URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	ztbrw.cn
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-08-27 06:20:07 UTC
Total malware sites :	3
Online malware sites :	0 (0%)
Offline Malware sites :	3 (100%)
A record(s) observed :	9

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-05-12 02:22:48	47.76.127.217		Not listed	AS45102 ALIBABA-CN-NET	HK	no
2025-05-12 02:22:48	47.91.170.222		Not listed	AS45102 ALIBABA-CN-NET	HK	no
2025-05-12 02:22:48	8.218.208.240		Not listed	AS45102 ALIBABA-CN-NET	HK	no
2025-04-27 11:30:46	38.11.200.210		Not listed	AS54600 PEG-SV	US	no
2021-02-19 13:08:26	45.140.90.50		Not listed	AS932 XNNET	KR	no
2021-02-20 12:49:10	45.145.124.162		Not listed	AS16347 INHERENT	FR	no
2020-10-23 07:38:46	156.253.15.66		Not listed	AS132813 AISI-AS-AP	HK	no
2020-08-27 06:20:12	154.48.246.82		Not listed	AS174 COGENT-174	US	no
2021-03-16 09:34:31	176.113.70.26	176.113.70.26.static.xtom.com	Not listed	AS6134 XNNET	DE	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-09-22 21:16:17	http://ztbrw.cn/staticm/LLC/zbu4i4634573593200t...	Offline	doc emotet epoch2 heodo	Cryptolaemus1
2020-09-04 11:13:34	http://ztbrw.cn/wp-includes/Documentation/r8b8m...	Offline	doc emotet epoch2 heodo	spamhaus
2020-08-27 06:20:12	http://ztbrw.cn/wp-includes/paclm/	Offline	doc emotet epoch2 heodo	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-09-24 21:12:01	b638a54fb8b1ae9d64723adeea13dfada5ef1ad4d4c606ed9a34370f4d216d09	doc	Heodo
2020-09-24 20:39:20	a72430246d4ff63a287ccdb3d3eb1eea24af39ec67b6452658454f115f5a146c	doc	Heodo
2020-09-24 20:26:44	7ef0c540f3c535a1789981bcbe5e3dd3ba3809e8d6ef1a9745f00ccd018db031	doc	Heodo
2020-09-24 20:01:20	e065d7a8263671a9d5afd66e671dd1d8cb12ccadcde39686f63b37c411d977dd	doc	Heodo
2020-09-24 19:51:02	520c035bd0bd60fac0008ee46cd8e3eab4dbdc31d8270d9559efb1e7b5016c7c	doc	Heodo
2020-09-24 19:33:31	00fbe37855be5d55bc265f0e5e3f284ede6342549349e4b33cf2511347b3fc13	doc	Heodo
2020-09-24 19:09:01	8ffd33471d8e180b9ff498aaa84ef11bf50e846252c62e42e416fe68c1698d06	doc	Heodo
2020-09-24 18:51:44	2a383eeb24d148e1343c8ac61522fdc8b79c8fe8c0f5f1079009ca43cfed93bf	doc	Heodo
2020-09-24 18:42:30	29f8908fad78f532f3e53d23cd10d6289376b52c559e2398ab3a2ceb671ba1cb	doc	Heodo
2020-09-24 18:22:00	fe9b0b3adac87d1fe5b13863ff7ab54660757a7bc0b4996cfe241ff357c57b3d	doc	Heodo
2020-09-24 17:54:07	8845dd7a737d5dc44971ca503bd120028edc33db789f8155a39c0651c11caf72	doc	Heodo
2020-09-24 14:16:57	460d4f1fa3c90d50ae0a56c6c4c26bfcd3d3d22829baef98b7ea3e9b451974fe	doc	Heodo
2020-09-24 12:52:55	2e3f0cba76c76de6beb1d7782576c1913d7a5ec9e471a36bac04827d26b0185d	doc	Heodo
2020-09-24 08:24:25	7ff2463a4724eb9175138fd7ab47c19aa6fdfb7b5ccf1038ecf9a238be0683f0	doc	Heodo
