URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 196.251.73.58
Firstseen:2025-08-25 06:42:05 UTC
Total malware sites :40
Online malware sites :0 (0%)
Offline Malware sites :40 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2025-09-18 05:55:11http://196.251.73.58/H2/test.ps1Offlineopendir abuse_ch
2025-09-18 05:55:11http://196.251.73.58/H2/VBZXH66.exeOfflineopendir abuse_ch
2025-09-18 05:55:11http://196.251.73.58/H2/base64code.txtOfflinebase64-loader opendir abuse_ch
2025-09-18 05:55:11http://196.251.73.58/H2/Server_Encrypted2.ps1Offlineopendir RemcosRAT ext abuse_ch
2025-09-18 05:55:10http://196.251.73.58/H2/rr.ps1Offlineopendir RemcosRAT ext abuse_ch
2025-09-18 05:55:10http://196.251.73.58/H2/FOREXX.zipOfflineopendir abuse_ch
2025-09-18 05:55:10http://196.251.73.58/H2/FORE.zipOfflineopendir abuse_ch
2025-09-18 05:55:10http://196.251.73.58/H2/VBZXH66.zipOfflineopendir abuse_ch
2025-09-18 05:55:10http://196.251.73.58/H2/Server_Encrypted.ps1Offlineopendir abuse_ch
2025-09-18 05:55:09http://196.251.73.58/H2/test2.ps1Offlineopendir abuse_ch
2025-09-18 05:55:09http://196.251.73.58/H2/Server_Plain.ps1Offlineopendir abuse_ch
2025-09-18 05:55:09http://196.251.73.58/H2/why.ps1Offlineopendir abuse_ch
2025-09-18 05:55:09http://196.251.73.58/H2/test22.ps1Offlineopendir abuse_ch
2025-09-18 05:55:06http://196.251.73.58/H2/ObfuscatedScript.vbeOfflineopendir abuse_ch
2025-09-18 05:54:23http://196.251.73.58/host/test.exeOfflineopendir abuse_ch
2025-09-18 05:54:23http://196.251.73.58/host/invokemethod.txtOfflineopendir abuse_ch
2025-09-18 05:54:22http://196.251.73.58/Home/FOREIGN.zipOffline abuse_ch
2025-09-18 05:54:07http://196.251.73.58/host/solution.ps1Offlineopendir PureLogsStealer abuse_ch
2025-09-18 05:54:06http://196.251.73.58/host/new.ps1Offlineopendir abuse_ch
2025-09-18 05:54:06http://196.251.73.58/host/Black.ps1Offlineopendir abuse_ch
2025-09-18 05:54:05http://196.251.73.58/H2/mexx.exeOfflineAgentTesla ext abuse_ch
2025-09-18 05:54:05http://196.251.73.58/host/NEWMEX.zipOfflineopendir abuse_ch
2025-09-18 05:53:09http://196.251.73.58/Home/h20remcos.ps1OfflineRemcosRAT ext abuse_ch
2025-09-18 05:53:07http://196.251.73.58/Home/IAN.zipOffline abuse_ch
2025-09-15 13:13:06http://196.251.73.58/H2/MEX.zipOfflineAgentTesla ext abuse_ch
2025-09-04 14:12:38http://196.251.73.58/H2/crypto.ps1OfflineRemcosRAT ext abuse_ch
2025-09-03 09:31:07http://196.251.73.58/H2/Stein.zipOffline abuse_ch
2025-09-02 05:46:06http://196.251.73.58/H2/JAY.zipOfflineAgentTesla ext abuse_ch
2025-09-01 09:35:06http://196.251.73.58/host/MODECRYPTT.zipOffline abuse_ch
2025-08-26 05:52:11http://196.251.73.58/host/modecrypt.zipOfflineAgentTesla ext ua-wget BlinkzSec
2025-08-26 05:52:06http://196.251.73.58/host/MEXXXXNEW.zipOfflineAgentTesla ext ua-wget BlinkzSec
2025-08-26 05:49:07http://196.251.73.58/host/mode.exeOfflineAgentTesla ext ua-wget BlinkzSec
2025-08-25 06:43:14http://196.251.73.58/host/MEX.exeOfflineAgentTesla ext exe opendir abuse_ch
