URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2021-01-15 01:05:52 | 104.21.35.156 | Not listed | AS13335 CLOUDFLARENET | n/a | no | |
| 2020-09-10 10:56:24 | 172.67.177.4 | Not listed | AS13335 CLOUDFLARENET | n/a | no | |
| 2020-09-10 10:56:23 | 104.18.34.185 | Not listed | AS13335 CLOUDFLARENET | n/a | no | |
| 2020-09-10 10:56:23 | 104.18.35.185 | Not listed | AS13335 CLOUDFLARENET | n/a | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2020-09-29 18:04:05 | https://www.tekadbatam.com/wp-content/Qq/ | Offline | emotet  epoch1 exe heodo |  Cryptolaemus1 |
| 2020-09-22 06:47:51 | http://www.tekadbatam.com/wp-content/T5ZBLEKU11... | Offline | doc emotet epoch2 | Cryptolaemus1 |
| 2020-09-21 20:51:05 | https://www.tekadbatam.com/wp-content/T5ZBLEKU1... | Offline | doc emotet epoch2 heodo | Cryptolaemus1 |
| 2020-09-18 14:30:22 | https://www.tekadbatam.com/wp-content/AUiw/ | Offline | emotet epoch2 exe heodo | Cryptolaemus1 |
| 2020-09-16 09:45:06 | https://www.tekadbatam.com/wp-content/Document/ | Offline | doc emotet epoch2 heodo |  spamhaus |
| 2020-09-10 10:56:24 | https://www.tekadbatam.com/bewuquid.php | Offline | ta505 |  reecdeep |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2020-09-29 18:21:37 | c0f9bd868652019723758d4e71c02a5d693b0563ee134a7da406e716cb5acd53 | exe | Heodo | |
| 2020-09-29 18:04:05 | 78c89932ddec1256f907f99b7a2a294dbcf3e995a7138098a1a4fc3e2fc0128e | exe | Heodo | |
| 2020-09-21 21:08:18 | 1d5883296700a539b700172abed3dd4d1f4e171189c3536c80a81d5fb2f943a1 | doc | Heodo | |
| 2020-09-21 20:51:05 | 292a48621b6f7863d1a7d04f25cd2c6ddbcbf5abac1282941d3ba20ae076b776 | doc | Heodo | |
| 2020-09-18 14:32:30 | 35ff1c1a1b286dc7ad5e042a83744c6fd8502c9523a77fdce776b271fde29d35 | exe | Heodo | |
| 2020-09-18 14:30:22 | f1d6d42d8883c803e03a6ac3e07be1028a7a886ee8318ed18f854af6d9115c9c | exe | Heodo | |
| 2020-09-16 10:46:03 | ee69760c14fa03c104d83ca3e3ba2c9649d7c8feafea5c32b239f32e21851a7d | doc | Heodo | |
| 2020-09-16 10:22:15 | 1d74eaf6b6fc4ebf83fa4325a27d62ee8f999df2c277d2357b777471f1b35bd4 | doc | Heodo | |
| 2020-09-16 09:59:42 | b7d7c443145be4e2543b2786517f68cfef114f06e7c276368a6046c98963b766 | doc | Heodo | |
| 2020-09-16 09:45:06 | 09c3f3aad8f9bc8f65a86d581ecb23b0a6262a9e28d5c5e19750e6770aa5e40f | doc | Heodo |