URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 2.58.149.41
Firstseen:2022-03-13 19:13:03 UTC
Total malware sites :26
Online malware sites :0 (0%)
Offline Malware sites :26 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2022-03-13 19:13:05 2.58.149.41Not listedAS212238 CDNEXT- NLyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-07-07 15:25:06http://2.58.149.41/aguerozx.exeOfflineAgentTesla ext Anonymous
2022-06-17 13:53:33http://2.58.149.41/32/wealthzx.exeOffline c_APT_ure
2022-06-17 13:53:33http://2.58.149.41/32/plugmanzxzx.exeOffline c_APT_ure
2022-06-16 05:57:04http://2.58.149.41/plugmanzxzx.exeOfflineexe Formbook ext abuse_ch
2022-06-13 15:34:04http://2.58.149.41/chiddyzx.exeOfflineexe Formbook ext AndreGironda
2022-06-13 03:30:16http://2.58.149.41/davidhillzx.exeOffline32 AgentTesla ext exe zbetcheckin
2022-06-10 09:42:04http://2.58.149.41/villarzx.exeOfflineFormbook ext SwissPost_CERT
2022-06-10 08:38:04http://2.58.149.41/randyzx.exeOfflineexe Formbook ext GuLoader ext abuse_ch
2022-06-08 14:19:03http://2.58.149.41/samizx.exeOfflineFormbook ext James_inthe_box
2022-06-08 02:47:05http://2.58.149.41/plugmanzx.exeOffline32 exe Formbook ext NanoCore ext zbetcheckin
2022-05-04 17:09:04http://2.58.149.41/obizx.exeOffline32 exe Formbook ext zbetcheckin
2022-04-18 19:12:04http://2.58.149.41/hussanzx.exeOfflineFormbook ext James_inthe_box
2022-04-16 19:12:03http://2.58.149.41/44444444.exeOffline404KeyLogger exe snake SnakeKeylogger ext AndreGironda
2022-04-12 15:16:04http://2.58.149.41/bluezx.exeOfflineAgentTesla ext Formbook ext GuLoader ext RemcosRAT ext xloader James_inthe_box
2022-04-12 15:10:04http://2.58.149.41/gregzx.exeOfflineexe Formbook ext abuse_ch
2022-04-12 13:34:04http://2.58.149.41/wealthzx.exeOfflineAgentTesla ext SnakeKeylogger ext James_inthe_box
2022-04-05 12:36:04http://2.58.149.41/ikmerozx.exeOfflineAveMariaRAT ext exe WarzoneRat Cryptolaemus1
2022-04-05 10:51:03http://2.58.149.41/tycoonzx.exeOfflineFormbook ext adrian__luca
2022-03-23 14:14:03http://2.58.149.41/mezx.exeOfflineAgentTesla ext Loki ext James_inthe_box
2022-03-23 04:33:04http://2.58.149.41/psmzx.exeOfflineAgentTesla ext AveMariaRAT ext exe Formbook ext AndreGironda
2022-03-21 15:36:04http://2.58.149.41/ashleyzx.exeOfflineAsyncRAT ext Formbook ext DFNCERT
2022-03-16 16:08:04http://2.58.149.41/nzezx.exeOfflineexe NanoCore ext AndreGironda
2022-03-14 20:02:03http://2.58.149.41/mannzx.exeOfflineAZORult ext exe Formbook ext Loki ext RedLineStealer ext SnakeKeylogger ext AndreGironda
2022-03-14 19:44:04http://2.58.149.41/emezx.exeOfflineexe Formbook ext AndreGironda
