URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	znzhou.top
Domain registrar:	Alibaba
Domain registration date:	2020-07-16 14:03:43 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-12-22 19:45:10 UTC
Total malware sites :	11
Online malware sites :	0 (0%)
Offline Malware sites :	11 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2021-12-22 19:45:12	39.96.61.35		Not listed	AS37963 ALIBABA-CN-NET	CN	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-02-22 16:57:09	https://znzhou.top/mode/0Qb/	Offline	dll emotet epoch4 exe heodo	unixronin
2022-01-20 22:04:05	https://znzhou.top/wp-admin/5384_0163087/?i=1	Offline	doc emotet epoch5 heodo	Cryptolaemus1
2022-01-20 22:04:04	https://znzhou.top/wp-admin/5384_0163087/	Offline	emotet epoch5 redir-doc xls	Cryptolaemus1
2022-01-17 21:37:05	https://znzhou.top/wp-admin/I_180/	Offline	emotet epoch4 redir-doc	Cryptolaemus1
2022-01-17 21:37:05	https://znzhou.top/wp-admin/I_180/?i=1	Offline	doc emotet epoch4 heodo SilentBuilder	Cryptolaemus1
2022-01-14 05:48:15	https://znzhou.top/wp-admin/TXSH-9651347/?i=1	Offline	doc emotet epoch5 heodo	Cryptolaemus1
2022-01-14 05:48:07	https://znzhou.top/wp-admin/TXSH-9651347/	Offline	emotet epoch5 redir-doc xls	waga_tw
2022-01-12 02:17:03	https://znzhou.top/wp-admin/g_742/?i=1	Offline	doc emotet epoch4 heodo SilentBuilder	Cryptolaemus1
2022-01-12 02:16:12	https://znzhou.top/wp-admin/g_742/	Offline	emotet epoch4 redir-doc xls	waga_tw
2021-12-24 17:41:15	https://znzhou.top/wp-admin/ZyjMTX3asff1em8/	Offline	emotet epoch4 redir-doc xls	waga_tw
2021-12-22 19:45:12	https://znzhou.top/wp-admin/6PF/	Offline	emotet epoch4 redir-doc xls	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-02-24 16:32:11	995d31cb8a61784e927dad634df078d0fdaa8bf37b56de3a811036021be0b431	dll	Heodo
2022-02-24 15:22:39	46ab2bc3f37446a80efc0513623b340044de00f328a1d2318cc1cf39482d2c4f	dll	Heodo
2022-02-24 14:26:06	e86020cab70aeb828d501ddee77d2e08df94b7c1e6d19e5ba8b3099d6712cf2f	dll	Heodo
2022-02-24 13:17:42	007bfd69ee71b6a6048405c1289ac41630f04468219168faea8b6971a5550f41	dll	Heodo
2022-02-24 12:54:33	afd80067fa57f394a5463ae2e8aff4e255d4305f45b55f9970e9dd2722c4e8ca	dll	Heodo
2022-02-24 12:08:15	13b342da470cea90571200bdffe4d8afc66a498276c4cf5f321f9036502d3afa	dll	Heodo
2022-02-24 12:02:05	a39d8f9a9aeff1f40ecd15c4b9946cd6afa5cd7abe70b7d3bcae806cae58d1c8	dll	Heodo
2022-02-24 11:04:59	a5152bd8ee8bb0652f6f0233306945400092ba73fcabae3af29b04ffa707da39	dll	Heodo
2022-02-24 09:56:23	f00c902cabecea4c20ae223255675a45d91f18cdf71bf627d257478d28a7c5e1	dll	Heodo
2022-02-24 08:53:24	851d70030b2360572f34d86fb2fcbca69d3fe1cbd3a4585e76fab4f278d2ef19	dll	Heodo
2022-02-24 07:48:19	c5823a4dabab5c41c7ede0e50661ebf17499c076745cff6681309b6478c69f20	dll	Heodo
2022-02-24 06:12:10	4d80480364c26524758d9db8fb0a974a1733c2ff248371ce46ad0e4a8830fd7a	dll	Heodo
