URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: www.enorichie.net
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Blocked
AdGuard :Blocked
Cloudflare :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Blocked
Control D HaGeZi :Blocked
Firstseen:2020-12-07 14:54:03 UTC
Total malware sites :4
Online malware sites :0 (0%)
Offline Malware sites :4 (100%)
A record(s) observed :1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2020-12-07 14:54:04 160.153.133.157157.133.153.160.host.secureserver.netNot listedAS21499 GODADDY-SXB- USyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-07-14 00:55:04https://www.enorichie.net/sites/aa.exeOffline32 AgentTesla ext exe zbetcheckin
2021-07-13 23:16:04https://www.enorichie.net/z/new.exeOffline32 exe Formbook ext zbetcheckin
2021-02-19 15:22:06https://www.enorichie.net/site/ko.exeOfflineexe Formbook ext zbetcheckin
2020-12-07 14:54:04http://www.enorichie.net/wz/ppp.jpgOfflineAgentTesla ext James_inthe_box

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2021-07-14 00:55:044e46927fca13b53697d0a5c5257df1075af4e356f2f48ac518768793051f317bexeAgentTesla
2021-07-13 23:16:04a7e45a6c817ed9d9795eacd7c11caae883fd5be5f590ef218cd074a5895dda2bexeFormbook
2021-02-19 15:22:04f12df428fa830292897aabb6f73c5ecf96e855e278c3320e21e45629c84bf9efexeFormbook