2025-08-25 06:43:10http://196.251.73.58/host/EASYPROTON.exeOfflineAgentTesla ext exe opendir abuse_ch
2025-08-25 06:43:09http://196.251.73.58/host/Steve.zipOfflineopendir zip abuse_ch
2025-08-25 06:43:09http://196.251.73.58/host/SLY.zipOfflineopendir zip abuse_ch
2025-08-25 06:43:09http://196.251.73.58/host/proton.zipOfflineopendir zip abuse_ch
2025-08-25 06:43:09http://196.251.73.58/host/MEXXXXX.zipOfflineopendir zip abuse_ch
2025-08-25 06:43:07http://196.251.73.58/host/obfuscated%20(21).rarOfflineopendir rar abuse_ch
2025-08-25 06:42:07http://196.251.73.58/host/Stein.zipOfflineAgentTesla ext opendir zip abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-09-19 09:27:091993f2ea8f0aff18f1502b07f5fa8fe6a2a4c3b3b607c11be11b0d081295b173zip  
2025-09-19 03:23:42fcbf23602fe94276515b407820ea46569be0e1fa586e84488eafa19b77f2f6a3zip  
2025-09-18 10:07:077c39a640c9283cea12ad228bab6f51e1e1039cbaf613e377e20d16b5e8e2cf73txt 
2025-09-18 10:04:28a633a1e2cabbca8225ff625e50860380477853e43cca5942cb97f21aeca6e99btxt 
2025-09-18 09:37:411746d2d3676d580b27e8d078be22621979062f41e5de08f37e9b7e729a183bbftxt 
2025-09-18 09:21:57b72bf5446c7020da5ef9e776b6109d592da1ea6361b8c44cf0d3ee42dc52f581txt 
2025-09-18 09:03:38e2de929008063320fba689db3e7d1be5a4ea6aca256e74e6b4659dc7b2379f41txt 
2025-09-18 09:02:34f46733f8e9282a7cb2850b1abbfad154b06960cd07db4fda1e17dd40663a6d3dtxt 
2025-09-18 05:55:11a8c873cc72350c6ee8ec2d5ca11086b17245807a60a60ab1cd1ede6735890d60ps1 
2025-09-18 05:55:11637ed97005e481b6d3c09cf74d8053a4367c245a440425f06c033093ecdedea9exe 
2025-09-18 05:55:11cc91f6341e959b4cb459b3040691f317635a4cb7a1866968674fb659498c9366txt  
2025-09-18 05:55:1103256325e54568ddc9bb3afc2359688540719df80739ad94fdca555a1e35c7aeps1RemcosRAT
2025-09-18 05:55:10847417f64f6125c6e1dad4458b57b360c60114d9a52e1664bd5969876e237d0dzip  
2025-09-18 05:55:103c93be493d415d79ccf197d5064458238827faf1818077414f36f213a8877b08zip  
2025-09-18 05:55:1038f17f512cc988b183de4c59291151ba5722ad6a3b4323dcc9a98e9d17e21e17ps1RemcosRAT
2025-09-18 05:55:10fc2832ef6c560c206c9205658efd4a9379854663c05df8797fbbe285346b29aczip  
2025-09-18 05:54:2303e9d2fdf7abacf2aab5d76fd7a0f42e0cda206598f87b63dd462c9fbe8ceb05exe 
2025-09-18 05:54:23d9bb323a28644f9b964e5649dc162188413d9cd597174d9e783f548f9f167b53txt 
2025-09-18 05:54:222653a4081bc38ace77a41ce480823ad9b9a49200a006ea5217951b3ef7818317zip  
2025-09-18 05:54:06e12156a9a24df464890e363ef25a230cbcef770ba349c2477bc3e1c3fec917cftxtPureLogsStealer
2025-09-18 05:54:0685b6a96c1941c10c61e6f7da9a189167ec49fddf50f5e17e83af6e6d262e5d46txt 
2025-09-18 05:54:06d9bb323a28644f9b964e5649dc162188413d9cd597174d9e783f548f9f167b53txt 
2025-09-18 05:54:05f8cc01904e1f26c537ed9c07804659bae2e17d564822cf9417badaea335e205dexe AgentTesla
2025-09-18 05:54:05d3e21350e6bd056dbe6c0e75d92cd4363a7fd41f632418cd896fef126d9ee8ffzip  
2025-09-18 05:53:09203e23dcaed7dbea1bbcd1e4db1e9db14590d50216f9d78263485a3fbe6558b8ps1RemcosRAT
2025-09-18 05:53:0777e3a7033a9c9d80685ec6b843cb60b2af93012376f662b65d078df86acd0265zip  
2025-09-15 13:13:06d238ae603d644ca6a6db46dfd5df899b35a3524f43bd511871844cd7ee8a4023zip  
