URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	yumiwong.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-07-29 19:45:27 UTC
Total malware sites :	5
Online malware sites :	0 (0%)
Offline Malware sites :	5 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-07-29 19:45:32	110.4.41.164	server.zeon.com.my	Not listed	AS46015 EXABYTES-AS-AP	MY	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-09-03 21:34:34	http://yumiwong.com/https://Overview/fafv2go4f/	Offline	doc emotet epoch2	Cryptolaemus1
2020-09-03 15:07:36	http://yumiwong.com/https:/Overview/fafv2go4f/	Offline	doc emotet epoch2 heodo	Cryptolaemus1
2020-08-27 18:12:08	http://yumiwong.com/sites/Document/3q1i7oqnxhl/...	Offline	doc emotet epoch2 heodo	spamhaus
2020-07-31 20:01:37	http://yumiwong.com/img/common-8i6kU0pc-9RSe3H9...	Offline	doc emotet epoch1 heodo	spamhaus
2020-07-29 19:45:32	http://yumiwong.com/img/Hct998/	Offline	emotet epoch1 exe heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-09-03 15:33:11	c8977118b5d85e3a720b534813d511c2460e60f91118a3159b0c172258407ea8	doc	Heodo
2020-09-03 15:07:35	d13783aa7c58fe23dde7d79070409858c3a2539fa5f253a8a0617f3b71487796	doc	Heodo
2020-08-27 18:23:06	f8c0ab3bc7ebbd986e72a712fa194d1c05d9ae0c804a39442e5beebcda5934ff	doc	Heodo
2020-08-27 18:12:08	c7d43135ef0bca64a05155797f2da23750bbbf82d6700a0345e3153f2569ece0	doc	Heodo
2020-07-31 21:58:20	f4469edd9d414e0d622d3b4445beafe1ef3b0787f29b9225b2157438d9bfa722	doc	Heodo
2020-07-31 21:44:37	c392286c985ecf84b1e75a52095b44c2e5f596410d388ea8ebe5f912bad95650	doc	Heodo
2020-07-31 21:26:56	028ad78c3d669870415ca9cef8fdf704e543382daa866d7ee003993217aaf48c	doc	Heodo
2020-07-31 21:22:58	74fc596f9803d779f659ae92e4bdf5ffa315af743c11721aa3c9376fcd663e47	doc	Heodo
2020-07-31 20:57:13	b90405b5945098e5acd1f81f9821c66b49f8bf3b41ae47e41ffb76e5a95de4f3	doc	Heodo
2020-07-31 20:01:37	f51a806f996853b46bf1c93e03dff882eab265603e6b9af72c234babe6998ae3	doc	Heodo
2020-07-29 21:45:15	4b2b556107c67811ce06be0442d0b5c0029d737c2e2bd60209b6b9bcc08c28d4	exe	Heodo
2020-07-29 21:35:44	863a689739db96a238c1e73f9df0c12d1460bc08226901ec5b366e26f2b095e9	exe	Heodo
2020-07-29 21:21:59	c48542e453a17766cf165a596033d08d696713b18e3011e1bc7d92884dcbfddb	exe
2020-07-29 21:07:29	ebc0b79cd184bf2ad72d69095dc96ec79f83cd9bdae264dabf460de474105b1a	exe	Heodo
2020-07-29 21:04:01	d2cc17d12003001e77517362853336d44e233ffdcd48701353c633d48ec732f0	exe	Heodo
2020-07-29 20:40:39	88cb97295b89e4485a1c2abec7acac4604f287abec9e1128ecf50c317df19b25	exe	Heodo
2020-07-29 20:24:06	1a499e9824cfd699e2e37da1525c2caf530523026a9a95dee3a387973d56ada0	exe	Heodo
2020-07-29 20:08:52	7ed6afa6a91c08a154c8599df58d98967a5a5c1034f06c99df4d909eda56d2af	exe	Heodo
2020-07-29 19:53:37	e82d3c73f8ff703a0605e92de7db4d3c077c3d34dccf3e628a2c7cd04d28fb56	exe	Heodo
2020-07-29 19:45:31	329ec11d46e8c93fade7d589916eb117c000964137e4a3705e854ffd59a9fdc5	exe	Heodo