URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 199.195.250.60
Firstseen:2020-06-30 12:06:27 UTC
Total malware sites :5
Online malware sites :0 (0%)
Offline Malware sites :5 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2020-06-30 12:06:28 199.195.250.60hss-ny-w-1.hoosiersoft.comNot listedAS53667 PONYNET- USyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-06-30 15:18:04http://199.195.250.60/gg/new-order0456.msiOfflinemsi zbetcheckin
2020-06-30 14:07:04http://199.195.250.60/gg/870410000.msiOfflinemsi zbetcheckin
2020-06-30 12:32:09http://199.195.250.60/gg/978905601.msiOfflineAgenTesla AgentTesla ext msi abuse_ch
2020-06-30 12:27:03http://199.195.250.60/gg/1307741.msiOfflineLoki ext msi abuse_ch
2020-06-30 12:06:28http://199.195.250.60/gg/11203780.msiOfflineAgentTesla ext msi abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-06-30 15:18:04593f5389ec09f5e9f520bff54fdd9e679a25e46b222fcc6d7ecbd7f95ed8629amsi  
2020-06-30 14:07:04ac0eaf90f2b4109be9c15354e7753f60f74572fe74a90c47718cd2d916af5d5fmsi  
2020-06-30 12:32:0915c7aaf96e773849126a63a0c6b567cd27825fe56ebe262098dc56c69432b531msiAgentTesla
2020-06-30 12:27:030864dbe292a5fc5e96f14f9e4164d3964660c45442f08a4151877ce4974d8ecbmsiLoki
2020-06-30 12:06:2875c0601db308796a7e8b5f045f908dd910a4a869cc53d544ed28726ad0eb0537msiAgentTesla