URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 172.245.123.11
Firstseen:2024-07-23 12:02:04 UTC
Total malware sites :73
Online malware sites :0 (0%)
Offline Malware sites :73 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2024-07-23 12:02:04 172.245.123.11172-245-123-11-host.colocrossing.comNot listedAS36352 AS-COLOCROSSING- USyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2025-07-01 17:02:13http://172.245.123.11/NNEW/wwwwwl.ps1Offlineopendir abuse_ch
2025-07-01 17:02:07http://172.245.123.11/NNEW/wwwwwDDDD.ps1Offlineopendir RemcosRAT ext abuse_ch
2025-07-01 17:02:07http://172.245.123.11/NNEW/deDDDDvil.ps1Offlineopendir abuse_ch
2025-07-01 17:02:06http://172.245.123.11/NNEW/KKKKKKKKKKKKKKKKKKKK...Offlineopendir RemcosRAT ext abuse_ch
2025-07-01 17:02:05http://172.245.123.11/NNEW/KENTNEW.ps1Offlineopendir abuse_ch
2025-07-01 17:02:05http://172.245.123.11/NNEW/devAAAAAAAAAAAil.ps1Offlineopendir QuasarRAT ext abuse_ch
2025-07-01 17:01:12http://172.245.123.11/NEW//my%20file.exeOfflineNanoCore ext opendir abuse_ch
2025-07-01 17:01:12http://172.245.123.11/NEW//abactor.exeOfflinea310Logger ext opendir abuse_ch
2025-07-01 17:01:07http://172.245.123.11/NEW//jayffff.txtOfflineopendir abuse_ch
2025-07-01 17:01:07http://172.245.123.11/NEW//F.exeOfflineAgentTesla ext opendir abuse_ch
2025-07-01 16:48:12http://172.245.123.11/NEW/WORKEASY.exeOfflineexe NanoCore ext opendir abuse_ch
2025-07-01 16:48:12http://172.245.123.11/NEW/darkeuro.txtOfflineopendir abuse_ch
2025-07-01 16:48:06http://172.245.123.11/NEW/EFDJHGJDFGGJDF8867.exeOfflineexe Formbook ext opendir abuse_ch
2025-07-01 16:48:06http://172.245.123.11/NEW/VXGFD45.exeOfflineexe opendir abuse_ch
2025-07-01 16:48:06http://172.245.123.11/NEW/EFDJHGJDFGGJDF8867.rarOfflineopendir abuse_ch
2025-07-01 16:48:06http://172.245.123.11/NEW/NEWWJS.JSOfflineopendir abuse_ch
2025-07-01 16:48:06http://172.245.123.11/NEW/CCGHF55.exeOfflineexe Formbook ext opendir abuse_ch
2025-07-01 16:48:06http://172.245.123.11/NEW/VSVSFSF.exeOfflineAgentTesla ext exe opendir abuse_ch
2025-07-01 16:48:06http://172.245.123.11/NEW/CZFFS66.exeOfflineexe opendir abuse_ch
2025-07-01 16:48:06http://172.245.123.11/NEW/bra.exeOfflineAgentTesla ext exe opendir abuse_ch
2025-07-01 16:48:06http://172.245.123.11/NEW/VXZGSD5.exeOfflinea310Logger ext exe opendir abuse_ch
2025-07-01 16:47:10http://172.245.123.11/NEW/abactor.exeOfflinea310Logger ext exe opendir abuse_ch
2025-06-25 08:14:15http://172.245.123.11/nnew/johnsoonnnn.txtOffline abuse_ch
2025-06-25 08:14:07http://172.245.123.11/nnew/EUROOO.txtOffline abuse_ch
2025-06-25 08:14:06http://172.245.123.11/NNEW/CDDVD.zipOffline abuse_ch
