URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 195.20.16.153
Firstseen:2023-11-30 05:43:02 UTC
Total malware sites :5
Online malware sites :0 (0%)
Offline Malware sites :5 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-12-02 16:56:07http://195.20.16.153/WinRing0x64.sysOfflineCoinMiner exe sys VulnDriver xmrig abuse_ch
2023-12-02 16:55:10http://195.20.16.153/xmrig.exeOfflineCoinMiner abuse_ch
2023-12-02 16:55:09http://195.20.16.153/svchost.exeOfflineLumma njRAT ext zgRAT abuse_ch
2023-12-02 16:55:07http://195.20.16.153/WatchDog.exeOffline abuse_ch
2023-11-30 05:43:10http://195.20.16.153/conhost.exeOffline32 CoinMiner exe Lumma zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2024-04-27 01:29:10ddc874791d93bf8107dfa98b1f025cc05375d420c59563128b2d8596a571465fexe  
2024-04-25 11:32:0568e1a8039024a9950099e6447197ae941db2f324c7661c2c275a37696f2d3cdeexe  
2024-04-18 04:36:50f020df6685e507f5e6c77a11604749babacab99174bc65decc5f327733456b8fexe  
2024-03-20 04:44:5219dfa0465e5488ed7811f07b7860757f4d4ad0314426aec678b45f37fa99d41dexe  
2024-03-20 04:11:540ca631938464068857a004883908d5196083f5f4ec4e1a18446e8b66ad60a164exe  
2024-03-19 22:59:23be3b53173c4781cb2447dc7280684a884cb65d5e54af52807dd64493494d2e35exe  
2024-03-19 07:29:13daa12f98ca994577051fe3d1bbfdaa03a73e61ab7610d2504314c59184f390cdexe  
2024-03-18 18:29:27d9b3ca10e2b75f7ea142d922fb1dac3c4c5323cdb87a19ae7aa1ede3a8872be5exe  
2024-03-18 13:18:28c46d1216e7e77c58f65d886c44aa08f9201722042db3afb982582a2c03584e5dexe  
2024-03-18 09:19:19946b8a0bb2a290ce4a0b2b730d5c0a711bb6bc287da55c2e3e9e030b103b6c86exe CoinMiner
2024-03-18 08:38:2225006d905981dca37f6b3f4a3d1f6e6fe423da146c8c9b68550f022f11f463b2exe  
2024-03-18 01:01:50876b6e8b524f51bb3b650838da3859b4194f4093f56458fe2564450397ce4d84exe  
2024-03-17 20:06:2157a16956410980f78cd7f150ecfb0bc354b38d079058d74160f562dc6114e3a3exe  
2024-03-17 03:22:03089a50cca42a1ae1c8f50ea4d242fa2a5c3087e79031d6016541dc813fc30f4cexe  
2024-03-16 20:51:24f85030b5d9f9372c4c164aa9248be4e9dd9c65d9e62d007ac77a1bb88dfd6c5dexe  
2024-03-16 20:49:4964edff45b16efb51ba982798646b1053516cf2a4e8762ed4415739b43a524309exe  
2024-03-16 18:50:213bcf62c957993b1e105ab7b7bcf71ad54ee2269cff5f492d40e7b0fcd1702e27exe  
2024-03-16 17:18:1848c6857cde2b97fc7701aa1b131aafe868961cd7c6eba927006070dd154c8badexe  
2024-03-16 11:47:57505c9510418cf9bd2d75f2770f451533561ee670f154034277bc645f1e8efd0bexe  
2024-03-16 01:46:45f578bd287c6e5c5accd9d6bbabe4cb344677de78e31221d4b168aa5018629394exe  
2024-03-15 23:03:32a83b007c0c8a265bbd6ec9b1c36d102b2969a35e978b11307993227993b7df64exe  
