URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 185.81.68.147
Firstseen:2024-12-11 12:28:04 UTC
Total malware sites :34
Online malware sites :0 (0%)
Offline Malware sites :34 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2025-01-17 07:33:15http://185.81.68.147/svc.exeOfflineAmadey abuse_ch
2025-01-17 07:33:13http://185.81.68.147/igfx.exeOfflineAmadey abuse_ch
2025-01-10 08:30:11http://185.81.68.147/tmx.exeOfflineRedLineStealer ext lontze7
2025-01-02 08:33:06http://185.81.68.147/7vhfjke3/Plugins/vnc.exeOfflineAmadey tinynuke ext lontze7
2025-01-02 08:32:17http://185.81.68.147/cici.exeOfflineRedLineStealer ext lontze7
2025-01-02 08:32:16http://185.81.68.147/7vhfjke3/Plugins/cred.dllOfflineAmadey lontze7
2025-01-02 08:32:16http://185.81.68.147/7vhfjke3/Plugins/clip.dllOfflineAmadey lontze7
2024-12-30 14:47:05http://185.81.68.147/dropper64.exeOfflineAmadey abuse_ch
2024-12-30 14:47:05http://185.81.68.147/bin/bot64.binOffline abuse_ch
2024-12-30 14:47:05http://185.81.68.147/ioc.exeOfflineRedLineStealer ext abuse_ch
2024-12-26 08:31:11http://185.81.68.147/TT.exeOfflineAmadey abuse_ch
2024-12-26 08:31:10http://185.81.68.147/diamotrix.exeOfflineAmadey abuse_ch
2024-12-16 13:17:06https://185.81.68.147/7vhfjke3/Plugins/clip64.dllOfflineAmadey abus3reports
2024-12-16 13:16:13https://185.81.68.147/7vhfjke3/Plugins/cred64.dllOfflineAmadey abus3reports
2024-12-16 13:16:12https://185.81.68.147/7vhfjke3/Plugins/clip.dllOfflineAmadey abus3reports
2024-12-16 13:14:09https://185.81.68.147/7vhfjke3/Plugins/cred.dllOfflineAmadey abus3reports
2024-12-16 11:17:19http://185.81.68.147/cc.exeOfflineSliver abus3reports
2024-12-16 11:17:13https://185.81.68.147/xx.exeOfflineQuasarRAT ext abus3reports
2024-12-16 11:17:12http://185.81.68.147/Build.exeOfflineAmadey abus3reports
2024-12-15 08:11:08http://185.81.68.147/zx.exeOfflineclipbanker exe abuse_ch
2024-12-13 09:33:05https://185.81.68.147/Update.exeOfflineAmadey RedLineStealer ext abus3reports
2024-12-13 09:33:05https://185.81.68.147/fcxcx.exeOfflineRedLineStealer ext abus3reports
2024-12-13 06:46:06http://185.81.68.147/7vhfjke3/Plugins/cred64.dllOfflineAmadey abuse_ch
2024-12-13 06:46:06http://185.81.68.147/7vhfjke3/Plugins/clip64.dllOfflineAmadey abuse_ch
2024-12-12 23:40:09http://185.81.68.147/gfx.exeOfflineAmadey exe DaveLikesMalwre
2024-12-12 23:40:09http://185.81.68.147/ssg.exeOfflineexe RedLineStealer ext DaveLikesMalwre
2024-12-12 23:31:15http://185.81.68.147/xx.exeOfflineexe QuasarRAT ext DaveLikesMalwre
2024-12-12 23:31:11http://185.81.68.147/Update.exeOfflineAmadey exe RedLineStealer ext DaveLikesMalwre
2024-12-12 23:31:10http://185.81.68.147/dropper.exeOfflineexe RedLineStealer ext DaveLikesMalwre
2024-12-12 23:31:10http://185.81.68.147/AsyncClient.exeOfflineAsyncRAT ext exe DaveLikesMalwre
2024-12-12 23:31:10http://185.81.68.147/cx.exeOfflineexe RedLineStealer ext DaveLikesMalwre
2024-12-12 20:32:12http://185.81.68.147/vvv.exeOfflineexe Sliver abuse_ch
2024-12-12 20:32:12http://185.81.68.147/ctx.exeOfflineAmadey exe abuse_ch
