URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 172.245.33.146
Firstseen:2023-03-21 10:32:04 UTC
Total malware sites :17
Online malware sites :0 (0%)
Offline Malware sites :17 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-03-21 10:32:11 172.245.33.146172-245-33-146-host.colocrossing.comNot listedAS36352 AS-COLOCROSSING- USyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-03-23 04:46:09http://172.245.33.146/uot/g02.exeOffline32 exe SnakeKeylogger ext zbetcheckin
2023-03-22 16:22:05http://172.245.33.146/010/uu1.exeOfflineexe opendir SnakeKeylogger ext abuse_ch
2023-03-22 15:58:14http://172.245.33.146/uo/Hjemiu.datOfflineopendir abuse_ch
2023-03-22 15:58:10http://172.245.33.146/uo/Gvxftuscec.datOfflineopendir abuse_ch
2023-03-22 15:58:09http://172.245.33.146/uo/Vvvviihccr.dllOfflinedll opendir abuse_ch
2023-03-22 15:58:09http://172.245.33.146/uo/Lxeangpg.pngOfflineopendir abuse_ch
2023-03-22 15:58:09http://172.245.33.146/uo/Actxk.datOfflineopendir abuse_ch
2023-03-22 15:58:09http://172.245.33.146/uo/Ehxrkc.datOfflineopendir abuse_ch
2023-03-22 15:58:09http://172.245.33.146/uo/Qqvdoviy.pngOfflineopendir abuse_ch
2023-03-22 15:58:08http://172.245.33.146/uo/Kiadyhilrfm.bmpOfflineopendir abuse_ch
2023-03-22 15:58:08http://172.245.33.146/uo/Pjtbr.pngOfflineopendir abuse_ch
2023-03-22 15:58:06http://172.245.33.146/uo/Ljvhvj.bmpOfflineopendir abuse_ch
2023-03-22 15:58:06http://172.245.33.146/uo/Tewhzuubzf.dllOfflinedll opendir abuse_ch
2023-03-22 15:57:08http://172.245.33.146/uo/Rqevvgtzcvy.dllOfflinedll opendir SnakeKeylogger ext abuse_ch
2023-03-22 06:19:05http://172.245.33.146/00/007.exeOffline32 exe SnakeKeylogger ext zbetcheckin
2023-03-21 10:32:11http://172.245.33.146/go/m8ci.exeOfflineexe opendir SnakeKeylogger ext abuse_ch
2023-03-21 10:32:11http://172.245.33.146/uo/Jugff.bmpOfflineencrypted opendir SnakeKeylogger ext abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-03-23 10:00:35445b1f82727b8efd01c1270643deb6bc69ef1654ed8f53499fe06fe4be77c977exeSnakeKeylogger
2023-03-23 08:45:34445b1f82727b8efd01c1270643deb6bc69ef1654ed8f53499fe06fe4be77c977exeSnakeKeylogger
2023-03-23 08:41:01445b1f82727b8efd01c1270643deb6bc69ef1654ed8f53499fe06fe4be77c977exeSnakeKeylogger
2023-03-23 08:15:11445b1f82727b8efd01c1270643deb6bc69ef1654ed8f53499fe06fe4be77c977exeSnakeKeylogger
2023-03-23 05:53:1453048f6da9edf57141871657c336f845eb8c9b186d154d9e993b7572d7300857exeSnakeKeylogger
2023-03-23 04:46:0953048f6da9edf57141871657c336f845eb8c9b186d154d9e993b7572d7300857exeSnakeKeylogger
2023-03-23 04:45:1053048f6da9edf57141871657c336f845eb8c9b186d154d9e993b7572d7300857exeSnakeKeylogger
2023-03-22 16:22:05bfc51dc1a4d05287a8935713fd2875a76960b63d6dd852be6664b6aff198a4a0exeSnakeKeylogger
2023-03-22 15:58:14abc6e96ff1ed4d26a08bcb829a5fec1da026b285f2c7a4ab8967426e96d72f79txt  
2023-03-22 15:58:10ee035f1e22d6971a90d3355b7846a8a1ddbb2421510156ce5f662490fdc746bftxt  
2023-03-22 15:58:090afd45ed9ef91a5ed114b1e704ab60e6b2bc7af124a42d1eb9c06a4096d01cbetxt  
2023-03-22 15:58:09ea3412f2d541e9b4417ae5bf4843a23986360dd8059a152877909f60e31444e0txt  
2023-03-22 15:58:09cf8642c4734c90298f7b5564503103063cf29650994b14004c67fe113183d6fbtxt  
2023-03-22 15:58:0980c59ca60bfc42017f5377b6e68bd4c3460be0570a93e4eea8c9dabcc9f29e6atxt  
2023-03-22 15:58:088e8832289ca974894b9fa55482354e3b0c3d24cdc302368324a486dac6676613txt  
2023-03-22 15:58:084431d131413809a04048a8ff7a4046aca724d55bc0117089d302c73b12f2cd7btxt  
2023-03-22 15:58:0721fcd04dc9448c9d8cb976c672423085a65323c422c3ec7a40d7a6ec47f1074dtxt  
2023-03-22 15:58:06d7a10d6639b51cde8f9343a8afbeb281b22db45982c561314ad450120c8f3a44txt  
2023-03-22 15:58:0692be24fe3a65cfccfd4f6d02b68ed74ccd07e508883063b0fe9a2c119192b89etxt  
2023-03-22 15:57:08faaf7e0cc7c80609fb61af8eb289b8e820a55a4d205f3344e40fb4f4905fb28dtxt  
2023-03-22 06:19:058d13301deb6ab177620d38718648a0efb851eabf26b708a388abab7b7daf41d1exeSnakeKeylogger
2023-03-22 06:11:488d13301deb6ab177620d38718648a0efb851eabf26b708a388abab7b7daf41d1exeSnakeKeylogger
2023-03-21 10:32:061cba5a79c86f838157823fefa7eddd01da79bc57d960349dcc00de03ccc0acd6txt  
2023-03-21 10:32:054218d4a03fb87124e33562f14b385c28ea9ef1085b2f389d6da8a2c0dc20ce22exeSnakeKeylogger