2025-06-25 06:59:17http://172.245.123.11/new/pu.ps1Offlineascii opendir powershell ps1 abuse_ch
2025-06-25 06:59:15http://172.245.123.11/new/ruch.txtOfflineopendir abuse_ch
2025-06-25 06:59:12http://172.245.123.11/new/NEWRUCH.txtOfflineopendir abuse_ch
2025-06-25 06:59:12http://172.245.123.11/new/RTHHHHHHHHHHHHHHHHH.txtOfflineopendir abuse_ch
2025-06-25 06:59:12http://172.245.123.11/new/EUROOO.txtOfflineopendir abuse_ch
2025-06-25 06:59:12http://172.245.123.11/new/T.zipOfflineopendir zip abuse_ch
2025-06-25 06:59:11http://172.245.123.11/new/emnas.txtOfflineopendir abuse_ch
2025-06-25 06:59:11http://172.245.123.11/new/DGHDGHDHG.zipOfflineopendir zip abuse_ch
2025-06-25 06:59:10http://172.245.123.11/new/puttytest.ps1Offlineascii opendir powershell ps1 abuse_ch
2025-06-25 06:59:07http://172.245.123.11/new/KENTTTTT.ps1Offlineascii opendir powershell ps1 RemcosRAT ext abuse_ch
2025-06-25 06:59:07http://172.245.123.11/new/kentt.txtOfflineopendir abuse_ch
2025-06-25 06:59:07http://172.245.123.11/new/newwhtml.ps1Offlineascii opendir powershell ps1 abuse_ch
2025-06-25 06:59:06http://172.245.123.11/new/jayffff.txtOfflineopendir abuse_ch
2025-06-25 06:59:06http://172.245.123.11/new/TESTTT.ps1Offlineascii opendir powershell ps1 abuse_ch
2025-06-25 06:59:06http://172.245.123.11/new/XCBGJDF33.zipOfflineopendir zip abuse_ch
2025-06-25 06:59:04http://172.245.123.11/new/TTTTTTTTTTTTTTTTl.vbsOfflineopendir abuse_ch
2025-06-25 06:59:04http://172.245.123.11/new/deviWWWWWWWWWWWWl.vbsOfflineopendir abuse_ch
2025-06-25 06:58:12http://172.245.123.11/new/T.exeOfflineexe opendir RedLineStealer ext abuse_ch
2025-06-25 06:58:12http://172.245.123.11/new/NEWPT.exeOfflineexe opendir StealeriumStealer abuse_ch
2025-06-25 06:58:12http://172.245.123.11/new/K.exeOfflineexe opendir RemcosRAT ext abuse_ch
2025-06-25 06:58:10http://172.245.123.11/new/neww.exeOfflineconnectwise exe opendir abuse_ch
2025-06-25 06:58:07http://172.245.123.11/new/Pulsar.exeOfflineexe opendir QuasarRAT ext abuse_ch
2025-06-25 06:58:07http://172.245.123.11/new/e.exeOfflineexe opendir RemcosRAT ext abuse_ch
2025-06-25 06:58:07http://172.245.123.11/new/VXHDH.exeOfflineexe opendir abuse_ch
2025-06-25 06:58:07http://172.245.123.11/new/my%20file.exeOfflineexe NanoCore ext opendir abuse_ch
2025-06-25 06:56:07http://172.245.123.11/new/mexx.exeOfflineexe opendir SnakeKeylogger ext abuse_ch
2025-06-16 15:04:14http://172.245.123.11/new/ceng.exeOfflinea310Logger ext opendir abuse_ch
2025-06-16 15:04:14http://172.245.123.11/new/tesssssssssttt.txtOfflineopendir abuse_ch
2025-06-16 15:04:09http://172.245.123.11/new/FJFJ65.zipOfflineopendir abuse_ch
