URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 154.216.18.222 |
|---|---|
| Firstseen: | 2024-08-18 12:43:03 UTC |
| Total malware sites : | 6 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 6 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2024-08-18 12:43:05 | 154.216.18.222 | Not listed | AS11404 AS-WAVE-1 |  US | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2024-08-21 07:53:05 | http://154.216.18.222/simulators/ioqjWeKazzLuiT... | Offline | exe MassLogger  | Anonymous |
| 2024-08-21 07:53:05 | http://154.216.18.222/simulators/ioqjWeKazzLuiT... | Offline | doc VIPKeylogger | Anonymous |
| 2024-08-21 07:43:05 | http://154.216.18.222/simulators/lOpkseAloegPhx... | Offline | doc SnakeKeylogger VIPKeylogger |  abuse_ch |
| 2024-08-21 07:43:05 | http://154.216.18.222/simulators/lOpkseAloegPhx... | Offline | exe SnakeKeylogger VIPKeylogger | abuse_ch |
| 2024-08-18 12:44:05 | http://154.216.18.222/simulators/QhaKalokIccAsZ... | Offline | exe Formbook | abuse_ch |
| 2024-08-18 12:43:05 | http://154.216.18.222/simulators/QhaKalokIccAsZ... | Offline | doc Formbook | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2024-08-21 07:53:05 | 23b9b4a46c15c5fa3b7445e8041852f3dc831547903250209ca738b1a17fb7c2 | exe | MassLogger | |
| 2024-08-21 07:53:05 | 05ad66d563f492c9b527602ff6c7bd9b8fa0ed8f288d0481f51ebe6b71b05242 | rtf | VIPKeylogger | |
| 2024-08-21 07:43:05 | d718eb322dc9348cb1813a920ca739a5c4bd6b44ac32c0c085bd92148bf94161 | rtf | SnakeKeylogger | |
| 2024-08-21 07:43:05 | 496ba3f23ddaf5c1514228f1ca90b1de4392a159eaac3ecbd5fbe3fbb28f819f | exe | SnakeKeylogger | |
| 2024-08-18 12:44:05 | 9e34ee3d6e867bb468026436603470a2d30ede36549ab32f070e54a046beca48 | exe | Formbook | |
| 2024-08-18 12:43:05 | 844cb06eaedfc34982f21f054831859a4a5f46ecf5cef8f03f300218bd0668c9 | rtf | Formbook |