URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 107.175.88.70 |
|---|---|
| Firstseen: | 2025-10-09 10:56:06 UTC |
| Total malware sites : | 8 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 8 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-10-09 10:56:12 | 107.175.88.70 | 107-175-88-70-host.colocrossing.com | Not listed | AS36352 AS-COLOCROSSING |  US | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2025-10-14 11:49:10 | http://107.175.88.70/uaMuRzdtrWkWbXdSUKY127.bin | Offline | encrypted GuLoader  |  abuse_ch |
| 2025-10-14 11:49:10 | http://107.175.88.70/ZmVzitLLTwsJEMs113.bin | Offline | encrypted GuLoader | abuse_ch |
| 2025-10-14 11:49:10 | http://107.175.88.70/TkVRsEzirbrvAWzyeqsjmg11.bin | Offline | encrypted GuLoader | abuse_ch |
| 2025-10-14 11:49:10 | http://107.175.88.70/VljsIv7.bin | Offline | encrypted GuLoader | abuse_ch |
| 2025-10-14 11:49:10 | http://107.175.88.70/KGmRNfgDGBdwpWMUJM247.bin | Offline | encrypted GuLoader | abuse_ch |
| 2025-10-14 11:49:10 | http://107.175.88.70/gyJVzmZufx166.bin | Offline | encrypted GuLoader | abuse_ch |
| 2025-10-14 11:49:10 | http://107.175.88.70/spacebarftpConvertedFile.txt | Offline | encrypted GuLoader rev-base64-loader | abuse_ch |
| 2025-10-09 10:56:12 | http://107.175.88.70/Server_Encrypted32.jpg | Offline | AgentTesla | Anonymous |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2025-10-14 11:49:10 | 4eecfb3df441085c808c1e25ca3bff23a6744ca8f8361496a77a21519a81597e | unknown | ||
| 2025-10-14 11:49:10 | 2396dd260ea0bb53def481fe13b3e62edce2dfe05886580abab5b41987835194 | unknown | ||
| 2025-10-14 11:49:10 | 2ed28f047bb9e1eb50c4977727881c4cda9b79b2a99be9064c1c5251aef34709 | unknown | ||
| 2025-10-14 11:49:10 | 998aa8e7750d19bc58358d52c8661d9ba72b0e628d21454a353df33b52ac0417 | unknown | ||
| 2025-10-14 11:49:10 | df7d6646f92c203f6464f0cc0229b741b06629e10fbf2f33709ef60bd9766b01 | unknown | ||
| 2025-10-14 11:49:10 | 346e943e1041eb2d496b4971dae17ad1d7f9dc638e9499178c492b64b49d1196 | unknown | ||
| 2025-10-14 11:49:10 | 9eab03f51ef87bbad44921b43e3276e21000055b0f18dade7f149d45fe2baa65 | txt | ||
| 2025-10-09 10:56:12 | d6be3636790bf843b8ea28594aaf894861e5beb00d53ef17480981149d7009c2 | ps1 | AgentTesla |