URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	www.aushop.app
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2019-11-25 20:16:11 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2019-11-25 20:16:14	54.252.175.51	ec2-54-252-175-51.ap-southeast-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	AU	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2019-11-25 20:16:14	https://www.aushop.app/wp-includes/rt94/	Offline	emotet epoch1 exe heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2019-11-26 08:10:20	c2e393ff568f4a87ce48011f10664138e569710f56ddc0462aa7f36bdad5ecad	doc
2019-11-26 06:08:42	a33c2a9b4184af7aef4ef9d06fc0e18328da6778f21dc4e28f11697f20b12a66	exe
2019-11-26 04:59:34	70e750b3a52b769cd3aca87723a237c333f35bf9c5a3c83a472854d980854b73	exe
2019-11-26 02:57:28	5e0fc994f5a8c27e056f18dd4c1d3b778b460de6614e8925ab5346e80e003aeb	exe
2019-11-26 01:03:19	db3843bc6cb6383d851c7c23010581600104645516bdb5524c5c8ea12a694390	exe
2019-11-25 23:02:25	94bf118e69aca740999c9a9821b0175e8f013c85ad46571677ae6145a5ff5551	exe	Heodo
2019-11-25 21:00:14	f0174abbaeb5ffce17ff38349276d5b23ffe9141b111d146e529289b0f2e6dd2	exe	Heodo
2019-11-25 20:16:14	13c72a3e6b45937ba26ccd66d5d918f00a0349d52a4c27e26d7ec3c3ed94cc88	exe	Heodo