URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	107.172.61.141
Firstseen:	2022-09-13 06:37:04 UTC
Total malware sites :	20
Online malware sites :	0 (0%)
Offline Malware sites :	20 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-09-13 06:37:05	107.172.61.141	107-172-61-141-host.colocrossing.com	Not listed	AS36352 AS-COLOCROSSING	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-10-05 11:52:04	http://107.172.61.141/uuuuUASDbjasduhuasduyuASH...	Offline		Anonymous
2022-10-05 09:26:05	http://107.172.61.141/31/vbc.exe	Offline	32 exe SnakeKeylogger	zbetcheckin
2022-10-04 11:00:06	http://107.172.61.141/11/vbc.exe	Offline	exe SnakeKeylogger	abuse_ch
2022-10-04 10:51:06	http://107.172.61.141/278/vbc.exe	Offline	exe	abuse_ch
2022-10-04 09:13:04	http://107.172.61.141/uuUASDbjasduhuasduyuASHUD...	Offline	doc opendir	abuse_ch
2022-10-04 09:13:04	http://107.172.61.141/uuUASDbjasduhuasduyuASHUD...	Offline	doc opendir SnakeKeylogger	abuse_ch
2022-10-03 15:55:06	http://107.172.61.141/277/vbc.exe	Offline	SnakeKeylogger	James_inthe_box
2022-09-29 08:30:05	http://107.172.61.141/413/vbc.exe	Offline	exe opendir SnakeKeylogger	abuse_ch
2022-09-29 08:30:04	http://107.172.61.141/...----------------------...	Offline	doc opendir SnakeKeylogger	abuse_ch
2022-09-24 04:43:04	http://107.172.61.141/...----------------------...	Offline	RTF	zbetcheckin
2022-09-23 06:23:05	http://107.172.61.141/390/vbc.exe	Offline	exe Formbook opendir	abuse_ch
2022-09-23 00:26:04	http://107.172.61.141/...----------------------...	Offline	Formbook RTF	zbetcheckin
2022-09-22 05:39:05	http://107.172.61.141/400/vbc.exe	Offline	exe opendir SnakeKeylogger	abuse_ch
2022-09-22 05:39:04	http://107.172.61.141/...----------------------...	Offline	doc opendir SnakeKeylogger	abuse_ch
2022-09-19 19:42:05	http://107.172.61.141/127/vbc.exe	Offline	SnakeKeylogger	James_inthe_box
2022-09-19 16:53:05	http://107.172.61.141/126/vbc.exe	Offline	exe opendir SnakeKeylogger	abuse_ch
2022-09-19 07:40:05	http://107.172.61.141/77/vbc.exe	Offline	exe Formbook opendir	abuse_ch
2022-09-19 07:40:04	http://107.172.61.141/...----------------------...	Offline	doc Formbook opendir	abuse_ch
2022-09-13 06:38:03	http://107.172.61.141/..---------..------------...	Offline	doc Formbook opendir	abuse_ch
2022-09-13 06:37:05	http://107.172.61.141/..---------..------------...	Offline	doc opendir SnakeKeylogger	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-10-05 09:26:05	065d1d90dd9b22bb5a01dcce012898ab29cdb756e4c4c119f3cb8ff83d07613f	exe	SnakeKeylogger
2022-10-04 12:23:32	4d32d346b1cd4550b10e9557b8bc6d8bba99480851090e0f79c894d195b5e6c8	exe	SnakeKeylogger
2022-10-04 11:00:06	5c5ab505d70fe1185250c696654eb9bdf39bfc47ea7a06b56160776f886adbe7	exe	SnakeKeylogger
2022-10-04 10:51:06	f2d2638afb528c7476c9ee8e83ddb20e686b0b05f53f2f966fd9eb962427f8aa	exe
2022-10-04 09:13:04	7d9ca9e77c9f18f17839665c83c65af1dc70bdbb087cd57fbd685a6866b5a629	rtf
2022-10-04 09:13:04	4d908fe1a46f757857993e8489529b15527e6ba7c8f8e1083c27edf8ab723ac9	rtf	SnakeKeylogger
2022-10-04 08:54:47	5c5ab505d70fe1185250c696654eb9bdf39bfc47ea7a06b56160776f886adbe7	exe	SnakeKeylogger
2022-10-03 15:55:06	50839e417be89600af4b8f90a4b464c41956339f9ea396f4bedd3fcd1204d73e	exe	SnakeKeylogger
2022-09-29 08:30:05	69061f74cdb3e055257f8b539f084cc1095a7c3ee7301522dafa5e1ca8b8fb04	exe	SnakeKeylogger
2022-09-29 08:30:04	b02820808d2afec6c8bd57488128518d219d482b1547c34199e3e550e064c4c7	rtf	SnakeKeylogger
2022-09-24 04:43:04	fdbb45df8484abd7135db33d949f07605a51629919d323fe2066db0f9982adfe	rtf
2022-09-23 06:23:05	fefe6dfd1e895647098d6bce13f51d2708d1e85604a502fd1998d4b38a3c217d	exe	Formbook
2022-09-23 00:26:04	5a6fcfcd7ef3d202d078f89b474640057b1c18ea5a600869bb512aa91dcea79d	rtf	Formbook
2022-09-22 05:39:05	b1e886e95c76a7a0dccc3d15bc383bc4e87ec8b8d37e83d77c12b139d57e6d9f	exe	SnakeKeylogger
2022-09-22 05:39:04	e9e38b2108b6dc9911fac6c1e6bf7b8fa017847f56ceeab19b96f187db9e5bac	rtf	SnakeKeylogger
2022-09-20 01:55:21	c05f1c4e252fab67e158e03e2259f5e1b9fefb1b74316046052b52edc3e67ad4	exe	SnakeKeylogger
2022-09-20 01:42:14	3b7b4ef071bf7db6cdf5be21c0ab645e03ad70277b101785534ef8da35b354ca	exe	SnakeKeylogger
2022-09-19 19:42:05	976fc03514a14ae7aad8298ef82b1ae3805c1707bf9c3b7d4afcb53883b4c081	exe	SnakeKeylogger
2022-09-19 16:53:05	a7d7968a062b394d96d39e13c1d5edf2a1d1b26ec089501f8820ced0f89bcdce	exe	SnakeKeylogger
2022-09-19 07:40:05	f2a0159fafd3bdbe6b457f8f724e142c8cfd9cb0eb02b508729cc7e3c42cf593	exe	Formbook
2022-09-19 07:40:04	162aa02bc6a9559fd7899926b60cabf3268c101dbe5fe5ca974ccf24ffcbb0db	unknown
2022-09-13 06:38:03	3b60370cdd08ef5641ea35aaa7e300d8b3a859ec1fcbc8f5b8db948c75f578b3	unknown
2022-09-13 06:37:04	b7f48a1eac3c83799c503e592bdc1651e756f7d34afd82ed6554f66ebb063b91	unknown