2022-03-14 11:23:04http://2.58.149.41/catzx.exeOfflineNanoCore ext pr0xylife
2022-03-13 19:13:05http://2.58.149.41/mpomzx.exeOfflineAZORult ext exe abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-07-07 15:25:062957545e251a6c256683b97812621b9a5769ae5baaf6f2472c40cebe11f18f03exe AgentTesla
2022-07-01 13:58:10c085bc0fdaa618fb6d1d8b6db3de60b533075613d47779c18cd7af6ef9f87101exe Formbook
2022-07-01 09:08:35987c22e1dc325066b45d0e996d8c0b4ff9fd3cc96f814e41ae0f80914b6b81e5exe Formbook
2022-07-01 05:47:512c2644a923b6945bac3aa4698e16832c6b66634776f3fe7e7cde16d1df93858bexe Formbook
2022-07-01 00:29:12ba86cd40bdd5764a49b0a0217a32d88ec456cd484d722f3db26bd6fbe3fc01e7exe  
2022-06-16 06:44:42bd160397bf50b0145ca8a7c72841a79d9280e60d1a005535e06ccec368f70122exe  
2022-06-16 05:59:167173045b1feed92ea99ff2018433c15020629ec7b5e907f39a9ebd1de651d98cexe  
2022-06-16 05:57:04f9eafc2e0d113c33ff2ef3c080001165cde3e53b379662b35643d4cfaab9e25cexeFormbook
2022-06-15 19:50:20051487e7b99e78e5f9fb16fe320bec9cf0fae148e2fbc8e22f16b689bcf1d0c9exe  
2022-06-15 18:45:07d83aa0f6cae89cd0af385215ba7b08b997f876a1c87b60a14ff05fe1e1dccb8aexeAveMariaRAT
2022-06-15 18:39:32f9eafc2e0d113c33ff2ef3c080001165cde3e53b379662b35643d4cfaab9e25cexeFormbook
2022-06-15 11:01:03ff39e3b670a02fbdb1f24e9cf9f85a9eeb1f3a00e75f0dbac83a18b1fcdcd3f5exe  
2022-06-15 10:24:560cc933690b9512bdb51abbe93ef3c495be62aba3f4a57fbbfc8c050ab365805eexe Formbook
2022-06-14 12:31:52e79387b4f694e147f4a6cf4b181b650c8b1da5f4ecc47799f3964e830ac11bb6exe  
2022-06-14 12:02:41069ea459cef8681cb8ad4158e52fea53f37e02891c0a53da0f4eb335a9f143beexeRedLineStealer
2022-06-14 11:46:29b9a68b7741ffa5390150392587ff6793168b1ad6e97f05d4b336b826218eeae8exeRedLineStealer
2022-06-14 11:01:0085a10f9329744d8c7ed58797d3a38beea00541b6fd45a51fe1e6887d4caf411fexeFormbook
2022-06-14 10:55:3469af526dae44e6d6cd6c83d443d2129c948e7c46d099d89f48a4bbecbab61cfdexeFormbook
2022-06-14 09:52:564b3f362d3387425cabf5d14c5aa48002769c4e876398dae8b797870c99752db0exe Formbook
2022-06-14 09:50:597f3be904dae737fe2787c4bc430ae3f3d08fab110d6ec2f9d5d951159bb44af0exe  
2022-06-14 04:34:27946ef46761c09fb06c70a1109c82230230d148137405a6ca99d5149a265bdc5bexeFormbook
2022-06-14 04:05:520a59d844d300f7889362024d42e17eda71f2cc2c7f28d70081a3cda287408986exe  
2022-06-14 04:05:07f55b3a4dc7510439401745fdb3330df93d61b35be96adc52db3ac3a23f3d93c1exe  
2022-06-14 03:39:349e3934740535ec45aaa1d9f7a47cafc668d4f9e8ab2b688515a0a540785e7087exeRedLineStealer
2022-06-13 18:09:3796ad797d56d4f371624479d61fb8d760a745dd378d166b3ced7fa8146231f4e8exe  
2022-06-13 17:58:343d2c5e2e893f6b84a86241f422f27814b799a65859daa15377f0c8a800d6a81eexe  