2024-12-11 12:28:08http://185.81.68.147/fcxcx.exeOfflineRedLineStealer ext lontze7

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-01-28 15:53:36f1c981f441f8e432f04d1cd081b60fe04a22200277c415eb22e659ab1c26e167unknown  
2025-01-28 15:48:5192c0f8ac112adab5426d1cc7bcdcbff8b2599067747a87719dc207b0851bf56aexe  
2025-01-27 17:02:3610839f994682ce86483e40729e831320b0f8e3b8115dd616e74cb1f965a06b23exe  
2025-01-27 12:43:340f0184478cf8bd98dfa48c4da8cac55cd87758bbe5ee903894f3e6d838eb3bf3exe Amadey
2025-01-27 10:50:440f0184478cf8bd98dfa48c4da8cac55cd87758bbe5ee903894f3e6d838eb3bf3exe Amadey
2025-01-25 10:14:48dc7bc18fbbcd3fd1050cb479417a27974995d73a4eed13ad06dedf7c9b262bfdexe Amadey
2025-01-24 08:00:20f3a959e56419848bd7f9cbb9d9d83aa5a995e3be46eb290d79cbe58b165aa7c0exe Amadey
2025-01-24 05:41:27678dd0ca3fe26ad1e5ce60d9bd6494fa0a5dcfb5cede0e063bcc128e0b2c2cdeexe  
2025-01-23 16:40:1708fcfe2040846873bf9696912bf64440d202bc1205a0d483ab399f3ac072b97fexe  
2025-01-23 14:55:37f2adc1943f7a3e9fb2afbbe1d1200044cceb3d225d84429e0ee35b11b9a95554unknown  
2025-01-23 10:30:352679af157559651611a5b2940cc0ddfb6d6bfcf4859fc190f5cabf8f7dc7e629exe Amadey
2025-01-23 09:30:34865de3b125803822eaa491092d1d94c9d96890ce10645a31cb86b1b142e594dfunknown  
2025-01-23 09:12:5496dbe6af90b71075f04da218785563eb199c016bc5e97a9a63008bbf9e7ea0a7exe  
2025-01-22 15:46:16e7c2fb7c81184f55ef1ee5e183c426d30547e147b103a7e6554f78f82a9fefa9exe  
2025-01-22 15:25:057f3c9f61e663bd067cab98ed7cc4a71086022b23a12d8d47cdcf39b7b8b604fbexe Amadey
2025-01-18 00:51:16807900f83bdbb965da34c897e59c890f82017517d3323d504d322ca14d05bf95exe  
2025-01-17 23:50:28fe02d0fbcf247d20acb88481a68db5b5f29979e84e81b2226d6f31448ee7bad5exe  
2025-01-17 09:34:0494a1992f273b963815787ff77b3d8bfc306a1f5501adcf920130abc13a8a37f1exe 
2025-01-17 07:33:152c74e012e213dc721370aeed8f4932e677f28a95b3da7e3f94e74013f078f066exe Amadey
2025-01-17 07:33:13eff5fad47b9c739b09e760813b2bcbb0788eb35598f72e64ff95c794e72e6676exeAmadey
2025-01-17 03:02:337c99e7feb8c13ac2a9c7961f5b315ac07120b17304b566c540e224e178cbdcfaexe  
2025-01-17 01:39:358344f0951c6b28641030db8b03d7da376122164da176a310864e8d0bc6293760unknown  
2025-01-15 19:20:3190c86eb6ef8f36bfb8db14bbbe3f49764551c94f4652523bc93b271621b702f7exe Amadey
2025-01-15 19:08:4990c86eb6ef8f36bfb8db14bbbe3f49764551c94f4652523bc93b271621b702f7exe Amadey
2025-01-15 18:44:49100f4897d722e43d73f55258ca91d2d190fd5df33ea4f54608ac4edba4aae0baunknown  
2025-01-15 17:52:24ac9e0b58ad7257be99b19d4f8f81c2754db1acc0ae1ad87f59a496a4babf6284unknown  
2025-01-10 15:41:209dfa03a86ebcdb9f2da8a68a93c3f23533a83d174affa84297ebf0089ce28cdaexe Amadey
2025-01-10 12:44:49966022ab68c49bbbceb8670e82b95b2f5d24b3dd6569ecde6294a5cecc338913unknown  
2025-01-10 12:39:5973a2b0e7fb9697b571fb0344965993b138659a0e60e27e5a15eaa73b58892abcexe Amadey
2025-01-10 12:23:1873a2b0e7fb9697b571fb0344965993b138659a0e60e27e5a15eaa73b58892abcexe Amadey
2025-01-10 08:30:11aad0d1425bb69662314d41ae1ed1b5ce5497d4c88cfa83a3b4e9a5fcfee0361fexeRedLineStealer
