URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 192.3.64.154 |
|---|---|
| Firstseen: | 2023-10-26 07:19:03 UTC |
| Total malware sites : | 6 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 6 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2023-10-26 07:19:05 | 192.3.64.154 | 192-3-64-154-host.colocrossing.com | Not listed | AS36352 AS-COLOCROSSING |  US | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2023-10-27 07:53:08 | http://192.3.64.154/9080/GSW.txt | Offline | AgentTesla  ascii Encoded opendir |  abuse_ch |
| 2023-10-27 07:53:06 | http://192.3.64.154/9080/HTMLIEbrowserhistory.vbs | Offline | opendir vbs | abuse_ch |
| 2023-10-27 07:53:05 | http://192.3.64.154/9080/hm/HTMLIEBrowserhistor... | Offline | doc opendir | abuse_ch |
| 2023-10-26 07:19:06 | http://192.3.64.154/windows/whs/HTMLcacheIEsess... | Offline | doc opendir | abuse_ch |
| 2023-10-26 07:19:06 | http://192.3.64.154/windows/HTMLcachesIE.vbs | Offline | vbs | abuse_ch |
| 2023-10-26 07:19:06 | http://192.3.64.154/windows/HTR.txt | Offline | AgentTesla ascii Encoded opendir | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2023-10-27 07:53:08 | e540f566b497e11d8cdc65102ea2255b2a7e3d137eca5be1d10217bfcb32f2ec | txt | AgentTesla | |
| 2023-10-27 07:53:06 | 77add4f39639d5bc6f3e7a235c3bb2736371737e6f796cd37a5118be74f1af45 | unknown | ||
| 2023-10-27 07:53:05 | 3a2815a4cac96aed968feb95a2f7284adeeeee857b3ccf72b66ac4edc8d97794 | unknown | ||
| 2023-10-26 07:19:06 | 8a38e1eae21dc4a5c8730fe252b518f817d22f4304dc4857592c7e7c9ebc42e8 | unknown | ||
| 2023-10-26 07:19:06 | ef9d53d0c4be6597aac7ca9602f71d37c35fe736949cee53d608375fa5e3e2c6 | txt | AgentTesla | |
| 2023-10-26 07:19:05 | fec20b192e53b32c0f3b2c72dac6ce66514d8eea338b0691bcc49fd7dcbd4a63 | unknown |