be0e0cfcdea8e8a17517b033324b418a1b92d6139daa18d	exe	Dridex
2021-07-14 20:58:09	956e66f820c127b655c4e59af455c4cc827d43b111f4cf260b6da1d30ac443b2	exe	CobaltStrike
2021-07-14 20:57:56	4600e7951a48232623a4c9eaae2209d2a56e6d174d9a5da837fcc4be143f67fa	exe	Dridex
2021-07-14 20:57:54	277089cb78a9c493cecd8f5fbe70df0577d4f9557fb8b55ff5f7c2505308ca3a	exe	Dridex
2021-07-14 20:57:52	7c4ec96ba82e79cb37c6829a595dc09b76568a5dadd82c743c3f9a69c985ad83	exe	CobaltStrike
2021-07-14 20:57:11	956e66f820c127b655c4e59af455c4cc827d43b111f4cf260b6da1d30ac443b2	exe	CobaltStrike
2021-07-14 20:57:09	f1da83287dc71efd8d39d03f2c349830826b9c8698b0a7bb6cc6e7eb959428da	exe	Dridex
2021-07-14 20:56:42	1e7cff422cd9fda456283527e027500af16f9ceceeb23467d55839286b14a8ea	exe	Dridex
2021-07-14 20:53:07	923de5fc24a860522375e93ea09e4298e5a1dfaa6a17c61754162aa3d4339bce	exe	CobaltStrike
2021-07-14 17:55:42	d93210076662115315a8713a18a86f22051c45ab7216129daa9b5638a76dac43	exe	Dridex
2021-07-14 17:54:08	6f8f1b26324ea0f3f566fbdcb4a61eb92d054ccf0300c52b3549c774056b8f02	xls	Dridex
2021-07-14 17:54:04	7bc8e2b75d876bfbd12297c6eb01d2a09f0694242ad22559e1be6736dc237a37	exe	Dridex
2021-07-14 16:11:07	9ffe349bfcaac3ceffbbb5accf85814b0e08d204a02b63a9df9681235a464ecc	exe	Dridex