URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 192.3.141.139 |
|---|---|
| Firstseen: | 2020-10-19 13:14:02 UTC |
| Total malware sites : | 8 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 8 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2020-10-19 13:14:04 | 192.3.141.139 | 192-3-141-139-host.colocrossing.com | Not listed | AS36352 AS-COLOCROSSING |  US | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2020-11-05 11:44:33 | http://192.3.141.139/doc/ma.exe | Offline | AgentTesla  exe |  oppimaniac |
| 2020-11-04 10:15:07 | http://192.3.141.139/doc/peace.exe | Offline | AgentTesla exe | oppimaniac |
| 2020-11-02 09:28:05 | http://192.3.141.139/doc/golden.exe | Offline | AgentTesla exe | oppimaniac |
| 2020-11-02 08:08:07 | http://192.3.141.139/doc/yup.exe | Offline | AgentTesla exe | oppimaniac |
| 2020-10-30 13:49:05 | http://192.3.141.139/doc/ike.exe | Offline | AgentTesla exe | oppimaniac |
| 2020-10-29 14:00:05 | http://192.3.141.139/doc/faco.exe | Offline | AgentTesla exe | oppimaniac |
| 2020-10-22 11:43:05 | http://192.3.141.139/ongod.exe | Offline | AgentTesla exe |  abuse_ch |
| 2020-10-19 13:14:04 | http://192.3.141.139/code.exe | Offline | AgentTesla exe | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2020-11-05 12:24:33 | a4da992ea98f571b2cfa4603243fc9bca4e7620b195d9020e64da8e8f639d7ec | exe | AgentTesla | |
| 2020-11-04 10:15:07 | b249f7a490d6e8b8af9d0d3ea4852ed382aa2e23d5e732c2592e979f42075ab9 | exe | AgentTesla | |
| 2020-11-02 09:28:05 | 25590683d57bc9e4c00397a33e477100dc1bf6a65489bb65621b56c9e24b9f5e | exe | AgentTesla | |
| 2020-11-02 08:08:07 | 068c614e4b20bfe5db7b11f55dbe5ce93edbc169f9545c0ee8da87455afa9a92 | exe | AgentTesla | |
| 2020-10-30 13:49:05 | cd600fc61127f099c982441726ae13d7937e890f68f4c83d0e25bb3a88b75022 | exe | AgentTesla | |
| 2020-10-29 14:00:05 | 8e5ebebd3fd00b8def452a98d35c7f5ff60931067bd6266bee3ecb16506a3495 | exe | AgentTesla | |
| 2020-10-22 11:43:05 | 0bbacf96ab729cadd901f6053f3279445605754850924ac85809e1b93fc7d4f5 | exe | AgentTesla | |
| 2020-10-19 13:14:04 | 85e9cb6e5127aaf4437dc8785dca47715b3eeb8bf621370380f42f8ee0593608 | exe | AgentTesla |