URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	www.rivabodrumresort.com
Domain registrar:	GoDaddy
Domain registration date:	2014-02-08 09:32:26 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-03-21 07:31:04 UTC
Total malware sites :	1
A record(s) observed :	3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-05-02 08:31:44	94.199.206.112	srvc111.turhost.com	Not listed	AS42807 AEROTEK-AS	TR	yes
2022-07-03 12:57:27	93.180.132.133	hosted-by.hzd.com.tr	Not listed	AS213657 VPS-COM-TR---HOSTAVRUPA-NET	TR	no
2022-03-21 07:31:12	178.211.50.18	server-178.211.50.18.as42926.net	Not listed	AS42926 RADORE	TR	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-03-21 07:31:12	https://www.rivabodrumresort.com/eski_site/HozRXt/	Offline	dll emotet epoch5 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2022-03-22 06:15:17	856478d83db8852ec819bc81d2f99dbfd9bbd5a79a8abf5f0096fde8ddf39e26	dll		Heodo
2022-03-22 06:03:37	a5500f133eb22391f56eedbf35559526e4fe5aee0ee3ee9af49af970616353ef	dll		Heodo
2022-03-22 05:20:01	dc2cbf748f8496b159764a84e0e78d5b1f5ee1c994da3a725bfaa709a4173346	dll		Heodo
2022-03-22 04:18:15	6a744f93f6a5291e2a860f00ff8a4bb35e1e2e896a131e7c62161badf071fc2b	dll		Heodo
2022-03-22 03:24:32	d24dd502001a8047f7bb63d0d94c4ac36387c84f48f4d9c86155a2f3ece53ea8	dll		Heodo
2022-03-22 02:36:28	42fdd8eda82b9ee347dd2eec5a4b0cde6200abc0951a8716bf8681628424b80b	dll		Heodo
2022-03-22 01:44:08	d791c3a16406fbc9698eb094bc6a73948e1747207de8b581982ab5565e070b0e	dll		Heodo
2022-03-22 01:17:57	8db23931587ca0cba92f03a5040841d211b49bbad544fb3f5e40cbd02f4eeac2	dll		Heodo
2022-03-22 00:52:22	0e9f97e8ac3080f25c241b46150dded1c720b63b3423b9e23cbace0a6734beb4	dll		Heodo
2022-03-22 00:01:33	73f5da96a9cf27bc8a3683bc2af9d3b08262a5870405682107a3f0957114209b	dll		Heodo
2022-03-21 22:52:53	08e65e21ffe615e0d0ce1aa3713eda2a6a7676e41fb6b443e093eef6b23b429c	dll		Heodo
2022-03-21 22:33:54	2d0566b9bff096ddd275e3cd2e2c246898a032ce025c973e22bbf34ac9ef9cab	dll		Heodo
2022-03-21 21:31:21	97dd3b628a1cb0f09ed56f9d5a732f84e18a0c4d3652a0fc580421b8a2813c35	dll		Heodo
2022-03-21 20:46:45	6a6a6c8cd52bc7fc213c43afce31d787133ea9154234859dda07d57040b05cca	dll		Heodo
2022-03-21 19:54:51	214f259abfe8397d90f3dbf9a16fcb69188b5e6c438a295687e89a02f0ff75da	dll		Heodo
2022-03-21 19:02:32	4cb3aceac12fb218994ee01e63645fa51b9e49a705df41b5460e5bea79b14f06	dll		Heodo
2022-03-21 18:42:44	72b25d0a14ed02176569af54073b1b70b1c924b6d5b238e3c593677307122f71	dll		Heodo
2022-03-21 17:42:18	f92650869c60863cd248fc36e3d8da8291ab20a79163d2aacc26189547099e7b	dll		Heodo
2022-03-21 16:38:06	66ecaca110db095ea25628a3129c63983a7128acfa6d7cea6122a3328412ccae	dll		Heodo
2022-03-21 15:50:12	09bbd5fc3b8dbda63ca167a26385c30b11b01954352cc722d8cc5b1df6393196	dll		Heodo
2022-03-21 14:24:39	2be9067d779ad8a661f0535476cdf06d142b799d5ae0b99e71b5e5b0ebbcb002	dll		Heodo
2022-03-21 14:18:39	c53c4a14cce65a45112b1e07e53afa5d27d17889a8c550881b594c81b8e7c7f2	dll		Heodo
2022-03-21 13:29:16	71a85b4603bc98c7b4d0c16eff9ff7431b82e2c58bf6fa74e4b233cd80e9c5c6	dll		Heodo
2022-03-21 12:26:43	3270a2cbf32c746f522cd3c37ec45c9a4e88a30009286d69bf5e455010e84f36	dll		Heodo
2022-03-21 12:07:32	a3fb1639a91b2656d8999901c968331336bd47686b653daa7d16bbf684b2a3f1	dll		Heodo
2022-03-21 10:47:18	eb8d2d97e90767203eca3118e5d51e1b8b5df8bc062bfa5020dfd73518226fbb	dll		Heodo
2022-03-21 10:10:24	495f85ba5e86cd3b9f53afa8e636635d16dae744a8bb9554366ac0426445dd9a	dll		Heodo
2022-03-21 09:42:29	c61d40d17e10865b97cebc9497c993b48b5be43a0e6b29202fd47a1de5cd50b0	dll		Heodo
2022-03-21 08:49:20	3368c50e4815d1639bff9652fc949bc18d45012c364f4bf5908427b557f3f12c	dll		Heodo
2022-03-21 08:41:42	c7ed0a202653d3f9bb14b01fdbcff4be3535bd5016e055b3c24d9c6b9027bd0a	dll		Heodo
2022-03-21 07:51:35	87de550d26dd588363fc142dedce8a678db3b79f936f0a146c9f4744dc74bf47	dll		Heodo
2022-03-21 07:31:10	4b58bad02582ab69e0de3afd21f64f18303c0f903c2fe278841f254a39f06fc7	dll		Heodo