URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	18.195.143.183
Firstseen:	2021-10-11 13:29:03 UTC
Total malware sites :	20
Online malware sites :	0 (0%)
Offline Malware sites :	20 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2021-10-11 13:29:04	18.195.143.183	ec2-18-195-143-183.eu-central-1.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	DE	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-10-14 17:54:04	http://18.195.143.183/8/8/1050780000136.exe	Offline	exe SnakeKeylogger	abuse_ch
2021-10-14 17:06:03	http://18.195.143.183/6/7/IMG_6084100005404.exe	Offline	Grind3lwald	Cryptolaemus1
2021-10-14 12:28:04	http://18.195.143.183/8/8/e45erg.exe	Offline	32 exe SnakeKeylogger	zbetcheckin
2021-10-14 12:12:04	http://18.195.143.183/8/8/bulli.exe	Offline	32 exe	zbetcheckin
2021-10-13 11:59:03	http://18.195.143.183/7/7/TQL_11100830278005.exe	Offline	32 exe	zbetcheckin
2021-10-13 11:59:03	http://18.195.143.183/7/7/IMG_06785410000016.exe	Offline	32 exe	zbetcheckin
2021-10-13 11:54:03	http://18.195.143.183/7/7/img_70103260100057.exe	Offline	32 exe SnakeKeylogger	zbetcheckin
2021-10-13 11:36:04	http://18.195.143.183/7/7/RQL_0506277201780.exe	Offline	32 exe Loki	zbetcheckin
2021-10-13 09:19:04	http://18.195.143.183/7/7/RQL_0506111780.exe	Offline	exe SnakeKeylogger	abuse_ch
2021-10-13 09:19:04	http://18.195.143.183/7/7/IMG_07890103012311.exe	Offline	exe SnakeKeylogger	abuse_ch
2021-10-13 09:04:04	http://18.195.143.183/7/7/BTL_01145120_160850IM...	Offline	exe SnakeKeylogger	abuse_ch
2021-10-13 09:03:03	http://18.195.143.183/7/7/IMG_0211678531077.exe	Offline	exe SnakeKeylogger	abuse_ch
2021-10-13 07:20:04	http://18.195.143.183/7/7/IMG_11502772017866.exe	Offline	exe Loki	abuse_ch
2021-10-11 22:50:04	http://18.195.143.183/6/7/IMG_0020107011041.exe	Offline	32 exe SnakeKeylogger	zbetcheckin
2021-10-11 15:03:03	http://18.195.143.183/6/7/img_060751008111582.exe	Offline	32 exe SnakeKeylogger	zbetcheckin
2021-10-11 15:03:03	http://18.195.143.183/6/7/IMG_06785410000013.exe	Offline	32 exe SnakeKeylogger	zbetcheckin
2021-10-11 14:58:03	http://18.195.143.183/6/7/IMG_5116785410002.exe	Offline	32 exe SnakeKeylogger	zbetcheckin
2021-10-11 14:43:03	http://18.195.143.183/6/7/img_103771083022.exe	Offline	32 exe SnakeKeylogger	zbetcheckin
2021-10-11 14:38:04	http://18.195.143.183/6/7/IMG_0020107011031.exe	Offline	32 exe SnakeKeylogger	zbetcheckin
2021-10-11 13:29:04	http://18.195.143.183/6/7/BLF_001307855100008.exe	Offline	exe SnakeKeylogger	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2021-10-14 17:54:04	a82999d77adbff10ef701a595d165547fb73bf055dcae9b65d261e4d09c47654	exe	SnakeKeylogger
2021-10-14 12:28:04	893b7cf6d46fcb3c21098d5595837bab76dad1feca5f77d39b32c69eed9f2064	exe	SnakeKeylogger
2021-10-14 12:12:04	b541e5741ad13b4e202bc35fdd44be0dcb984b74763e7f532916614623df443a	exe
2021-10-13 11:59:03	3631ceab9eac4c52e320c9bf9f382f1ae228c96f389489bd913da6bd7d5f8cd2	exe
2021-10-13 11:59:03	5c686c375d2b6ac09d7b11bb7ac4a7110ad29730a36f237f63a6d540ee187ffe	exe
2021-10-13 11:54:03	1960ff3d8aa29e8d6b18b4d70fd809b55410dedb3ba37464c2dbd620c4ac0223	exe	SnakeKeylogger
2021-10-13 11:36:04	ddedd1eb01aa4a575922cf3ffb033cc8f5829db70dd713d33cc1ebf4a6347d29	exe	Loki
2021-10-13 09:19:04	0e658e76cd787fc1e7e65cbefd6a9e191b437ac23c749c90f30f3a3c307d2dd8	exe	SnakeKeylogger
2021-10-13 09:19:04	d8b2b725cb39a2286fe1f22afaf4968ae1a8f837dad52c48edd70ab83c1f345e	exe	SnakeKeylogger
2021-10-13 09:04:04	ccbb5d2bd28fcbccadef533444c991c63d28d9934dc4263b330c4517a47b1248	exe	SnakeKeylogger
2021-10-13 09:03:03	42980d8f49b4f76609ea5427691703a697e0e5ef0c93403c1fb4948a47154fa3	exe	SnakeKeylogger
2021-10-13 07:20:04	233d30fc567199f5cda64e5c18091c5d9ae329b32aa8e4be23c0edb534a9b49c	exe	Loki
2021-10-11 22:50:04	b1762ce69d022efa28e64c0682719d9bded54f287b547b9e62042b22e201e55c	exe	SnakeKeylogger
2021-10-11 15:03:03	4e59288d3ea1cb3688567dbcd59e6cfd14d2e8a7225f673749b7fe15cf0d5436	exe	SnakeKeylogger
2021-10-11 15:03:03	451df0c3ce616bb0f99f3f2f7176829577dd664f8deee532049ac551a19aca0d	exe	SnakeKeylogger
2021-10-11 14:58:03	24fe63df89ae66b52c8e42d56ccf3909cbc44a16867bf849da2340912a19d7ba	exe	SnakeKeylogger
2021-10-11 14:43:03	e32e862a630ef89e4be2a6730c7c3ab966bf863942a2435839e6b2cd08714b23	exe	SnakeKeylogger
2021-10-11 14:38:04	eb7e1d22eeb2b0c9e6dd88d64791d07414efd3eab95ff3bf1774efef8efb5712	exe	SnakeKeylogger
2021-10-11 13:29:04	a549e92b9e4b8ef9730d225b92a6c599e842b4cb94cb56866bc1601b4f1c6b29	exe	SnakeKeylogger