URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 135.148.74.241 |
|---|---|
| Firstseen: | 2022-01-20 19:26:03 UTC |
| Total malware sites : | 7 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 7 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2022-01-20 19:26:04 | 135.148.74.241 | ip241.ip-135-148-74.us | Not listed | AS16276 OVH |  US | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2022-01-20 19:27:07 | http://135.148.74.241/new/S_new.txt | Offline | ascii opendir |  abuse_ch |
| 2022-01-20 19:27:04 | http://135.148.74.241/new/ExeToHta.txt | Offline | ascii opendir | abuse_ch |
| 2022-01-20 19:27:04 | http://135.148.74.241/new/Ps1_new.txt | Offline | ascii opendir | abuse_ch |
| 2022-01-20 19:26:07 | http://135.148.74.241/S_B.txt | Offline | bitrat  opendir powershell ps rat | abuse_ch |
| 2022-01-20 19:26:04 | http://135.148.74.241/PS1_B.txt | Offline | ascii bitrat opendir powershell ps rat | abuse_ch |
| 2022-01-20 19:26:04 | http://135.148.74.241/PS1.hta | Offline | ascii bitrat hta rat | abuse_ch |
| 2022-01-20 19:26:04 | http://135.148.74.241/HTA.txt | Offline | hta opendir rat | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2022-01-20 19:27:07 | 9984ce5ec7e04b6dae1c39cb09c6a135fed6697bd2bc4d08b93ef77770eaa377 | txt | ||
| 2022-01-20 19:27:04 | 5e0e3f3b70f875424e4e07e43dea56697174e5e8063d49152682d36d9dc35ca2 | txt | ||
| 2022-01-20 19:26:07 | a57c72a2d92614a6fb3d72d8400a9771643a60f8cb3f2cee4a5a27731b00dff0 | txt | ||
| 2022-01-20 19:26:04 | a1ea8b50509d620eb3334915f282d9415dfcdd06b050101ba7ba7637624c858c | txt | ||
| 2022-01-20 19:26:04 | f30cba9be2a7cf581939e7e7b958d5e0554265a685b3473947bf2c26679995d3 | hta | BitRAT | |
| 2022-01-20 19:26:04 | 655ba1c4fdf9c6557ee3d06fb243fa2f31be3dabdd589269fd6ecf380cdf9f85 | js |