URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 198.12.81.50 |
|---|---|
| Firstseen: | 2022-06-17 09:37:03 UTC |
| Total malware sites : | 8 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 8 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2022-06-17 09:37:08 | 198.12.81.50 | 198-12-81-50-host.colocrossing.com | Not listed | AS36352 AS-COLOCROSSING |  US | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2022-07-30 14:30:10 | http://198.12.81.50/220/vbc.exe | Offline | exe Loki  |  abuse_ch |
| 2022-07-26 15:37:05 | http://198.12.81.50/230/vbc.exe | Offline | exe Loki opendir | abuse_ch |
| 2022-07-12 09:42:04 | http://198.12.81.50/78/vbc.exe | Offline | exe Loki opendir | abuse_ch |
| 2022-06-28 09:16:04 | http://198.12.81.50/document/office.doc | Offline | doc Loki opendir | abuse_ch |
| 2022-06-28 09:16:04 | http://198.12.81.50/300/vbc.exe | Offline | exe Loki opendir | abuse_ch |
| 2022-06-24 13:56:26 | http://198.12.81.50/277/vbc.exe | Offline | 32 exe Loki |  zbetcheckin |
| 2022-06-21 10:05:05 | http://198.12.81.50/250/vbc.exe | Offline | exe Loki opendir | abuse_ch |
| 2022-06-17 09:37:08 | http://198.12.81.50/245/vbc.exe | Offline | exe Loki opendir | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2022-07-30 14:30:09 | e62ee0571627a81874e4439aacbb166d8a6419437e190278f432accfd92adb35 | exe | Loki | |
| 2022-07-26 15:37:05 | 1cad6ac7f1a52dabece616a63040cc6e1b191461ce96caaef87a846de6c8ead4 | exe | Loki | |
| 2022-07-12 09:42:04 | 69c72c6b690d302ba4c3294c90b067a50964bdac9e9f36b7d4ce6fd041c0715e | exe | Loki | |
| 2022-06-28 09:16:04 | bd3d36065828be61c48394751aafc4d0a6ca3847a40cc33ea04dfdd62f54e0cd | unknown | ||
| 2022-06-28 09:16:04 | a268288a6fd08bdf1f7458dbfba0cfce862e6f109dc51738d51654dd2540256c | exe | Loki | |
| 2022-06-24 13:56:26 | 8e1e3092d5e2010d374b8b6b44492d22431dcfde69cc4058e51b5626b67beafa | exe | Loki | |
| 2022-06-21 10:05:05 | 9b44c677587d3cbd6eeb546e50011fbeb5e7e5ed5768d25858be6da683ba5bde | exe | Loki | |
| 2022-06-17 09:37:05 | 2bf23bcaac2fa52fde6e170575defcc11807e3409747e92e1cd0b8cf93c898b6 | exe | Loki |