URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	z-bai.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-08-10 15:33:09 UTC
Total malware sites :	3
Online malware sites :	0 (0%)
Offline Malware sites :	3 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-08-10 15:33:14	49.235.197.132		Not listed	AS45090 TENCENT-NET-AP	CN	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-08-21 16:35:33	http://z-bai.com/wp-admin/LLC/	Offline	doc emotet epoch2 heodo	spamhaus
2020-08-12 07:59:06	http://z-bai.com/wp-admin/2632785107_v5JSj5SQLa...	Offline	doc emotet epoch1 heodo	spamhaus
2020-08-10 15:33:14	http://z-bai.com/wp-admin/z772u-sl-26148/	Offline	doc emotet epoch3 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-08-22 22:06:54	493fbab43b8eaf0772394866842fa9474e8e54a84894498828af06590dff1cbd	doc	Heodo
2020-08-22 21:51:34	f8cac8302d04c68ac098a7199dad00350e89aea96d6c7bd016056461d9c49909	doc	Heodo
2020-08-22 21:29:12	3655cdb051d4e200642ff9c6d6771c865cf10cf779c5253707a6c1939ff9967f	doc	Heodo
2020-08-22 21:02:11	a2a5add4aafd25f28fa4f3358425c1d6fbfa78d7026ee5d990d1f940be9a6b5e	doc	Heodo
2020-08-22 20:44:54	6c3fb369276b844233faf8e281f76433edfc72cf4474e44876f1d5869e35e533	doc	Heodo
2020-08-22 20:21:02	875e8c26386ff1c0c8b3678d2bb054d0883fa0eea3868af7f150390cb0ba6577	doc	Heodo
2020-08-22 20:01:10	d22cd591ca782f3baf0951d51ef1240685529fa34c5600b9fd14b3a9f81a6ff4	doc	Heodo
2020-08-22 19:39:26	64ff3957fa2821e1e54fc9ae7986204b361b0ab5cea01e45f4582b9b61318de8	doc	Heodo
2020-08-22 19:07:00	ce2ba046f2b155fbca1c5575fe23db9241abaf2913732ab6989ad8e3a06aa444	doc	Heodo
2020-08-22 18:53:09	17a8abcd3a0ca286f3322bc0211554283f14c8d538bbc1cac2fa2ffd07dd10bc	doc	Heodo
2020-08-22 18:29:18	6c1c592a721270eee147407ae5433ab9874fc959d3a587c9b711accf6804bd1d	doc	Heodo
2020-08-22 18:03:04	b8a94a9f62b6775a1344c2264595791ae3ea587929c28341e9423c9dea41c9c9	doc	Heodo
2020-08-22 17:36:58	69e8dd6df38ec2bdea7faaa0d97904804da845aebf646226f142eedb586b32ee	doc	Heodo
2020-08-22 17:12:09	2fd9392aa58c13ecda286bf33882e5a6ebd07633a6ab746f9f1b8c573f42a129	doc	Heodo
2020-08-22 16:44:03	d5967e0174137858c48cd8bbaa7f6935d1296347df3689f088e13c56cff70b40	doc	Heodo
2020-08-22 15:48:16	db6ba79a4a1de58ab33b517ace62dfe2363d93ec437fa43c2ed976b32ad70742	doc	Heodo
2020-08-22 15:38:50	26d555ec74a58483c8bd0c5d4a286d2662776ba3feca6137b85501568e4290a3	doc	Heodo
2020-08-22 15:29:20	d4c02ad3c22d83fd5001e65ee9c3432ee4521feb365efa9d7933477f842901b2	doc	Heodo
2020-08-22 15:09:30	7bb46eb08bf229fb87bf187ddd62783334d74d2e386b5c400a6a4c42b8212b9b	doc	Heodo
