URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 139.162.190.91
Firstseen:2021-02-10 10:54:03 UTC
Total malware sites :22
Online malware sites :0 (0%)
Offline Malware sites :22 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-02-10 10:54:06 139.162.190.91advokatpartner.seNot listedAS63949 AKAMAI-LINODE-AP- DEyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-02-10 10:55:05http://139.162.190.91/uploads/files/m43.dllOfflineTrickbot ext reecdeep
2021-02-10 10:55:05http://139.162.190.91/uploads/files/mon43_cr.dllOfflineTrickbot ext reecdeep
2021-02-10 10:55:05http://139.162.190.91/uploads/files/mon42_cr.dllOfflineTrickbot ext reecdeep
2021-02-10 10:54:14http://139.162.190.91/uploads/files/1.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:13http://139.162.190.91/uploads/files/2200.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:13http://139.162.190.91/uploads/files/22005.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:13http://139.162.190.91/uploads/files/5.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:13http://139.162.190.91/uploads/files/2.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:13http://139.162.190.91/uploads/files/8.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:13http://139.162.190.91/uploads/files/4.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:13http://139.162.190.91/uploads/files/7.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:13http://139.162.190.91/uploads/files/22001.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:12http://139.162.190.91/uploads/files/22007.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:07http://139.162.190.91/uploads/files/22006.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:07http://139.162.190.91/uploads/files/6.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:07http://139.162.190.91/uploads/files/3.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:07http://139.162.190.91/uploads/files/22008.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:07http://139.162.190.91/uploads/files/22002.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:06http://139.162.190.91/uploads/files/220010.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:06http://139.162.190.91/uploads/files/22009.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:06http://139.162.190.91/uploads/files/22004.dllOfflineGozi ext ISFB ext ursnif ext reecdeep
2021-02-10 10:54:06http://139.162.190.91/uploads/files/22003.dllOfflineGozi ext ISFB ext ursnif ext reecdeep

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2021-02-10 10:55:05d935c653803a8efd039fad751bd98d8bd0ac36259640cbe7bedaed9c1663bc90dllTrickBot
2021-02-10 10:55:05210e03682a3d02a4ed1787cab12d998629314fb1999e594e4f00cb0b54ca9b94dllTrickBot
2021-02-10 10:55:057ae7db00b573a89b9c435a5147a265dd939d99552b92b5dd9baa9a16f95ae9d5dllTrickBot
2021-02-10 10:54:1497af6bffe2728e9c7317a1609e10dc8fb25c05b75b6088674fa1334ca324b8cbdllGozi
2021-02-10 10:54:13ce7f1d11dd7bec82b96dc9472ab1d36cba5e1c99f0480dba6dd60cd3090de320dll Gozi
2021-02-10 10:54:137e7b55baee77eba7ac8510448b5259b81126c427386e6c304afd3541be6730c3dll Gozi
2021-02-10 10:54:13aa1e2f6cc5ef53f96b1ad2d13c69455afec9d4b611a30d0f5ded5fae1e0ebf23dllGozi
2021-02-10 10:54:13ef92d036f07248bdbc3a100dec9c3e7776a6da5d1154d2f704ae4e8dd6e4a172dllGozi
2021-02-10 10:54:13ded0afec1ce538699df52daf0e024a3b2965fd0520e9ff4d5a8ed4c141967fb9dllGozi
2021-02-10 10:54:135ac50b4354b6b6725cc6294fe01160a58752a4ba5188be1b2874a29ae40376a0dllGozi
2021-02-10 10:54:13e98762fa17dcbe18b6698e7ee2fabf85c4a46c742d3fef2ae38b2906b0b501f6dllGozi
2021-02-10 10:54:13874342cb9571e9c05d9e29b415c42767df9ca677abfd9867ad23f966cdc6e80adllGozi
2021-02-10 10:54:1161ef7c3f1c9828ab60957f4677a6baf820afc80971164d35f9e3022cb3f84dcadll Gozi
2021-02-10 10:54:073185d2e14739200753732063db7eaec713648fabdd4ab5b03ab66c4ce70d14bedll Gozi
2021-02-10 10:54:07c1527e41f665f8e9d3db161f09cc598db5724cbf11addbcb967d217114409612dllGozi
2021-02-10 10:54:079179364ede393451f891c5eabd5ae671bdc926e940a728f9b78756520b6f7175dllGozi
2021-02-10 10:54:0711db68043894b059d5ee7aae50570c2be89a17dd481e9a3212cfb64b77dbf625dll Gozi
2021-02-10 10:54:0774c7302dca5f68fb88024e64eef0c5b2b9e804b7db7355f5035876e8211b3903dll Gozi
2021-02-10 10:54:0695ff3d73b594754316845be83a70a9e3984cbb4eb2a18667db8d982404ac2595dll Gozi
2021-02-10 10:54:06800cfcdcc540fae85c5da3340e2048c47e8e0c4fcec027d697ff0dc6f95221a1dll Gozi
2021-02-10 10:54:06545eedcfad9b2fbf1e2d1454a516b4e5f3bb0c13e13e6a9f00b7e60e59e2b3e8dll Gozi