URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 185.215.150.204
Firstseen:2021-02-04 11:33:03 UTC
Total malware sites :9
Online malware sites :0 (0%)
Offline Malware sites :9 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-02-04 11:33:06 185.215.150.204Not listedAS64236 UNREAL-SERVERS- USyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-02-14 19:37:20http://185.215.150.204/file/wb7eDwv06Jf9EK2.exeOfflineAgentTesla ext exe opendir abuse_ch
2021-02-14 19:37:04http://185.215.150.204/file/btc.exeOfflineexe opendir abuse_ch
2021-02-10 13:59:20http://185.215.150.204/herobuzu/buzu.exeOfflineAgentTesla ext exe zbetcheckin
2021-02-10 13:58:04http://185.215.150.204/file/method1.exeOfflineAgentTesla ext exe zbetcheckin
2021-02-09 13:14:05http://185.215.150.204/hero/hero.exeOfflineAgentTesla ext exe opendir abuse_ch
2021-02-09 13:09:04http://185.215.150.204/file/method3.exeOfflineAgentTesla ext cocaman
2021-02-05 11:03:06http://185.215.150.204/newage/newage.exeOfflineAgentTesla ext exe zbetcheckin
2021-02-05 08:06:04http://185.215.150.204/heroserfen/serfen.exeOfflineexe GuLoader ext zbetcheckin
2021-02-04 11:33:06http://185.215.150.204/file/dog.exeOfflineAgentTesla ext exe opendir abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2021-02-15 04:01:141268e6e0265bdaf979d45098051a38eaf3915765e6b5ffe928101c68e0065012exeAgentTesla
2021-02-14 19:37:207c67f745b24145c055e9423ec63cd3a488eb99d960cf49b85b57d08d71b5ed0bexeAgentTesla
2021-02-14 19:37:04ab644490caafad91cfca11a9f402beabf6e32d2e5a5f9c976231148a539ae008exe 
2021-02-14 18:53:117c67f745b24145c055e9423ec63cd3a488eb99d960cf49b85b57d08d71b5ed0bexeAgentTesla
2021-02-10 13:59:20b5ec0adc9736aadca40963ac6fc706c761fcb9dcdc311d7547f52f1614ecc2edexeAgentTesla
2021-02-10 13:58:0434f055ea71aeb4b842b7f4704e8454c4a3df519f3685bedc2d7d9e2063e5d495exeAgentTesla
2021-02-09 13:14:0517597ccb6afea30a3cd4d4ad8d31bd2d659f72deb76c32e65820e164d80dc853exeAgentTesla
2021-02-09 13:09:04db33d1e7f7eefff11196927bca2e400e4950e3d78316cd17d220b85ce00dd465exeAgentTesla
2021-02-09 12:52:20db33d1e7f7eefff11196927bca2e400e4950e3d78316cd17d220b85ce00dd465exeAgentTesla
2021-02-08 06:38:23bd4f9c3b773d0d0b385d03313943d7dadf1475cbacecfdcc91bb65e993cfdf1eexeAgentTesla
2021-02-07 14:04:3815732badaac520545535ae6bf64ed43f06e06a13e9e827f1fb7d5f47d250f4afexeAgentTesla
2021-02-07 13:31:50240998f4dac039389827c0310bee7242077196a88d4113977769e03f4a8a0fdfexeAgentTesla
2021-02-05 11:03:0640e1050719fa63b000fb1e254951098c69eb2eacf2e1ea8865ddea91f12908a9exeAgentTesla
2021-02-05 08:06:047cf84b862a71086f6b039b4b0ea9043aa49440c523d9377d9eef18f6b5974b26exeGuLoader
2021-02-05 06:31:54a3fa345d4d272ddb13e0e3141bf18eac8521acaf8eb2eff8d3395f056740c2bdexeAgentTesla
2021-02-04 11:33:065ac5eee21d5a32eb57d80ff83da21265c7d11c525f6b57ed124a266ce04fee54exe AgentTesla