URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: www.52osta.cn
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2019-10-23 19:16:04 UTC
Total malware sites :6
Online malware sites :0 (0%)
Offline Malware sites :6 (100%)
A record(s) observed :4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-09-14 02:56:41 101.36.118.159SBL627127AS135377 UCLOUD-HK-AS-AP- HKno
2025-09-14 02:56:41 154.85.58.174Not listedAS55967 Baidu- SGno
2025-06-01 12:37:52 154.219.113.58Not listedAS401696 COGNETCLOUD- HKno
2019-10-23 19:16:09 47.96.31.93Not listedAS37963 ALIBABA-CN-NET- CNno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-01-23 08:05:32https://www.52osta.cn/qza/protected-7tZ42-p7XbK...Offlinedoc emotet ext epoch1 heodo ext Cryptolaemus1
2020-01-16 04:37:08https://www.52osta.cn/qza/swift/l-778-550900116...Offlinedoc emotet ext epoch2 heodo ext Cryptolaemus1
2019-12-09 23:23:18https://www.52osta.cn/qza/personal-ylb7Pdf-RDxn...Offlinedoc emotet ext epoch1 heodo ext Cryptolaemus1
2019-11-25 22:52:41https://www.52osta.cn/qza/xTVtpOimQYCBHLWEYdn/Offlinedoc emotet ext epoch2 heodo ext Cryptolaemus1
2019-10-24 19:20:05http://www.52osta.cn/qza/l48/Offlineemotet ext epoch2 exe Cryptolaemus1
2019-10-23 19:16:09https://www.52osta.cn/qza/l48/Offlineemotet ext epoch2 exe heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-01-24 21:54:53b62eead03b41ad2d9517a020ef2e72707306aadc0001299c07a5e7ab05fe2ce9docHeodo
2020-01-24 21:02:30a4ebb7bf9eda6bed80e85600dc0ef35e2df109053e7925adc5e7e7b8bf4fc432doc Heodo
2020-01-24 20:52:0512b1c47065bb26f7e8287db3578565cf90d40919b69387bc5bdc74c29204827adocHeodo
2020-01-24 19:37:52fadb42916d1b74f1293ad6a0fb9e79a5d8c485ad3dca747689a927986e2aff08doc Heodo
2020-01-24 18:06:52baf3898f045af2f01401e0a8f1ef124cfbf9a2418091b10690e01f9bb3c7cc47doc  
2020-01-24 16:56:42d3a50dc2a6acd8f611967f471928ec66eb921acf7fd6245e3b03b897f81fe90adoc Heodo
2020-01-24 15:37:48ac8d288219395be128e7da9847073a712da5a0a39b4630ac5f1b16c4157b2bb3doc Heodo
2020-01-24 15:20:288e9a0b49594034731726d46d55868b3cd43cd49a355557459fd553d37967c3bfdoc Heodo
2020-01-24 14:07:191a8a41cd0c967beeddf5ff91598443d77050bcd001a922d12043631147f218cedoc Heodo
2020-01-24 12:41:16de56b3014c9982109265fe338bc63cc6436355b04f1f2d6db237e57a33213f80doc Heodo
2020-01-24 11:09:1572a524265f15be75d8d2a59e7d0b660517ed07cc064caf498bb7e747b51de72bdoc Heodo
2020-01-24 09:38:240b200863b12632ebfe7016933294a07e8a21e8fa929ca760de5b41825aee5355doc Heodo
2020-01-24 09:17:1433145aaefc03e7107307e826f851d49fd1d591416445598aeda02316980aa8bcdoc Heodo
2020-01-24 08:07:18615f9be36bfdb863e3ec096dbffc5bfa106904f9b495217a3ad8bb78ed8ad75edoc Heodo
2020-01-24 06:34:0324ed47c016ae3044057de9f65965ca39dcd0cb0d66b96e27ea2bd5ddf2d06274doc Heodo
2020-01-24 05:24:13b895c84cd3172c4a04aca7f50ee4154270ecd69e800c8c6fd4affd0868f673e4doc Heodo