2022-02-24 05:11:59	48a8c592ef65edeb5cea8cdac49ff87babaa8db8ea2900450faa2014b3db0d9e	dll	Heodo
2022-02-24 04:16:30	9fe601b54b43f316bd49d5a1ebcaabcc0f3599a9ee6f57ab0d9db31b59450db5	dll	Heodo
2022-02-24 03:46:40	ef6ab6c80aae39dd9063a8e8a187b17a6e55781f4850869b20fadd5a4fc1e1bb	dll	Heodo
2022-02-24 03:26:45	2208c94ef26f8a26fc2bc57d81ec899687ede82d39c5d4353a4e9cf713e09790	dll	Heodo
2022-02-24 03:00:05	65b46ba2964073bc20be517236d8328160d50c45b74b357e9041b4b2da00a02f	dll	Heodo
2022-02-24 02:02:54	c0040aafb5a054b81dc196106edef2725bd7b640b653ce36d0bdb0e26e4c6ed6	dll	Heodo
2022-02-24 00:51:49	743a24c2e5b488d82d8b3f7ebda0a42a46aca7dd66bf24c829151995c2b10de9	dll	Heodo
2022-02-23 23:50:50	b982ac00e7f466c92b25f4edad9cef85da7bf8a9c3c7b1b096b4bd36ea1a3b73	dll	Heodo
2022-02-23 22:41:41	0bbe0fd15ccfa0a1a5cb07f403b9d605439083d3dd80a9d198e061cda5ebb409	dll	Heodo
2022-02-23 16:02:20	14b57211308ac8ad2a63c965783d9ba1c2d1930d0cafd884374d143a481f9bf3	dll	Heodo
2022-02-23 14:57:59	a5ad86652f6641be58fc0506ccdd71bb754f8bf0872f168787ddccf750277594	dll	Heodo
2022-02-23 13:38:49	6f8fa60cded2fbc3339949872b04196810cc571d30c4e17929642acd399f4be0	dll	Heodo
2022-02-23 12:40:58	fe9f811d09b0d5b7c25fe497a0757da7f90927f321ac378ab86583638511e5b8	dll	Heodo
2022-02-23 11:10:37	3ed46325ea3f9967aae1e5fbc0674b79a935d3b56a94efdd8712692ac6207408	dll	Heodo
2022-02-23 11:06:30	18822cd0f2ce99e38c65f737c64a31d5332fca5a8f443d5f0850c369848be6d7	dll	Heodo
2022-02-23 10:03:16	bd24c4c75242d04a4703f4d3518a37d55064c76afedcd088f9372d48c7560154	dll	Heodo
2022-02-23 09:40:55	e223b360dc307eb6dda42723b436c0d2f8f5d384f52e43d63da192fa708796cd	dll	Heodo
2022-02-23 08:59:29	aea9b173683c6c9818fd0c28d711e7569469c04e2b834cc21b86d37e6f434089	dll	Heodo
2022-02-23 07:43:54	b5854f34f398d33e816fe184bf1e927010223fdcec3a68457ea7d97c19d17874	dll	Heodo
2022-02-23 06:06:11	aedbf2c868cadb7cbcea7c71720ed988a000a9bc3c4d6b05b895bcb5081d8d77	dll	Heodo
2022-02-23 05:28:03	8e873db25a18ba4a0b093b70501e800b6136e53d738e5b5a222b42a180d386da	dll	Heodo
2022-02-23 04:54:05	bd875249d571b11eb3df4d252ecd1dd3c43c0a2c339100918b0468c690c80bcc	dll	Heodo
2022-02-23 04:42:17	a343b275924e399d880164b9faef0370f3dba1c7e9616d8c8b6d0085169f322e	dll	Heodo
2022-02-23 02:55:50	9b8e5b4598bb489608a9298ad9f6983dee6052a4daff7ac8d6fc6628513d5803	dll	Heodo
2022-02-23 02:22:32	0ffc376167b808f7e2a61a9acd2f96c2b80edb9143ac5cc2a0cb17d0b660d2ad	dll	Heodo
2022-02-23 01:28:27	f006b58538490a921d84ce1b4d2aaece029ee65207b6338e7908a095bf2dd641	dll	Heodo
2022-02-23 00:23:58	01a03fb3804950fddb194da2dddbf45b7ca6bcb3c8ef22ac809fe520d5e13e60	dll	Heodo
2022-02-22 23:35:05	859bb29ca6842fd78bee3072efb83f49b24b1429f88464d9ca72da0012e414ed	dll	Heodo
2022-02-22 22:39:18	a9f10be15293d3d8897d8b1d02a86b6a3269d7d98df5027cccba47ef1a0db998	dll	Heodo
2022-02-22 22:19:21	355d29f03c9c4071b4498332c650b842cbf263be96af5c31de249241087b19e0	dll	Heodo