2024-03-15 18:50:57028511b48889e0ec05045b5d554fb2752108fa2839843357005fafe8799a2ac1exe  
2024-03-15 12:43:44a6f1c569f43255f59537f46fb9c74ad26381a09a88abab8b0c9626893136d246exe  
2024-03-14 19:07:4531de002383b766bb5363042e6b43b71745e07144e0b8e2917b78cb80e4117d70exe  
2024-03-14 15:31:547b7a3a3e6736de1747c90f8d5e4824d2832be7628d4e82bbac2725b2771e47c0exe  
2024-03-14 04:32:412e5efac3b3dd32c84eea2bb1929bb4cab7ef53ab803d7b703ec6b1c97d786379exe  
2024-03-14 01:19:48d96ee27c4ed8d39771c93186f7bcdedb7d1db87b299148c1d21a249acb4325f2exe  
2024-03-09 12:14:3336fb77c427020d85e61482f25c7e8127221e1d48c358be97728068e6a487b711exe  
2024-02-19 17:06:58efee38133480e7ccaa11424d49bb3d8ebdb89ffb1d81a10f6c405337e7d3a737exeCoinMiner
2024-02-19 15:37:198072a80ce4455f461cc10d67b486f2d436d42b2dd2165628a1e91a70b50fdb4bexe  
2024-02-19 15:14:33f07c7223fdb691acbf0ebc7d9cc2ae614c0cf705920420c0130248a0c0e861d4exe  
2024-02-19 13:25:0885678c213dc5d11411070297d3e899c3c052dee7a2ff1a0ccc26990c7c5f9aa3exezgRAT
2024-02-19 13:13:05edb8b0f5765a8de5f294a0e6661a30dc70ced554c0d83449481c0937dbf89096exe  
2024-01-26 01:26:59f0f824d54b34284737684585a5a2e4098af11792f762950b6b2115980b238158exe  
2024-01-24 16:21:269fa53b063ede5c4a7d1d54a6d296a04073854a7d990f2802c16016ca79d31ddfexe zgRAT
2024-01-11 17:30:513e26cca96dfc289361a1d439f437b60a85c8398a1a200a18c9ab87679ff524d6exe CoinMiner
2024-01-11 13:19:320715f3210c4a1ec5e15a7fc8e4121b8046529addd83f272d68fe6f13fbd1f05fexe njrat
2024-01-01 12:55:57b57fe599791c010401a65bd6064dfd0ea26c71853999077198056bb821a8d1a4exe CoinMiner
2023-12-22 15:09:123b655b9755ffb770c5beaee783dd1c4a393137a77e1c1c0bf504e4d3f0bdd1d1exe  
2023-12-16 12:53:18785d5af67c6cfbb5a7bee0babfe2e818fded674f968f8d9c3bb4b76e138f46bdexe CoinMiner
2023-12-11 14:40:2493b23a6c53538ac84e7d374ad19c7e427f04e08ae3ebb72c8c6ee8f125c4b33cexeCoinMiner
2023-12-08 06:08:28b13b5f0d96bfd285bcc3285d12217bea50347549a6048973f033edf03696ec13exe  
2023-12-06 16:04:218257b6d9db2a0054895b3afaf01e40a3dfb56bdf7195865097201cc6c1e38edfexeCoinMiner
2023-12-02 16:56:0711bd2c9f9e2397c9a16e0990e4ed2cf0679498fe0fd418a3dfdac60b5c160ee5exe 
2023-12-02 16:55:09cbc0c90dfd9f0a4c60d50b18802a3b62724706d819a6cb7940c73f4f6cb7b319exe CoinMiner
2023-12-02 16:55:096ad9ac5ab7a0071a789065d1fe2fde732d88be8faaf4e875e3097157bee34d38exenjrat
2023-12-02 16:55:078a9235655b1a499d7dd9639c7494c3664e026b72b023d64ea8166808784a8967exe 
2023-11-30 19:48:573ce7038bba7b55be98005d471b7ad1c9166047a14bbfa016d1bb3b58960e6c1aexe CoinMiner
2023-11-30 05:43:10a12690c6e82e3139977a17c976b49355878b0bfdeb07a142f313da289b5d5c1cexeCoinMiner