URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	woolloomooloo.nl
Domain registrar:	AXC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-06-13 12:50:06 UTC
Total malware sites :	1
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 14:40:20	136.144.158.9	gandalf.rbshops-hosting.nl	Not listed	AS20857 TRANSIP-AS	NL	yes
2022-06-13 12:50:07	185.224.88.7	janeway.rbshops-hosting.nl	Not listed	AS48635 CLDIN-NL	NL	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-06-13 12:50:07	http://woolloomooloo.nl/cgi-bin/zIdwNC2d/	Offline	dll emotet epoch4 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2022-06-13 22:05:33	e8385e853408eb414c1744770b1f1584c7a34ffaaf08f857761b50f1ed806660	dll		Heodo
2022-06-13 21:38:13	f61f7a4daf81a8c3bb7c37d9c256dc4c73953485ab9dd7235adb9ab66ac3367e	dll		Heodo
2022-06-13 21:23:19	18774ef497e0e57b0aee51fd247701e4da29498a2bffc863b9cbd8a6f7e0d8c6	dll		Heodo
2022-06-13 21:13:48	6256a0568d780d8e81e0058e8b3af14e4bb0297b164f8badc60d3166aa311ce3	dll		Heodo
2022-06-13 20:53:59	cbf179604f881912e03460a9a05347441ec46b9976a3babd4af74238815639fe	dll		Heodo
2022-06-13 20:31:25	a78bc0994d85498df3030dfb518168906313bcecf98daa95b0684e7203c57bd1	dll		Heodo
2022-06-13 20:11:11	2fac4b741654fa36ce1d60ae9b3b8990f9a3547804411c882f51194bfd09d8b9	dll		Heodo
2022-06-13 20:02:33	31caa575ca4ecf2c10b5c0f7bac62cea22326e3e232af02ff4310d32fcf0e1d1	dll		Heodo
2022-06-13 19:44:20	fe454b87a43f94a7469f6a2a73defc8e0e38c93d42cfe7bf3a9c77efd34dd675	dll		Heodo
2022-06-13 19:21:26	289ee2646992fa2aede803fff84b3b3f8c878483e0744b9b8ba3459669fb01f2	dll		Heodo
2022-06-13 19:07:25	02c480aa758dbead3c4a42671cd8ed387bc244dee6e8b9e72dfe969067190140	dll		Heodo
2022-06-13 19:00:18	57330f3c8a8498cef83603d716eb361c21d1a482e23a5acf80a032bb38c0d639	dll		Heodo
2022-06-13 18:40:20	55a5ff57efc180a49b5f9095c1ffde3d270a9cf0b09621e09cdfb64990bcdcf8	dll		Heodo
2022-06-13 18:25:52	a5a88c5c7acbfdfee69fe777be550c9b69d7bf7d170140da29e6973bb0d07e8d	dll		Heodo
2022-06-13 18:04:58	2a5af06c3dfca89c39a966a8c5db8cf9b5699789d09661e9b10d9558afe941bd	dll		Heodo
2022-06-13 17:43:02	d61073bffad21126631ba60eef9552dfe0655e160762a787c55a809130f0c9a7	dll		Heodo
2022-06-13 17:36:50	9c5ba92453662c6d2e680ec92704f40d57072742306a060f710a53a21d3156a0	dll		Heodo
2022-06-13 17:09:20	f30369ead5e98f85ce2ac94a7c7a13f35891948124584d7adb187528b3797d93	dll		Heodo
2022-06-13 16:52:49	cf3615541a1938b548a89e4e346e0be8a9cf741436c5436a83b4958f8d8188b8	dll		Heodo
2022-06-13 16:40:51	dd7dd62debf55235996a6db4db27bc59b9753dde493e92a89db525c2bda5d095	dll		Heodo
2022-06-13 16:18:33	60f467c8c4b4e8be5be873bad138743a7ef7084c9dfb44de0a745d4594326d96	dll		Heodo
2022-06-13 16:10:26	84969b5f1f5d2fb4be0cb816622ddd2736ddd38a5a7f170c6d8123c9dc1d3a52	dll		Heodo
2022-06-13 15:52:00	585815d36c6a2bc0b59f37198456180eff7da6ce9ee107a8dbe3024a00b74c53	dll		Heodo
2022-06-13 15:41:13	eb1f9c363ff418eff6377ee5c3b2a5980ea4212d45f56bdb81914c094c1f698a	dll		Heodo
2022-06-13 15:24:38	99690868ff1b540c39b30f385d13860d87055e097692d8d97378d7a969a61fcf	dll		Heodo
2022-06-13 15:01:33	e46761511fb671039cd1167db9e092a4f4f5be4e675cc06944d1973b2d730f1e	dll		Heodo
2022-06-13 14:48:40	844d3c170ab244120dce6cdfc3570b45b1c081cda44b1cacc49ae6d787fa3f0e	dll		Heodo
2022-06-13 14:16:14	dd32088ec6f7cef98317963f12dddda86c1727af8a5d73768f6c2f18986e4930	dll		Heodo
2022-06-13 13:56:15	de611d09cbc7846c704d596cfd0cff5f45e5bb2c33285a6a23dc7db51e7ff019	dll		Heodo
2022-06-13 12:50:07	fa161bed7871b4b931c6a8f6e50e0491e357f105fd133c9797b3f3f2d27f8538	dll		Heodo