URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	192.3.194.246
Firstseen:	2022-06-08 09:25:04 UTC
Total malware sites :	30
Online malware sites :	0 (0%)
Offline Malware sites :	30 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-06-08 09:25:10	192.3.194.246	192-3-194-246-host.colocrossing.com	Not listed	AS36352 AS-COLOCROSSING	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-11-20 07:32:43	http://192.3.194.246/Cyrdu.png	Offline		abuse_ch
2022-11-20 07:32:43	http://192.3.194.246/Kofdpterstw.jpeg	Offline		abuse_ch
2022-11-20 07:32:43	http://192.3.194.246/Fippkpowob.jpeg	Offline		abuse_ch
2022-11-20 07:32:43	http://192.3.194.246/Gfnjlkroe.bmp	Offline		abuse_ch
2022-11-20 07:32:43	http://192.3.194.246/Fljezeu.jpeg	Offline		abuse_ch
2022-11-17 08:21:11	http://192.3.194.246/Zjvgktu.png	Offline	encrypted PureCrypter	abuse_ch
2022-11-17 08:21:10	http://192.3.194.246/Yfyspxjvrbt.bmp	Offline	encrypted PureCrypter	abuse_ch
2022-11-17 08:21:08	http://192.3.194.246/Xivbwa.jpeg	Offline	encrypted PureCrypter	abuse_ch
2022-11-17 08:21:07	http://192.3.194.246/ecs.exe	Offline	exe NetWire	abuse_ch
2022-11-17 08:21:07	http://192.3.194.246/inv_07836.exe	Offline	exe NetWire	abuse_ch
2022-11-17 08:20:05	http://192.3.194.246/chris.exe	Offline	exe NetWire	abuse_ch
2022-11-10 07:59:05	http://192.3.194.246/Bndzk.png	Offline	encrypted PureCrypter	abuse_ch
2022-11-10 07:59:04	http://192.3.194.246/paid_Xekwecvn.bmp	Offline	encrypted PureCrypter	abuse_ch
2022-11-10 07:59:04	http://192.3.194.246/new_Qdkpyukm.png	Offline	encrypted PureCrypter	abuse_ch
2022-11-10 07:59:03	http://192.3.194.246/invoice_Cjcjrknc.jpg	Offline	encrypted PureCrypter	abuse_ch
2022-11-10 07:59:03	http://192.3.194.246/Lnjrch.png	Offline	encrypted PureCrypter	abuse_ch
2022-11-10 07:59:03	http://192.3.194.246/INVOICE1_Staxrevk.jpg	Offline	encrypted PureCrypter	abuse_ch
2022-09-26 08:19:06	http://192.3.194.246/P_O999.exe	Offline	exe NetWire	abuse_ch
2022-09-21 13:10:06	http://192.3.194.246/RFQ.exe	Offline	exe NetWire	abuse_ch
2022-08-10 14:03:05	http://192.3.194.246/ecst.exe	Offline	exe NetWire rat	abuse_ch
2022-08-10 13:34:05	http://192.3.194.246/process.exe	Offline	NetWire	Anonymous
2022-07-22 17:43:24	http://192.3.194.246/bin.exe	Offline	32 exe NetWire	zbetcheckin
2022-07-16 08:48:05	http://192.3.194.246/new_Jmenxekp.jpg	Offline	encrypted NetWire rat	abuse_ch
2022-07-15 14:10:05	http://192.3.194.246/account_Mryifdyo.png	Offline	LLDLoader NetWire	AndreGironda
2022-07-08 13:59:04	http://192.3.194.246/PO_Confirmed_Qvefnrro.bmp	Offline	encrypted NetWire rat	abuse_ch
2022-07-07 05:41:04	http://192.3.194.246/PO0089_Knqfiicv.bmp	Offline	encrypted NetWire rat	abuse_ch
2022-07-04 08:09:04	http://192.3.194.246/IN0993_Cdlhstcr.png	Offline	encrypted NetWire rat	abuse_ch
2022-06-08 11:37:05	http://192.3.194.246/new.exe	Offline	32 exe NetWire	zbetcheckin
2022-06-08 09:25:10	http://192.3.194.246/fresh.exe	Offline	exe NetWire rat	abuse_ch
2022-06-08 09:25:10	http://192.3.194.246/invoice.exe	Offline	AveMariaRAT exe NetWire PureCrypter rat	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-11-19 08:16:18	195d6535f8f97c525e1777cb2635b187bc905d15b2ef429d3e8a7d87c42575f9	exe	PureCrypter
2022-11-17 08:21:10	82a61c46955c31faeb5665c16f20686b7f24b37848eb822a7af9c214b07d2925	unknown
2022-11-17 08:21:10	0d707fceab55ffabd5f1f3138a7ef5b9a50037658a391da15b380cd355eac796	unknown
2022-11-17 08:21:08	6ff4f9630f53667ee9841235c6e4d9cc60b3cf67198ce1d7634cbbc6c57c8d14	unknown