2020-09-24 07:54:59	6e5bcd9db826f2b855f63e8a591e02ebb0bbd141387d2922e3e251fc8ddbcbb8	doc	Heodo
2020-09-24 07:26:55	994c514f41d20931aa98bc87ccd2de05af9f8245435c55b0f29f7d2062c9b5f5	doc	Heodo
2020-09-24 06:39:42	eb7751cd57d85eef7c674547d3a40c0eb9758d9b893fca13e639ac5fbf0fd39f	doc	Heodo
2020-09-24 06:19:49	bc8c5bed53bd39445e8df6c75cbd7aefc5aeb6fc2e735692ff898d28c43e61d1	doc	Heodo
2020-09-24 05:54:51	d522d2f16aa3e16dc127e4340ff8bfd23ab4de894995c8dbb75b31bd4b4d73cb	doc	Heodo
2020-09-24 05:25:49	d0ef85eed2f1afb6cfdbb09ccad7eb677bb731e080ebd4975734a2e996f08581	doc	Heodo
2020-09-24 05:02:46	19cb69cbc19879e5cae4e56b1d702cfcd04c72ebf8a9c795592d509a91e5a2ea	doc	Heodo
2020-09-24 04:44:00	b86aa2863a808be4474b2ee7285bb8642b67c9706f68b81925ae69c824defd8e	doc	Heodo
2020-09-24 04:21:59	c157afe5eb9208b3fe20c864292c3f7a3c1eb02486f1a6b31fd8ef0349a9f3fa	doc	Heodo
2020-09-24 03:39:43	9d3a4dbf3d2bb53bc85aa8598f2eb220e74dd85928693e3fd6bca9c88e0571c2	doc	Heodo
2020-09-24 03:33:01	505eba500eb177462772c3c20029c6a8da6ebae013e23593e8647b31eca13ded	doc	Heodo
2020-09-24 03:00:49	79a7d433152a96d54a0687fd65dae6aab97a6af26dd206692bf88636977729a1	doc	Heodo
2020-09-24 02:37:00	fba080b64f42891f1ddec30a5a83c9881e8b8dc2e577226eb1575654caddc56f	doc	Heodo
2020-09-24 02:22:24	a5be49695d9d336e787b37a7a4955307a263c426f7cae3cecdd69d2bfe026585	doc	Heodo
2020-09-24 02:08:31	eb45dca6aca88223d8145576132a86f7f21770508a20b6335021ea03cc040d8c	doc	Heodo
2020-09-24 01:35:57	098e0c52d47feef3ad6ad20535919541c76799f4bddd67233049509a0ae8656d	doc	Heodo
2020-09-24 01:24:33	6e7ae3df631cfa3174a4e9e061f71a3453806fe930adca05896343d9e6f07ea4	doc	Heodo
2020-09-24 00:44:49	a6bdea3758ccb519e3736628a467290a74b47562f8a489e89346642276c9f177	doc	Heodo
2020-09-24 00:33:58	3caf40ca5ad83988dcc46183de98c772464dd0447db89cb8ad5cbae02587039f	doc	Heodo
2020-09-24 00:16:30	b1bc22abca15845684f53bec0ca8fe04943d104d77b2028d65bd63855077731b	doc	Heodo
2020-09-23 23:48:32	16d16ae909ca22dc9c0dbac471cd299964065913894d10f00e91a967f2eac359	doc	Heodo
2020-09-23 23:16:46	7340c303b5ff42ef74e8996ab95aa2b6b742e4efcc852b96349ea6085e592f37	doc	Heodo
2020-09-23 23:02:23	928e299ed0670b544432d1c87854ef00421ee91e55581b623158ef13adabf501	doc	Heodo
2020-09-23 22:23:59	76435bca763f869f80daabd795435e20bd52e2cff25a5594ccc20c8be946a2e8	doc	Heodo
2020-09-23 21:58:49	f62ef7f415a25bbe326cecb39a15134327c963de9253795427a71974f8845b6f	doc	Heodo
2020-09-23 21:50:44	fca5ada50488546f6264160c97160e6050ad9a03349fbe82a687f31a1757dc43	doc	Heodo
2020-09-23 21:22:52	1564b58731e911bff6e6da3fd6f973730406a155c372f7da226cf5c2e53f295b	doc	Heodo
2020-09-23 20:46:37	8baf1240f6b87a1faeefc1474c846750b7bcf2feb0aaeeef6ccc53420596b41e	doc	Heodo
2020-09-23 20:35:04	887fa6a834121789518a2119d59559b212de2d235e454fd67d1e000e8ee7df1d	doc	Heodo
