URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	185.208.159.161
Firstseen:	2025-10-05 16:05:06 UTC
Total malware sites :	35
Online malware sites :	0 (0%)
Offline Malware sites :	35 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-10-05 16:05:06	185.208.159.161	RDP-IXpifThO	SBL640646	AS42624 swissnetwork02	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-10-05 16:06:21	http://185.208.159.161:8080/output.exe	Offline	huntio opendir	Riordz
2025-10-05 16:06:21	http://185.208.159.161:8080/agent.res	Offline	huntio opendir	Riordz
2025-10-05 16:06:12	http://185.208.159.161:8080/payload.res	Offline	huntio opendir	Riordz
2025-10-05 16:06:06	http://185.208.159.161:8080/built_agents.zip	Offline	huntio opendir	Riordz
2025-10-05 16:06:06	http://185.208.159.161:8080/agent_185_208_159_1...	Offline	huntio opendir	Riordz
2025-10-05 16:06:04	http://185.208.159.161:8080/ttt.go	Offline	huntio opendir	Riordz
2025-10-05 16:05:59	http://185.208.159.161:8080/app_185_208_159_161...	Offline	huntio opendir	Riordz
2025-10-05 16:05:54	http://185.208.159.161:8080/payload.dll	Offline	huntio opendir	Riordz
2025-10-05 16:05:53	http://185.208.159.161:8080/New%20folder/test.dll	Offline	huntio opendir	Riordz
2025-10-05 16:05:53	http://185.208.159.161:8080/app_185_208_159_161...	Offline	huntio opendir	Riordz
2025-10-05 16:05:52	http://185.208.159.161:8080/app_185_208_159_161...	Offline	huntio opendir	Riordz
2025-10-05 16:05:51	http://185.208.159.161:8080/app_185_208_159_161...	Offline	huntio opendir	Riordz
2025-10-05 16:05:48	http://185.208.159.161:8080/agent_185_208_159_1...	Offline	huntio opendir	Riordz
2025-10-05 16:05:45	http://185.208.159.161:8080/agent.dll	Offline	huntio opendir	Riordz
2025-10-05 16:05:45	http://185.208.159.161:8080/app_185_208_159_161...	Offline	huntio opendir	Riordz
2025-10-05 16:05:45	http://185.208.159.161:8080/encoded.txt	Offline	huntio opendir	Riordz
2025-10-05 16:05:40	http://185.208.159.161:8080/app_185_208_159_161...	Offline	huntio opendir	Riordz
2025-10-05 16:05:39	http://185.208.159.161:8080/agent_185_208_159_1...	Offline	huntio opendir	Riordz
2025-10-05 16:05:37	http://185.208.159.161:8080/agent_185_208_159_1...	Offline	huntio opendir	Riordz
2025-10-05 16:05:36	http://185.208.159.161:8080/test.dll	Offline	huntio opendir	Riordz
2025-10-05 16:05:35	http://185.208.159.161:8080/app_185_208_159_161...	Offline	huntio opendir	Riordz
2025-10-05 16:05:34	http://185.208.159.161:8080/agent_185_208_159_1...	Offline	huntio opendir	Riordz
2025-10-05 16:05:33	http://185.208.159.161:8080/yourfile.go	Offline	huntio opendir	Riordz
2025-10-05 16:05:28	http://185.208.159.161:8080/app_185_208_159_161...	Offline	huntio opendir	Riordz
2025-10-05 16:05:23	http://185.208.159.161:8080/test.exe	Offline	huntio opendir QuasarRAT	Riordz
