URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	104.168.32.14
Firstseen:	2022-06-13 08:54:03 UTC
Total malware sites :	23
Online malware sites :	0 (0%)
Offline Malware sites :	23 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-06-13 08:54:09	104.168.32.14	104-168-32-14-host.colocrossing.com	Not listed	AS36352 AS-COLOCROSSING	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-07-07 15:25:11	http://104.168.32.14/m/efx.exe/n	Offline		Anonymous
2022-07-07 15:25:08	http://104.168.32.14/n/ajm.exe/n/n	Offline		Anonymous
2022-07-07 15:25:06	http://104.168.32.14/g/mmc.exe/n/n/n	Offline		Anonymous
2022-07-07 15:25:05	http://104.168.32.14/m/efx.exe/n/n	Offline		Anonymous
2022-07-07 15:25:04	http://104.168.32.14/k/vbs.exe/n/n	Offline		Anonymous
2022-07-07 15:25:04	http://104.168.32.14/d/ugo.exe/n/n	Offline		Anonymous
2022-06-20 14:16:04	http://104.168.32.14/n/ajm.exe	Offline	exe Formbook opendir	abuse_ch
2022-06-18 00:33:04	http://104.168.32.14/e/get.exe	Offline	32 exe	zbetcheckin
2022-06-17 23:14:04	http://104.168.32.14/d/ugo.exe	Offline	exe Formbook	AndreGironda
2022-06-15 19:48:04	https://104.168.32.14/o/uox.exe	Offline	32 exe Formbook	zbetcheckin
2022-06-15 19:22:04	https://104.168.32.14/u/lux.exe	Offline	32 exe Formbook	zbetcheckin
2022-06-15 16:56:04	https://104.168.32.14/k/vbs.exe	Offline	32 exe Formbook	zbetcheckin
2022-06-15 11:19:04	http://104.168.32.14/o/uox.exe	Offline	32 exe Formbook	zbetcheckin
2022-06-15 03:08:04	https://104.168.32.14/g/mmc.exe	Offline	32 exe Formbook	zbetcheckin
2022-06-15 03:02:04	https://104.168.32.14/m/efx.exe	Offline	32 exe Formbook	zbetcheckin
2022-06-14 12:49:04	http://104.168.32.14/m/efx.exe	Offline	32 exe Formbook	zbetcheckin
2022-06-14 12:07:04	http://104.168.32.14/u/lux.exe	Offline	32 exe Formbook	zbetcheckin
2022-06-14 00:09:03	http://104.168.32.14/g/mmc.exe	Offline	32 exe Formbook	zbetcheckin
2022-06-13 21:20:04	http://104.168.32.14/k/vbs.exe	Offline	exe Formbook	AndreGironda
2022-06-13 10:16:04	http://104.168.32.14/n/gcf.exe	Offline	32 exe	zbetcheckin
2022-06-13 10:16:03	http://104.168.32.14/u/fox.exe	Offline	32 exe Formbook	zbetcheckin
2022-06-13 10:05:04	http://104.168.32.14/m/uym.exe	Offline	32 exe Formbook	zbetcheckin
2022-06-13 08:54:09	http://104.168.32.14/o/bbc.exe	Offline	Formbook	c_APT_ure

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-06-20 14:16:04	d9a00915df5440745c87c39c8c0bf5d0f9d67c9d4252f032ba0dff6fea1d0752	exe	Formbook
2022-06-18 00:33:04	77a73ab0f21967b9e07289fed93c5c7ad1269881b517c1cc378a2b7e5790a4d7	exe
2022-06-17 23:40:25	dfee2b9c0f7706842861045a4c2de48d276591f3d530a7434a05d6fce72575a7	exe	Formbook
2022-06-17 23:14:04	e51dfcd1b0a55610a7b19b8c3ccd3c381f64927a0a4442d3abbdbc645249cb64	exe	Formbook
2022-06-16 06:18:52	09511e435cecfcef22c464934ee3ff23cc4e3b3077584ae38d9672dbc08428aa	exe	Formbook
2022-06-16 06:18:24	09511e435cecfcef22c464934ee3ff23cc4e3b3077584ae38d9672dbc08428aa	exe	Formbook
