URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	www.tophaat.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Blocked
AdGuard :	Blocked
Cloudflare :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2019-04-22 19:28:07 UTC
Total malware sites :	1
A record(s) observed :	5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 15:52:25	204.11.56.48		SBL494567	AS40034 CONFLUENCE-NETWORK-INC	VG	yes
2019-10-10 07:43:25	192.185.79.168	192-185-79-168.unifiedlayer.com	Not listed	AS31898 ORACLE-BMC-31898	US	no
2019-04-22 19:28:09	192.185.79.174	192-185-79-174.unifiedlayer.com	Not listed	AS31898 ORACLE-BMC-31898	US	no
2019-06-29 06:51:17	209.99.40.223	209-99-40-223.fwd.datafoundry.com	Not listed	AS23005 SWITCH-LTD	US	no
2019-06-30 08:02:10	209.99.40.222	209-99-40-222.fwd.datafoundry.com	Not listed	AS23005 SWITCH-LTD	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2019-04-22 19:28:09	http://www.tophaat.com/abacus/aQda/	Offline	emotet epoch1 exe heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2019-04-24 03:18:42	e350efd69893b28033dfa6ba293f402c04281453c766022a266ae6be6fbe31aa	exe	Heodo
2019-04-23 19:44:40	d192e212101c718c80a36a991d3e967f0e9934a6844ce4907b8b5846693e015a	exe	Heodo
2019-04-23 18:58:35	a2aeb5f507d5a5ca62ffc73fa34c825890d9bccd686079a283e37a3d21a0c50e	exe
2019-04-23 14:05:47	e24d216a48831d6aea667016faf1c5a0a2ddf47cf95e0a80623be0dfc3ada8a6	exe	Heodo
2019-04-23 08:51:34	760ccb0edeeeafe0cae52334884c431ccd8a753b070cd4f6cb3d2dc2acac2404	exe	Heodo
2019-04-23 08:07:20	f4df5458f10a2b6ff06370d74c4d4e0d49c7e1f37c23a975c1a70714e40ff471	exe	Heodo
2019-04-23 07:21:19	83add8abcfaa2f492c95a471066ef63ed7f1271511475f7daedacea92327b4ed	exe	Heodo
2019-04-23 06:49:18	9e960667e11d148901e9e2c6792027764ccf1daa531960dbfda20e26fe0dc2ca	exe	Heodo
2019-04-23 06:24:17	7174da45ef7eb800a50e5a4d6dd77a6a5ef5f58f976fc67ba48ea59ed7e20d67	exe	Heodo
2019-04-23 05:46:26	477740b7225bdf26d7b9719b4306feb996eca93a853b632851ed37a4bdf08e25	exe	Heodo
2019-04-23 05:18:11	7dc44c5d3a2643d4cbb2c0648a2d0cf31a8c2402aba38cfa3aee1c0e4fc17e80	exe	Heodo
2019-04-23 04:33:12	1c500e35e33de21db2ef5b4eb553d585ec651997abeec720f337690e682faa5f	exe	Heodo
2019-04-23 03:47:09	7fab9e357b397df96b825ad1f634491a33c7ea8ec4ae5e1fb95ea4a54f9f2c9f	exe	Heodo
2019-04-23 03:01:16	d473ed661b66285fb80de0dd5cc30b99c5048eb9da142ed9ed2be3139fa7c2bc	exe	Heodo
2019-04-23 02:29:11	a716fb303dee550318cc2158267b219fcbc26b048d7daed9ab9b9ea17aac1ce7	exe	Heodo
2019-04-23 01:43:12	77f5c4a34fee54488ee47fc1d0659991ee2202746f1e81b9cd2ed26a043b29ed	exe	Heodo
2019-04-23 01:10:11	6aa6f9e1701cad374913a47dc19836bda943fec40c5b7176f55a5f12570410b7	exe	Heodo
2019-04-23 00:32:08	6ee432614412d49598e7cb980b73af4f44794ba627272a6ae333e6d74e6d8e5a	exe	Heodo
2019-04-22 23:45:17	845165a511a471a4eafed236dbce07508961d6bbeef3b57a4857a437157c7542	exe	Heodo
2019-04-22 22:58:11	6f3cdb35a2b6ed36dd94d563559a5ecacc1df1ae8c05b9c4af2999642c107b41	exe	Heodo
2019-04-22 22:25:10	59ca3646d625e3afb53eca5fd9a0d17033b61b25f33ef1e01b192cd9dfb531e5	exe	Heodo
2019-04-22 21:39:09	2dfce275fad0dc249c47a19860072b4a9de0bde6440bf6a9d454ea8d682a7d24	exe	Heodo
2019-04-22 21:07:06	b765510fc176643637f367902464385a82b7ff79a6308d998b3ea56796faa703	exe	Heodo
2019-04-22 20:21:10	e5ab04e074fdb3ed08f0eeda274331a9a4023b41f4eedea22471965659728102	exe	Heodo
2019-04-22 19:28:08	37d628cc76a421be55874c67f012711d56555e439d4b57ab5c4076034f01197c	exe