URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-07-29 14:53:15	217.174.152.52	bear.vivawebhost.com	Not listed	AS57344 TELEHOUSE-AS	BG	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-08-17 21:59:04	http://www.ngcdfkibra.go.ke/personal_section/cl...	Offline	doc emotet epoch1 heodo	Cryptolaemus1
2020-07-29 14:53:15	http://www.ngcdfkibra.go.ke/mail/sRxXqv/	Offline	doc emotet epoch3 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2020-08-17 21:59:03	fd0b6b08d2deea0b22980fecdf347c4601d1174c7eff6a008f99ff605c706a0d	doc		Heodo
2020-07-30 01:54:26	28ad746a87c186873fd8d644a8ca704b9768959c1d8cc780bbd1e4fcec07256c	doc		Heodo
2020-07-30 01:28:58	e039f53c75e931e700cbcafe41ac39dfd4673929f7f2cf333a2f722272fd240f	doc		Heodo
2020-07-30 01:20:14	cf7363d569abe51412e602a505dbb2d3604aaf97ee7c71db42e66b09224dce54	doc		Heodo
2020-07-30 01:03:05	db24098d6bd41dec460588297f00255c409f745bbe32faaf2cb6476fd44ee504	doc		Heodo
2020-07-30 00:47:02	72244c8748d1f0b37e10ef8b0f5be0624ea7ac975aa1214281b4f326e6b2f4b2	doc		Heodo
2020-07-29 23:59:05	9682cb3fed20b168899452201908168de9b2c2d82530d7227a4474b8b2587eb8	doc		Heodo
2020-07-29 23:45:29	40a19219a853bbc60201d4cd4fc226bcdda0966f87f05dda562d113d65c8ce67	doc		Heodo
2020-07-29 23:31:16	1a509a842e1a24c4ffe665706fc677197002dad72cf5ba4a2711e9aace8dcd70	doc		Heodo
2020-07-29 23:17:00	b6eb1c7760e06c0bf914bc6f8d26d4aa98a1d859d71fed9d6712db95af81f5f0	doc		Heodo
2020-07-29 21:35:03	bab24985fa20dca7f015976c0212909f59429d181ee874074692fa835b0f604c	doc		Heodo
2020-07-29 21:21:35	dca65af614b79dad6628ee637674667f9dee8b395388283c22e3fca41e8afe31	doc		Heodo
2020-07-29 21:07:35	42d013d9cce79a7e86da79f6dd3d25b04f8460636e45c85ec23d1a962173f389	doc		Heodo
2020-07-29 20:55:23	4ece79e02379040355a4ff12f9b622c675a9910c6f10d98c393b790dc0c9536b	doc		Heodo
2020-07-29 20:40:34	dcce5b7a5bcb690a1e944e5dfe8577fe2bf2d913de0e0828825c8a3daf0d76ac	doc		Heodo
2020-07-29 20:23:03	c9908873e05408d13895e8545fd5b9e3eb95032f5e363086b19e6a14a8ed7075	doc		Heodo
2020-07-29 20:09:57	eedf761aed061fa63744aa541d5ddef3b7d53978fd00882cbf9fb0f88bd82550	doc		Heodo
2020-07-29 19:53:42	cbf7197df6cd966772e966e4e8a67f74d1b090ade41e58f80f706a071ac64286	doc		Heodo
2020-07-29 19:39:47	a19deec65bef4fe1030b463be94b414c4b4b1bad207acfc2fd8df6bb5bbbefdb	doc		Heodo
2020-07-29 19:28:04	c65c81e1a76fdf4122271da9b47b9b45e0a45519719f468e7539eba8ab8f9d5f	doc		Heodo
2020-07-29 18:43:52	ed92633dcb1b2dad6206cee946593ef3d93a891dab991b164595043fe12d82f1	doc		Heodo
2020-07-29 18:27:58	934f5d399e3b3914f2c3410ad251ab6817ddf37637d4cd01aa0faabb3f39ab2e	doc		Heodo
2020-07-29 18:15:14	2f455cc6268ecdade0ca6fffc1663cc0afd5ba64feef4dcad85b6d26f5a6de40	doc		Heodo
2020-07-29 18:02:52	d38a56d36ace7f2adafd305ed44cdd1667c68209148e46187c616be8a00c379a	doc		Heodo
2020-07-29 17:38:21	6ecb72b433b635a49ee2f82737cec4103d08d18e988b42d36bd1b35d175ef612	doc		Heodo
2020-07-29 17:22:17	6c3d8011d58d421f0db32a2fbd7ff2dfc39c7fe557dedcd503aca7d97d7a1e80	doc		Heodo
2020-07-29 17:08:39	4dbfbd8a057e49274bd92c01fa9680f9b478eaf207fa1c55aeb36d7879a35b27	doc		Heodo
2020-07-29 16:52:45	4800ef4ce359d4cfcba1becb6f8f276e0e968f7184af96279a1c448b897cccbe	doc		Heodo
2020-07-29 16:36:23	50445a74463d73e829f22308488c8ff5b166f83d4d17025cccf6f9c634146f8e	doc		Heodo
2020-07-29 15:05:08	4fcf5c5d7a3296eae7876be45da5f2043bb300507716ac8927c882b5faeb1c2b	doc		Heodo
2020-07-29 14:53:14	1ddd4cbe0cce870cff910c166130add090f1e48f6f6c146f30cc368b32df026e	doc		Heodo