URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	192.3.215.60
Firstseen:	2023-03-23 06:09:03 UTC
Total malware sites :	21
Online malware sites :	0 (0%)
Offline Malware sites :	21 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-03-23 06:09:11	192.3.215.60	192-3-215-60-host.colocrossing.com	Not listed	AS36352 AS-COLOCROSSING	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-03-31 11:12:04	http://192.3.215.60/008/drub.exe	Offline	32 AgentTesla exe	zbetcheckin
2023-03-30 07:22:06	http://192.3.215.60/uo7/Zkbscbhcbcv.png	Offline	opendir	abuse_ch
2023-03-30 07:21:05	http://192.3.215.60/uo7/Cbqta.png	Offline	encrypted Formbook opendir PureCrypter	abuse_ch
2023-03-29 04:44:05	http://192.3.215.60/g8c/uy74.exe	Offline	32 exe SnakeKeylogger	zbetcheckin
2023-03-28 17:49:12	http://192.3.215.60/uo7/Zzqzpswwlql.dll	Offline		abuse_ch
2023-03-28 06:27:17	http://192.3.215.60/uo7/Llwttrhoy.dat	Offline	opendir	abuse_ch
2023-03-28 06:27:09	http://192.3.215.60/uo7/Sqbfeh.dll	Offline	opendir	abuse_ch
2023-03-28 06:27:08	http://192.3.215.60/uo7/Fbnkrtltw.bmp	Offline	opendir	abuse_ch
2023-03-28 06:27:08	http://192.3.215.60/uo7/Qzrirgagqls.dll	Offline	opendir	abuse_ch
2023-03-28 06:27:08	http://192.3.215.60/uo7/Fgglzz.dat	Offline	opendir	abuse_ch
2023-03-28 06:27:08	http://192.3.215.60/uo7/Vdvkaavhxd.dat	Offline	opendir	abuse_ch
2023-03-28 06:27:07	http://192.3.215.60/uo7/Dtelr.bmp	Offline	opendir	abuse_ch
2023-03-28 06:27:07	http://192.3.215.60/uo7/Xshzp.dll	Offline	opendir	abuse_ch
2023-03-28 06:27:07	http://192.3.215.60/uo7/Decnrilana.png	Offline	opendir	abuse_ch
2023-03-28 06:27:06	http://192.3.215.60/uo7/Iixyx.dat	Offline	opendir	abuse_ch
2023-03-28 06:27:06	http://192.3.215.60/uo7/Cmtzmnhnm.dat	Offline	opendir	abuse_ch
2023-03-28 06:26:06	http://192.3.215.60/uo7/Ueyjiaj.bmp	Offline	encrypted Formbook GuLoader opendir	abuse_ch
2023-03-23 14:59:05	http://192.3.215.60/uo7/Xnhftlkpb.dat	Offline	encrypted Formbook opendir	abuse_ch
2023-03-23 14:53:13	http://192.3.215.60/uo7/Loxhbdckoxl.dat	Offline		abuse_ch
2023-03-23 06:09:12	http://192.3.215.60/uo7/Sbclspp.png	Offline	opendir SnakeKeylogger	abuse_ch
2023-03-23 06:09:11	http://192.3.215.60/uo7/Bnebynig.dll	Offline	dll opendir SnakeKeylogger	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2023-03-31 11:12:04	5df3a5073fc1a14936a0227e2674ecdc580c804e117463a40b417a54334e04cc	exe	AgentTesla
2023-03-30 07:22:06	b575d28baf9df960a449b65aa293c671ca8ff1c24431afd69a00462504eaf34d	txt
2023-03-30 07:21:05	f9a713d5c8703b9491691da9dc79474396cb92c47662efe3a5461124abc110b6	txt
2023-03-29 04:44:05	8372e04e3eb4e1534143534f62e8a57de90333c2925053556bebc077619436b7	exe	SnakeKeylogger
2023-03-28 17:49:12	c5628921a781cb0993ae64479aff0eed75ec7ffb4930311cff6473c144b41424	txt
2023-03-28 06:27:16	b8c885e42f9fbed1c9039e3cdb6b57bd70392eba6146e4d398481243dbb469e9	txt
2023-03-28 06:27:09	db9979fdaca91a423181485b0c5f0b7f5b96481ce131349791c08e4a32bc6332	txt
2023-03-28 06:27:08	aa9d478489841356c3ca59885623cfcc66ca4324ef6ed72a3d333cbc20ef3931	txt
2023-03-28 06:27:08	79a8f92ace0b6bbfa94d84cf46cc525880fe6cb647848444f703a48317f9d999	txt
2023-03-28 06:27:08	4b6ceaf4eaf1133e04ce0ad2b5eaaf7698135363208d0646d3959fc1b56ea1d7	txt
2023-03-28 06:27:07	267569800bf60539b2f23c27773b4d15133533f9acb4caac977d7f977d776fee	txt
2023-03-28 06:27:07	7beafe9512b1a015f18938e09ffc246f0a44eb022b77d586a34aa04d28ef7513	txt
2023-03-28 06:27:07	526cd0223379954fdcd8316605b74110cf69f106ddc843cb8d6a3d1984cb51ce	txt
2023-03-28 06:27:06	c1c7703a83154b9dd2a3bea8d0734e9d9003c01f3a1a7b16c7b70bc8c34f95cd	txt
2023-03-28 06:27:06	83ae03e7b014d94034d12c46735d7adde94b83605b7034de4d57dd13f32b046f	txt
2023-03-28 06:26:06	f39cb223731120e37f9c2db57e87af03aaabc43ef40490382b8f4b5cd5648ff8	txt
2023-03-23 14:59:05	4a1c32d624426f65e2221a5bf32f7c301ab571f8d55267ae572314e9e826f143	txt
2023-03-23 14:53:13	b2b18e8a7f8cb935076183379319b8009c4cad4eeaca2f5fec0947aa174e1664	txt
2023-03-23 06:09:12	7c28fc0ca0b4f5bb482930379d7a07869502abc5151a4ef135ff035854dbaa35	txt
2023-03-23 06:09:05	29bbd3eb5766d88ea2a1477c1f099dbf1ad310dc7b83ad90eb091bba023e45ed	txt