URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 104.168.45.119 |
|---|---|
| Firstseen: | 2023-02-08 19:00:06 UTC |
| Total malware sites : | 7 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 7 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2023-02-08 19:00:13 | 104.168.45.119 | 104-168-45-119-host.colocrossing.com | Not listed | AS36352 AS-COLOCROSSING |  US | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2023-03-03 15:34:06 | http://104.168.45.119/gib.exe | Offline | AgentTesla  exe |  abuse_ch |
| 2023-03-02 11:12:04 | http://104.168.45.119/yes.exe | Offline | AgentTesla exe | abuse_ch |
| 2023-02-27 07:51:05 | http://104.168.45.119/vic.exe | Offline | AgentTesla exe | abuse_ch |
| 2023-02-23 11:57:05 | http://104.168.45.119/sydney.exe | Offline | AgentTesla exe | abuse_ch |
| 2023-02-22 13:11:05 | http://104.168.45.119/ark.exe | Offline | AgentTesla exe | abuse_ch |
| 2023-02-10 04:53:35 | http://104.168.45.119/bless.exe | Offline | 32 AgentTesla exe |  zbetcheckin |
| 2023-02-08 19:00:13 | http://104.168.45.119/me.exe | Offline | AgentTesla exe | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2023-03-03 15:34:05 | 0007f855c65b913a538d9a7680c5078dcdf8f49e26f37a130ec982c275bb693b | exe | AgentTesla | |
| 2023-03-02 11:12:04 | bc49d2a85d44b57a55063bf2f784f96d127a7ec7ad0b9f385ade2cf3d713e35b | exe | AgentTesla | |
| 2023-02-27 07:51:04 | e7816585c6d8325c5902901e83404e86f5102099d83650ad5c091f17d0e50d29 | exe | AgentTesla | |
| 2023-02-23 11:57:05 | afaf95c3abfaf5c45250e22bb5b87a6125771ed440be05e51d944ec2661df07f | exe | AgentTesla | |
| 2023-02-22 13:11:05 | 6e0b4b8c54f19220d1eccfc78b1e221301b4427cc45946849c3b05b1adf4324c | exe | AgentTesla | |
| 2023-02-11 08:38:28 | 76fbc5210d00caabb731fcf94e6c4c4b3aaf2131f02616b9f5c351359018334c | exe | AgentTesla | |
| 2023-02-08 19:00:07 | ca65ce40f7a84bd1659f5258dc6ea11085da9d012ffafbbe8146384c5ca44454 | exe | AgentTesla |