URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-08-18 19:04:11	149.126.4.69	s060.cyon.net	Not listed	AS47302 CYON	CH	yes

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-08-18 19:04:11	http://wowiwa.ch/browse/	Offline	doc emotet epoch2 heodo	spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2020-08-19 08:33:29	e7b5571f8fcba096c1240aec4d940d600588432e00c3f22504711fc6b240f8bf	doc		Heodo
2020-08-19 08:08:59	cbcffeaf57dc69c22c4c1f6eaa6b2102c764aa8b0080b466aa95969f3c0283e1	doc		Heodo
2020-08-19 07:44:30	14c8425a5923efb623ff5070d126d05348baaca0a46096c569a40d6afe8e0244	doc		Heodo
2020-08-19 07:18:02	a1b39bb8e04288328a8785f48219abb0b12a2a6330e2192973405a2bf6682644	doc		Heodo
2020-08-19 06:58:03	9be9c52a2ed346fcab910d6e22a065f7f1ddbb851e589a1c18e4b0577afe0e5b	doc		Heodo
2020-08-19 06:44:41	9300711f5a35bc33dab0314d010f858ea9385b9b41b60e8db605a367ee901d57	doc		Heodo
2020-08-19 06:16:56	eb3a3bdc721850d6e51b7c255e5237b5d1657ccf823f9965b2ab012da716b66e	doc		Heodo
2020-08-19 05:57:25	1e5fdb496c17dd55dfc3e32231d286de4334d59bcc313b939202c4f8ae2abeca	doc		Heodo
2020-08-19 05:42:37	6ad811a3072f008affd2450407d0a37d9d45166d41c8fedc1d1e0ae2b61c77e9	doc		Heodo
2020-08-19 05:21:49	2efc148d28ccc7f78e2f598072e171cb43bd6703a0be1abc612c36f1420ec1d0	doc		Heodo
2020-08-19 05:05:37	8a80d1e540897315edc7acd34b69bf1cd00ea85dbef7186b3751c5a8337f88cc	doc		Heodo
2020-08-19 04:48:45	0e79daf2a9f00edeae140c5e513dfe381e03f54ae3fec2dae7b2bd9f005b4f6f	doc		Heodo
2020-08-19 03:17:57	5b39d05fd1a75574a20fce09addb52c62b766bb08f8812b8d692936918ba780d	doc		Heodo
2020-08-19 02:59:48	13ecb0280410d83e2d67d9f049fe85af186a0c9959c316c90f3ec327a9ab244d	doc		Heodo
2020-08-19 02:45:06	9cbc258b5f93fe39609cced6c936d4529b4b3ba671125e8ad51eba9085dbd3a5	doc		Heodo
2020-08-19 01:32:43	546326b982f8d4e1c2af1b80d268127974403aae48e453ff6d8f1820120a8d0f	doc		Heodo
2020-08-19 01:13:21	94fe6d0cc1723a60d8965c606027ad0283a60c1f4677cf33c8cb85fd202bbc60	doc		Heodo
2020-08-19 00:57:53	bb7514867d581af837a3d30b735e4c0e010220c3b2bee800c0217cb4e7275e3c	doc		Heodo
2020-08-18 23:26:04	db2013508bc3e41f1f93da8cc42b9edcae448ab5eefe05b364e1ce01247dd763	doc		Heodo
2020-08-18 23:15:53	560849f5b4cfc8e64f8d0ccabfbba2f9691f80103349650e12ebca53186d1dbc	doc		Heodo
2020-08-18 21:42:29	805f00873a643dff1edc0ebb808bcc771a6641780897a3d7732b01444b2ec3d8	doc		Heodo
2020-08-18 21:28:37	471800c07ff4f9683a7c7608227076df2dc2f4c484156617e374e766466333a8	doc		Heodo
2020-08-18 21:14:15	854a0f9c565bc4cf2d20b21f33a107c91d3fca02047b2be2ba26c6271e10c139	doc		Heodo
2020-08-18 19:43:32	7457d0d48a6875b4b70d817d7542bdd94e000e4293907a48b014189b5e7bada5	doc		Heodo
2020-08-18 19:29:34	1ab945db51701046ee561291c84c12844c96cad17d38c044915bc3657803b75e	doc		Heodo
2020-08-18 19:15:46	cab6349ac0df4084c7ff95a5e68f961048537236c2602cd3aff11482fb0d0af0	doc		Heodo
2020-08-18 19:04:11	62794a5ebcf750a653cae525d04e012ab0edbf36a92f7b4e5c956afaf84db63d	doc		Heodo