URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	107.173.192.140
Firstseen:	2022-03-09 15:34:03 UTC
Total malware sites :	10
Online malware sites :	0 (0%)
Offline Malware sites :	10 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-03-09 15:34:05	107.173.192.140	107-173-192-140-host.colocrossing.com	Not listed	AS36352 AS-COLOCROSSING	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-04-12 12:28:04	http://107.173.192.140/60/vbc.exe	Offline	exe Formbook opendir	abuse_ch
2022-04-12 12:28:04	http://107.173.192.140/65/vbc.exe	Offline	exe Formbook opendir	abuse_ch
2022-03-23 19:41:04	http://107.173.192.140/77/vbc.exe	Offline	exe Formbook opendir	abuse_ch
2022-03-23 19:41:04	http://107.173.192.140/66/vbc.exe	Offline	exe Formbook opendir	abuse_ch
2022-03-22 18:25:04	http://107.173.192.140/115/vbc.exe	Offline	exe Formbook opendir	abuse_ch
2022-03-22 18:24:04	http://107.173.192.140/120/vbc.exe	Offline	exe Formbook opendir	abuse_ch
2022-03-18 11:19:04	http://107.173.192.140/81/vbc.exe	Offline	exe Formbook opendir	abuse_ch
2022-03-16 08:50:05	http://107.173.192.140/112/vbc.exe	Offline	exe Formbook opendir	abuse_ch
2022-03-09 15:34:05	http://107.173.192.140/56/vbc.exe	Offline	AgentTesla exe opendir	abuse_ch
2022-03-09 15:34:05	http://107.173.192.140/57/vbc.exe	Offline	AgentTesla exe opendir	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-04-13 02:11:19	cd0c02c985600efee1edc7dcca8808cdf06f3ac1d52427d39c2931d2472caa6a	exe	Formbook
2022-04-13 02:05:57	cd0c02c985600efee1edc7dcca8808cdf06f3ac1d52427d39c2931d2472caa6a	exe	Formbook
2022-04-12 12:28:04	bce2bc3a55dfecfd388b134663893b70c3830b20a8afa395e36a28097e305943	exe	Formbook
2022-04-12 12:28:04	bce2bc3a55dfecfd388b134663893b70c3830b20a8afa395e36a28097e305943	exe	Formbook
2022-03-24 04:27:17	6a28b96aa815ddc86f40a486a1e6d0cb8c9e92579a6641422c9dc76fd6131513	exe
2022-03-24 04:02:16	6a28b96aa815ddc86f40a486a1e6d0cb8c9e92579a6641422c9dc76fd6131513	exe
2022-03-23 19:41:04	7fb0c21777bc2f9b0dd0aa5519eebbe5ec9afa008e67edc2abec7e5c94957a36	exe	Formbook
2022-03-23 19:41:04	7fb0c21777bc2f9b0dd0aa5519eebbe5ec9afa008e67edc2abec7e5c94957a36	exe	Formbook
2022-03-22 18:25:04	d0d6b8f342215efb1adba27088bb7f6dfe14dd3734612aecf1124b121c3a7cc6	exe	Formbook
2022-03-22 18:24:04	d0d6b8f342215efb1adba27088bb7f6dfe14dd3734612aecf1124b121c3a7cc6	exe	Formbook
2022-03-18 11:19:04	0488a1801640896ea2e4922dcd03d47bea603db8b938aa2060bd529060ec37fd	exe	Formbook
2022-03-16 14:04:07	1187241a99f836201133a89e710ac60d4e9ed8299f570dd8bceda2558353e47b	exe
2022-03-16 08:50:05	a9f8ff439d6cf51c60a5f9bba3653ea480fa72249562e11d6bc03bda8e672f5d	exe	Formbook
2022-03-09 15:34:05	5ef3062dcba1af12b3380eeb6c6e0074b44619ed9b477547bb6b7f3bb9c8a16b	exe	AgentTesla
2022-03-09 15:34:05	5ef3062dcba1af12b3380eeb6c6e0074b44619ed9b477547bb6b7f3bb9c8a16b	exe	AgentTesla