2020-08-22 14:48:28	a36791162048762c26483d90f500a367da81672c29e9de5d6d524e75585f0b8a	doc	Heodo
2020-08-22 14:27:40	76a3bda4d7ee27c2c82f872da4722630cc3859af9483e315d4153d877784e308	doc	Heodo
2020-08-22 13:56:36	04ed313f0c28c0f07e054a223bcce3991932e313f7c233013dcd6e2f945f9f80	doc	Heodo
2020-08-22 13:35:22	c1d86ee73a710aa546d0412cab2eb6fd92313f8d117cc9e10edde5af32cc3b75	doc	Heodo
2020-08-22 12:04:19	98749c34b1a93f2c20a991419f4a8994e56f17ecd48822d384426203410c730f	doc	Heodo
2020-08-22 11:47:29	488a7d54aec0b6c22f19347c7fc08db9587d95ab9d8d0b98e7c527e1d74654cf	doc	Heodo
2020-08-22 10:15:36	7d22157e23163b7a45402a9a9b230b23bc2d5f5249335ca9ff4f9577a965715e	doc	Heodo
2020-08-22 09:44:58	de8da644f768598c0f022a5398be71b4532ddabaee7035c96b697e37b6e706a5	doc	Heodo
2020-08-22 07:59:36	2352834aada622f4460b9dd3393af149de11975edbdb35d4c20f4917959a8526	doc	Heodo
2020-08-22 07:41:25	821e25913d73972a01a1db32a8504153128d8b4856fb812dd3ede84e3afc18f6	doc	Heodo
2020-08-22 07:20:03	6a9cb9033ebcf0e513947cface83d763d935d1fe8fe4b8a3ed36acdd88d92371	doc	Heodo
2020-08-22 06:59:10	0a190f7914f6ab083b1a9f35ca711813e261bcedc4be7c11cdee294e1bea4928	doc	Heodo
2020-08-22 05:11:47	02673d69c148c0f8b3a70c07d8ab42ef299cffc98186d037c1eba5949eded2b4	doc	Heodo
2020-08-22 04:53:04	860c5f447f202c55885fc12b01dae4464cb7a2813113a03099954d6e2487f437	doc	Heodo
2020-08-22 04:13:04	fda9af753166250232f0855d309359288b8b9e4b0b5e63b5501c4450b48ba5d5	doc
2020-08-22 04:10:21	223f9d553cde32a1d85c024ab5bf112893a5d55e9595f0cfab8bc6219e3e447b	doc	Heodo
2020-08-22 03:49:01	93b634aee9aad2befb33b7fd725cd8f468013a1949dfdae190ccd84456d328d0	doc	Heodo
2020-08-22 03:31:35	a1e87d01c65493326225304620046734277bb14220533083a514de1693fc43a5	doc	Heodo
2020-08-22 03:00:57	096a3542fef0f482f624aefb72a07ce378c1b5618b69a2067567a88f09b01190	doc	Heodo
2020-08-22 02:40:07	d818f0d1f4c2dedae9fcd5152cb3a98a58e46528bdbf5decf83285dab11d4454	doc	Heodo
2020-08-22 02:20:09	9a8cf33cb840374c162689ca999f89cda396d27c6f78919245af2730b1afb2de	doc	Heodo
2020-08-22 02:04:03	7cc0c880d55c37aa23a77e2002e19f7b8187f065384cb3ed03d43ec181cbe496	doc	Heodo
2020-08-22 01:48:15	145acd5e0e67f614595dd75a8650697247d18e68629cacad0810b67783e01b64	doc	Heodo
2020-08-22 00:56:45	94904301a0794ca20357c8ba3c059df10179b43afe4828ac94683dfca014d6f7	doc	Heodo
2020-08-22 00:30:29	6de50b6129796c4fa1231ce261dadabd610d00711194503150cf45355edec9ee	doc	Heodo
2020-08-22 00:15:08	0759e5c471a2092742d96de880d1e5b939fa7fc1bbd839fc5a6f40c79067c24c	doc	Heodo
2020-08-22 00:00:45	845169ecadd97b50576fed0fca204646844a511794662c22fdce0cadc58219b4	doc	Heodo