2025-06-16 15:04:08http://172.245.123.11/new/F.exeOfflineAgentTesla ext opendir abuse_ch
2025-06-13 15:30:17http://172.245.123.11/new/buildnew.exeOfflineopendir StealeriumStealer juroots
2025-06-13 15:30:14http://172.245.123.11/new/sales34.exeOfflineopendir StealeriumStealer juroots
2025-06-13 15:30:13http://172.245.123.11/new/XCBNJSD.zipOfflineFormbook ext opendir juroots
2025-06-13 06:25:18http://172.245.123.11/new/saless.exeOfflineStealeriumStealer abuse_ch
2025-06-13 06:25:16http://172.245.123.11/new/info.exeOfflineStealeriumStealer abuse_ch
2025-06-13 06:25:16http://172.245.123.11/new/freeman.comOfflineStealeriumStealer abuse_ch
2025-06-13 06:25:16http://172.245.123.11/new/S.exeOfflineStealeriumStealer abuse_ch
2025-06-13 06:25:15http://172.245.123.11/new/bul.ps1OfflineRedLineStealer ext abuse_ch
2025-06-13 06:25:09http://172.245.123.11/tpm/pin.phpOffline abuse_ch
2025-06-13 06:25:07http://172.245.123.11/new/bin.exeOfflineFormbook ext abuse_ch
2025-06-13 06:25:06http://172.245.123.11/new/la.ps1OfflineFormbook ext abuse_ch
2025-06-13 06:25:03http://172.245.123.11/tpm/fre.phpOffline abuse_ch
2024-07-31 06:37:06https://172.245.123.11/46/NO/seethesimplethings...OfflineRemcosRAT ext RTF zbetcheckin
2024-07-29 14:46:08http://172.245.123.11/47/BEN.txtOfflineascii Encoded RemcosRAT ext rev-base64-loader NDA0E
2024-07-29 13:50:19http://172.245.123.11/47/weseethesimplethingsal...Offlinerat RemcosRAT ext vbs abuse_ch
2024-07-29 13:49:05http://172.245.123.11/47/eg/seethedrinkingwater...Offlinedoc rat RemcosRAT ext abuse_ch
2024-07-23 12:03:04http://172.245.123.11/90290/somethingnewthingsa...Offline abuse_ch
2024-07-23 12:02:04http://172.245.123.11/90290/gdc/somethingnewthi...Offlinedoc abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-07-01 17:02:134ad74ede3c9261e8afec736ca334495d8ae42a1b67278bb2e9cc8512566fc85ctxt 
2025-07-01 17:02:07cf8e36281c02fbdb4cd1078662a8a14e1b6c659ef357a6fbb5d26882db9b88c9txt RemcosRAT
2025-07-01 17:02:07c128e8b0f30f27fe4dd81b2d0ff9bdd0c5e39ce652a27a8e838e9e1053e07abftxt 
2025-07-01 17:02:067726f12bcc7f729fb7bbe78fd39d1cf22ffd6b8ac77dede155a6bc090a839e33txt RemcosRAT
2025-07-01 17:02:05b64d66c9d09b4ab82562a6de800f1af98b61d614edf944f6158c1fe07b57e9e8txt 
2025-07-01 17:02:053eb19608f553fa9817b65a4caa6e0b675a47c1f2804e498319faab9a86a89bf9txt QuasarRAT
2025-07-01 17:01:12ccd665e0a79f33c8823d9a855c722c496a8670c05d559254460e9c304daea4dcexeNanoCore
2025-07-01 17:01:12f00a63a41d1c5dbf4b6670262e613f180fd286c83b606b04f05750598da2b3a6exe a310Logger
2025-07-01 17:01:071763bf7f4064f86143b3d5fa36be773408cf65458106bd9072c62d397877d4aatxt  
