URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | zerozerozeronullexploit.duckdns.org |
|---|---|
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Status unknown |
| AdGuard : | Blocked |
| Cloudflare : | Not blocked |
| ProtonDNS : | Status unknown |
| OpenBLD : | Blocked |
| DNS4EU : | Not blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2019-08-19 17:00:03 UTC |
| Total malware sites : | 5 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 5 (100%) |
| A record(s) observed : | 1 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2019-08-19 17:00:05 | 23.249.165.218 | Not listed | AS398880 INVESTCLOUD |  US | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2019-08-22 18:29:04 | http://zerozerozeronullexploit.duckdns.org/noah... | Offline | AgentTesla  exe rat |  p5yb34m |
| 2019-08-21 14:17:06 | http://zerozerozeronullexploit.duckdns.org/king... | Offline | AgentTesla exe | zbetcheckin |
| 2019-08-19 19:43:06 | http://zerozerozeronullexploit.duckdns.org/love... | Offline | AgentTesla exe rat | p5yb34m |
| 2019-08-19 17:00:08 | http://zerozerozeronullexploit.duckdns.org/big/... | Offline | AgentTesla exe Loki |  abuse_ch |
| 2019-08-19 17:00:05 | http://zerozerozeronullexploit.duckdns.org/big/... | Offline | AgentTesla exe | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2019-08-22 18:29:04 | ac55485448244651cb2ad4abd26c5d955293eea8722d67eb56832386df4d1a01 | exe | AgentTesla | |
| 2019-08-22 07:30:30 | 84cfd09902658ded6101fe7fede05b9bb3846daa0272dd2f7deb2b2dac7b4894 | exe | AgentTesla | |
| 2019-08-22 07:08:57 | 7908db6a1a4ded91b8e3e9770770c0cc00c8123d639b7ca2f44b4a36a4f5a659 | exe | AgentTesla | |
| 2019-08-21 16:27:51 | 9a41d762a4266c887a7280edc361915ccf0d6a50da4cd616bb77e906aa5726f1 | exe | AgentTesla | |
| 2019-08-21 14:17:06 | b6bb52f869f3c44294597d7a016b598a35d905582c9430cbf3dcc5fb280cc824 | exe | AgentTesla | |
| 2019-08-20 08:59:32 | 1ec4535bb6d9cca225824bed4dff10317f1089889b999885f6e04b427e4d6442 | exe | Loki | |
| 2019-08-19 19:43:06 | c0db69b61b687308da8d65b273e719faca89b979e6e481dbbf95314349d5e6e2 | exe | AgentTesla | |
| 2019-08-19 17:00:08 | 8c9611ab9a8a8dbc44f93e6f81cb2c46ed936cdde7fb88b9410d50bde750cfb6 | exe | ||
| 2019-08-19 17:00:05 | bf10e22f74fe24d920beb82077e67114dc69dd550999beddd9cda01110b815e5 | exe | AgentTesla |