URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	x.wijblijvenhier.nl
Domain registrar:	team.blue
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-01-18 09:22:04 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-01-18 09:22:05	185.104.29.26	web0089.zxcs.nl	Not listed	AS206281 AS-ZXCS	NL	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-01-18 09:22:05	http://x.wijblijvenhier.nl/assets/9i6/?i=1	Offline	doc emotet epoch4 heodo SilentBuilder	Cryptolaemus1
2022-01-18 09:22:05	http://x.wijblijvenhier.nl/assets/9i6/	Offline	emotet epoch4 redir-doc xls	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2022-01-18 12:49:24	a08e21a9646ed80fd78c00c66e67a24ae0fe62a3b0e7f1f8af0de9e7e5b36fef	xls		SilentBuilder
2022-01-18 12:40:29	742e4e61e724ce6d7ff5062cfcfa8e0022ed8efae93831bdac36fd47bae4a51a	xls		SilentBuilder
2022-01-18 12:33:58	4946f7957e6560529b159b87b4609993dcb145b5e3aec98d6f6c6b7bbca01881	xls		SilentBuilder
2022-01-18 12:09:57	9529b48a5f5fd2aff17d966d10c20e9ab8912e234506de6de41b2758ed0f3f2f	xls		SilentBuilder
2022-01-18 11:57:23	db2524a38755745b796339f2a7fb4e42dba8341984ce35ea715923742a725315	xls		SilentBuilder
2022-01-18 11:50:41	bb03708424d81d0d854321db58bf2b8b53e14bfb0370bb212a75d9f7bd7ebf46	xls		SilentBuilder
2022-01-18 11:30:45	70730b2e2b915460b29f280979de96339912418a1c5dcea03e8c5b9add9b291e	xls		Heodo
2022-01-18 11:21:24	1d497a791ac45c2b12cffd732c9c8f699a6c86d89f2db44ef3b890818b1e32dd	xls		Heodo
2022-01-18 11:08:26	b463abec1dfc612e1ea59fa20ed07f468fbdc69e8694a5af639fa79435ce4f58	xls		Heodo
2022-01-18 10:52:23	c0bdcb5bc94529906c63365cec6d08f576fddd0d78a93d487147c88c58816b45	xls		Heodo
2022-01-18 10:39:14	5b375b073c39b03e9ccf40dc5fa4651bb2e28721896d5abc68a3886e2dd691a7	xls		Heodo
2022-01-18 10:29:53	5feb30d01fb35d5fde34eb531e533bbfe6870e26612f2b397214636aed65988d	xls		Heodo
2022-01-18 10:21:52	59cb2552a34b231acb92fcee121b13d662ca7f0049a70aae86fe312270f548e5	xls		SilentBuilder
2022-01-18 10:07:37	cb72411eda14bcfa779768a7613cfd14ee3fe81b4146cd94786f02b6f1a6c385	xls		Heodo
2022-01-18 09:48:23	518b04d7884a023cf712471a10ae16dc5baa8b507f100979cdc790ff3363aca7	xls		SilentBuilder
2022-01-18 09:41:24	b57b7792f2d74379892499f9a23972aed0b7206a9041b5e3b0720b2a683c0d53	xls		Heodo
2022-01-18 09:22:05	e40540b7befe18cceb77e89842f7bacbabc7706dcf706f295b50dd8fc0b95397	html
2022-01-18 09:22:04	314455a381d1cd20522649589eae3f0ff07ddebc5d2893df56f7a858461f6eee	xls		SilentBuilder