URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	167.160.161.247
Firstseen:	2025-07-15 05:55:06 UTC
Total malware sites :	9
Online malware sites :	0 (0%)
Offline Malware sites :	9 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-07-15 05:55:13	167.160.161.247	167.160.161.247.static.quadranet.com	SBL677592	AS36352 AS-COLOCROSSING	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-07-26 10:01:08	http://167.160.161.247/v888e.exe	Offline	exe VenomRAT	abuse_ch
2025-07-26 10:00:08	http://167.160.161.247/x8482.exe	Offline	AsyncRAT exe	abuse_ch
2025-07-26 10:00:08	http://167.160.161.247/l838.exe	Offline	exe LummaStealer	abuse_ch
2025-07-26 10:00:07	http://167.160.161.247/q8d90.exe	Offline	exe QuasarRAT	abuse_ch
2025-07-26 10:00:07	http://167.160.161.247/n89393.exe	Offline	exe njRAT	abuse_ch
2025-07-26 10:00:07	http://167.160.161.247/ssrt4.exe	Offline	exe	abuse_ch
2025-07-23 06:24:11	http://167.160.161.247/v9d9d.exe	Offline	c2-monitor-auto dropped-by-amadey Vidar xworm	c2hunter
2025-07-16 03:06:35	http://167.160.161.247/l8890f.exe	Offline	exe LummaStealer	abuse_ch
2025-07-15 05:55:13	http://167.160.161.247/v999f8.exe	Offline	c2-monitor-auto dropped-by-amadey Vidar xworm	c2hunter

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-08-15 16:49:44	989e84e3c0e940df3edd50cfdc5173bfbbacca2aebe5f0ef21e28abdeefb7338	exe	Vidar
2025-08-14 18:45:58	342e02bc056328c9e4be3151749135f6defa43f5b875707ff213e59110797144	exe	LummaStealer
2025-08-14 16:46:36	4aabe5374e83c51461e883aa51c181a4334b226ae6bafd6643c9bf7b56d5f981	exe	LummaStealer
2025-08-14 06:59:01	95a86f8b4ac54d0bd92bd8e16960df8291b50cbeef9d0a2986c150e2398c4ad5	exe	Vidar
2025-08-10 00:25:26	99c418b25045ea631e81565e96967b2207c89e2bf65cda379ae925fc0f0c36d3	exe	LummaStealer
2025-08-09 07:02:15	aa49684e48cdc3a3b706973c0c55fd1a2be03aa0337e15810db20f6a08c127a9	exe	Vidar
2025-08-09 05:37:38	533a1cbaf3c2c3104d299f74907cf34a2ce7e27835d117986e07fdd16b0114be	exe	Vidar
2025-08-08 05:17:47	9b9a287d6e3e20cb7ff4a37c97e3bb9715f609c4b3a3adfd0b37b4a6ff193285	exe
2025-08-08 03:02:14	57cfcfba691c1a71a6de3dc65e0d5bef29d7df2435803a9a4c48279782254136	exe	Vidar
2025-08-05 17:29:15	5762b29db8dc3a8985d0bf4c1705f3ae2bef29ae5b63fcbfd7d2a846bfdce719	exe	XWorm
2025-08-05 05:49:12	e3d63f823c7ce84e013e1726c45ea9c7384cd5c55471d9ca793af2ccec8a10f6	exe	LummaStealer
2025-08-01 17:03:09	a68c35f181697c3f82aa950a4720be636c9103f8532cefd9eb1e7735936c9deb	exe	njrat
2025-08-01 13:41:10	786e32844cc5d258f3fa8e43f6938f1b62a55dff0e84f7ca1934db9b83c9dd93	exe	njrat
2025-08-01 11:27:13	7f64c92cede8839e819c95c151e3e24e408b988841dc991e3b5a599664b57ab2	exe	XWorm
2025-08-01 10:52:32	a39a681bba715b89324d87acdb754c762e7b8e3fabd90d74b815888f842934e6	exe	LummaStealer
2025-07-31 17:13:23	265f7a20ba64eab0b84802260e96705f3714245feef25364ba3e9ca1f3808704	exe	XWorm
2025-07-31 13:40:09	5feeff7cda9b5c1e544f0cc555725d713624f886fb1586c4fc1fd1cabc72fb33	exe	LummaStealer
2025-07-26 10:01:08	b9e406c02e24185fdd179539eb6c87f7c7b1b94753b1ae2e4ff2ca272cc91140	exe	VenomRAT
2025-07-26 10:00:08	8d340e3a1f40d76903b5778caf71157be4270a8f0386db0b51f41ef14aa58f05	exe	AsyncRAT
2025-07-26 10:00:08	d6b133ca61cec0567670b62bf6d07ac79204936d8f9a3e30d065015ba3d97b4e	exe	LummaStealer
2025-07-26 10:00:07	0b60084165ab8cc4903f331615f4918b4d8b7e18780523e2cea95baf72f6ab48	exe	njrat
2025-07-26 10:00:07	cb91a07bcde29ad710bcc98259ea71f15b4a0fe65082fa6481ab8ac8b8b641e0	exe	QuasarRAT
2025-07-26 10:00:07	5f3a3ae4608f2b8c19213693753b8756deaf0a214a430fb77a11d2d66e54e433	exe
2025-07-26 04:25:49	56b7434758412a53e839c141c5e801de7c74851af1187a76675dc6b3ce80fdb2	exe	XWorm
2025-07-24 05:48:44	f8e72c4db348eb70ec22401abfc618e8a58f115c41be7acb36fd6732f367c37c	exe	XWorm
2025-07-23 06:24:11	2cd8c0e75cf76381f06dfe465a542e52eefa713b0bea2557763e0c0c45b21481	exe	XWorm
2025-07-18 23:17:09	cdf9365a865549157afd60e88276382db2ba4b63b2283543617d8dda6814d7d1	exe	Vidar
2025-07-18 18:41:08	d83e2efdc9175cdbd4ec29c0b0940185c3e3c82358a79b7c8b377e8c0646aeed	exe	LummaStealer
2025-07-16 06:25:12	204a2dde4bb6ef8ff931cf313f5adad13cbdfc8c3714b25f67289d3372c88cef	exe	LummaStealer
2025-07-15 11:24:33	24714842b79900f0dbd3c0b2d8ffa0a765178fa6963e6bd26ac51784fde5e332	exe	XWorm
2025-07-15 05:55:12	9a48791ce4a8a84da69e681b573be582fb3c6eebb2a20874310873fd39b3e5ee	exe	XWorm