URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | wikibricolage.com |
|---|---|
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Not blocked |
| AdGuard : | Not blocked |
| Cloudflare : | Blocked |
| ProtonDNS : | Not blocked |
| OpenBLD : | Not blocked |
| DNS4EU : | Blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2020-09-30 15:07:03 UTC |
| Total malware sites : | 4 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 4 (100%) |
| A record(s) observed : | 7 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-05-01 16:58:35 | 46.4.24.98 | saturn.capconnect.com | Not listed | AS24940 HETZNER-AS |  DE | yes |
| 2025-06-21 22:22:25 | 91.195.240.94 | Not listed | AS47846 SEDO-AS | DE | no | |
| 2025-04-27 16:53:07 | 143.198.89.98 | Not listed | AS14061 DIGITALOCEAN-ASN |  SG | no | |
| 2021-01-15 01:22:06 | 104.21.43.120 | Not listed | AS13335 CLOUDFLARENET | n/a | no | |
| 2020-09-30 15:07:04 | 172.67.179.15 | Not listed | AS13335 CLOUDFLARENET | n/a | no | |
| 2020-09-30 15:07:04 | 104.18.58.178 | Not listed | AS13335 CLOUDFLARENET | n/a | no | |
| 2020-09-30 15:07:04 | 104.18.59.178 | Not listed | AS13335 CLOUDFLARENET | n/a | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2020-10-27 06:25:08 | http://wikibricolage.com/wp-admin/R/ | Offline | emotet  epoch3 exe heodo |  Cryptolaemus1 |
| 2020-10-22 07:08:22 | http://wikibricolage.com/wp-admin/XiZrby/ | Offline | emotet epoch2 exe heodo | Cryptolaemus1 |
| 2020-10-14 23:00:04 | http://wikibricolage.com/wp-admin/report/m4jz6r/ | Offline | doc emotet heodo |  zbetcheckin |
| 2020-09-30 15:07:05 | http://wikibricolage.com/wp-content/attachments... | Offline | doc emotet epoch2 heodo | Cryptolaemus1 |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2020-10-27 06:25:08 | 81e525b3da925ef2313e1a57ac20376f382c9ff7c629eba3412c57e1a4337407 | exe | Heodo | |
| 2020-10-22 08:20:06 | d4bd8b67d24967ed5f51bc09540fc471b9729e39a6173ef26dea51d4c4780d6a | exe | Heodo | |
| 2020-10-22 08:10:13 | caa50eb768888526d8d2939bb603a3bcce1f695e5dc94ec3301613c0b013849f | exe | Heodo | |
| 2020-10-22 07:28:29 | e34168b725f396a94c33584d432bd42451a80df0d1628388ef732845ce745af9 | exe | Heodo | |
| 2020-10-22 07:08:22 | 1fad88342624e33215c8ac212aa898eca03d8eeca75b90e7daf1391c4fa2a2d1 | exe | Heodo | |
| 2020-10-14 23:17:47 | 90e36d2990e1c86b71a77c96196d4fbe57e9e5d274d37bd085edf57d4058a55b | doc | Heodo | |
| 2020-10-14 23:00:04 | e373aeaa39d4efff72593a5b0a30b797679037516c98a1f6fa3deb3f5fc6bd74 | doc | Heodo | |
| 2020-09-30 15:07:04 | a3d743d11312e842641d3124985266cfd1471f8d21881fb7dfc8dfa9cbd1fe47 | doc | Heodo |