URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: www.mcsgroup.co
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2020-07-29 15:04:37 UTC
Total malware sites :5
Online malware sites :0 (0%)
Offline Malware sites :5 (100%)
A record(s) observed :44

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-10-25 14:05:28 52.2.246.174ec2-52-2-246-174.compute-1.amazonaws.comNot listedAS16509 AMAZON-02- USno
2025-10-27 20:31:07 3.89.179.170ec2-3-89-179-170.compute-1.amazonaws.comNot listedAS16509 AMAZON-02- USno
2025-10-26 20:31:24 52.71.31.228ec2-52-71-31-228.compute-1.amazonaws.comNot listedAS16509 AMAZON-02- USno
2025-10-26 20:31:24 52.73.28.153ec2-52-73-28-153.compute-1.amazonaws.comNot listedAS14618 AMAZON-AES- USno
2025-10-23 03:02:47 52.44.23.111ec2-52-44-23-111.compute-1.amazonaws.comNot listedAS16509 AMAZON-02- USno
2025-10-23 03:02:47 52.1.10.207ec2-52-1-10-207.compute-1.amazonaws.comNot listedAS16509 AMAZON-02- USno
2025-10-25 14:05:28 52.71.24.166ec2-52-71-24-166.compute-1.amazonaws.comNot listedAS14618 AMAZON-AES- USno
2025-10-24 17:23:53 13.219.154.73ec2-13-219-154-73.compute-1.amazonaws.comNot listedAS14618 AMAZON-AES- USno
2025-10-24 17:23:53 34.238.48.117ec2-34-238-48-117.compute-1.amazonaws.comNot listedAS16509 AMAZON-02- USno
2025-10-24 04:55:48 52.206.2.63ec2-52-206-2-63.compute-1.amazonaws.comNot listedAS14618 AMAZON-AES- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-09-18 07:58:19http://www.mcsgroup.co/multifunctional_resource...Offlineemotet ext epoch3 exe heodo ext Cryptolaemus1
2020-09-05 02:09:36http://www.mcsgroup.co/multifunctional_resource...Offlinedoc emotet ext epoch2 heodo ext Cryptolaemus1
2020-08-21 08:09:20http://www.mcsgroup.co/multifunctional_resource/J/Offlineemotet ext epoch1 exe heodo ext Cryptolaemus1
2020-08-17 22:18:10http://www.mcsgroup.co/multifunctional_resource...Offlinedoc emotet ext epoch1 heodo ext Cryptolaemus1
2020-07-29 15:04:40http://www.mcsgroup.co/assets/ncj02fs-iwts6-070/Offlinedoc emotet ext epoch3 heodo ext Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-09-18 09:22:510286799bcd13cc95cbf9f33245d2fcf23ccd09343344bf391006ff468853e6b7exe Heodo
2020-09-18 09:17:133243397a55ed56e859c88cee2c3c2c30f3f987456600f11c64faac5454151832exe Heodo
2020-09-18 08:47:30015bf07c63bd81f4ff506fd2facc2ec546f2ef6bf1856176d469e1fe92167824exe Heodo
2020-09-18 08:37:201727324056de44a7e63b54517a328d259812e26f13d05d50092805bfab365981exe Heodo
2020-09-18 08:16:415d9ffe09ddbd6e055fa135ba2302f16fb19af57e3c1858d916c13a9a812f1a90exe Heodo
2020-09-18 07:58:19a5e36c2428c4f47163fa470cfd8bca0f64f16e53a2f41696632f5e0c0e804c71exe Heodo
2020-09-05 08:37:438b23e164f16ba0caed21611db9782895ac3a6a1f5b30a16e7cff6a2f8e3c3008docHeodo
2020-09-05 08:33:187813e0676b9ac895750acf882aa69b95b64a212515208262219dd072a51117cbdocHeodo