2025-07-01 17:01:070bb7f56a8ef72d045347ffb54dad01b17124ea7bd40a85b4050246d69de8fec2exe AgentTesla
2025-07-01 16:48:125272fc00538f7759a0ded373813397b9858fc9d0509bb164faa781f54cf74ad0exeNanoCore
2025-07-01 16:48:12dcf476235539f5f1911d37ffa201aab53a8c212ac967efa7bae7ae9b53ee2db7txt  
2025-07-01 16:48:067dc3453d31b2a29a017546b75726004d3e67b2ec5ee31eb1be0d639727a97717exe AgentTesla
2025-07-01 16:48:06f3e14e4d8700f7bdd685b1087e64155e0aba558e1bcf9a7b52b9528983cf4f1bexe 
2025-07-01 16:48:06276fb6990a8f40baa9d73fe583e8631ea8291b7a796768b2e864db76c10d4d02rar  
2025-07-01 16:48:068dece92d0a5bb17e4bdbfcb6376f37fdbefae3d8c20b9a10d415b2d438e87fc7txt  
2025-07-01 16:48:062f81f594c4dd4940b2475c20fcbd019e1065d87c48de05b82768e5d58bdb9572exe Formbook
2025-07-01 16:48:061551a513d0b69ab1d7b7dd76f3f26e903d13f5bf0a713bcafa1e054443c28c51exe Formbook
2025-07-01 16:48:063327be58e0162e73808d5e4cc8bc0dbd57ce03a0ce1c8c9c64bc206ee75c90dbexe  
2025-07-01 16:48:06dfbe4d94212cf1afb5198537bf7b501f0786ba0880ad2413e32861634484bbb8exe AgentTesla
2025-07-01 16:48:06b0f987a84ab3cc391bf74bffecc882f84211f7bc6d4823df437bf2d9ff7944f3exe a310Logger
2025-07-01 16:47:09f00a63a41d1c5dbf4b6670262e613f180fd286c83b606b04f05750598da2b3a6exe a310Logger
2025-06-25 08:14:150043bbc015391d7ea83cb1c56d7d1526976ca4c5149d5f97d7aae0e97d2252c7txt  
2025-06-25 08:14:070043bbc015391d7ea83cb1c56d7d1526976ca4c5149d5f97d7aae0e97d2252c7txt  
2025-06-25 06:59:17b2ef1a08752337a0f183a03b45e166270769ed23fbc873331581b23c3ecfa582txt  
2025-06-25 06:59:15d8d4c437b5a34d0d0a88231bc7ad1bf62b9e710d9cefd12ef16d62c8a33ac376txt  
2025-06-25 06:59:12d8d4c437b5a34d0d0a88231bc7ad1bf62b9e710d9cefd12ef16d62c8a33ac376txt  
2025-06-25 06:59:1293aeab0212bcc26d12f94546802c15f99b059e98d7b7498c6240c30ef2ce9acbtxt  
2025-06-25 06:59:120043bbc015391d7ea83cb1c56d7d1526976ca4c5149d5f97d7aae0e97d2252c7txt  
2025-06-25 06:59:121e9ced11dcca826e8ad8ade28c4eb3e32c0aa49d13a3328c3fecdeefcf32adc7zip  
2025-06-25 06:59:11d2701ec6740265ecfd9e88fec3b68f12dc1fbf3a11c024a1b0f0aa237456e2eetxt  
2025-06-25 06:59:1113dcc3ee42bf43287c1a28e8b753ff635e3499730de345649278229eddbc14c4zip  
2025-06-25 06:59:1025248320857add05c6156280e97b26e247ca2aad8626dc7455e2874324ae91bftxt  
2025-06-25 06:59:076a3bd212cf2db8e75432d8533112ae78c9cedf1d714fd37d5c0a11becfc372e1txt  
2025-06-25 06:59:07f27fb99b66247b7b0ba3e5a736ce913bb0538114d8b271887c4e4a2a9ce724fctxt RemcosRAT
2025-06-25 06:59:071b1bd49e1336b51912cf4499210b6b5f349f5fd23670c6f85ef499ba14dc10d9txt  
2025-06-25 06:59:061763bf7f4064f86143b3d5fa36be773408cf65458106bd9072c62d397877d4aatxt  
2025-06-25 06:59:0680933d5f2855b49196c33a221445ea6872aad3b5a3fc9c2094819a89d090e31azip  
