URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	ziil.eu
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-10-19 23:08:03 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-10-19 23:08:14	185.7.252.116	toliman.elkdata.ee	Not listed	AS61189 ELKDATA	EE	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-10-19 23:08:14	https://ziil.eu/cgi-bin/JNzI/	Offline	emotet epoch2 exe heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-10-20 05:29:56	c764c20bf4d3b8e6e05387acd0eaaff5bb924bd2714d626fc191bc1e14b861bc	exe	Heodo
2020-10-20 05:12:59	b24346db5608b3198ee3d8ba666140bc0615784044f9e00b1b11fddd777d8bbe	exe	Heodo
2020-10-20 04:59:43	403e9f84c958f1afc7b524bececf98a48ae008839960f2eb3eea9442813aaae2	exe	Heodo
2020-10-20 04:37:17	b0e450426d854b7dc6163e47faee5720e52a5f9f977c08967f041ec0c8c089a2	exe	Heodo
2020-10-20 03:56:27	75b077c2a5e84de38b37ae07b1bd7177ddbb073d634036491eb20b66d47ed5ee	exe	Heodo
2020-10-20 03:32:30	9e47a4236aa7c3f69838f6ab2b7a35f5da24c7f82b99a5b66536033ab5c0043d	exe	Heodo
2020-10-20 03:04:05	908d6ffd317a5c61841dc79c7a1f8e07735d5049053f1a47ba17668339cda3c1	exe	Heodo
2020-10-20 02:35:25	928d6a1b3413a08dcda179bd2ac25369b94c7902902be12823bae818ffa0e281	exe	Heodo
2020-10-20 02:20:25	233a140fc1dc5ae470665efb6f455266eb2d7b6e83f81b700e7546cf5fa2cbc5	exe	Heodo
2020-10-20 02:13:59	037a3c1ddbf4d5f7e30f0a2c8a2a461aaa7762ae0f808b521a549f6bde223231	exe	Heodo
2020-10-20 01:43:19	fe4062d6eddbcdc381522057bc0b1b8ee275e771332aae0ab52d7526845e3aaf	exe	Heodo
2020-10-20 01:21:26	e978fb717acf0f1688e422da402b1d5a2e2176d5ebfea374b7cde400e710680d	exe	Heodo
2020-10-20 01:05:45	8683fc98c058aef7705eeb8530ac0c66f1f93e1c017c628e1568001e5b9a0f1c	exe	Heodo
2020-10-20 00:47:14	b1e5d95ef3e93931c6945de9c4595dd9b35731a6602fd1d7f8915e4861c32fb5	exe	Heodo
2020-10-20 00:22:30	60c0d30357d2c90b4c3c75b59d1cb70b44d1071992c2ff0173701a2aa923a469	exe	Heodo
2020-10-19 23:53:40	bae4cf6f313ca6f4b7969196ea0746884a35a464e5500b1c95233b3cd33d597b	exe	Heodo
2020-10-19 23:25:17	66b1b6546244ca1fff1d4114bd9699f3de343e68a58f90b850f994be7b7768da	exe	Heodo
2020-10-19 23:08:13	2e6b0a197ffd5d4e204dcc08c8de85a5708c7f21edb0fc0ade8c18eea2a4b451	exe	Heodo