2020-09-05 08:23:42908698080dcf9229ad6d3a5b3faa55ad9f3499129372a809d011b6d24ba9d445docHeodo
2020-09-05 07:44:0552646e971288c190bffe00616c46fdb3741f1be6a5f0fe2235ca71c24435bf65docHeodo
2020-09-05 07:22:29b47773387ceae19a77df17722ac76711cd26f753da32fb7f1a43302d5523bf59docHeodo
2020-09-05 06:59:308feb6780d88f613f38195bca16b4fa8d854fb0ed44fd6e6d4269e483e7d05af3docHeodo
2020-09-05 06:48:062b7b0ff44457a586cf0ca88f5b8f4bee199a18d6c52e494b2ecbbe083c3baf5fdocHeodo
2020-09-05 06:29:3752dc2d3655da2e0bec58667337f8c1b82e08d7eeb4a73341345f236d3321e9d7docHeodo
2020-09-05 06:09:425391bbb94eaab89d4864ca7408da299a029611928be8cb4e99c97eabc0b46e4cdocHeodo
2020-09-05 06:02:187a30501200d16da77107068379331700e901268be067ce701617b4df11238b75docHeodo
2020-09-05 05:49:03c409cd7639c969f0ed59d092f2ae2232a491fda76e08a4abbf011a59a648258bdocHeodo
2020-09-05 05:32:155da552ae322580d7638f987c1c33d95ddf6ce5515f9b5c96ce75ef88111fd5f8docHeodo
2020-09-05 05:15:168c2da9079e400f97c3679a4f138c565c32493719b8c611f772f31c9781cc90a9docHeodo
2020-09-05 05:05:53916a9fdb4940cd7596a9604a95e7af177de4c28e90bfa8c2c98d836e82aab78cdocHeodo
2020-09-05 05:01:118dadb1448be18ff1a6f7368dbef2f14f940b87b1d8133d3a8ef264d547457451docHeodo
2020-09-05 04:50:259d71de685c2563ad92db03b5326737a9022c9acc2a3d4ea671e1f96d297d7c88docHeodo
2020-09-05 04:34:053de96a57dc1f01e5d74c2d3ec9b3b15e4426645cdaaad296b03adaa3f3c752b4docHeodo
2020-09-05 04:21:19e09612bc00202606cdfdfd5140ede548aa4d9224c339eb3e4ed0ad24dbad4f0edocHeodo
2020-09-05 04:00:253c0391237b2adda4499615dc19541883ee3a71e7c2db9eb3b3eb02f1b15d8578docHeodo
2020-09-05 03:45:482ea112ff513cfbbaf84731cbd3a3e700cfb6f87168673755d8bc47e616c7773edocHeodo
2020-09-05 03:32:156289f2e9039d8290e8166b5e1251bcd8d8317a3c458b4d21b7e210f113245c7fdocHeodo
2020-09-05 03:02:11d64c1bb1fbb978e265b3ee51e8e289cb4df8fe6727077731485022eb968ff3ffdocHeodo
2020-09-05 02:38:598a1b69d8887c60c1170f376610877703b08db59b89d9f5992c95b7dd3a332a21docHeodo
2020-09-05 02:22:03f9ef3bfe7d720474ddaeb7e816e38478952790b9b70acac27a93a3ff3603ff24docHeodo
2020-09-05 02:09:362b6d2eb499eac8fa63d179421f0bbf8bbcfb0dab8d7008294332a23ef8ed38e6docHeodo
2020-08-23 08:05:35f126732f878eefa8e6e6cfbb2244318950ee32e75b4b6ce79c1a42377fb219dbexeHeodo
2020-08-23 07:43:49ec975b9d44ccb8c217d8165a7389730ddaa15d27c543748af20f30b6ccdd8870exe Heodo
2020-08-23 07:20:20c6b241524ea196b2ae814541082c291375417d6174dbcf8f1f23f1d5f4486ea8exe Heodo
2020-08-23 06:59:2827b5ad41a6284a409158733f55bfbcbfc351d4570f570a60dbe62641ce30f2f6exe Heodo
2020-08-23 06:25:29deb628ca65deb06a15298844b3376204d5fffabfab0f63b657717e031395693cexe Heodo
2020-08-23 06:04:523201457281b64a063fc0d646d5202ec7cc6a027d4da3e9da98260717fad842d4exe Heodo
2020-08-23 05:32:25e8f913bae7eca8437cc28ee8d688fe46a53c947b1f65f8c8fd78852988707efeexe Heodo
2020-08-23 05:10:27db5281bf0c7196e84f104001552ff1898a8b03e994537af6a3e9db9346957a8dexe Heodo
