URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	www.fpmtmongolia.org
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-08-06 04:33:04 UTC
Total malware sites :	1
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 23:34:38	103.224.90.152	cloudhost-3400178.au-south-1.nxcli.net	Not listed	AS63956 INT-5GN-AS-AP	AU	yes
2020-08-06 04:33:06	68.169.34.212	nextstepmarket.com	Not listed	AS13213 UK2NET-AS	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-08-06 04:33:06	http://www.fpmtmongolia.org/cgi-bin/0r0g7yl3103...	Offline	doc emotet epoch2 heodo	spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-08-06 11:37:40	fc55cdec1587494b3683916ba5c6b6679011e4cdb28f218c292abe9e23efc1b7	doc	Heodo
2020-08-06 11:09:01	751d0f8d16eae467cda2596b400afebcba628d7a0dd6cb876b1a2963acd5c8a6	doc	Heodo
2020-08-06 10:49:01	4f225fe467ead97d93712caf45378bd55d657949b260ff02f9fb976e168d8e0c	doc	Heodo
2020-08-06 10:27:48	341cf3a96d115acf061be9c88fb6dd93c04a154827ee00f8538a6c2db1c94cc5	doc	Heodo
2020-08-06 10:04:57	cd464e843dca00b09b6541a7ccb05834ce98ece1eae8d609c542aa5304b90401	doc	Heodo
2020-08-06 09:42:54	a1ac48addcfe05d4c78c350535881becd8c978312cd3b71012548827230557c1	doc	Heodo
2020-08-06 09:26:50	5c2650c6f95890e21c19649bcf085d416903c07507187992836803a3426bfb60	doc	Heodo
2020-08-06 09:08:02	33de6eeb3c10a93d48bd9b22a94e7e55ac291a1e1141528cfbbcdeaad940ec77	doc	Heodo
2020-08-06 08:46:34	203da8f7d358cdae661760fd8b5e14035a447d446ce6d1bbb3b41b1871adbd75	doc	Heodo
2020-08-06 08:30:43	3a8a7bb3d3cac21614a78a6ee59a7b7d5f4e9d0cc161d48a68fa99616098766e	doc	Heodo
2020-08-06 08:05:35	c1cef0fb2b5bf3232c5bde5d9cb7b06007e0a635ea6f092d109519b95e1d4071	doc	Heodo
2020-08-06 07:45:57	304614d4a80ddcf70ed20283f9b4837eb8a9b65f318b47acf092be17ed214933	doc	Heodo
2020-08-06 07:37:03	9f70eb62179e0307eeb166cb994a53afde521b1b29a2cf0a1f9d3c452cd678e0	doc	Heodo
2020-08-06 07:14:47	1b3d99ea038b8ab01934e0ca64e6025bc2ce176db72e2cabda3537ca09991469	doc	Heodo
2020-08-06 05:59:23	b05b7a5b7251a3088a61d778b36b9806d3c57425a15891696e1f447a258f08ff	doc	Heodo
2020-08-06 05:36:00	5c5b139f486c90ff9ba2c3f9ce53601d2d823de4fbb24f64cb7c26f76914df2a	doc	Heodo
2020-08-06 05:14:35	8ca99549da2ef2c66601027d2d105a02f9e7287c95193e2ec3597ea739e7051e	doc	Heodo
2020-08-06 05:01:23	14ac0983d517a26f29b5bf82e476e9fe0ee494ad757956152c762d46eda7ed99	doc	Heodo
2020-08-06 04:39:02	a6b2f80dc9d0efedd0259b87e8952c8a918481523929a00cc17382045e73381f	doc	Heodo
2020-08-06 04:33:05	0107a277fb1b3f3cf150d6ee41e1d1c89f89bc1a7ccb698c511115cb823197f4	doc	Heodo