2025-01-10 04:11:08c57e2eb3bccec2a25317909ea170e50d3c155573991311a09df866674c7fa13aunknown  
2025-01-10 02:37:4766744e0ea880e8a3ff880b1a343ab206e567bc0f65e6fe67cc728444b3096872exe RedLineStealer
2025-01-09 23:55:12a39ef65f7ac15a4566b804eea4abf27069618f0770357cf95d2b0d26468b899bexe  
2025-01-09 23:09:263c187d5018a7971650d52f4d7d8a191c2f0318b7e4aa16268f5daaa5063864a4unknown  
2025-01-02 16:59:312067283557a6d3cf453d72115b26dfc5149b461b7a85e8193a84b7c3e7753208exe Amadey
2025-01-02 10:35:5922197acbd86a367c3e1773fbbe9a409caa7ffe7e0bba946e655c1d75dcf30880unknown  
2025-01-02 08:33:064d2af9283f59dd98dc1852a5213d5092dd832c3e797c7ee57908fa9ff122983dexeTinyNuke
2025-01-02 08:32:17916fd267917a216fde3652623c749ea890f3530195ef8bbfad9139a37cb4a813exeRedLineStealer
2025-01-02 08:32:165be33695da8f476cebd4c20681e06d3370b5b8a1ce1d35e418c2b469ca6802afdll Amadey
2025-01-02 08:32:16c7ed512058bc924045144daa16701da10f244ac12a5ea2de901e59dce6470839dllAmadey
2025-01-01 17:15:3054d0542696f03a100c0c80e460eebe04f032e51212095b211c3d5e13c8930c53unknown  
2025-01-01 15:09:15e462c409bed98b097449d44e0f76c6c2e711ad0447a8eb57214ec0814170a2edunknown  
2024-12-30 14:47:05fc509b76ac2ec0085d34a7400736c83e68f0cdb998605f98b2d33143f7f64fc8unknown  
2024-12-30 14:47:05dfd562f0737ac0a4e3cc10610a4746ad69091f735e485b668c8bf9526ac0bf46exe Amadey
2024-12-30 14:47:053e1fd18a294c1e2903cce49b29b42fe5669043c6f4a7f2b4bae865b7cbc0169eexeRedLineStealer
2024-12-30 12:22:06ac3f202978c44b410e8e66bfb6276335d43872cce0e9087c07542ca290613bf1exe ClipBanker
2024-12-27 03:31:413ed2d83f08a62a3c883b6a2ac280a560174ef3c28f5d75c49c86b30df6c84124exe Amadey
2024-12-26 08:31:111940ba18ed66dd2f1c3d4dbd2fbf6cf3438bcdee1e108982fb557461106a8073exeAmadey
2024-12-26 08:31:103eb81910ba96d4c0564298528d93071947f0c4cb7c880ad4c5c31c49a41531b1exeAmadey
2024-12-25 07:26:390bc67c0fa17dcadfe8a827cb413c090f67b0cb00a14705d95ec37766de241665exe 
2024-12-22 00:06:280fc741bc656583923dc515b2e69e6d5f7f928e4958cd219617f4aee8ad75dfe7exe RedLineStealer
2024-12-21 22:09:160fc741bc656583923dc515b2e69e6d5f7f928e4958cd219617f4aee8ad75dfe7exe RedLineStealer
2024-12-21 15:03:2992382cc3402b6fb7cbd68fe7fa49a00ae204682a90fe0b4e69a6ef2c6d324793exe  
2024-12-21 05:50:352e5dc84478cf146085dbe12423f77e11234c97fad09502c8d2870d16a8664892exe Amadey
2024-12-21 02:34:092e5dc84478cf146085dbe12423f77e11234c97fad09502c8d2870d16a8664892exe Amadey
2024-12-21 02:13:12b94b613eb8a05d772091c935ec0a62aa6c59c3ef89373ae6cf2b270c8be02fd0exe RedLineStealer
2024-12-20 17:20:1723cadf34f2779d927959aaaaf079513941accefd4b7b094a57fbbaec1def54a2exe  
2024-12-20 14:13:43068b96ec2a520caf46a59385b9910b282cd240fd43840e20e3c367b7cd010cfeexe RedLineStealer
2024-12-20 13:03:01068b96ec2a520caf46a59385b9910b282cd240fd43840e20e3c367b7cd010cfeexe RedLineStealer
2024-12-19 12:13:4856eb595f0c85274ed2fa1e0d56190dd26523d50697376c89c6cf4d34fe02d8e5exe Amadey
2024-12-19 11:30:5556eb595f0c85274ed2fa1e0d56190dd26523d50697376c89c6cf4d34fe02d8e5exe Amadey
2024-12-16 23:08:042ea05b5b9847fb2e777f4433a2f73cba12b96a8b074ab83179cbafbc49963665exeRedLineStealer