2020-08-23 04:54:146e2cd26eb4a368202ddfef581779cc4eb5a5113717c1bbcad0024d7fce82104fexe Heodo
2020-08-23 04:20:5283580731dbcc41ce1f12ccf26d6678c3a5bc40d31ceeab8486aa476963e0ab37exe Heodo
2020-08-23 03:59:3139d2db0c5ab2b097a38b793d7eca0d0fb71911f1b7775533fa5a39b00d7c0fa6exe Heodo
2020-08-23 03:40:31cc685bceddfbe78b2affe053ea640cd5e3fbfe3389273c70360670c6a14ccf8bexe Heodo
2020-08-23 03:22:28c7f095a217509c7fa0236ab6b94608f93eff74c5e8a0164fa89e159824fa7c9eexe Heodo
2020-08-23 02:56:29284a10b98bea8497f1fb567f1f9596aa033cee713c7eaf13d34085fea787ad04exe Heodo
2020-08-23 02:30:35eca89ae5beaf1d70c2c6b5893525551191161d7f50d4ff4f0a6eda6b0fb62cf5exe Heodo
2020-08-23 02:13:458029cc62cef9f28b0b2b17b67b5c54a7d7d9d69efad0d3942ce32f423ac65a15exe Heodo
2020-08-23 01:54:556cbf00ca4ef7611425064532b969f4fd498d419a1d97010a8e6726c82aad62d5exe Heodo
2020-08-23 01:40:288e24a273b59b1cf4e077581cbd007c1a57beb61b0bc165bbca08d5ed39deeeefexe Heodo
2020-08-23 01:19:27420a29688349f7c0d3be81375b9e0ec84f39b6d8a5b06325e95f9a86c3383ea3exe Heodo
2020-08-23 01:01:122bddb39fca4c771f5eecc184d5d12070b83f603d8a0c0a95cd91529d85e3379fexe Heodo
2020-08-23 00:45:5538b8618ba682e5ec519bd6575e0d800be9a536f2302fd00c4a05a0de5559bc82exe Heodo
2020-08-23 00:34:157ec8fb1e277193d1cc978f1bc157d199df231b8580b76202ab47fcdc74de4b5eexe Heodo
2020-08-23 00:25:22907171fed00ce5774cea7fcd8b2750ef636550c819be1149b3619b68d4b1a382exe Heodo
2020-08-23 00:11:310bb8d4e90075d814b724be16bd20c98d7636d7dd78686e9711f9ea1ce96e7982exe Heodo
2020-08-22 23:47:33100cc34de5a2ea3e8a0fa857ddca00ea6607641742b2a3c8b305970dcb43455bexe Heodo
2020-08-22 23:30:29eadb6ed2fe2b012b513e64d70314d3d819c9e71ce45090629fc3e36a97b1d307exe Heodo
2020-08-22 23:16:0932d31fac11a497cf98a58766934454326136a2c9359a1f6240e45f1782ad4871exe Heodo
2020-08-22 23:00:46bbdf1c7b5cb38bbccb79a0ffde1dfc6b53e927a90431743c58d91d939bfc721eexe Heodo
2020-08-22 22:51:27f88299b27d63c4cd581c14000bf09254211d5f62662bb7b1e6bfc1f30fabed60exe Heodo
2020-08-22 22:43:31b7bd35d735eda74df5d1bf21447e6103a86ba231a27b67dfbe80e6d4bc5904fcexe Heodo
2020-08-22 22:27:088baae2a48a95ebfefca0b79bfdf788cbd998b2d5a95e36c76c2ef2b99408c668exe Heodo
2020-08-22 22:06:341a417f833137f3395fb98fbe3883480a2e0da1672e04e789677a5ad49096db5fexe Heodo
2020-08-22 21:51:10f9e23fde522fff19ef025ab7de5d57352c4aa9b81a590a384124225a9694e414exe Heodo
2020-08-22 21:30:19532879daba5402289b54717ceec0e0923e0640571a98b1968db2d9ef18296458exe Heodo
2020-08-22 21:02:2979444143af9fe456b085843cf84ececde7bbc9f5423de7e8453c7766138728aaexe Heodo
2020-08-22 20:44:28c2945e04a3694c1f810cc8ac9f14846ae953b1f99b59d14c99c908f5cb7a3a49exe Heodo
2020-08-22 20:20:1921f1f3d19b26cdee29ebda2738667bbe839da7db84a0f890ba8d4e428ba94630exe Heodo
2020-08-22 20:01:3305c00ad27805ef7839e2054caf5d81e2b38e9043e954bc5a1db5dbbbb2e2c614exe Heodo