2025-06-25 06:58:1283b343862ba4d33f9fc269c71864fe26b525bb6f9c164e71e434b20f0607c845exe RedLineStealer
2025-06-25 06:58:123b105eb411e1b685f4827bd3bcc39bac36038556f2a841d3af021a43b9b7c66eexe StealeriumStealer
2025-06-25 06:58:12d005124cbeae1e21d9bb24cb1be1ce6528d95b848307f5f8133a8f860e6bf674exe RemcosRAT
2025-06-25 06:58:10ab0b6746621bbcfcf2370a3b5a325017b2d5b80a2b61142cc5b4a0958bd277d6exe ConnectWise
2025-06-25 06:58:07a62aa88503b2afc2aee15c3852bfc4b0dc5162fa1d64722bb9eb2dc12d204a81exe QuasarRAT
2025-06-25 06:58:070d6de76b238cfc40e60c2838d908f06ff87f062078303746074dacb7edebadddexeRemcosRAT
2025-06-25 06:58:070c38c28c989537608821532239cc4388a47bbf3af6b15773f007aff1b406dc7aexe 
2025-06-25 06:58:07ccd665e0a79f33c8823d9a855c722c496a8670c05d559254460e9c304daea4dcexeNanoCore
2025-06-25 06:56:077565b96d5a09f9869103bc68269772139eb199398622a873bbb921affc417407exe SnakeKeylogger
2025-06-16 15:04:1451ebcdfac91335761a33627358af7c2a3f1f6db1a595da25692aeedb9027fef4txt  
2025-06-16 15:04:14d0b37b39c3e87f6ad58475a798cae81ce4b38253f559ea693a9d7317b07d90abexe a310Logger
2025-06-16 15:04:09635782d633825d3d9f7b660d1359285bc6f48f41f04e3d94efe93412997a75a4zip  
2025-06-16 15:04:070bb7f56a8ef72d045347ffb54dad01b17124ea7bd40a85b4050246d69de8fec2exe AgentTesla
2025-06-13 15:30:17c7a6076b840003eff52ac3d19b04de91ae32ff3283a74caf3eced1af7ba6382bexeStealeriumStealer
2025-06-13 15:30:14cbe4ce9fe8d2be71a5e7918917a2a868329e8b1fe4e10655a8698821e830870cexeStealeriumStealer
2025-06-13 15:30:12415a503384318a9403faa6afe635a97461d235fe58686bced86ff4ceb72f5fa8zipFormbook
2025-06-13 06:25:18cec2afe6b5b97c7557e46ff9e9cca56eabb2a9e9e70052a9ec55c3ff95393c12exeStealeriumStealer
2025-06-13 06:25:16ac740564f3fc5efcbabf363f683473bf00c0de010941678dc650f86360a5f9f3exeStealeriumStealer
2025-06-13 06:25:168b56d12c3acc995499daa5ef55437d0b10d4f9fc181d0a423a350bbfcd5b5d68exeStealeriumStealer
2025-06-13 06:25:16cec2afe6b5b97c7557e46ff9e9cca56eabb2a9e9e70052a9ec55c3ff95393c12exeStealeriumStealer
2025-06-13 06:25:15ea63eba27c57c672a36f062b5447a7e11d399520a6540c8592e039a84f3bee37txtRedLineStealer
2025-06-13 06:25:07d62492b97578c65dd676972d9618686e2859092a9540ff1763ba65d666ca3f6cexeFormbook
2025-06-13 06:25:06f4cf2fe821d34bd5cd8e937cd244df0d406d7fc6d5889dd41a19111d37230ecetxtFormbook
2024-07-31 06:37:06b5d48e4aa15901a84ad2c00a6b6a228471c3e5ad695f7ea11e584afa43543a69rtfRemcosRAT
2024-07-29 14:46:080acf0483874baf431ada7688556147e31541cc7bcbe79fa5aa4d800167cba296txt RemcosRAT
2024-07-29 13:49:0504714ec4a9cfa0304d2de5012ae1081850d2a2b080ad68831ba2c8385bda4d01rtfRemcosRAT
2024-07-24 06:05:435451bce754f64f99ef4d135d9d1cd709021200637cb892cc88dca5680c2f94a4rtf