2020-09-23 20:20:00	290acb8283dcc203c5d57c8e536774a4abe065f3492eeae71724059fe17f789e	doc	Heodo
2020-09-23 20:04:31	3d0062b20db4e52a4f9612964699a06f8920aa931e2126424d8190273b7eb948	doc	Heodo
2020-09-23 19:39:10	b9b92fd2db926541ffe87cdb4d652394ddd2b33559d51db96c862ffe2e6c2e1d	doc	Heodo
2020-09-23 19:10:04	6bb96965fcd7c4acb3b22a1c3f1459a042c13a92860c474997aadfb217a905bc	doc	Heodo
2020-09-23 18:51:00	26614fe04700998a42fbb7c3d84cbce63bd4a32aa9de3efe130ee1366827c094	doc	Heodo
2020-09-23 18:36:21	a567b1f7ae24385824ce63be1fc4d94384b27306bca69e3dbc4755527550fcb1	doc	Heodo
2020-09-23 18:09:49	87147834cbde11b3f37c516844cf8d9ba78e603010280ee9eef5e29c92b10425	doc	Heodo
2020-09-23 17:38:52	e59549b96cdcadc16e777d0a62eb4b96353dd65ff6714e68f61e75ce526e7178	doc	Heodo
2020-09-23 17:08:51	f97b08dd6d80bfd7e29abef0823103070c8629716d0497a6a20fc77398e115ea	doc	Heodo
2020-09-23 16:43:28	a115966eb8c424bdd009722a91a269d04b1f2f646c0f048ee8d08a2d1e3746a7	doc	Heodo
2020-09-23 15:57:11	33624b9d31b189eda28dd4ac76bea17844e79f229e8aff90f0a7f0e56ef90860	doc	Heodo
2020-09-23 15:47:31	4b3610dcd68cafba15d271e09c1199364c572ed710c35e9593da52cfef460b51	doc	Heodo
2020-09-23 15:13:12	8f58229ee88c03984d543e38f3a6c941ade770afd39c50199efb29993357db30	doc	Heodo
2020-09-23 14:46:29	f670b15373579f87448e50df923861b91cc62422a7616168d42348cb2665d396	doc	Heodo
2020-09-23 14:29:37	69007e954807d4f901eea9a2bca96a833d6c05deb30aa76ee89c52c5bf011d45	doc	Heodo
2020-09-23 14:09:29	2f7b7100e114e06774042f43b0c2b7d76944b5bcdc0fd25a51f8f6d181077ff7	doc	Heodo
2020-09-23 13:41:36	f652b7523c7ad02479f3dddd2dc9ba0382cc5c9c228ef8d2be73fb97e8a2c23b	doc	Heodo
2020-09-23 13:18:33	0d15d81842c24d36b2e24fc1f2d8eeca0cb46f6afaa26190d26a0fce7480a855	doc	Heodo
2020-09-23 08:10:54	a877dd61b25805e938555868388a8543768fb01e9c45ae6072c261f61264d466	doc	Heodo
2020-09-23 07:52:40	21c40bfbb721e32e33612b797ea16cf7927dd9df4d355a8ad1509ef924b30428	doc	Heodo
2020-09-23 07:20:03	50c9d530111fe31904255db5abdbabd939542a19af71c656dcdfd44c9fe2b4b0	doc	Heodo
2020-09-23 07:00:40	80345dcdae23c5209ca98dc5266bfd4e989d51223a302e41c5193bde6c6544f9	doc	Heodo
2020-09-23 06:35:48	f5b67fe09ab73847439a9717d70cce333257546046c604d4d3299ff681fa34d6	doc	Heodo
2020-09-23 06:19:59	90bb75f0c88bcf2a5196f73f5bfa35fe230b05ebd75d6b6f61a1440c763aebb7	doc	Heodo
2020-09-23 05:52:00	f732dff0368dd8ff983021f4786d2c04ecb2f9196327138f25d6ca5272c9b556	doc	Heodo
2020-09-23 05:40:21	1ce7da03432f012ef79797a1eebcc19389de8f1ad5f493fe02e71ac4d324464d	doc	Heodo
2020-09-23 05:22:49	c118e4b8dce9cf6e593a4ce06e9352d91200eefd7d939af1e1fb8891671620fc	doc	Heodo
2020-09-23 05:17:16	e701a67030bc767a30c999f4bc07249218be0f846de4294b4ca96b3a64ea169d	doc	Heodo