2025-09-08 02:24:333efaae0598454bf669503d8ed1d31b7aa42a45c1338925a22c8ac7bf4f538c08zip  
2025-09-05 02:06:45128f53189651640859096d2e5a2df4224f1dcc6c6b24a5b10be60818495d4d6czip  
2025-09-04 14:12:38f9801af08f463240448e41a1fc1a95ce748b3cc68af0db7b422ea9d18572119cps1RemcosRAT
2025-09-04 02:51:40556981097fe1b5b018fe9922fa43e6403d07b40c9c7edf51be3035b2578a6614zip  
2025-09-03 09:31:071111cecc1d55bc7d7ad6a30aa644ed4f90a4eefbacfef0d1db4b0e6db6622134zip  
2025-09-03 02:10:5928d86ade7e38ace9f66732f63396f76abfb18ad9e5b53cb3819ce0a070e16879zip  
2025-09-02 05:46:0695389bcd1fb7ad3947bb6feef2dcc611dfd61115b24d0b4038c5dc4d8c3f3021zip  
2025-09-01 09:35:06ad94e6d72aa9b1bcfbb95461819355c11e6a2bf55784af5df6b765c73d83e0d8zip  
2025-09-01 03:09:47ee271fd36ffbffd96c4db7a9ec875b21c78c9b340617ea5359aaca7b40417d54zip  
2025-09-01 01:53:46bbcdd4f9d048f01fbab15d56207f248b12f052dec91d2cfdadc8e4c7b2d425e5zip  
2025-08-29 02:35:53be08ccf5dc18bd4c141db30acdc98f79f66d70f8668caf8baf75e51df0ed2219zip  
2025-08-29 01:48:53cbdabf1d4438e8f7ac0bb585d03641e16a9fb2930ef0fd7729a75f602e60b9e9zip  
2025-08-29 01:42:011cd38245fcb3fab9168a5bd3b6cbd0d705fa483b4421c0d6d93071fc7a4c6637zip  
2025-08-28 02:55:2756a88f51c952133a11dc9843da6fb0d44bce4b78a5a2c3cdfef40ccccec8fa81zip  
2025-08-28 02:48:444ccf2df359ca1c383599edf05cf4a9909740b4dddc153f9ed103638cb0eb7649zip  
2025-08-28 02:28:3100e399eb4a5d7ccdac261fa7c81e862a2ba901902538f9b2144bc33f29932735zip  
2025-08-27 02:40:429316bf4672dc6a055b4df715382969737c4f6ef92f97ebf4c7ad0c54743705a7zip  
2025-08-27 02:40:4197a4e852965f523d98acc7eff914dd636a024cad2325014df0c5ce6f4187550bzip  
2025-08-27 02:07:22dca4ea84b3b8131ec6b91d0d768f5801fd4d3d4ce78168ee58ecd396534ff1b0zip  
2025-08-26 05:52:11faf6b7f002db4600d009a35de56dfed56352856432fdb2513516befabf200a70zipAgentTesla
2025-08-26 05:52:06fe8c6d0928d73509ef1d616a4f678c1900bb2f49dbe0c062926dc68d70c607fezipAgentTesla
2025-08-26 05:49:0618995a61b237eedcbdcb77248f0cf89f764341ccd2d2572c11042dab372ce10bexeAgentTesla
2025-08-26 04:26:25ee649daee2866510aa9b6bc3d61bac4d8ebc5a471bcaf3d1d2119a2d945aedd7zip  
2025-08-26 03:58:1312ff2dc12be4ecddd42f96e0d902a32082ae346bbcf46d7e96e14a895678ba37zip  
2025-08-26 03:24:30546ed80436732b0e7c7ce0d5c9920a7a8085f9a29fb7a94cdac16ee062762c11zip  
2025-08-25 06:43:14de12b054a4c58d0d6d7a7f08e1dfd1792b434a1021312eccfa1496f022484480exeAgentTesla
2025-08-25 06:43:1063c81072af9b6315f6cbbbdbdf24ae137194d966d0a3200abb3191d335fd3178exe AgentTesla
2025-08-25 06:43:09cf61c29fa327111df1f3be04d0a74c192ad9f5e75da17ca8cb530220f4820fe2zip  
2025-08-25 06:43:094de883bf9bf158671a6d3d5ad72baae2c08238e80d948fe1de63e9e229348130zip  
2025-08-25 06:43:09ffbe5faea4cb5d2735949cc2b5ee39fc56243eb47730079a825efb7c915fc829zip  
2025-08-25 06:43:09752b0e0b92c04089df0c273f4739a4bcba379cffa3b24a2a0c8d079407246b73zip  
2025-08-25 06:43:07694a3ffee5af8c5e693cfa6e49d3067baee3f8e5b5288baf11ac81e7552dfdc4rar  
2025-08-25 06:42:06df9fc77be80e0a200db4898bdfd2e5f3f4a9c5e735a440c804e9fe7f26b2a883zip