2025-10-05 16:05:20	http://185.208.159.161:8080/app_185_208_159_161...	Offline	huntio opendir	Riordz
2025-10-05 16:05:17	http://185.208.159.161:8080/app_185_208_159_161...	Offline	huntio opendir	Riordz
2025-10-05 16:05:15	http://185.208.159.161:8080/agent_wrapped.exe	Offline	huntio opendir	Riordz
2025-10-05 16:05:14	http://185.208.159.161:8080/agent_185_208_159_1...	Offline	huntio opendir	Riordz
2025-10-05 16:05:09	http://185.208.159.161:8080/teee.go	Offline	huntio opendir	Riordz
2025-10-05 16:05:07	http://185.208.159.161:8080/te.go	Offline	huntio opendir	Riordz
2025-10-05 16:05:07	http://185.208.159.161:8080/app_185_208_159_161...	Offline	huntio opendir	Riordz
2025-10-05 16:05:07	http://185.208.159.161:8080/ou.go	Offline	huntio opendir	Riordz
2025-10-05 16:05:07	http://185.208.159.161:8080/test.go	Offline	huntio opendir	Riordz
2025-10-05 16:05:06	http://185.208.159.161:8080/xo.go	Offline	huntio opendir	Riordz

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-10-14 15:50:36	231857f97202dc17e98ffbfcdf278519da66ea2f369a99e1dd3962a087d4e24e	zip
2025-10-14 15:22:29	2e64e5d4e2202114e377f26144acb76f55fdb59ff4b9182e715fc6784cc9271e	exe
2025-10-14 11:14:23	86ea60b3f0ef1f7235a4cae40cde1b31baaa8ee233bcec9259c239f3531f543b	exe
2025-10-14 10:45:12	dcea1fe0a97cd19cfdba1d50b78b6a70150e1567f62df07fce3ba1d4335a3abc	zip
2025-10-14 09:59:50	16959550d8569025f8cf6a732a286f72fcb7c4d6cf59cebb8e099a4d019e2701	exe
2025-10-13 17:51:50	2813cf8774c6f210ed3abccb89b72da35686f709c03563a4b4ad6d71d5e1bb29	exe
2025-10-13 17:28:29	865570013448cc6ad0399be0a82faf2242c543fe4d4c39a9b9cb3813e2315fa6	zip
2025-10-13 16:05:58	ede2b7cc982ca56ac4e1ef5c03157ad705051fca64647a09bef71af07f0c99a1	exe
2025-10-13 10:24:36	b0db9640d77565ea74338068de00f991580648624af5bc7517aa3b3f3fb419d6	exe	QuasarRAT
2025-10-13 10:02:55	8acd19c11a558103217ed8cba506012548694fa46dff7fca247707512d6ce458	exe
2025-10-13 09:22:21	8dd5f7e4c1b352f1dd8dac684f90525653daf500fe748d27fce9a8911db3e2e7	zip
2025-10-10 17:44:34	37ec35e5b27ec54cc58c314bfe1b20b9f4f22c47b8c6017d83a5797a256cc8f1	exe
2025-10-10 16:42:33	356dae0610427d806c906dcd67554a3ccbc2c5ebf598cfb57ab4875c641dd15d	exe
2025-10-10 16:00:53	a1fc54a43eee75f041cbf08993b5be7d7560eb56f7f2b02ca3d6e997ac800a30	zip
2025-10-10 15:12:45	fe30712e480d70bf7d8bfa998d6b1c5db28fde1fa035d04895bb9f24d33c769a	dll
2025-10-10 10:55:45	a6bd11d3b3cf94bac9ae86144b43a01afb17f7e37c566addf06258ec95c489b3	exe
2025-10-10 09:44:28	e4d7957dbd33abf3fb91a6ab277ebe91264673c9fe1df1872ea4ae569cf79930	exe
2025-10-10 09:21:59	a8c6226219f61b84eb4efa6f4778349eaf9e050321798922434d8bcec05b68ff	exe
2025-10-10 08:15:43	b4449b5746cf394183235d13d39e231e9722f6e6f7cd9d748767411e8d060399	exe
