URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 1.82.240.122 |
|---|---|
| Firstseen: | 2025-07-05 13:19:25 UTC |
| Total malware sites : | 3 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 3 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-07-05 13:20:12 | 1.82.240.122 | Not listed | AS134768 CHINANET-SHAANXI-CLOUD-BASE |  CN | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2025-07-05 13:21:05 | http://1.82.240.122:8521/%e7%ba%a2%e5%b0%98%e5%... | Offline | opendir |  Riordz |
| 2025-07-05 13:20:43 | http://1.82.240.122:8521/%e6%9c%a8%e9%a9%ac.exe | Offline | opendir | Riordz |
| 2025-07-05 13:20:12 | http://1.82.240.122:8521/666.exe | Offline | opendir | Riordz |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2025-07-05 13:21:05 | 094e42de4d07a5fec98732b72c14c2d6510f08dbb5457994ecd3c035ab33e54c | exe | ||
| 2025-07-05 13:20:43 | ba5e9d19d8da5733f3fc871c79c4b1b27a10f34eda7beedcdb641daaff9ad6f7 | exe | ||
| 2025-07-05 13:20:06 | 6fe7c33b420058cd0260da2bf84c953fb4470395bdcc79aa29e1e359bfedbaac | exe |