URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	104.168.46.107
Firstseen:	2022-10-17 12:00:04 UTC
Total malware sites :	16
Online malware sites :	0 (0%)
Offline Malware sites :	16 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-10-17 12:00:05	104.168.46.107	104-168-46-107-host.colocrossing.com	Not listed	AS36352 AS-COLOCROSSING	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-03-24 06:02:09	http://104.168.46.107/220/vbc.exe	Offline	AgentTesla exe opendir	abuse_ch
2023-03-24 06:00:11	http://104.168.46.107/430/vbc.exe	Offline	exe zgRAT	abuse_ch
2023-03-24 03:00:09	http://104.168.46.107/30..................30......	Offline	RTF zgRAT	zbetcheckin
2023-03-24 03:00:09	http://104.168.46.107/20..........................	Offline	AgentTesla RTF	zbetcheckin
2023-03-22 19:19:03	http://104.168.46.107/19..........................	Offline	doc SnakeKeylogger	abuse_ch
2023-03-22 17:05:07	http://104.168.46.107/219/vbc.exe	Offline	SnakeKeylogger	Anonymous
2022-10-31 13:02:04	http://104.168.46.107/zxxsaassswq_zzaxxsccvb_zx...	Offline	AgentTesla doc opendir	abuse_ch
2022-10-25 10:57:05	http://104.168.46.107/120/vbc.exe	Offline	exe Formbook	abuse_ch
2022-10-20 07:21:05	http://104.168.46.107/127/vbc.exe	Offline	AgentTesla exe opendir SnakeKeylogger	abuse_ch
2022-10-20 07:20:05	http://104.168.46.107/zzwqqwwsddsfsdferdfgdfgeg...	Offline	doc opendir SnakeKeylogger	abuse_ch
2022-10-20 07:20:05	http://104.168.46.107/zzwqqwwsddsfsdferdfgdfgeg...	Offline	doc opendir	abuse_ch
2022-10-19 07:17:04	http://104.168.46.107/78/vbc.exe	Offline	32 AgentTesla exe SnakeKeylogger	zbetcheckin
2022-10-19 03:32:06	http://104.168.46.107/79/vbc.exe	Offline	32 AgentTesla exe SnakeKeylogger	zbetcheckin
2022-10-17 15:19:04	http://104.168.46.107/@uuUASDbjasd@uhuasduyuASH...	Offline	doc	abuse_ch
2022-10-17 15:18:05	http://104.168.46.107/55/vbc.exe	Offline	AgentTesla exe Formbook	abuse_ch
2022-10-17 12:00:05	http://104.168.46.107/50/vbc.exe	Offline	AgentTesla exe SnakeKeylogger	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2023-03-24 06:02:09	d8c4477971a15461d08f74725d2922f5e2400d857f539648a3b4f9ea940a8ab8	exe	AgentTesla
2023-03-24 06:00:11	e4ea5b2871c32f3d25689785ff260ae5e75e7117ed478dc2f9e8edd1c01030f4	exe	zgRAT
2023-03-24 03:00:09	becc292fb633a6d01d47ebf5cedcd0ca4ebe4ec3f7ec8feb64f244c6b3915a7a	rtf	AgentTesla
2023-03-24 03:00:09	af6f64bdcb8dd561cda554933b57cf7d479c8079baf6a716be19ab03d359cbdb	rtf	zgRAT
2023-03-22 19:19:03	cdf4664c93b698fdc7ccff8589a27bbd4b1ab01b33c44fa6a1ad63747be7e108	rtf	SnakeKeylogger
2023-03-22 17:05:07	bdf329c1001b540fffb7ad110b6cf460a89c3408fbd62b15e7c55d8cdb55380e	exe	SnakeKeylogger
2022-10-31 13:02:04	a46c348c9d64286aefd26a23100ecde7020886409cfa9fdb79a3c8b380d7574b	unknown
2022-10-31 08:43:50	fb55a5d93e0d9aab4332e5ba708ba2c41095bdf854d25d7d688a29afbb822a3a	exe	SnakeKeylogger
2022-10-31 08:22:03	1142c04f790d684080f3b80c61dce80a1250038e681a4546559c272fc93708c5	exe	AgentTesla
2022-10-31 04:48:59	ee9d1419958241265b597e044640a86739bd91e9a426bdd5dee1bf0b57355276	exe	SnakeKeylogger
2022-10-31 01:56:36	068aaf69425a85656bb2c95d42360154f712851a273607cc4edc89242083c307	exe	AgentTesla
2022-10-30 23:04:47	f2d2638afb528c7476c9ee8e83ddb20e686b0b05f53f2f966fd9eb962427f8aa	exe
2022-10-25 16:22:31	51fed50e49897901d18109ff666e3ff6becaf4442d7b4f85a352513cdded551b	exe	Formbook
2022-10-25 10:57:05	cea0844bf755c190793ac29a2cd95220862993a84c5924faeddce381fcdf063c	exe	Formbook
2022-10-25 06:23:57	ab6ca79d5ad4fe400e7c57b831c71c0a11503f827e66abf52f51ba218854d7f9	exe	Formbook
2022-10-20 07:21:05	79ce7bf9135fe898db020a36c73c12f10f39fe3546f8d688dd3d639bf3cb8f18	exe	AgentTesla
2022-10-20 07:20:05	cbdbe327dc4e244532f83a27bbb4221d583bc2775db0479acfc3e726ce997803	unknown
2022-10-19 10:43:23	fb766c403cf24a9d538597f9858130b3128cf4367018227bf5f58c06d1e8fdf5	exe
2022-10-19 07:17:04	cb7655f9fc9a249fdb1cd7bb990efb0bd4fe1803f741869da6623bdf435964c7	exe	SnakeKeylogger
2022-10-19 03:32:06	8f3caefce2530518144bab9f75c4489f84b0fdacbebdc953ac41a73c95356f44	exe	AgentTesla
2022-10-18 01:26:24	38bcc28d84c5523fe8e64b983a069c11e9109acb6e0eb290ca95139cddadae70	exe	SnakeKeylogger
2022-10-17 15:19:04	ca2cb0e3a425a94c97aee05b1c28373010cc18b57968d1117d9474a97d5e6fc8	unknown
2022-10-17 15:18:05	8ccea9d264f5584180de3b726b676590bfec351367d48a03decb1ee37f9f3965	exe	AgentTesla
2022-10-17 13:15:33	35a8230207c089a54d80a6b45299b23f67047eed4cb285dfb57834eb5a2be571	exe	AgentTesla
2022-10-17 12:57:53	850e278ca4d31e19fb49340aa795a0803220b811119488eb1edc082f11f5e8d2	exe	AgentTesla