2020-09-23 04:45:11	6d73594fd12ced84821a81b0917e31c3e1f2881c0cb5168fbab81aab82e12eeb	doc	Heodo
2020-09-23 04:21:06	f06641ee9e6b743cb2edbd1898982be6d7ea50c042b93330a7bb869df86fb945	doc	Heodo
2020-09-23 03:52:54	b3a84427b070daa7ceb7b51063673a3718f2ef81766fd7523b494f4a29052ab6	doc	Heodo
2020-09-23 03:30:48	c4ed4d279282ab289d7a00ba9d05f1f31af4a3dafbe02ae91aba6585d55506ce	doc	Heodo
2020-09-23 03:12:36	7fc71d784c714360d684b4c25382fe807f04a3cbd861352f3c19fa0fd789e59d	doc	Heodo
2020-09-23 02:59:14	e757a53e573f1584dd56ed851acc303473be8922e8f879bd1dd8f9b8dbec4ead	doc	Heodo
2020-09-23 02:35:11	f81dc1dd571c29424756de4b14efa593fdea619f32694846535c4820c9acf375	doc	Heodo
2020-09-23 02:07:23	10fe3df8f6540696c8eaf649bc752e30d5533b0203869ec0839cf045227620ba	doc	Heodo
2020-09-23 01:21:48	8545f8aee7ed198b20effca9952996d49c5b91811a6dc47bdda10aa92e633938	doc	Heodo
2020-09-23 01:09:14	b9230204a6b5bb648c78437d34a9350a40aa179243813ecef19402cd1f319b96	doc	Heodo
2020-09-23 00:26:55	a306f78cac809e60ccf84e607470e4c43f0de4efe4dcd2f0e470786a5f672a35	doc	Heodo
2020-09-23 00:10:45	f94576c2ff082f8f5ac03f20eeb1be3c83b209f14f3c70834719faa2398405ca	doc	Heodo
2020-09-22 23:59:49	526a3a875236eb66c2fa9894594c30025d794c8ecbe0dde1fd873dedfab79497	doc	Heodo
2020-09-22 23:29:56	8b086b781acec12715982f30c39eb5d20950325e39a5d84b33a6df96d9edcf8c	doc	Heodo
2020-09-22 23:09:41	cc43bfd0ea39a3afc6283e4734d480bf62fbbb227016a5cb42d288a8f5f3c956	doc	Heodo
2020-09-22 22:44:44	93fb00cace65d90b02ab79f949887b3eaa5b0a0bca1e4a9d7c20576f8ad18dee	doc	Heodo
2020-09-22 22:14:53	29b732cb0e36fa5a789f66f7d4cb5ff8905ce6ac1b8e18e29d056b439e177cc3	doc	Heodo
2020-09-22 22:06:14	096e7d0d8016a7efe13a6bcfe45e2b78d115eb681a6f855b639a9ca3c8db22c4	doc	Heodo
2020-09-22 21:46:54	53dde3ba3a9c47b693f01a8904d5d1c223cb25c08f0488ff97b08e05dbbc7be6	doc	Heodo
2020-09-22 21:16:17	814f137cae855a704657faabeeebe984d9e9677440e260fdba8d193f3f24005b	doc	Heodo
2020-09-05 08:41:52	8b23e164f16ba0caed21611db9782895ac3a6a1f5b30a16e7cff6a2f8e3c3008	doc	Heodo
2020-09-05 08:19:17	3c64a79cdd49b1710bd9042cb9988c215e0050e9ef57e604f4679c45abcafd73	doc	Heodo
2020-09-05 07:50:21	52646e971288c190bffe00616c46fdb3741f1be6a5f0fe2235ca71c24435bf65	doc	Heodo
2020-09-05 07:39:15	7c88f52c679aeb917f52a42b5424f5aeb90901cd44d00fe9aa0608e4f2940cb4	doc	Heodo
2020-09-05 07:24:37	b47773387ceae19a77df17722ac76711cd26f753da32fb7f1a43302d5523bf59	doc	Heodo
2020-09-05 07:10:17	bb9c837b1bd4fe34cf3377a063261449907bae9ffec1af75dcfbe5fd01ec9a7f	doc	Heodo
2020-09-05 06:56:18	2b7b0ff44457a586cf0ca88f5b8f4bee199a18d6c52e494b2ecbbe083c3baf5f	doc	Heodo
2020-09-05 06:20:24	e58920e12dd5ce571200cf0e7449728756bbb8a0b43d301ea7a625b5d7755c1e	doc	Heodo
2020-09-05 06:08:51	5391bbb94eaab89d4864ca7408da299a029611928be8cb4e99c97eabc0b46e4c	doc	Heodo