URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	wiwa-lokal.de
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-01-05 11:40:03 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	SBL	ASN	Country	Active?
2021-01-14 23:44:11	104.21.38.80	Not listed	AS13335 CLOUDFLARENET	n/a	yes
2021-01-05 11:40:04	172.67.220.26	Not listed	AS13335 CLOUDFLARENET	n/a	yes
2021-01-05 11:40:05	104.18.32.18	Not listed	AS13335 CLOUDFLARENET	n/a	no
2021-01-05 11:40:05	104.18.33.18	Not listed	AS13335 CLOUDFLARENET	n/a	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-01-05 16:56:06	http://wiwa-lokal.de/sample-xyz-xlqol/jNWJBGbBC...	Offline	doc emotet epoch2	Cryptolaemus1
2021-01-05 11:40:05	https://wiwa-lokal.de/sample-xyz-xlqol/jNWJBGbB...	Offline	doc emotet epoch2 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2021-01-05 15:13:57	7a3b0250eb31576ec30cb36ba111082fdb6d95f294a58c412327caf1bd885310	doc	Heodo
2021-01-05 14:56:56	e1ed12bcae0da4c4a1154924ad77715d27052249f5056a72f02f9c6a42a6ba59	doc	Heodo
2021-01-05 14:46:19	62eb0fec7cbd5f5678dbf2c5760339f886634b8eb21cb6280e81ed8ba852eecf	doc	Heodo
2021-01-05 14:22:18	3a6c0312e735a06c37589a86a75939fd3fa9fe9ab71deda4a1c23c9fda307e7d	doc	Heodo
2021-01-05 14:02:28	35d0c557817977e6a991a0c32c5616c13a96abe0290c16f231cd53fd8e3b8d91	doc	Heodo
2021-01-05 13:56:05	56107ecbd594f1c684f729d239e501bb2d1561d6a584d7ba0a0d69ded2bbbb18	doc	Heodo
2021-01-05 13:41:40	dec912faff311861c29da440acd2b9397c1e37bfb5be458cb8b21fcfc150d152	doc	Heodo
2021-01-05 13:32:38	80fadde081a035c58538d60c3829934f50b57a18850e7506eae4157595906af0	doc	Heodo
2021-01-05 13:24:04	d5791f6ad240efa0352be66ee78df171c2a197ddcea9ad71690dddf695ca7bb5	doc	Heodo
2021-01-05 13:13:26	2325bb3d4ffb081d6234ed1bca74f8662b1f85c6d27d6dec106e376590b7263f	doc	Heodo
2021-01-05 13:02:53	5811f21b56ff4e4ebecda822447d72e3375952d4762d2289f132db72185e47ea	doc	Heodo
2021-01-05 12:51:12	01bce41750258f3d232b9eb7fe7901a88167254f0fe956f557bb33aced7cfec5	doc	Heodo
2021-01-05 12:27:15	755c1e87c9c3e345b5eca450c1c72e05e691421932a8d8e26048990f9cb2ab5b	doc	Heodo
2021-01-05 12:20:56	fb98c716e390d5ee1a67d0672d65fb94afc21949fcb158f654fb6405c079071f	doc	Heodo
2021-01-05 12:04:26	e5d4ec8668b4d36733a08b76bacf35b7ed8facd91cfb3e9be1825143539120a3	doc	Heodo
2021-01-05 11:55:35	79251159b9f14e17f66f0206b07ac7a9a696a3dd9e56aed33ef245bc1f28c6eb	doc	Heodo
2021-01-05 11:40:04	bf7cae6c920be51d01231f410c3dd16183c89f983509ea4d25e5cb308cab7630	doc	Heodo