2022-06-15 19:48:04	8efe63d65c4c6ad604639045990b133113224de00e18fa330acb11980ddb6655	exe	Formbook
2022-06-15 19:22:04	7b008de94024ab843b049c1b90502b0515fb5496801e2277e83efd21fa0624b2	exe	Formbook
2022-06-15 16:56:04	3b7c3cdf465e6e8113140b3e109a4ce242feefefd8c215d2237b1aeefee47834	exe	Formbook
2022-06-15 11:44:19	8efe63d65c4c6ad604639045990b133113224de00e18fa330acb11980ddb6655	exe	Formbook
2022-06-15 11:19:04	79e15dc00d8205605222d539d1413cac2bc5976377430177aca450d2c6c4cb63	exe	Formbook
2022-06-15 06:34:28	4fbb7e8f2be8677246de09da661752a40ea6005336c5e3e4105a1db0af052357	exe	Formbook
2022-06-15 06:34:23	4fbb7e8f2be8677246de09da661752a40ea6005336c5e3e4105a1db0af052357	exe	Formbook
2022-06-15 06:30:46	7b008de94024ab843b049c1b90502b0515fb5496801e2277e83efd21fa0624b2	exe	Formbook
2022-06-15 03:08:04	3b7c3cdf465e6e8113140b3e109a4ce242feefefd8c215d2237b1aeefee47834	exe	Formbook
2022-06-15 03:02:04	45b9f90bee542ccb1e839ba824246f94363e35610981b9620429beecfcedc66b	exe	Formbook
2022-06-14 18:10:28	45b9f90bee542ccb1e839ba824246f94363e35610981b9620429beecfcedc66b	exe	Formbook
2022-06-14 18:09:24	45b9f90bee542ccb1e839ba824246f94363e35610981b9620429beecfcedc66b	exe	Formbook
2022-06-14 17:46:48	3cebca22e511f35079c2a7a26b333d742d6906277f455c5e421a9fca01e5f1ea	exe	Formbook
2022-06-14 16:32:38	a826c8bf4c09979bf9b0662ffa94623f2ea74c1dbb57b1e95d16a708a35c3095	exe
2022-06-14 16:23:41	3a9cec6acfa41d46ff27e276a87461a472946b831110b00682f76fc629db2c45	exe	Formbook
2022-06-14 16:10:25	faab64c137398fa8f253f500bdaf7445367cbcbdf35e833508086cb89d9ee0de	exe	Formbook
2022-06-14 13:41:56	3b7c3cdf465e6e8113140b3e109a4ce242feefefd8c215d2237b1aeefee47834	exe	Formbook
2022-06-14 13:22:08	8b02875426e9b8b7074487c959a5220399e4c965f5bac608d9a65b66f4d62c71	exe	Formbook
2022-06-14 13:21:44	3b7c3cdf465e6e8113140b3e109a4ce242feefefd8c215d2237b1aeefee47834	exe	Formbook
2022-06-14 13:05:13	8b02875426e9b8b7074487c959a5220399e4c965f5bac608d9a65b66f4d62c71	exe	Formbook
2022-06-14 12:59:06	66e116c38693b688041b05db22425b15f5a3a854826eb2fda04cc2b338bb5ab3	exe
2022-06-14 12:49:04	3046a58999ef12bbe6472b373836767bf4e5fd15a50e14d26f7e344c033e61d3	exe	Formbook
2022-06-14 12:07:04	b0cbfc5f55798bee84a760d2a857c6c52da5f0d69e8076d67952793d47d8a59b	exe	Formbook
2022-06-14 07:34:48	31c332e155c0da98d365fa1e94ffc2de8494dee3b3c537db82e0545fc75b262b	exe	Formbook
2022-06-14 07:34:31	31c332e155c0da98d365fa1e94ffc2de8494dee3b3c537db82e0545fc75b262b	exe	Formbook
2022-06-14 00:09:03	a1bc3777d05c582fde6d64e54361d4a493360a90b4e91b3b6dc64590c8f283d6	exe	Formbook
2022-06-13 21:20:04	e7b25533fdafa02c367a0894970faf02221cd343656c7106abea02ff128883b0	exe	Formbook
2022-06-13 10:16:03	de1ed83af792e4b8bdd2bff0397c4bf829875a897a2467465ba7fda7d1865857	exe
2022-06-13 10:16:03	f74b1206f4fb07ab2a4a0707eb5ebc470aedd65c766531c8d710b60e908a74f2	exe	Formbook
2022-06-13 10:05:04	be51ed4dc55c17976b3636cbaf647f6d4010b947e7ebbaba04c79be94554ea1b	exe	Formbook
2022-06-13 08:54:04	092202020aec03cae16b5c4322610f245bdfbe8f94cfdd1b28c6279567d5967e	exe	Formbook