2024-12-16 20:29:332ea05b5b9847fb2e777f4433a2f73cba12b96a8b074ab83179cbafbc49963665exeRedLineStealer
2024-12-16 13:17:05c7ed512058bc924045144daa16701da10f244ac12a5ea2de901e59dce6470839dllAmadey
2024-12-16 13:16:13b91a3743c7399aee454491862e015ef6fc668a25d1aa2816e065a86a03f6be35dllAmadey
2024-12-16 13:16:11c7ed512058bc924045144daa16701da10f244ac12a5ea2de901e59dce6470839dllAmadey
2024-12-16 13:14:095be33695da8f476cebd4c20681e06d3370b5b8a1ce1d35e418c2b469ca6802afdll Amadey
2024-12-16 11:17:18833fd615ec3e7576960a872fff5a4459b0c756338068f87341655849d1f7e1afexeSliver
2024-12-16 11:17:135c4239be04a1ead5ea81bc92463d72209411882b369dd58704769d409192e1ffexeQuasarRAT
2024-12-16 11:17:1169be5428a0e939a5bf4453b34aad1a86791ab75411b6a339d727197f82bc8411exe Amadey
2024-12-15 13:55:0941ba86941c72b5e160359e4b851251350958ca56e1d5aa897f0917eb51c5bd2eexeRedLineStealer
2024-12-15 12:38:4450f3af8a4b14a6e63cdc7817ecb482d7045458b43d786d580b51e8f12d762106exe SVCStealer
2024-12-15 12:28:4741ba86941c72b5e160359e4b851251350958ca56e1d5aa897f0917eb51c5bd2eexeRedLineStealer
2024-12-15 08:11:08f40224ca24a6d189791058779eb4c9bab224caa58b00bd787b1ff981d285d5a4exe 
2024-12-15 07:43:144a55da3c91388a8ea539fc750b52dd90af5d2f33f2e7269a73c2146243ed24cdexeRedLineStealer
2024-12-15 07:06:134a55da3c91388a8ea539fc750b52dd90af5d2f33f2e7269a73c2146243ed24cdexeRedLineStealer
2024-12-14 12:40:15eff5fad47b9c739b09e760813b2bcbb0788eb35598f72e64ff95c794e72e6676exeAmadey
2024-12-13 16:15:1350dcab544d9da89056f9a7dcc28e641b743abe6afef1217ee0dfbd11e962e41dexe RedLineStealer
2024-12-13 14:43:4550dcab544d9da89056f9a7dcc28e641b743abe6afef1217ee0dfbd11e962e41dexe RedLineStealer
2024-12-13 09:33:052997292293c332e73b11fa28126b6fbefea75a6bb02001eb017de46797d4e4ecexeRedLineStealer
2024-12-13 09:33:05fcc616ecbe31fadf9c30a9baedde66d2ce7ff10c369979fe9c4f8c5f1bff3fc2exeRedLineStealer
2024-12-13 06:46:06b91a3743c7399aee454491862e015ef6fc668a25d1aa2816e065a86a03f6be35dllAmadey
2024-12-13 06:46:06c7ed512058bc924045144daa16701da10f244ac12a5ea2de901e59dce6470839dllAmadey
2024-12-12 23:40:09eff5fad47b9c739b09e760813b2bcbb0788eb35598f72e64ff95c794e72e6676exeAmadey
2024-12-12 23:40:0894d7d12ae53ce97f38d8890383c2317ce03d45bd6ecaf0e0b9165c7066cd300cexeRedLineStealer
2024-12-12 23:31:155c4239be04a1ead5ea81bc92463d72209411882b369dd58704769d409192e1ffexeQuasarRAT
2024-12-12 23:31:112997292293c332e73b11fa28126b6fbefea75a6bb02001eb017de46797d4e4ecexeRedLineStealer
2024-12-12 23:31:100a17e2ca8f223de67c0864fac1d24c7bb2d0c796c46e9ce04e4dff374c577ea1exeRedLineStealer
2024-12-12 23:31:10c84a91d4261563b4171103a1d72a3f86f48ec2eaca6e43d7f217bdcbc877124dexeAsyncRAT
2024-12-12 23:31:10fcc616ecbe31fadf9c30a9baedde66d2ce7ff10c369979fe9c4f8c5f1bff3fc2exeRedLineStealer
2024-12-12 20:32:12833fd615ec3e7576960a872fff5a4459b0c756338068f87341655849d1f7e1afexeSliver
2024-12-12 20:32:12cbe157a18df07d512f3e4939d048f6419163892bf0cc5d5694eaadc7809d2477exe  
2024-12-11 12:28:07fcc616ecbe31fadf9c30a9baedde66d2ce7ff10c369979fe9c4f8c5f1bff3fc2exeRedLineStealer