URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 168.138.162.78
Firstseen:2024-10-19 16:17:03 UTC
Total malware sites :6
Online malware sites :4 (67%)
Offline Malware sites :2 (33%)
Newest active malware site :2025-02-17 07:15:18 UTC
Oldest active malware site :2025-02-16 13:20:06 UTC (Age: 1 year, 3 month, 16 days, 1 hours, 49 minutes)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2024-10-19 16:17:14 168.138.162.78Not listedAS31898 ORACLE-BMC-31898- SGyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2025-02-17 07:15:18http://168.138.162.78/output0/client/cabalmain.exeOnlineexe Jaff NDA0E
2025-02-17 07:15:08http://168.138.162.78/output0/client/update.exeOfflineexe NDA0E
2025-02-17 07:15:06http://168.138.162.78/output0/client/cabal.exeOnlineexe NDA0E
2025-02-17 05:23:16http://168.138.162.78/output/client/cabalmain.exeOnlineexe Jaff skocherhan
2025-02-16 13:20:06http://168.138.162.78/output/client/cabal.exeOnlineexe Vidar ext skocherhan
2024-10-19 16:17:14http://168.138.162.78/output/client/update.exeOfflineexe update.exe abus3reports

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2026-02-12 13:50:565d698062b6ec58727441b5126d8e79965dc1ff84012109a77c4148e3942c7c28exe  
2026-02-12 12:59:34b231ea42048fdb554a5724eeaea57e7c7c1a0bc05ee899514c88a729db99f59fexe  
2026-01-13 15:04:55039f46b0f583eaa274e14bf4065a6aa34798fb6b6d1360fd4e51252281838907exe  
2025-08-23 13:20:2826d61edecfee1fb874392d0cd3572043ade1374fd9d8ebd086a97725f0e445a0exe  
2025-06-15 16:31:4207de5072d26ee29f31d65f075551782d6248c4173a34a0d6218ef793da3bf1f1exe  
2025-05-19 12:59:18bd1dd0d1d30e14f31535105cdd5c625005746d773a7d6b53aa8e31863cf6279cexe  
2025-05-15 12:59:367004171909fe98108681bede38aed43a33e103d40901ae467e93ca15352c6d8aexe  
2025-05-15 11:23:28fe7c963415c191245f8efcafc7d460e2a0a631bcc8abbc45a6714fdbacba2cd6exe  
2025-05-03 16:28:07a7c4e301417d4dc2e8dcb04924432d32cd08862e36720bdcbe078c67564ef545exe  
2025-05-03 15:19:16b6eab297aa8ef9e9318d2d8802f8a862aea244e95941edac8dc8fc541d463568exe Ransomware.Jaff
2025-05-02 18:06:35ae693200b0caff86d30255eb65bfb72b70dfc29cce3e36278583748f451d079dexe  
2025-05-02 17:34:137f3917d8caeef277544b3aa744a80e37e6868cd71fd76a34efb9ce33312cbeabexe  
2025-05-02 16:53:04ec975e4eafaa23af372db01eaa601ae9b69844321ad0b577507e56d6a213da21exe  
2025-04-22 15:58:126206e78449a863ae91217977337792cb5167e9d008103d492c50194c51087924exe Ransomware.Jaff
2025-04-15 05:07:19b19db24675533f39f446551b168c53a63eea6e0b102e8394ec49c76df2e77692exe  
2025-04-07 17:05:49f24628589b203a3935c5cd6c423eb484c283ee6bd221ecc1aa720eddc084f263exe  
2025-04-04 10:21:48dc634e2113ec4cc269700662b8f95218038cdae3e1df327ef086b94c24fea84aexe Ransomware.Jaff
2025-03-27 11:57:34da1da318c266b85b9ba028b4883dacc02114250f7dd953ede8bfe7f6e6c4bc23exe  
2025-03-25 15:50:5882758a757dc2b436305f2c15d1e705b2a9df7acf17471313a99fad4cec81ee3aexe  
2025-03-18 13:13:31e3a895fb62bccc0ff5a0843d1e1b405337a5be58b7dc33f3c9a2cda6dceae43eexe  
2025-03-17 23:29:01c69f17e2ec7a2f0e84ef83bff06e3dffea3f35f00adb9bc99244a5d78c3ac2c9exe Ransomware.Jaff
2025-02-21 16:51:28b971d5715030c62ebbe4c93e502df69964e20c8b71fe06f3293bd5283bdefc57exe Ransomware.Jaff
2025-02-19 02:13:18550c6dbc351680b5d63f62110fe9252041631a0e53b49a0ca1e752fa04ff54b1exe  
2025-02-17 07:15:18b8d000c3a1bffd4e429c70f8d7ff1f46a0e391bb8f9b823674473f5686991529exe Ransomware.Jaff
2025-02-17 07:15:08d7571f5dc1f04c01454a218f802adab6c1afe23beaebcf0e45fd05cb11189c2dexe 
2025-02-17 07:15:061e997ac3340205e49c67004ba0d78f67e4696eaaecaa239e6aa8bdb357496ab9exe 
2025-02-17 05:23:168f0fb5062f1aa62b0187209649207fc9cad6cc58832d1f688a7bd9385cd4f5dbexeRansomware.Jaff
2025-02-16 13:20:06b9e2b98038d7f4cad845c3b85c7286ab599f3fa8f2a4ad0fbb0e718756316e84exe 
2025-01-27 01:32:07551d9b835909237a1e52bc5b3093fddd13b300a30d9110883bb832c677560502exe  
2025-01-05 21:55:127ad1133de541db9477644879dd03c5238a3e5fb403be5b09efa068d80715d76aexe  
2024-11-25 14:15:179d4e17951922028099c60eb6f4b3694094712134d7018d32842d2d4d28a79f03exe  
2024-10-26 07:43:45c6b56d104ad74e587a58acc64b68b603d1786d07c3054d82ca29d6820f215f16exe  
2024-10-19 16:17:139bfe94178387ca65b1a5a65701a5b4a2edb109248bf3030cb3f75c6512e21f18exe