URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	198.12.107.201
Firstseen:	2022-01-25 10:08:03 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-01-25 10:08:07	198.12.107.201	198-12-107-201-host.colocrossing.com	Not listed	AS36352 AS-COLOCROSSING	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-01-25 10:08:33	http://198.12.107.201/cc/loader4.exe	Offline	AgentTesla exe Formbook Loki opendir	abuse_ch
2022-01-25 10:08:07	http://198.12.107.201/cc/loader1.exe	Offline	exe Formbook Loki opendir	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-02-24 01:41:59	720a9b41aa3fc632a07dc0fa3c376ea608898049e6bdb761010695331c0d0b34	exe	Loki
2022-02-23 04:32:16	4dd8aa04ac02dd1fb4aae41cb1160b968896f399612203ab56dfed1ee0bff6d6	exe	AgentTesla
2022-02-23 02:08:28	0cd9de7fee952994367b5dbdf4593be74d0926b262e6ed8bd45d0205923ffc07	exe	Loki
2022-02-21 02:19:02	a2e6c9d50d2fd9c7c7401f63d7bfa0ab83d781e2d91737d2506cebf247c318d5	exe	Loki
2022-02-17 01:15:52	cb645ce6e574b6ee14f603cca85eec21596945642b578e2290ed9924ee5b3f24	exe	Loki
2022-02-16 23:51:16	cb645ce6e574b6ee14f603cca85eec21596945642b578e2290ed9924ee5b3f24	exe	Loki
2022-02-16 00:39:17	5ab3f9c064ba8fe1118806854873fbb05d7e2c01b5a6a8f70ecb43e8c0ba793a	exe	AgentTesla
2022-02-14 02:22:58	4d854fee4f2e2a7b2afb2c13b28207f5388b095d0f7f053b90e03cf5873904e9	exe	Formbook
2022-02-10 22:27:25	d695e70ec9d4e89c90dc0658449fd2662dac8dacbf91537b9ca8c1afaa20f3e6	exe	AgentTesla
2022-02-10 21:33:47	28d6ebb9c7ae67a73c11392f36e3b55b56c4709f9abe7c70ab02a9deb0e6de44	exe	Loki
2022-02-10 07:01:33	22099fbafc3dda95912c51aa0c313826f21e2fe84ef51453c649f66ab29c6916	exe	Formbook
2022-02-10 06:07:11	ce6b42f991a1ce90598cbf00ed844cfd5bcf6acb51302b8c9b2885fe29be3836	exe	Loki
2022-02-09 03:44:08	af7abd08a5752f55f59e38b2bd9568943ada7d2b23ddc3324b735beebd8846ce	exe	Formbook
2022-02-09 02:57:51	820b1216485962fa3501dc8bd02a76bdb821fd7b6ffab858c4ebe135c4246090	exe	Formbook
2022-02-07 23:07:21	703f4546b4adc3e685275a9840bafac150717c3259f629f6bf9bd8e5d191ad46	exe	Formbook
2022-02-07 22:58:23	4f6383c6ae7c88ff6ab189dc208b3f159d87b824011a697f438a218fc07fa3bb	exe	AgentTesla
2022-02-07 00:36:33	60babc2401d599558b2eb901ab162c87ca59bda068bfee2561dfb1ec4aba0b2a	exe	Loki
2022-02-02 22:56:14	47ce85235c5492b7a415ad34c4086d1ba2f0407ec00123efb677cc3737c89b21	exe
2022-02-02 22:08:19	34f5584252c0001e14a3edfc7a29c5828b14d3af6ab2fdac73d4cf4f806600df	exe	Formbook
2022-02-01 02:16:10	0da36b7f7e4b44b640ab5769532fdd7599032ca2b1d6b57807ba48ad1fa76780	exe	Formbook
2022-01-30 21:10:20	89a5384b284e44d23891f6b22590f0194c4ac0b2b6507bb51fa678ede6d6069a	exe	Formbook
2022-01-30 21:07:51	5ed4b0af136119c2bc78ca0cc3e0b58f77fbe72e9c7218d7c64f3caa2e5eda5e	exe	Formbook
2022-01-26 21:39:38	db751d20fa3ae449c73167571724c5dc773161f33e095ef74fa23ca66cfa8129	exe
2022-01-26 21:30:41	ffebbdfbf43481f261924e72b9c3acb4b503d41549ab926015159af4d1f7f1fc	exe	Formbook
2022-01-25 10:27:54	a58fa4c9cd9960a9b7c8fbab4942b3d1f28035ce37b68b4835afa9e728cbdc0a	exe	Formbook
2022-01-25 10:08:06	75362f20dab8d57db3ade6427e647b0bc01d8345ccfa9781d5778877f04f7fb5	exe	Formbook