2020-08-21 23:44:05	a6679eb46ce9ffb28041319f4f1f5d9ec789b87a8ee7d4e8a35d1971f7d02e58	doc	Heodo
2020-08-21 23:31:41	04d877632142f79b8bad4d3e25dc07870f8c31c719b9214b22321b21566874dd	doc	Heodo
2020-08-21 23:13:32	e13da1516e2f63a731df6ef27cf254ffe39dfebf1dfdb23489fe0d0e15376e01	doc	Heodo
2020-08-21 23:00:47	d5be5e80d08055b8f4a6fab2d84a09f74f07939c707d2c73234e1529723f6839	doc	Heodo
2020-08-21 22:42:05	4bfdbdebb1f582e2fb034a60c4b82004b6ea2db5c8d312d5e384133dd634c5b2	doc	Heodo
2020-08-21 22:25:44	36b36ee08213e9dd9f760f39fb9a84c9504c19f801ef2114f8350f3082dce9bc	doc	Heodo
2020-08-21 21:51:00	678ffcb73c659ab91d6358a0d28ccd8b3c88c6d6b85d0a3d17dfea553fb291fb	doc	Heodo
2020-08-21 21:37:11	185629559fc8144ebc604bdb282f488286168205d6797eebb448ee7440c20ede	doc	Heodo
2020-08-21 21:26:36	c05a2bc6afd461c389a8ede4045dfe692b0ec6338cd6d470bea60d827dd0a37e	doc	Heodo
2020-08-21 19:50:38	c23c13d2d134c96634d942166257baa97b35c635a000d8bc2f654fdbd6a86e4a	doc	Heodo
2020-08-21 18:19:31	e3a1db9625e95bab4a009a18804f0e89bb1233d33af7e255b6e304a51b582450	doc	Heodo
2020-08-21 18:01:46	73af607e5e74aa92ccc4571a5ebb32a9f82fc68737dce717ba8e7ec003f2501e	doc	Heodo
2020-08-21 17:55:58	c344af97c40ba39fe3b63c36dffa41cc3d2d51a8443aa1e04d06d55f219b5e89	doc	Heodo
2020-08-21 16:35:33	05b1faece76eff1d3477f2946482e979e803dd3edafc0a3f163ceefd17553009	doc	Heodo
2020-08-14 07:54:12	2eb2087c8a3df78cf534203df82195d80ade6ba09ee79301c12522adaf9aa4a9	doc	Heodo
2020-08-14 07:46:04	783a766ff6d8b06f0050f051c16b04cad1298697c81bbaeee5d8fcb014a60a29	doc	Heodo
2020-08-14 07:32:06	29f30041d344456afe3000415acdb3e4aed233e0053aa4f0cc929fc74fb8304c	doc	Heodo
2020-08-14 07:10:36	eb8626c09f81f7723ee7afa0cf39e78db7be79b5e5522f82ed7c116eb5fae52f	doc	Heodo
2020-08-14 05:39:48	7a37b617ab9dfd1a2b7f090067cde1c83470fd44cd6090994090ac04638304b5	doc	Heodo
2020-08-14 05:22:37	29489efeb7ae7bd57c8cbca798da5a97deae5630ec298d8c5c71dfcea1eac7c0	doc	Heodo
2020-08-14 05:05:56	9f062827e3ec957e494e98c34be89233a5a52bb4a1bf6e1d2fa3a9ba6fe6eadf	doc	Heodo
2020-08-14 04:38:11	6280278fef02126376fca03e39598bb3c17632cafd9fa99d26694b43c73da6c2	doc	Heodo
2020-08-14 04:16:06	36f73076b47e2e70a100cb483c78e186e5fb990095c92a6e22d7a0cbd99c8829	doc	Heodo
2020-08-14 02:45:43	2465fb97adc0bcfd2852bc97bf6a929405c2b0c8abb85b57d294befdefbac099	doc	Heodo
2020-08-14 02:30:32	be002af97ec2cdb43edc083f492340be1995195c05bcd860b3268acb96e2c539	doc	Heodo
2020-08-14 00:58:08	a5aaa7a63b5ec81fdfe4916e720a21e4df252c2d3823d6558f0593cb1f4f65a3	doc	Heodo
2020-08-14 00:47:15	13089378e3c266b290b1016c60c829a4c0ecf6f7941777d28e2954b18e229607	doc	Heodo
