URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	2.56.57.124
Firstseen:	2022-05-26 17:49:02 UTC
Total malware sites :	4
Online malware sites :	0 (0%)
Offline Malware sites :	4 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-05-26 17:49:03	2.56.57.124	clarkpennington.imatee.com	Not listed	AS3758 SINGNET	SG	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-06-06 16:52:04	http://2.56.57.124/hen.jpg	Offline	32 exe Formbook	zbetcheckin
2022-05-30 16:43:04	http://2.56.57.124/stan.jpg	Offline	32 AveMariaRAT exe	zbetcheckin
2022-05-27 07:06:04	http://2.56.57.124/ori.exe	Offline	32 AgentTesla exe RedLineStealer	zbetcheckin
2022-05-26 17:49:03	http://2.56.57.124/grace.jpg	Offline	32 AgentTesla AveMariaRAT exe	zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-06-12 21:35:33	31daf38bc11af2b2a75310c1070c8e23d8a856e3b1a5023317c60176ef302f7e	exe	RedLineStealer
2022-06-10 09:47:02	35c7c059d383f4eb45babef6987429090029162bbbeae347188c851547a6db24	exe
2022-06-08 23:27:07	146d606712c3be019a12bb7024be28453bb13f6bcfb2b9f29d9ed495b1e08eb2	exe	AgentTesla
2022-06-06 16:52:04	d080a745b7938d247a21fe80650dd1e392eb37326882536a111a16acb6b49082	exe	Formbook
2022-06-06 07:28:28	01f02a1e495393c03522cdebe1daa92930053d932055f0a3644562d2652003a6	exe	AgentTesla
2022-06-06 01:15:46	d15b43031ec396a13c78b0e0bacf53458388fb7604a15756d951ab35a2a77a47	exe	AgentTesla
2022-06-05 23:13:20	59f442a1ef0ed0ce7891f868e1aa234cff02ae471c6ab9bffdfbdb308065cd9f	exe	AveMariaRAT
2022-06-05 23:00:29	a417e0fe95218d13e0c0e5bd5de7a9f6821a32b83eb3b404a4ac1f532b48de90	exe	AgentTesla
2022-06-02 00:59:56	c1e9d93f50bf02c2adb4d8da178db35701a8a7ccc8a452740f68933829d6b1df	exe	AgentTesla
2022-06-02 00:15:17	29863b4eb0d89b1c869858f7c1a8c728663a457f5229f249c993faa73a0800e5	exe	AveMariaRAT
2022-05-31 04:29:35	20adf375c6834d13e2af9527aff0bb8bc9164bd63679162cdab140ea18d8a935	exe
2022-05-30 22:46:40	7b17b8aa3fc069bf16a6d6bf77b1379361db53ee67af442d4edbebb5e241cf40	exe	AgentTesla
2022-05-30 22:32:16	ae959ad530f2d23a9c41195458489cf9d238b7c8d59ef7f56d049929a56c3171	exe	AveMariaRAT
2022-05-30 16:43:04	22cdf9f3341f67fc5b6e088a0272c7dff1d0af01f923757d534230ce3327fc6a	exe	AveMariaRAT
2022-05-30 01:47:58	709a7672f763737e5490f42cc67e7de9e5c44cb85af34a546cdd4c519370cf2d	exe	AgentTesla
2022-05-28 08:11:01	03920d7fd96be69ab56cb8d5bb1968419254d064f7ff4630c05ff52f83eb3b36	exe	AgentTesla
2022-05-27 07:06:04	d771c9a2281f020dc96e9d38f050987a4c607790388017b8d1bf560851541e1a	exe	AgentTesla
2022-05-26 22:59:41	0a34a42c1ee5e4240dd3dd043f7fd3e9050dab56e8dcb024ffe8abab40c8e708	exe	AveMariaRAT
2022-05-26 17:49:03	4f52495f49903e95317345b2e0d7184b081c02b9a09fe36e14a7c058893fae50	exe	AveMariaRAT