URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	185.196.10.146
Firstseen:	2024-01-14 20:01:05 UTC
Total malware sites :	22
Online malware sites :	0 (0%)
Offline Malware sites :	22 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2024-01-14 20:01:07	185.196.10.146		SBL640645	AS42624 swissnetwork02	GB	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2024-02-09 06:20:37	http://185.196.10.146/sig.exe	Offline	dropped-by-SmokeLoader	spamhaus
2024-02-09 06:20:37	http://185.196.10.146/Aytvquiio.exe	Offline	dropped-by-SmokeLoader	spamhaus
2024-01-29 07:09:08	http://185.196.10.146/Iiympojf.exe	Offline	64 exe PureLogStealer	zbetcheckin
2024-01-29 03:56:06	http://185.196.10.146/Vbsveuhnjb.exe	Offline	32 Amadey exe	zbetcheckin
2024-01-28 03:24:08	http://185.196.10.146/GTALaunchUpdate2.4.exe	Offline	32 exe PureLogStealer	zbetcheckin
2024-01-28 00:58:06	http://185.196.10.146/Imteahzda.exe	Offline	32 Amadey exe	zbetcheckin
2024-01-26 07:52:07	http://185.196.10.146/Gzcueoarue.exe	Offline	64 Amadey exe	zbetcheckin
2024-01-26 07:03:06	http://185.196.10.146/Cxqdczh.exe	Offline	64 CoinMiner exe	zbetcheckin
2024-01-22 00:47:05	http://185.196.10.146/Oscrcelw.exe	Offline	64 exe zgRAT	zbetcheckin
2024-01-21 21:01:08	http://185.196.10.146/Zzbifmr.exe	Offline	Amadey dropped-by-SmokeLoader	Casperinous
2024-01-21 16:08:09	http://185.196.10.146/plugin3.dll	Offline		abuse_ch
2024-01-21 16:08:09	http://185.196.10.146/panel/uploads/Ohbvdgabs.vdf	Offline		abuse_ch
2024-01-21 05:02:08	http://185.196.10.146/Aixnslkoum.exe	Offline	64 CoinMiner exe	zbetcheckin
2024-01-19 07:00:11	http://185.196.10.146/Ylcqwdizkq.exe	Offline	64 CoinMiner exe	zbetcheckin
2024-01-19 03:52:06	http://185.196.10.146/Sjupttbqke.exe	Offline	64 Amadey exe	zbetcheckin
2024-01-18 05:41:06	http://185.196.10.146/variousstored.exe	Offline	32 Amadey exe	zbetcheckin
2024-01-18 00:52:07	http://185.196.10.146/Zumyefllhkv.exe	Offline	64 exe PureLogStealer	zbetcheckin
2024-01-16 18:47:06	http://185.196.10.146/dnjupddater.exe	Offline	64 exe zgRAT	zbetcheckin
2024-01-16 05:22:08	http://185.196.10.146/Zxgdah.exe	Offline	64 CoinMiner exe	zbetcheckin
2024-01-15 04:48:05	http://185.196.10.146/khupdated.exe	Offline	32 AsyncRAT exe	zbetcheckin
2024-01-15 04:48:05	http://185.196.10.146/Tufjz.exe	Offline	64 exe	zbetcheckin
2024-01-14 20:01:07	http://185.196.10.146/axemupdate.exe	Offline	AsyncRAT dropped-by-SmokeLoader	Casperinous

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2024-01-29 07:09:08	b3e052743e942d601719b413754f2d7539be318e8af20de6c476e175dc1bd000	exe	PureLogStealer
2024-01-29 03:56:06	49b524dbe9797e4a8905bca4b74da0f7aac977b07a5f72c66e7f3d22597a86e7	exe	Amadey
2024-01-28 03:24:08	a6c05c63623b019614ab1d5cf533f9599d42fe18773d1d92cb1caccee809d2ae	exe	PureLogStealer
2024-01-28 00:58:06	2e5cabd0ef1a25258496aa4a32c0a23338f72df7da07b4753eefab0982c81540	exe	Amadey
2024-01-26 07:52:07	8afcc55b59e124b3840bbee5afb30e70354590eee693480a43fe7d586e909a9e	exe	Amadey
2024-01-26 07:03:06	258b937ad6b2792590e96e751999299d518afbefc4afb454263de83f2c2a0b5e	exe	CoinMiner
2024-01-22 00:47:05	003552c7c95845ab8bd7638e9c3365607701aff4d82220154debf9f8559171ee	exe	zgRAT
2024-01-21 21:01:08	585892aac1dd2104c9dc5badf75efbc0d5f363456c084741af5e251402473de0	exe	Amadey
2024-01-21 16:08:09	d3a8addf4b7103055780badca7ba147b654d6e83b42c2e0edca0589258c9d1ab	unknown
2024-01-21 16:08:09	4f8f521f4d3b888046a1e4731f3f9ba700715ac0db6230195f6116e8a3893f0a	unknown
2024-01-21 05:02:08	304a4f68bfff226a2049f6c5b38f915487ac75f5b6b62e74d17114bb05669c49	exe	CoinMiner
2024-01-19 07:00:11	f055dcd0d16bf5d03427b204fc34f6785340c2864b7693b3179214ab303d1d77	exe	CoinMiner
2024-01-19 03:52:06	0452dcaafbe9bc6dfee7a44e35738477a4e99a00983593aba7698c4636a5f59c	exe	Amadey
2024-01-18 16:03:07	892058240bc6a2ed5877e406fd7e4e8e8ed7df1c2a89a82f5ffa9f62824730a5	exe
2024-01-18 05:41:06	55f6a167e9a16bc90f6009a105bc6484c3969b0ea2c9767ab9b4c0ef78bb6b03	exe	Amadey
2024-01-18 00:52:07	415f5fa648158c6b38db8c701b39159a4b5eef7ec174616fd9204b2ea96a48f4	exe	PureLogStealer
2024-01-16 18:47:06	72f5f9230c025a393d1362241679fd0dd5c48b7e3786591f35b3f74eccf53978	exe	zgRAT
2024-01-16 05:22:08	d34bb3f51cd2e0628fa294d9459f58156b82ece676aa4ec78b90ad8dc484b210	exe	CoinMiner
2024-01-15 04:48:05	b29156030acc1b80de8d66c918e137a33cd1ee264f9695ec96be208cf5faf10b	exe	AsyncRAT
2024-01-15 04:48:05	a6c97a42e104ca012e600d401a95a1e6044bad4dc97783e066a76483e5104359	exe
2024-01-14 20:01:07	68d282c16c83a849e29fb395b3e1864c3df158edf47a92ffb078b81dcafd7888	exe	AsyncRAT