2025-10-09 15:57:48	260b764e07fd058df35b2acad429d3a3f46dca8d6eb2f24e377f7a684b9b1915	exe
2025-10-09 15:05:52	45e6eec79684e7f8f1ac16750d312a1eeaa06a43c79de4a7281735491062e583	exe
2025-10-08 23:36:15	87efbdc4ff4542a6703d42ae744f63e5942177a6444bd313ef7e60258086ba6e	exe
2025-10-08 16:39:45	240ccb6a8d5ea5f8053e6db421908f78683b8e95a7cdf8d6ba698fd428e4e396	exe
2025-10-08 15:55:34	1fdc2c2a97a10f5257a85a52cc08f43ebf871ab8850adb7dc05f6e789c2ec378	zip
2025-10-08 15:04:30	703daf72ea2b4ea580cda3055bc0e03ab8eb1363df77c12c8de45702295f1570	exe
2025-10-08 11:06:45	73c58556c01b83006ae1334b264bf2c9ae321b03b3a220a07f86b7742f36ecb5	exe	QuasarRAT
2025-10-07 11:21:24	a2c846e3351190ca07a3302ce9cb350e3ed0efe278f258f750786541f2609c9b	txt
2025-10-07 10:42:04	8c63aac98c3726b6a3cbf9a7f4e3412ad0d1a113d04852a6002100999ad64097	exe
2025-10-06 11:39:59	ddd54a14f27844cfa5ef74684390cecf42e0ec7e878fa8387742dd8a39643d18	exe
2025-10-06 09:32:50	685ff664b6336d96297f57849d7c27e65ff93dbcce0c207574ad54755a841310	exe
2025-10-06 09:12:49	dff4be033ccb236aedbb76472821af363559ed3def12bc0a9138f317ab19e911	exe
2025-10-05 16:06:21	2b49be75014619b61a0f8de552a357523e10923f96b43228750ad76af4b69e1d	exe
2025-10-05 16:06:21	a0c385e75c5a3e7f7de5d1dbde9f199b8733540045387550a96b29867860660d	unknown
2025-10-05 16:06:12	a0c385e75c5a3e7f7de5d1dbde9f199b8733540045387550a96b29867860660d	unknown
2025-10-05 16:06:06	fdfe50d24d0a8cd188960c081e4fadc7a97666b63573b3c1c9873da5cff43c37	dll
2025-10-05 16:06:06	2574a061d5609299c669fe4bc62bb8fca0768608031525e31f5c2a2422c4fd16	zip
2025-10-05 16:05:54	b5d7c1ff1f53d78b5bb66b4aee0c8b4507be965051a5f5861d94371938dcdbac	dll
2025-10-05 16:05:53	14c81b19f0c7fd2ba0016db1a20c5731d8b1eda09d29c4ed75d4d13d5e8e0081	exe
2025-10-05 16:05:53	21ca6bd00509a00eafc78e0fe680f1a7ba2dcad4f9c6e27f79dda11fb2acecff	dll
2025-10-05 16:05:50	e4979e689e0fc318a04f98d5a450d7b7380201199fd6d36593b2008f0eddcfda	exe
2025-10-05 16:05:47	bc6ca06e2f00147c6dabb4c5a968262967a924c5fac3c6701fb4ef3623439123	exe
2025-10-05 16:05:45	d3dd03f30d4ff7ad2784e615a3ea264ab74ff2ae1913c53401a04a0b8f96e819	dll
2025-10-05 16:05:45	eea1f91d4cc1cd38ce2890357360cebf845930c4e48b6891b77912648d0995ef	zip
2025-10-05 16:05:35	581418b3faf58ddadd7b25e9373a26eb7afe929af04839fdb1bb45ec5f603668	dll
2025-10-05 16:05:35	698bf92bea7eef2cf72055549bdeb05fa4c0327bc42677cb761393e4b68bcf1d	exe
2025-10-05 16:05:28	17060b74737fc7457921aef4d857a5718135db0123b8b7e057524b2005bb6e38	exe
2025-10-05 16:05:23	c9fdda8ac8ba9ca1ca9f414863ccabb4df51b365d8a7b3b75303cd22c81acaa6	exe
2025-10-05 16:05:16	a90a9c5b4b22cafd809d61e8bee966d91bdd33243ee61392e487b763436c838c	zip
2025-10-05 16:05:14	a0c385e75c5a3e7f7de5d1dbde9f199b8733540045387550a96b29867860660d	unknown
2025-10-05 16:05:14	f6cb7f5bd76c78ecb3f27e581fb6095bd91f2063e3a8df3de8ae80d52e7170ab	exe