2022-02-22 21:07:40	6c3df8ceb4f2142906b5e892cbf34cf2682f68798b9eb26115108f0c05ba1dd5	dll	Heodo
2022-02-22 20:27:11	9cdfeb2c8ddefaa08fad54039739f296427aefd2893032a62c9d3d4e88db8c8b	dll	Heodo
2022-02-22 18:41:34	0ae0fdc0f2c98ae163576afed46d5f33068b9c17e582d6e6f87ad002db72f95a	dll	Heodo
2022-02-22 18:05:31	dad414088e6ae1abfd70f302a8b4a557aeda3808c5d4ac36614309d93aa180be	dll	Heodo
2022-02-22 16:57:09	ada82e80daff1d7077cbdab0c58a1bd374954615432df03d9b5daf3365d1f7b8	dll	Heodo
2022-01-21 10:53:51	64c6ba33444e5db3cc9c99613d04fd163ec1971ee5eb90041a17068e37578fc0	xls	Heodo
2022-01-21 10:38:15	b0e9d2148a1c5ad60a5ccbc0c8b753f7c81e298cac18059db3c3ed66a04d4068	xls	Heodo
2022-01-21 08:25:56	4170fd2e1e20be004dc4fb1490bd16ce9bd092ec9d1048e6ac0a63d10c7ba255	xlsm	Heodo
2022-01-21 07:53:48	9bb2ebea9b5a85ffd22e2f2f97a07e9367ddc5ddcaa086c8903c57212273548b	xlsm	Heodo
2022-01-21 07:32:44	df43427d915757b0932c26b7029a6f1bd5602383b04d075ce0ad95f40b1c2e19	xlsm	Heodo
2022-01-21 07:09:26	f7f344862e543ce22b540ef4bbab44ac1dbd786c224550cb5ecbee3380403ab7	xlsm	Heodo
2022-01-21 06:44:59	eee95e3bcd72a2d0932acc8c6e46e6b0a4d95a39ab028da3b0c11e294e0faa89	xlsm	Heodo
2022-01-21 06:19:53	733af54ba0a2878f86abc471d5388ac61f838211959a4444ca6307819c4860d7	xlsm	Heodo
2022-01-21 05:59:23	6b4e80411216eff0629dfc0ce6788afc2578e22f48613a0664edb46f621d746a	xlsm	Heodo
2022-01-21 05:31:49	4765164204e734a59822149f062f898117d41dbbb26a969800d8fc36e80a9a49	xlsm	Heodo
2022-01-21 05:00:24	8293affd245bca747939f06a07970c40d349524f0e57a8037bbb78d7b6d04263	xlsm	Heodo
2022-01-21 04:43:40	8b6c3d1c1c4f0194ac14f20217620719ae9888660cfc5b07fdc42970e6fd377e	xlsm	Heodo
2022-01-21 04:31:08	79d21212ede80612cecd2e319424918b3f95dd07e305e99bb3f4941ab60ff2c4	xlsm	Heodo
2022-01-21 03:45:00	655e69dfaf74c3a34eb02d75f4e51264009fbdbe46a7f535b9e72888bffeaf58	xlsm	Heodo
2022-01-21 03:26:14	345075974a633202c20da7f744cce921ae20061720ea5d27a474adcc15258a56	xlsm	Heodo
2022-01-21 03:05:06	5e0d6d63ac743de0bb942f5367315786752d13884fc04124a4b8f577a3f8bca9	xlsm	Heodo
2022-01-21 02:31:54	19b1cb4bcc5006f6fe58960a449aa850117383b7e330f8e58035510f3be23149	xlsm	Heodo
2022-01-21 02:11:38	c21af06b5a5f866a493669336f0c0d2d4d981faeab18708879be631c5b4f3c55	xlsm	Heodo
2022-01-21 01:52:40	72053ec5fe9ba65c857235179e8529eec75c3aba924b386ecf41b34729d0935b	xlsm	Heodo
2022-01-21 01:19:44	8a12bb899a8c477155c5aae284050416300acb42d4b3c7da672f8e12bdee8ec4	xlsm	Heodo
2022-01-21 00:54:29	0f5d70d653951694aacfdbae441a87340e2689247cc1dc79852a86d5c8e7dd2b	xlsm	Heodo
2022-01-21 00:27:35	aa778c3fafe2327bc81ba1c4963a5ee8354aeb750a96e8ce5f4d0392df3ddd4a	xlsm	Heodo
2022-01-20 23:56:43	442da867e6d871fad0d4e472ef48bd2ca7ac41ef601355875379056453ccf42d	xlsm	Heodo
2022-01-20 23:32:08	97a52b68f8d7ad41ba580f95749d7d810ce3fab98d8ea92461adfee77cfa9203	xlsm	Heodo
