URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 107.173.9.74 |
|---|---|
| Firstseen: | 2025-07-28 14:30:05 UTC |
| Total malware sites : | 7 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 7 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-07-28 14:30:17 | 107.173.9.74 | 107-173-9-74-host.colocrossing.com | Not listed | AS36352 AS-COLOCROSSING |  US | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2025-08-26 07:15:08 | http://107.173.9.74/cloverfielsdmanagerevenings... | Offline | AgentTesla  vbs |  abuse_ch |
| 2025-08-26 07:15:07 | http://107.173.9.74/newestmanagerggsxxxscript.vbs | Offline | AgentTesla vbs | abuse_ch |
| 2025-08-25 07:04:15 | http://107.173.9.74/newssxxxdriConvertedFile.txt | Offline | AgentTesla ascii Encoded rev-base64-loader | abuse_ch |
| 2025-08-24 15:09:11 | http://107.173.9.74/forxlammetallickscript.vbs | Offline | AgentTesla vbs | abuse_ch |
| 2025-08-23 09:34:19 | http://107.173.9.74/goodnewswithgreatnewsgivenn... | Offline | AgentTesla hta | abuse_ch |
| 2025-08-21 06:28:09 | http://107.173.9.74/metallicka.vbs | Offline | AgentTesla vbs | abuse_ch |
| 2025-07-28 14:30:17 | http://107.173.9.74/metallikkkkcccevening.jpg | Offline | AgentTesla | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2025-08-26 07:15:08 | 2b3509532532cd02f563e5129d63cc86c4b2aac21439ffbbca8d82d5319b41c1 | txt | AgentTesla | |
| 2025-08-26 07:15:07 | d50654478707bcd080e6f5097a82ca953f1271f18bda8c6a331bbbdeac43170b | txt | AgentTesla | |
| 2025-08-25 07:04:15 | 8239969785958b26e6f9541b015f253662902922f387ac3cf96e6168ff61068f | txt | ||
| 2025-08-24 15:09:11 | 567f768cff1b5969e082271fd31ed9bd6d1b264ba2f2525937e12006a5569977 | txt | AgentTesla | |
| 2025-08-23 09:34:19 | 6aef438d79ec6e108e77ce36ba20926b290c6d1544149ce71a64e16e029b0a06 | hta | AgentTesla | |
| 2025-08-21 06:28:09 | 2fac802da7057d67fa47ea71fd6f028a1f6a60c0120d087dd6603d82c8fc4779 | txt | AgentTesla | |
| 2025-07-28 14:30:16 | 7cc0aeb04361b69985150eab7f8da54ac10ce7f666eb5a4356805c65713c2596 | txt |