URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: xiaobihu.top
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-08-18 12:00:04 UTC
Total malware sites :1
A record(s) observed :3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-08-21 09:56:13 104.21.13.114Not listedAS13335 CLOUDFLARENETn/ayes
2025-08-21 09:56:13 172.67.132.206Not listedAS13335 CLOUDFLARENETn/ayes
2020-08-18 12:00:08 150.158.199.234Not listedAS45090 TENCENT-NET-AP- CNno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-08-18 12:00:08http://xiaobihu.top/wp-content/closed_zone/open...Offlinedoc emotet ext epoch1 heodo ext spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-09-06 11:36:19267f48018f6a55a78062298bfa8465627d26be628b6a125899b3def1f9ef3ee3doc  
2020-08-19 14:21:34a834eee056511d26145abd3184681bc4afaf44e4d370bf83d950e66751704ea5docHeodo
2020-08-19 13:45:56fc3d622adccc98bf7aee3ff98037920892cf9ec8e29b6a2de393217d74499b7edocHeodo
2020-08-19 13:24:30e9da8132017bc36f1448def9ba8b2ea44184e68bf955c08ba75f2560ade79372docHeodo
2020-08-19 13:01:3417904f8a80c29c5ed3d3048aae5f62027b918b756006c67893220e03e7a0d7c8docHeodo
2020-08-19 12:41:2487a90ac40158e53a2309863a8bebfe1218f13262f87b93db76e5fc79ed1c388edocHeodo
2020-08-19 11:10:1744116755a469545747d98ca4dad33a22c5565d571be3001cb95cb4971c532c3cdocHeodo
2020-08-19 10:48:009d634af91f6a53ac776bd53e7c54fedb5e03e4428401865df1774123fafa15a4docHeodo
2020-08-19 10:21:4506f924f51874c7df81f49a607dddc6e977b700d5ce712232c7e962d77150bb01docHeodo
2020-08-19 09:51:334aff494156109cde9b6e276763ac3797bdcf712a55c119b108b3d5d854bb8fa4docHeodo
2020-08-19 09:30:324a1a50b2b4fbd12c0a323d5ac275bcdec7c1ca37fbb518a9c11a86dfde2b0798docHeodo
2020-08-19 09:02:43741441215f02f536e57bad81a0cd2549669c22dabf11a9db8076f3e7ec6acf1bdocHeodo
2020-08-19 08:42:20568b22f1a6fb077fd3828a09858b4bcd8401325c01f2aed85b3a39e12777cb35docHeodo
2020-08-19 08:34:4220694db459b3cb2ccbf97a5f2923759cac13520542fe78e84733947045a860e8docHeodo
2020-08-19 08:10:15c94255c1e218f6578be80a7dd64f4d75acb2c91812aa436908f37c81d531df90docHeodo
2020-08-19 07:45:29da820b108be2808d9d5d1909a3d8683f33f902abe5ae4e5e319d6aa766aba61ddocHeodo
2020-08-19 07:18:56a09fb497ce5738081489fafa343ed354128eba16cc5f8f6bfbb26ff79e19ceebdocHeodo
2020-08-19 06:58:201c98753feb43790bf0b2979ae0d73c4760638ab1d9c5d6b6336ce2241ba31aa4docHeodo
2020-08-19 06:43:11305d205cdb3c030f05543db463c783753137d91a3d8c2721189a94fb36e4f7c6docHeodo
2020-08-19 06:17:534d3b86d9dc87fa84b6283d3c9ef68a508bd41eb8f2930650cecf08f2ae86c2b3docHeodo
2020-08-19 05:58:10f6feee3a8137cb0cab6667842f06e07f96e54fc2f15ebe079dc30b4060d52452docHeodo
2020-08-19 05:43:0800ae8c566e55be2bcbcd11072f67a71e34b8b28b3e3dcb0f949043c17c398ecddocHeodo
