URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 194.180.49.147
Firstseen:2023-01-18 20:02:02 UTC
Total malware sites :8
Online malware sites :0 (0%)
Offline Malware sites :8 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-01-18 20:02:10 194.180.49.147Not listedAS201814 Mevspace- BGyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-02-01 15:34:05http://194.180.49.147/mynt.exeOfflineexe SnakeKeylogger ext abuse_ch
2023-01-31 08:37:03http://194.180.49.147/mbak.exeOfflineexe SnakeKeylogger ext abuse_ch
2023-01-24 08:42:04http://194.180.49.147/bumjsaWERSw.exeOfflineAgentTesla ext exe abuse_ch
2023-01-20 08:22:03http://194.180.49.147/yao9sHSG.exeOfflineAgentTesla ext exe abuse_ch
2023-01-20 01:28:04http://194.180.49.147/Mqbcgo.exeOffline32 AgentTesla ext exe zbetcheckin
2023-01-19 10:46:04http://194.180.49.147/abxQW.exeOffline32 AgentTesla ext exe zbetcheckin
2023-01-18 20:03:07http://194.180.49.147/Nexcdpoed.exeOfflineAgentTesla ext exe SnakeKeylogger ext abuse_ch
2023-01-18 20:02:10http://194.180.49.147/Qgsfplueu.exeOfflineAgentTesla ext exe SnakeKeylogger ext abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-02-01 15:34:0551a2538d373cfad000a1373dd37efeca4e7581d9c89ee62375ccd24f133daaa3exeSnakeKeylogger
2023-01-31 08:37:031f4266192080bd75e3d6553b92693a02cdd10d3d5fd6945f1995f5563d57095bexeSnakeKeylogger
2023-01-24 08:42:04883a76e3bd674d75abce5d85c78a92250b057e1cdf5c65aa80ca40ce9df5901aexeAgentTesla
2023-01-23 09:15:195c694c48dab66d0357208d71a8e0cd8ccf57b996fb675aa1b4647d5ff6784183exeAgentTesla
2023-01-23 08:29:54d90e0253bfeade7d67308491d33d278e48311838b12e23cf19ab62cacde2e844exeAgentTesla
2023-01-23 08:25:399d479bdf86f069d38e4664c2e12620ddf0b14602671fcce4c017442ce59124a3exeAgentTesla
2023-01-20 12:14:281273b8a3054090fdf04f696dd22f284639ccb57afe9aa0a657d6fdb8fbdd3bd1exeAgentTesla
2023-01-20 12:14:04c8d7e38a611b60fe03397645b2ae0b3bc2aaa9604c68c81f0baf6565b813fb35exeAgentTesla
2023-01-20 11:27:12ba846910ae2ae36a36f62eeaac3d693228dbe07d32484d23795414d5ac5908ffexeAgentTesla
2023-01-20 11:20:42d43404f5a19ca01c3b41b92000336716cdf877822771586d92b6ab348431efe8exeAgentTesla
2023-01-20 08:22:03f6480ba23bca3c0d32c4283dca79ea9f898d2ff622fdf3fef0fece48b1ab790dexeAgentTesla
2023-01-20 01:28:04372e830ca920a5f2b66e8980e5b9ddedd9343a5c23c6fb48adfc762568eacb51exeAgentTesla
2023-01-19 10:46:04263bbaae6ed67f8d86ded09cfd7a87dfdd893ce2715a4e112fb8790c2ab1fe8bexeAgentTesla
2023-01-19 09:36:2314997972307c483549e7e7818855d1e2cd889598a943fdc3dfff67e69e20946cexeAgentTesla
2023-01-19 09:28:5222566cd4a19b98bd6a300628f8a1ab844fe0898644dc578203cdf34868cc446bexeAgentTesla
2023-01-18 20:03:07a3471688bb87789c9aaed8dd12e2a79356c46eea6b181786adcab310a75787f8exeSnakeKeylogger
2023-01-18 20:02:045b093312b8bda2bf674e1723d607a73270d9748ae3d710089a4a9e8782e7cb80exeSnakeKeylogger