URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	wonokerso-tembarak.temanggungkab.go.id
Domain registrar:	n/a
Domain registration date:	2009-01-20 13:09:01 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-01-11 17:24:04 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-07-11 04:33:18	103.79.90.103	temanggungkab.go.id	Not listed	AS64306 IDNIC-TEMANGGUNGKAB-AS-ID	ID	yes
2022-01-11 17:24:07	103.79.90.91	smswae.temanggungkab.go.id	Not listed	AS64306 IDNIC-TEMANGGUNGKAB-AS-ID	ID	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-01-11 17:24:08	http://wonokerso-tembarak.temanggungkab.go.id/a...	Offline	doc emotet epoch5 heodo	Cryptolaemus1
2022-01-11 17:24:07	http://wonokerso-tembarak.temanggungkab.go.id/a...	Offline	emotet epoch5 redir-doc xls	waga_tw

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-01-12 00:28:43	79f8dcc976b6b81642c3f1572e6e8fa219d00828b6b9015e969a50bb38cefba8	xlsm	Heodo
2022-01-12 00:02:40	697ea1260245ebb08b7387e6d6f4eddd9f9d37d4849abb996244b79526827a11	xlsm	Heodo
2022-01-11 23:49:53	2bcd5baa2d280f6afd51a5beb204c382fce0fa58f20ff76076d27cb2323e8ac6	xlsm	Heodo
2022-01-11 23:19:30	6ec9e504112744f9f07ce60fb9315cdcd427d27a16c248fbe9746477bfc851af	xlsm	Heodo
2022-01-11 23:09:22	d232986e906c448669c346c5edefc1d51b9224b6d53afd360e4768f9861eafad	xlsm	Heodo
2022-01-11 22:38:45	aa920a2c74b8982c5dd77f97f0dd2d6c7fd69f047983447d6ae43cdf1573b07d	xlsm	Heodo
2022-01-11 22:21:26	2a43f2180ac8723fc79222c637ad6743128611c7c89843cec720bd884dd1b72f	xlsm	Heodo
2022-01-11 21:42:07	8ad61be673c186c9cdfb6c6c8d750fbcf80f920d4905742c0ed9d67833026ed7	xlsm	Heodo
2022-01-11 21:25:18	71da6e57fe5adfa0b06f8ba9525e6db95e7c25246179fa8563561d24e79e6c65	xlsm	Heodo
2022-01-11 21:04:40	c4bc03a927a72a21be0b15c8c55124264c456a940a325d8071f5cbcb7032f1c8	xlsm	Heodo
2022-01-11 20:55:12	c2cb81db208398e070c47e7d03e76709142dec85ddaa985883536283a0acbb14	xlsm	Heodo
2022-01-11 20:22:58	be28d13f222be634d640dd982c04039f80c9ada5efc2eb126adca4c9a3595d6d	xlsm	Heodo
2022-01-11 19:57:35	867a5e845a227cfb9fa1988fa078679d6b6fa0bae43ffebfe412f97bba373ddf	xlsm	Heodo
2022-01-11 19:27:33	95761ae4efbb60ee498b7d56d6c84e48753a21ab59a655f5439b47167baf6ea2	xlsm	Heodo
2022-01-11 19:10:27	00c8843cc08ecd83f55f5b22eeeef2c14ff4207192bac3795cb0409569b2defb	xlsm
2022-01-11 18:46:23	9130d8068b2ef10c7127ddbc23715591e0bd026c0ce94a36c26d92b99ee8e524	xlsm	Heodo
2022-01-11 18:24:58	697527009070e730447f346637ff5ff6ad458be500e870bfed11d033c4015631	xlsm	Heodo
2022-01-11 18:06:00	f84d3863143cbe9c97859d10c99e61155092470c08e9aee090365490450a4f00	xlsm	Heodo
2022-01-11 17:48:15	b0118f2c4a1ae4681d95b8b513b2268ea613ff23d476e806ee7d906f90c8c2fc	xlsm
2022-01-11 17:24:07	6913af2de9271a92bd9c7c9afe4923a08f237459d7e1e03d171e96fa291e39ee	xlsm	Heodo
2022-01-11 17:24:05	3f17f75b37f9c667523f434a6182fdc2df417671d2a6f5bdc541a8242d660322	html