URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: wp.seletoh.com
Domain registrar:GoDaddy -
Domain registration date:2021-06-30 14:09:01 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2021-12-24 04:31:09 UTC
Total malware sites :4
Online malware sites :0 (0%)
Offline Malware sites :4 (100%)
A record(s) observed :16

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2022-01-24 08:56:07 188.114.96.3Not listedAS13335 CLOUDFLARENETn/ano
2022-01-24 08:56:06 188.114.97.3Not listedAS13335 CLOUDFLARENETn/ano
2021-12-24 04:31:10 104.21.18.161Not listedAS13335 CLOUDFLARENETn/ano
2021-12-24 04:31:10 172.67.182.187Not listedAS13335 CLOUDFLARENETn/ano
2022-08-17 02:11:24 188.114.96.5Not listedAS13335 CLOUDFLARENETn/ano
2022-08-17 02:11:24 188.114.97.5Not listedAS13335 CLOUDFLARENETn/ano
2022-06-02 06:22:12 188.114.96.2Not listedAS13335 CLOUDFLARENETn/ano
2022-06-02 06:22:12 188.114.97.2Not listedAS13335 CLOUDFLARENETn/ano
2022-05-05 06:01:28 188.114.96.6Not listedAS13335 CLOUDFLARENETn/ano
2022-05-05 06:01:28 188.114.97.6Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-01-12 02:29:04http://wp.seletoh.com/wp-admin/L6819/?name=Carr...Offlineemotet ext epoch4 redir-doc Cryptolaemus1
2022-01-12 02:28:04http://wp.seletoh.com/wp-admin/L6819/Offlineemotet ext epoch4 redir-doc xls waga_tw
2022-01-12 02:28:04http://wp.seletoh.com/wp-admin/L6819/?i=1Offlinedoc emotet ext epoch4 heodo ext SilentBuilder Cryptolaemus1
2021-12-24 04:31:10http://wp.seletoh.com/wp-admin/5RPvz3G1yGnzxcLd2b/Offlineemotet ext epoch4 redir-doc xls waga_tw

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-01-12 04:57:24aa65a34067b0c50e89c1078d0c7ff08de43e5036241404574f846265de6ff6bdxlsHeodo
2022-01-12 04:33:17ab506a8e25b64558a0069af7f78035c4ae3848d8873a5ddd3542d01d2e195565xlsHeodo
2022-01-12 04:13:54d57efe94adedaeac797cbb79d71e10325536f42c27c9cf5154fddaeb7bc797bexls Heodo
2022-01-12 03:40:275e9d0d9f2cd3b4494155094028cb99d48ed8c70d5517ae27a23af4610cef3997xls SilentBuilder
2022-01-12 03:13:303f4b1c98cb91608ce0ef51a77efb1ba624e38ff17e01567f9d61747a5e49421dxlsHeodo
2022-01-12 02:39:23bfef414d160297040d78c63e659994d668374244c68cdf1ff2220420460fc9e2xlsSilentBuilder
2022-01-12 02:29:04aae45e7e56ebb4ae204dcc3ab0f8ce656e87148af104232649726642abe8543dhtml  
2022-01-12 02:28:04aae45e7e56ebb4ae204dcc3ab0f8ce656e87148af104232649726642abe8543dhtml  
2022-01-12 02:28:04a2c04f7284e65695631c512884bdcff8d2d294282f6624d34383b2dcb35a51b8xls SilentBuilder
2021-12-25 04:13:25e953c5e45d74a4d90757d63854a0ee5db9cb2c7d2e1d47d21e4458d0ee2f839chtml  
2021-12-25 03:55:274cca0d3b8e5555da5f27cf40300331f741c8b70a8c1130d7cb8a3b86764d0b80html  
2021-12-25 03:07:048706d7b8fbbb50e8f85837c4441840297e7f3cc4453d23d7f7e3408c37a1470dhtml  
2021-12-25 02:24:147e39074aed0340144661bd6b399ca03f8215f2b086c29d7b2eb763cc41f770c2html  
2021-12-25 01:39:45e81539b51139902645f654d782c97006b539f9675375edd6821a17a956c9a1b5html  
2021-12-25 01:02:556d86065257637f41f4c2386499c1897595b93d0ada37f353c3315aba6fd85d52html  
2021-12-25 00:11:38312a886bc23e582b22381c48be12784437ad8c1fe611b3e67ef04f09c47e6f28html  
2021-12-24 23:39:12f7c70f691eb09646d73a3a993885e15f1f6bd1b2c668eb71115fb6b5dbcca01chtml  
2021-12-24 19:37:550a3275de07c06a1017989c53a3984d1996ba28ef41b4f3617bf30dfdd6183dc3html  
2021-12-24 18:56:247c3ce64d084506022a50ec3eed03e0a80908d455095bc42fc9c6d589ddc89532html  
2021-12-24 18:26:558932b1b4902e7dfdcf3339292ac6c837763f037f36e72a1ba0901eedf6635a0ehtml  
2021-12-24 17:45:469a3b0971be0ce79540c354990d634b0a855c3613d8b5498cc060d934980895dfhtml  
2021-12-24 17:01:583d8e4459a96fd3cbd38634a612da6b36d0017d179c51580f2a342969178c97fdhtml  
2021-12-24 16:18:54b4114b04715da63caceaa04c11612d3b5c4ae0bbd9c159bf9ecfae9226e7a426html  
2021-12-24 15:47:440ff3f5f08f142470808e1015a6cc548eccb40ff241534fd109c11b75d620229dhtml  
2021-12-24 14:30:29b2ab5654fa6eb6031aaf275596b7aa0421e7aa9b08a711f12fe83765eba19de0html  
2021-12-24 13:38:23d638262e1b841e339d91c0691b0eed5363f623ec8a4b266eb6bf5e694f449f2ahtml  
2021-12-24 12:59:2248229d90fd3e3a2cd0bc77ec4b69477d25e6ad6ad368180a6a2ebaaeb0451097html  
2021-12-24 12:26:31b5018d852b6f215031106c3dc8e2db8d005a6e52c2d3ffbed217386499b94e49html  
2021-12-24 11:54:513fe957f369e690ef193610d1c2918203a0b3ac03c00f67f1d21737c3e273e350html  
2021-12-24 10:52:5360ce3dd71672b9aafac419394c9974e0e8981a599351d7723d776146ec8f64a3html  
2021-12-24 10:14:1943cd83bdcfb70ea1d0cca2ac991505b157ac31d30ed6f7e736a388703f14079ahtml  
2021-12-24 10:02:1446679425096744e6e34fa1a6a91edb8ba4053bade6cfe3ff1c0395b5f50b6257html  
2021-12-24 09:10:3543eff0d0156168df935be5c38599e6a0ec7fe65fec5ae39dc5b7946fb67a5afahtml  
2021-12-24 05:25:0440e7b306e207ddf48180ec5cec70ba4b97b4de0cc03ab18f741d3d73f5a59a06html  
2021-12-24 04:50:18ac6b300254f829e94099d3ff9f9bfea9606de355c3f90af705845eb9ce90d938html  
2021-12-24 04:31:10295c70ebf7e252d88c159673de9184d7e359b5203c2ec9e199a294770f03ee10html