2020-08-14 00:38:36	97460a6d678e720109dcb87850c5f0117432cae744f36e9942f3974715160701	doc	Heodo
2020-08-14 00:19:36	24cffd9cba643e90804ca8b7c8cfcc717ef8ae85ef64485427c51d320333baa2	doc	Heodo
2020-08-13 23:52:49	96fbcc6247407284134b11eb29a5cb2dd6c00fdb5f500c58b19be4822cd412c0	doc	Heodo
2020-08-13 22:20:05	081c01d015d17984a1e038faef3bdb986ceeb520e856be497bef96b90ad00aa3	doc	Heodo
2020-08-13 22:03:05	aa253dd86d00217ef0405e1632fe822af17023b8277078b08be3ecdae72d78da	doc	Heodo
2020-08-13 21:41:52	82c132e196b9c414d1b69255330dffddeae100cd2c323be20574ac4cfde6bcd7	doc	Heodo
2020-08-13 21:24:33	a9f31f864a6aac450ff2fd5887783360d6bb87da12d94b456119e218f2b99e9b	doc	Heodo
2020-08-13 21:01:41	deffa862c9c822b31cd7d97529ca881b817e8ae26960dc40541f212b7ba78ea3	doc	Heodo
2020-08-13 20:37:19	cc537ba9658c10a2bcee2a400a79bc17328a5e8a2b2cad49066ff788056fe108	doc	Heodo
2020-08-13 19:22:59	5bb4b84296ec60184ea017e657bcea6f6d3acaa986abdfd64cecbbd4ee027731	doc	Heodo
2020-08-13 18:56:09	b70ef5272311329771dc7aa2f6e62affd540bffa733e6f8360abfaa99e14ff07	doc	Heodo
2020-08-13 18:16:57	46927454721c5e3fd90b2fee4870ce3ed1164f837680278f19478136a5480023	doc	Heodo
2020-08-13 17:52:11	658b81e912c908e06150b1351a244262cf277f4c99003a8f7599354d478a4657	doc	Heodo
2020-08-13 17:47:13	20f5cc9fbf75378db1d233e17ea0cf7684dddd9e38fb65a4503ed0f0786ef250	doc	Heodo
2020-08-13 17:24:43	f4ec266b14464dadad86630e4f028e4e59dd7e7b806925e1ea65fa9e277abf11	doc	Heodo
2020-08-13 16:52:41	f9c8ab13c75b9b4f583962eddd9376163fe85a8e12736648689168bca6f49511	doc	Heodo
2020-08-13 16:33:43	6e1d4ebef172aba38558318e3b3c7a6dcd0d21a68d2c7fdcf3ffc232ec58fcf7	doc	Heodo
2020-08-13 16:16:21	92ef252d93dc57fe3b08c5ae7b0d8a6054d85e3b6f378af68a5c184099aa75e5	doc	Heodo
2020-08-13 15:58:21	57270c211c92893639f45356ac942602a73f44cd8d9f13538b2afd2e300ea475	doc	Heodo
2020-08-13 15:32:36	e3b735c7e48d5fd9dd8fbed7a6c5665a9000bb4d3022e2662ff985e567bf4441	doc	Heodo
2020-08-13 15:10:57	b28a644c94ec07cfbc99912b660b91d890b2304970d93aba2ff03de9aafc1b85	doc	Heodo
2020-08-13 14:47:37	71138dfb52abb1494dd6a9679780b98135af8c9ae72403e6069a7b8d4d689633	doc	Heodo
2020-08-13 14:14:56	9ebdc1707f453d133205f9dfc76335b15a369b7010b9a9f423917c2003bb4d9a	doc	Heodo
2020-08-13 13:52:35	56700454c24541743b48ffbc93ef4b0f3a6d1a59d461c082c06e8c83f839978a	doc	Heodo
2020-08-13 13:25:10	21daf21da8f0b098290789d2482e138e7d7aa4cee35835b46dd8684136aa0a2c	doc	Heodo
2020-08-13 13:05:25	f761201420ed2a148838312db59cbe8632b09b4245505adddbc834a1f9074164	doc	Heodo
2020-08-13 12:28:51	9bc093e7b7a9f7023d6b67826adae21a593c5b2a936dfc90db87008c209cf9c0	doc	Heodo