URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	172.245.94.136
Firstseen:	2022-04-01 13:02:03 UTC
Total malware sites :	11
Online malware sites :	0 (0%)
Offline Malware sites :	11 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-04-01 13:02:05	172.245.94.136	172-245-94-136-host.colocrossing.com	Not listed	AS36352 AS-COLOCROSSING	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-05-03 12:38:04	http://172.245.94.136/501/vbc.exe	Offline	exe Loki opendir	abuse_ch
2022-04-29 07:18:04	http://172.245.94.136/350/vbc.exe	Offline	exe Loki opendir	abuse_ch
2022-04-28 05:54:05	http://172.245.94.136/200/vbc.exe	Offline	exe Loki lokibot LokiPWS	AndreGironda
2022-04-26 04:27:04	http://172.245.94.136/100/vbc.exe	Offline	exe Loki opendir	abuse_ch
2022-04-13 15:22:04	http://172.245.94.136/70/vbc.exe	Offline	Loki	Anonymous
2022-04-12 12:05:05	http://172.245.94.136/30/vbc.exe	Offline	exe Loki opendir	abuse_ch
2022-04-06 15:39:04	http://172.245.94.136/500/vbc.exe	Offline	exe Loki opendir	abuse_ch
2022-04-05 17:55:05	http://172.245.94.136/66/vbc.exe	Offline	exe Loki opendir	abuse_ch
2022-04-05 05:28:04	http://172.245.94.136/125/vbc.exe	Offline	exe Loki opendir	abuse_ch
2022-04-04 15:30:05	http://172.245.94.136/406/vbc.exe	Offline	exe Loki opendir	abuse_ch
2022-04-01 13:02:05	http://172.245.94.136/304/vbc.exe	Offline	Loki	Anonymous

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-05-03 12:38:04	a244c9f48051a0de3e4baaf1f6e09e6027d73bd8c4988311b3697d9800178989	exe	Loki
2022-05-03 04:20:13	b3d17b959be07e41497ebe48d403db574b5e5c2e94b9783bf7301ae17c48f71c	exe	Loki
2022-05-02 14:26:38	f2d2638afb528c7476c9ee8e83ddb20e686b0b05f53f2f966fd9eb962427f8aa	exe
2022-04-29 07:18:04	67286378272f3092628103421067df2717eb8b6c7e75dee664ae2157b2fe01be	exe	Loki
2022-04-28 10:53:30	6a93a157b3bcb0d13e61ace2f3735864c7636bd462569d435590eb5730d45cdf	exe	Loki
2022-04-28 06:35:01	77ce5d839b7c135917a5089c55a3601d16ac8e803506162cb88d2f1c005682fc	exe	Loki
2022-04-28 05:54:05	8bf11c49109e41553a01c4845eaacd7dd10826686b2dd3f61b9d2f4526b57235	exe	Loki
2022-04-27 00:43:15	1e6b6aae958d6ed9447ffa9eac3ba3f4bb86c75d03c6b99a4cebda25fb033a06	exe	Loki
2022-04-26 08:31:40	90b880c16f514cdfc593723bc127ef3ffe738dafa14493dc62de8039dcde5f71	exe	Loki
2022-04-26 06:14:50	7cbc3e5530aea020ed98ad33e0c02aedf0bcca46fbf7db51b858ae0b30159d8e	exe	Loki
2022-04-26 04:27:04	3e207688b841d8557a8ff3c065d55364a547e8397620c7f7ab149c2905c8f4bd	exe	Loki
2022-04-20 06:08:29	3e8cb15324c45a64c3407429b4f0f8f3f61715c3ccc300782e90fa04530893bb	exe
2022-04-14 05:21:56	c3d893baa2a20c57ce145d588d6fce2159d14a2d3fd5ebdda62091c598f24499	exe
2022-04-13 15:22:04	536b1a2e43876d21945ef534ad7beeaf57fa0617110306836c4c9cb78b6fe352	exe	Loki
2022-04-12 12:05:05	92bb5012578914468bee4337e356ee6932c50ce7718a6ff7ce5ee89de97cc850	exe	Loki
2022-04-06 15:39:04	ade19f797e084ef6424ffba70fc3a3af4f002b0e1be4639dcbe89913bfed49d2	exe	Loki
2022-04-05 23:04:58	4fb69901a619af8f1e33045373fb0fd6691131bc83f40aa46a03805da004f897	exe	Loki
2022-04-05 17:55:05	239caa5edf3e49c63b728f5ce4f0e17bd977f8c7c54d56c809779cd4914d07a1	exe	Loki
2022-04-05 05:28:04	be0f36c9d84234749eddef16a81cbc4b5702c85595f6ee8e234a8c6de2e22788	exe	Loki
2022-04-04 15:30:04	fd2171f04bc95cf31a59a6bc2ba10e77dd7ac824fa4061cf635484620aa28738	exe	Loki
2022-04-01 13:02:04	a4d51a3f59873bd7ccc504fb98c09e0bddc883e1d75dfa89a20550b5448f61f4	exe	Loki