2020-01-24 04:11:58533a5a288de7b3b037b3d849a6ba1d95b8b6996d84361f9d6a32a81a1b7172c3doc Heodo
2020-01-24 02:49:315beeb30893540e16293e931fc97174c50541f2340ad85f2d9f0c862821603cc4doc Heodo
2020-01-24 02:40:593d86526138f86edc52ed86e249219e0f7f33cb846f866a794072a1953a1677d5doc Heodo
2020-01-24 01:08:57beda0838615f06cbeb4c2cd683091ff68eccfb4ac59dfe175ed6f3aa8c878972doc Heodo
2020-01-23 23:51:59dcd9613e4c74c03508bab4afe05cb54716057c6b38fea1e9dae9d42041eb43a6doc Heodo
2020-01-23 22:19:487abb3e4c83b02572677e4ec2c0fb9b815830bea5eeaa515a50fb999016abd7cbdoc  
2020-01-23 20:57:40b1fb25ac9eb32c1eafa66d3a8fb382860f50d00075550108b0611b32753bcdd7doc Heodo
2020-01-23 20:44:4529da9d017cd0bbe2d5b57ebf2919938de9914e669199f58175412bfd7b44861cdocHeodo
2020-01-23 19:25:38737261cba27fb5709e37158314184d01a7f6a36386fc2535e236893d82590df2doc Heodo
2020-01-23 18:36:4444713e481564f2ce7a930e43bcdda80390718b92301f85cb575098959de0f6e1doc Heodo
2020-01-23 18:14:44ca7b1a3d7db2feeb5548928ff6adb85fdb993b11795f88fed56ec7649beef850doc Heodo
2020-01-23 16:57:25e64e311b594718ab849cdf6a3379d11774932a94c3498135f107d659174adb40doc Heodo
2020-01-23 15:42:347c6b31364028d77f2db085615af43fd3b6b991f4bb3f16e271c313d1380310a7doc Heodo
2020-01-23 15:26:27afe09e292b9823a2d28f0c6b6c795b2e3f9d1758d53e30d1eaafd8dd29b2d0a4doc Heodo
2020-01-23 13:54:238854c592155c1bd835e9edee147c7fa3714ba319ad138943dae4aa94a01d2adfdoc Heodo
2020-01-23 12:48:251b2a8fa233d738505dc4538a43ab60d5f61cc7e52dbb8d6314510cb80a96e044doc Heodo
2020-01-23 11:28:193f09c758e4c162f34e2f6b69f771874cdbc4aa5d6db3da039ae979513e76ff9adoc Heodo
2020-01-23 09:55:254b10f942d9197454cbd1e18eb87d18ab77fab4e78186b0157e96404d3ae11a3cdoc Heodo
2020-01-23 08:23:250602a260f7babf69b17ea0c106902e0aa1210f18240011382c3d1b89cbf2a78fdoc  
2020-01-23 08:05:310b8ec20465f0ff31222b5cc0426936b3bee0606c5faf2e44d596a4614518949bdoc Heodo
2019-10-25 18:36:22033db3f346e94c3cfdca8210a26a148506d53b5167b3cda4af1721116f38aa08exe Heodo
2019-10-25 16:57:446109a86717720c78340b62121d959e6f4cac6c10b70c248b5327a6b5b0d107cbexe Heodo
2019-10-25 14:40:5341e0ae1c1f3137cd6a63d4dd586388878c7df93b3c9ba314103fb00991c2da62exe Heodo
2019-10-25 12:50:41514f013d9848a19291a2cad493a3b3a5c2f37661ff1a713eb21716b39e5afb5eexe Heodo
2019-10-25 07:43:465ed1d51382f493a1bd562f4716ab2b6029dda3d44587d2d3ae500e99bd1247c6exe Heodo
2019-10-25 07:02:30d1deb7f8195050e4412311ad96980dccb50dcbf24b61e31af577104bee2877f4exe Heodo
2019-10-25 05:16:52b17cb9569882ab3f112045f53221caf82166325ece975280d07bb38fd2d9edfbexe Heodo
2019-10-24 10:02:23ab264199a77bc7d6ecc258b5ce4a7437a7f2423e07a29cfc7721aa5894867820exe Heodo
2019-10-24 06:11:05b6f1979710f493031aad21c1861043ff28822accdd4963dcee373c608ea21af1exe Heodo
2019-10-23 19:16:085c138290815cf635fb9947f9753c73dac1dbd855a2153116cb0a3a4e6e07944aexe Heodo