2022-11-17 08:21:07	44676f7732f4e6adfe2ba94d8e7dbaf4f6bf9d46f81118081f0f3a64f3fcb133	exe	NetWire
2022-11-17 08:21:07	7f26ea3cb1e19751ee9ca317c3b13d44f3877ede7e162e16172c2eced25f21d7	exe	NetWire
2022-11-17 08:20:05	35a2e0e9daf4aaa64a5e8057eb6114c95bb4326763f768e09dbf25b57b387766	exe	NetWire
2022-11-10 07:59:05	d9cdacf14d5335f50e1e286f1cbec5d56092b763dc6a6e7a695fcfeadb3ee0d0	unknown
2022-11-10 05:28:13	3b825210b99a016893d31e4590d385c83c9eb7c9152657d5c0997eb08d741800	exe	NetWire
2022-11-10 02:43:40	d9165fe9df95eeb0aa98fa4dbc4aeb718342ebf2728c5fdd86e37cd207143aa3	exe
2022-11-08 01:42:01	b0355698b9cac14e82f75a7b8cc8f49cfcf02e559f5122095cb7156eb44a0143	exe	NetWire
2022-11-07 11:36:48	14bef316e807375c95d89a2d23d9a9af496dac1c91eaa431614f7881089e2abf	exe	AveMariaRAT
2022-10-31 01:57:56	bc0a8e730ebbe66a98f6aa755671661158a982983898e45d306f79ec608250fe	exe	NetWire
2022-10-27 07:23:56	a21c8ef38b35eda08af936729863498ead8f750de997bc2d55ff9da429872e33	exe	NetWire
2022-10-13 09:00:11	71e65562e00447d697f996d69ffc7798d96cf2b4799f27a298ce710730802428	exe	NetWire
2022-09-30 08:30:57	3fe1e3617e07294bb7f1b06743dea11ba1f7c700f9f425fae8a7fe832a9091f8	exe	NetWire
2022-09-26 08:19:06	3d10c53032ea46fb31e8b921c09466bf4a93347f5809c181a0d41ac8e423a153	exe	NetWire
2022-09-21 13:10:06	ee61ac3cd6ac0319af2ca16d292464c08c018c15cd54f48c27df5907c9fca089	exe	NetWire
2022-09-21 02:32:00	67f5ddf21cf15cefce056ddbe7bbcb3a3a7cd3551c0c1aec77360de58d820786	exe	NetWire
2022-09-12 10:06:37	51d5a73c72f75f984194346b8a9e77fad48059295de86f339c9a092b0d51c9ab	exe	NetWire
2022-08-20 05:00:00	bca6c9c211bc4e28cec5bd528c55a215c6556b0e895386b7536b24cacbf2d866	exe	NetWire
2022-08-19 02:19:00	012622e521dee6e1c74c6796c92f1b5d31dda65f11e81c095340ca5ec22bdc3e	exe	NetWire
2022-08-12 15:19:08	2abcdb606044f4db592baa3f9c808bf4fcab2146c49d83ba45a4ccbb20bc8354	exe	NetWire
2022-08-10 14:03:05	e1005be756be06a809c11b66b47c79ee2fba85b2870693bee2882f369f03cec7	exe	NetWire
2022-08-10 13:34:05	f3ba07ea43adc68f25d26028ec31b752001be473d77b69d5c89e1ef393d37812	exe	NetWire
2022-08-08 04:45:14	3a6ef5a50738a5230ca6c62f187b62b134ca090ba559f65c8a8204d9a66f724d	exe	NetWire
2022-07-22 17:43:24	e7b7b828f1add6b862ccd69e5b0ecab7fc0926ed6e91f3f273c75a22edef2927	exe	NetWire
2022-07-16 08:48:05	02950ab18569a48c2503d6b0b2cc21142687bb26cdfa90714d0287df53ab38f5	unknown
2022-07-16 02:05:27	f621b17f07a862cf0dd4c87aaef881dc2a39e36f73900025169aa34c99d0a650	exe	NetWire
2022-07-15 14:10:05	5f5a26399cc48ed007e7b6c8b748d08a2a9104ee963187c73c22b500e470b88c	unknown
2022-07-08 13:59:04	abf9b86d2a0da96d5a3c1a468da7fb6b9c932af98e0c990e6f29a3d4d6bcc89f	unknown
2022-07-08 11:05:33	7418fd3ec75f43bed921ecf2df4ba922fbd86c2e1e158bf309bbee13d4374125	exe	NetWire
2022-07-07 21:09:38	e82954e7c432701196ce8c5e2edd24c3335dc4dec000a4219ff574e993c32c2d	exe	NetWire
2022-07-07 05:41:04	8155b3ab830133425516390b927cf8b8c0e5543930823b4c24427d7caeb085aa	unknown
2022-07-04 08:09:04	4569653208bb5e3f1de0c5f075e4ba589db0b1d02b0e910e84b7947b44ecc16e	unknown
2022-07-03 18:46:34	167b20bea3cf481d6b08785f82ce2f07dca108e925310df2e3c44b8f662509ec	exe	NetWire
2022-06-30 00:28:15	a884e65e38d3545bd60f61ff95f10f87c1c956327d59e6df8ee9d441e19a3316	exe	NetWire
2022-06-17 09:13:41	52eeb7fb08557b2a14fb725589df7a02a0018b41ba16cd9ab383e6dfb2a43dbf	exe	NetWire
2022-06-08 11:37:05	62e10c7d7f2136172cfef4c1679edbe3a9f013fb81c17b33d252180e0087ea05	exe	NetWire
2022-06-08 09:25:05	811690717824917911f152507cf4232df4aec5f198a57a638a3a9e0a738e84b8	exe	NetWire
2022-06-08 09:25:05	1317694579663bb8bfb86f87f2302076848c260ab23ad6b234c25669c36d3cde	exe	NetWire