2022-01-20 23:07:32	782f99cf1c019d48f827fb6d29e75c842fceea0423bbddd81620697d366bfeee	xlsm	Heodo
2022-01-20 22:55:04	200e8f491dade178eca83bd109426425ffe7ca9d4baf974a204e3835c56ceb2e	xlsm	Heodo
2022-01-20 22:23:33	aec2322328224504e216bae76697e68ec37167ececb7693615d72235044bf28f	xlsm	Heodo
2022-01-20 22:04:05	46dadb348869cda14d38466d791ebf6c906f5ec26cc305fdca50921785f48b20	xlsm	Heodo
2022-01-20 22:04:04	1a048ea7bf90a898f2653d09e8681d22a7774d0a64a41da37f95382c3d498fd3	html
2022-01-18 06:26:35	59cb2552a34b231acb92fcee121b13d662ca7f0049a70aae86fe312270f548e5	xls	SilentBuilder
2022-01-18 06:12:07	32151a8459b973e9f407a6baf3722a9a1eb6fb27a7db9f9693fc033b64e30219	xls	Heodo
2022-01-18 05:43:27	b463abec1dfc612e1ea59fa20ed07f468fbdc69e8694a5af639fa79435ce4f58	xls	Heodo
2022-01-18 05:31:39	4dd34288d1597de3f5939787b91e85331964708a0f7c73655e6d8239c4688756	xls	Heodo
2022-01-18 05:23:14	6cff0fc7ee4e1c70b0fb94ffc68d8939a2c5afc238ecaf0dc9e2a829baa2aaa9	xls	SilentBuilder
2022-01-18 05:01:54	b4a49e89e7852d569ea4a0d6abbfb489a53b392e38fb16270343b54b2cc34b00	xls	SilentBuilder
2022-01-18 04:44:48	a35ccc0277367ef2660f2eb7b2c5702b33e04ecabb9e9dc69f0e089d31b24abf	xls	SilentBuilder
2022-01-18 04:39:28	35da04ff2a62f8c0275a0e10151c69d9cfd7fd35dfc2ef154105492a517023d3	xls	Heodo
2022-01-18 04:26:39	ebe7c1008e98277cac317211c9fb8db1371f256f9c344209fba11039fcfc1576	xls	SilentBuilder
2022-01-18 04:02:40	f992f21f03b86aefe34db46f747ad9c063feebaac70cc1eff8cb76806aed499d	xls	SilentBuilder
2022-01-18 03:48:04	0462fb1b5a8a7784bb9b1dc90185c6b031d6dbc1ca9256bc59a34bab1c87ab49	xls	SilentBuilder
2022-01-18 03:34:54	dab9f48f4ae76936b59d34d7be449dbc15e45ba29d6dd1a861eca70b8ab4c6d1	xls	Heodo
2022-01-18 03:14:14	4ad545641ce10800bcd2a75f03ae32b78d9fce1feb504c5353da50438959e3b0	xls	SilentBuilder
2022-01-18 03:04:15	c61718c0dc7f0d5c5f66455826fd222262b081893085b7a528d3217b0bc6316d	xls	SilentBuilder
2022-01-18 02:47:29	32eaa4ec7dce492883fce25e20778b8c6b36c2d269d3e55f713977f4ab0618b8	xls	SilentBuilder
2022-01-18 02:28:15	bc1172240f277c311e80e1e9149ebab58d1870bc0a9e94f3bd898a025495be3e	xls	SilentBuilder
2022-01-18 02:15:54	e07cb07d8a2b296d0f506a805e5721233820e0f8d4c9d552940f71fca7be7a8c	xls	SilentBuilder
2022-01-18 02:08:55	78edafc9ef5c586ac250ab33c4670eb0777e862160498429f24acbb551b6f3e4	xls	Heodo
2022-01-18 01:46:19	9b0a59dcae7eca85fa1088f429b85a4a491f79207a68cb7cb8925ef9d95f8ba4	xls	SilentBuilder
2022-01-18 01:31:13	e83230dd5995b3cb0477ab358fc13505cbe4ef8a103ee5eafc8763545ed64d8e	xls	Heodo
2022-01-18 01:20:26	027a72970eec77e5214269c8f79a87f5f614a1ecee11257b3feac2fbf54740f2	xls	SilentBuilder
2022-01-18 01:08:27	92bf6d722708e0e9428275c7d0789a52e3fefca383f020e0b8a9cf32e01fb954	xls	Heodo
2022-01-18 00:50:11	5255b0788b382c41d46027fda6dc4e3c717a4cbc46469614299d184bf77037df	xls	SilentBuilder
2022-01-18 00:33:19	ee8b7476fa35280678b3b70ee6f8142bb7945783f64da2a541c0a42e0e804506	xls	Heodo