2020-08-19 05:22:048ecfd0e0dbd4257b0b0f97f99517f9d1d825e32d7862b1ceb1b6bfdc67b205a0docHeodo
2020-08-19 05:06:0760529051426888b950c39051f1ae3ffd04df199460f8f08ad2fb4ae0d65837f6docHeodo
2020-08-19 04:49:137916fa0619bd4a976c48a8b068040591dd8f78f9eb5b2bd3abafc019ec1f0daddocHeodo
2020-08-19 03:18:145a63ce9de6a721eaabedc5a95a579a3eee404a94034db171f646e24517fed367docHeodo
2020-08-19 03:00:11682cb4ff880f1a6a000f5a227f8dba42abd73d836308162dc519644d9dae94efdocHeodo
2020-08-19 02:45:4345a1dbdb6b372ed28b9806469cbe031baa76035067cb69b5e936960e53988a80docHeodo
2020-08-19 01:31:597833c0d39d11142241550af1fa9cb743026dc00c841f79a52d695fd8e9bfdd43docHeodo
2020-08-19 01:12:53eb36ddd9edb9f64c1d10743135f87875826990fee2cde8abfcc653b1045c9061docHeodo
2020-08-19 00:57:055df568ab274842e91a3f5717af61fdbe6827249fc71e135fdc493f5177ccac7adocHeodo
2020-08-18 23:25:54eba02aeb5ab35694f34f8048ad03accea87abc6915db54d0905d905a155901ffdocHeodo
2020-08-18 23:14:5396ff6e1cf0debb38b542d25de485f8bbedbebacc99a76bc427946603266b19b2docHeodo
2020-08-18 21:42:59f7f2b55cdbf9f24f6e1850b32aa87b859717f840d46caff776674a973d28d51cdocHeodo
2020-08-18 21:28:505fe3b8e6945f1fd2e0c85c1b8cf1c0969965447dcb9d72deb04c28e05c9116b4docHeodo
2020-08-18 21:14:5858a56d18575486a19f725b7a1ae5cde8ab091e272638e1df1ccdcc69cd83371cdocHeodo
2020-08-18 19:43:3517300227be521550f2f2047dc5be4dcad326b59b87378c8a1372dbc867fb29c8docHeodo
2020-08-18 19:30:2794ace7e2d381dfd76ee7a14ca9dd506f68b294af71ba21068cf646c1442e9d96docHeodo
2020-08-18 19:15:338eff0446f444542435bf1ea66d34ac5b2339a87d7702ba744f403dc5ec5d4795docHeodo
2020-08-18 19:01:442665e27cc12b9a111b35b73a7afd85da8a5d1877d6270f6d8ea48edd2acc0718docHeodo
2020-08-18 18:45:305ab26ba89dca2d8b250aeb563b2d6c7215c10c0a62f544d7dc78af3c638cf2f2docHeodo
2020-08-18 18:44:2152386a3f4ed721abc491a22e4d08ba4497e8392249b04e5fbcdcff39502cb314docHeodo
2020-08-18 18:26:5428810939674484b940c1b242c2defba24f6fa84ca59b37ed3196792e22adc284docHeodo
2020-08-18 17:45:52c2c31857eddef908bb15ebce07f54e91a068ffff5b92014fd70c1d5ce8f34cd6docHeodo
2020-08-18 16:55:13c674ec5f3cdf350eb7768e985c94060f26903274d10b581bab0fc71c730f0179docHeodo
2020-08-18 16:40:264447568080893f02a97ee86ec9e776b6d5b4f7ea644870e130a19f3df9b16667docHeodo
2020-08-18 16:17:49220f661d5186fcdd525b47c5a909197b80b076950ab2a2f94b6799328cbd1f19docHeodo
2020-08-18 15:15:4246411363967383fde95f164b6ca16cdf6f2da8a1269ee7c150b892d445cc9f20docHeodo
2020-08-18 14:57:3196c73835686797a5dbc5dbd37ef4a7291b69f848d7ca403c9ab404f4f7f650e7docHeodo
2020-08-18 13:25:155761b96d033bca0977cc67ee0a51123d3986e1ea0e0f7dad51925b7a2a141555docHeodo
2020-08-18 12:00:08e623eae3d71737cf64d678b398b83dafca4698f24b80d315bd3dc57dfcfef726docHeodo