2020-08-22 19:39:32afd3b709cb948454c3b5f2f778b17bf32223c8790c7339e2897fda94681ea723exe  
2020-08-22 19:07:31624aff3a786f62ff3e6a296d0c0f0d4de79997c4ea10bf62074b14444204de98exe Heodo
2020-08-22 18:53:27a8606d709af4c8632c9b383c9fd31ca0d66112ec80f7d936dfb658795503388aexe Heodo
2020-08-22 18:29:49ef7da9bd200eb4b876949e6651286c41280f8ab7f9948143453c172a05bee0acexe Heodo
2020-08-22 18:03:32bc6cc82a9d7e72e1ec8ccd2934ef83f98ec1dc63759ee27a2fc279c8595f6daeexe Heodo
2020-08-22 17:37:42a6fc9ac1f31c1469dc8bb3507857b88c1273790fec411dbab0a5c7a3867deb92exe Heodo
2020-08-22 17:13:16221d49c6b10a5b1e1c96284e5cbf212c785c2ae5e5c26259cc1021a65b57564bexe Heodo
2020-08-22 16:44:3775072474e62e976bc2cabf4900c284c7d83e9795f83db8b6992d4aec90b2fc8bexe Heodo
2020-08-22 16:13:10e9622877493597638ad47c46f1e1a76731c9b07135630e8767277fc0bb6ef504exe Heodo
2020-08-22 15:49:11d03efcac1f3b9786fb9bbe97d38b79ddff8a53ca783954951be7ae721d2ddc62exe Heodo
2020-08-22 15:37:58ca42be3565735693ba10d31c0b5cb7f3ffd72a1b1aca05ecc9fa2bf571531246exe Heodo
2020-08-22 15:29:197bbccd2b31280242534eb00a9e4963be50c3dbdd5ea3f378b5d0be2ba0a8609bexe Heodo
2020-08-22 15:09:22266255b07b3deb585c6803f0cddb446edde51bac77985f1d9424afd5f1d1f240exe Heodo
2020-08-22 14:49:117baa4bb78ca00a303186fe34bec4f2efd03623af6b3731effd9fd589c623857fexe Heodo
2020-08-22 14:27:40b41b608baab5db7c6baea7e23d81d3478ba2d80d8e88b75cb41aabaf447c48d8exe  
2020-08-22 13:56:54c8658dac6af5a7bfb39761d3279397ad90af5a2b039587082383077536a457d0exe Heodo
2020-08-22 13:35:572b0c22964db260bc782f92736c8520559fb7ccecb9eca0f8400505e26defe3caexe Heodo
2020-08-22 12:04:31ad2abe5a23ebf8161ea18a012d4ae26ac33aba2cea622d58aec1d15ece7d3079exe Heodo
2020-08-22 11:47:306bc729b4268364e2a262920efc8864d4815a282d2238522fd16f38b87d6da9b3exe Heodo
2020-08-22 10:16:38cf1d227862645187c95fec0d837ca0914f8474a61c3f84f34c0c2cd554f0910cexe Heodo
2020-08-22 09:44:51b8f570314b331355ab822eed87045c90145bfea36d875c2e94a7628a0e518c5bexe Heodo
2020-08-22 09:29:49b20b0e2be7818102f7a8f1b676f7e36d9972ddd85f375f5682ec9aabf5b6a209exe Heodo
2020-08-22 08:51:431790be636647f5a008ddd59aa5544885a11248680dd524e5c4dbf37549c8a47fexe Heodo
2020-08-22 07:59:40d99c1afbda3789284012d9d4f5e962144479676b700472b89daa93234a1386d9exe Heodo
2020-08-22 07:42:17b917f6a7f5fbb8211e3832dde155538e1f97b8437e9fb175ac7c6007db9279bcexe Heodo
2020-08-22 07:20:50ae49aaf00def3a676eabf625c7ba454042a07d8623a5ea7fea6666aadf127c93exe Heodo
2020-08-22 06:59:09638704d92135cb62cf2643ddf2dca0afa2148169e451acd87fb48e4b50758dc3exe Heodo
2020-08-22 05:28:03beb4e89a8ccf896bacd3ff7b739145cee9923b3b91fb9ccbcb1db3e02366916cexe Heodo
2020-08-22 05:11:59a82b5714bc11702cb04cfaddb993f3cf903831e24b3415176458fafc04265378exe Heodo
2020-08-22 04:53:43beabcc26035ea661695a2b9797aec85c1ade128e5786958ec0f35360c581cfaeexe Heodo
2020-08-22 04:37:009ca10d632b2f0e09ddf497a340e2df0f81bb66b8bae3226378daf13b1e74c334exe