URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	2.58.149.219
Firstseen:	2022-04-12 12:03:03 UTC
Total malware sites :	19
Online malware sites :	0 (0%)
Offline Malware sites :	19 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-04-12 12:03:06	2.58.149.219		Not listed	AS212238 CDNEXT	NL	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-06-10 09:16:04	http://2.58.149.219/EWW.exe	Offline	exe NanoCore rat	abuse_ch
2022-06-03 09:01:04	http://2.58.149.219/WAU.exe	Offline	32 AgentTesla exe	zbetcheckin
2022-05-24 13:40:04	http://2.58.149.219/MMS.exe	Offline	32 exe NanoCore	zbetcheckin
2022-05-24 12:51:04	http://2.58.149.219/XUY.exe	Offline	NanoCore	James_inthe_box
2022-05-19 13:45:05	http://2.58.149.219/HOU.exe	Offline	exe rat RemcosRAT	abuse_ch
2022-05-10 11:21:04	http://2.58.149.219/asa.exe	Offline	32 exe RemcosRAT	zbetcheckin
2022-05-10 11:07:04	http://2.58.149.219/WCY.exe	Offline	32 AgentTesla exe	zbetcheckin
2022-05-10 06:54:03	http://2.58.149.219/wvi.exe	Offline	32 AgentTesla exe	zbetcheckin
2022-05-10 05:37:03	http://2.58.149.219/hfe.exe	Offline	32 exe RemcosRAT	zbetcheckin
2022-05-10 05:30:05	http://2.58.149.219/ESP.exe	Offline	32 exe NanoCore	zbetcheckin
2022-05-10 05:19:04	http://2.58.149.219/XTY.exe	Offline	32 exe NanoCore	zbetcheckin
2022-04-28 06:43:05	http://2.58.149.219/AXD.exe	Offline	exe rat RemcosRAT	abuse_ch
2022-04-27 09:31:04	http://2.58.149.219/CBZ.exe	Offline	exe rat RemcosRAT	abuse_ch
2022-04-14 10:27:03	http://2.58.149.219/AOY.exe	Offline	exe rat RemcosRAT	abuse_ch
2022-04-13 07:24:04	http://2.58.149.219/file/Fpctpjc_Jbcodntq.png	Offline	encrypted rat RemcosRAT	abuse_ch
2022-04-12 12:03:10	http://2.58.149.219/file/Jppxlhz_Itxaqmwg.jpg	Offline	AgentTesla encrypted	abuse_ch
2022-04-12 12:03:10	http://2.58.149.219/file/Tbtqglzcu_Oawpyxvi.png	Offline	encrypted rat RemcosRAT	abuse_ch
2022-04-12 12:03:06	http://2.58.149.219/AWC.exe	Offline	exe rat RemcosRAT	abuse_ch
2022-04-12 12:03:06	http://2.58.149.219/CTC.exe	Offline	AgentTesla exe	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-06-10 09:16:04	37f06a03ca9d8ac7c86ee2b3d7e6ee399aa56b9356caf00f802021f9247ac70f	exe	NanoCore
2022-06-03 09:01:04	3f0da0c03ce3305ae5fdc9d58b9dc4b8ab209abbd75743472440d21899c6167b	exe	AgentTesla
2022-06-01 11:49:25	78c21b763279fb9cd065137aae3fc8f21cf1846492799df0baf0155c4a60789a	exe	NanoCore
2022-05-24 13:40:04	d84c58ea7491dd341d6d5616f6ee21f2cf1d1b9d49b5624a15c82071ed5c61b5	exe	NanoCore
2022-05-24 12:51:04	dc5a63b06f0be5f96267b2ebfe28a4e7644de021cce402dd666f7454233bd96b	exe	NanoCore
2022-05-19 13:45:05	17f5cb1dba8dd540465e9135d6541f2a7f871caee59c8afc63cf17e820c0f22f	exe	RemcosRAT
2022-05-10 11:21:04	2873e1ab0b1bf260f4d8bfeb50a6305036bfb9b8aed7c1e4f227484a8fdd4862	exe	RemcosRAT
2022-05-10 11:07:04	e46d797785ee0837fbe4f643f1f8bfe3331306c3b46b2505b72e2e562b6b8525	exe	AgentTesla
2022-05-10 06:54:03	e365bf7a715adc7c10d91e2961c5a43a6831a85d93980c56e580f81d1239adbf	exe	AgentTesla
2022-05-10 05:37:03	22fef69204d216970d72ecfcbf27fd0634ed03271bbe5c486c02fda6daeb51df	exe	RemcosRAT
2022-05-10 05:30:05	e8ee83f88ca4002f3705768b89c154e280e7b30ec022ae9ee54988c9499a9560	exe	NanoCore
2022-05-10 05:19:04	63a0aaadde3fc67e75ade5ec3840257a47981567fbc9870b30726fa93efe6a63	exe	NanoCore
2022-04-28 06:43:05	721d0deb1e187d8bfabb4e8e08d78e931a316a298c0675301d6bb539e5e57f68	exe	RemcosRAT
2022-04-27 09:31:04	bc4cee107dc86c0b272beea0bf170d2908082689bad99e57e695c9cea006dac6	exe	RemcosRAT
2022-04-14 10:27:03	1b2ff2a125694851ba8469c670bc5d3a741d67a62f3c0d12704ee6c6b161c688	exe	RemcosRAT
2022-04-13 07:24:04	6d777034f043b8febf6c15f1a850ded27cb493ddcb11a9b8a2e5f16303ab4f2c	unknown
2022-04-12 12:03:10	a1bbc8bd2ee5837acf4a0a11d03439f3c0c03434ffa3e7a48889eceb48f2a4e9	unknown
2022-04-12 12:03:10	e6c4794b3deab23262e1356289134384c105a52b700ce63645b22580792545a7	unknown
2022-04-12 12:03:05	902f4adc25817f82a216b60a7658cb9a267e877ea0197d69cc279fc02ba4906d	exe	RemcosRAT
2022-04-12 12:03:05	a4cafd75b158468af748409a3cdac4f5245f74cbfea052cc4052f6d6a526cc73	exe	AgentTesla