2022-06-13 15:34:0425e097a39a96c50952ce3e8131cbd7c80914e7fd1cfd57ae4eb9397a597b47e0exeFormbook
2022-06-13 09:01:33e2cad68c34f33a78a94919fee5c51d1b100f4f74fb8a0fac042f59c4ff541d94exe  
2022-06-13 09:01:1664eb46bef1eef1ffbaea1d5d417ca72e88db24037d8f5d70a03f7f25ca933a75exe  
2022-06-13 08:50:112b25983b64ac5f3798cc288cb3b33a1ca891e36cd262cc875067523fb880374eexe SnakeKeylogger
2022-06-13 08:41:300c1958b0b084f1c315c45a24efb611c0cde0637a68b54687c664c4006640979fexe AgentTesla
2022-06-13 08:20:464c80b15f618430bbdf83f50f013a96c559f99effbfb0a8812f10bfddd086064bexeAveMariaRAT
2022-06-13 06:39:138d8dd56667ebdb071299038d8863053c072e0083a5ac5bbd9f2c2c5fd2587821exeSnakeKeylogger
2022-06-13 06:36:36849bd4366cb298e9466266f8efc844874a69a9ee75b81ff01827c7a403d8b3dfexe GuLoader
2022-06-13 06:12:362e4e995b85b7e9b9e809c840e9331b1976240bfe94b5edff1641e09026e28349exeSnakeKeylogger
2022-06-13 05:13:50ddd28f7f398476788cb6303c4aaf8fad5a316e68e17b57836ef57a089ce41740exeFormbook
2022-06-13 04:48:2101b796e6344f0aed01a755666640702444b02776a00bba9797d208730f948ac8exeFormbook
2022-06-13 03:55:18592b026b4d94568a2e9b9ee96b6628bc004ab94165b1b6c8b00e0693b5c99992exe  
2022-06-13 03:30:16c8b858836e69065e9ac09bcb9722b9afab7d291ecd4db11dfe205ef3264f73e0exeAgentTesla
2022-06-13 02:36:290b6c6f381fa19e3c3d2a4dbd80adcc7724f23c57e72e0add9a7aec9dfcbe327cexeNanoCore
2022-06-13 02:24:16ba56b91606f6373797358ed875733e1e0efdfe8c9697cf7a946a77ab3479243eexeAgentTesla
2022-06-12 23:59:485d5dffaf41046231715971dee9add3f4c62a27c8ace0b4702b709e061a047cdbexeAgentTesla
2022-06-12 17:01:29d466cf23cd8845ae7772574dea01b4acbb0c14e4f737b04a57df38da8b0ae321exe Formbook
2022-06-12 12:27:4105a83db86588f92b1f68afd472b57e4e44c04e668b152bc8e483a4f917f1a27aexe  
2022-06-12 11:11:215616aed7866133d2fca39248c8e26cb1d7ab4f088b65eadedcc616f6f8ac13c5exe  
2022-06-11 14:34:13b11adc9e331e7bcbc8cbae4a8a2f6a456b5596bcf8049072a592a6bcebf2f664exe Formbook
2022-06-11 14:28:16f44a2bd961c51934b940452694125fbce0f6a0a10b3e60ca95dee11f813e1a7fexe Formbook
2022-06-11 14:14:11fc8d47ab825611a1fcd4f5e6d7d3f5f82873a220c702aeda8d2072bbd1d522baexe  
2022-06-10 12:21:55f2fc954401f4be7808072fe27332912643fb66340da3dfec06056f521ba7136bexe  
2022-06-10 11:34:3408fa4c089f40cee59514d946f60e0da1dc3898f1b946a9037c0d012e53e42ea1exe Formbook
2022-06-10 11:17:23aea1082a1496fbad5601324d371b217fd97597b9e65599507688bb3bb5e3bbefexe Formbook
2022-06-10 11:04:46d57218104ba4843668025eb6355779f7a36fed5e06c464b710fef3b98de883d1exe  
2022-06-10 11:00:0532adafbb2dde31b58c581fba4529b64fc63bf60edd5208ad674e52ccee17cf92exe  
2022-06-10 09:42:04d16928ea116bf3bfb6f3b51c833fd52a540e645ba60ef8842b4750cdd33080bbexeFormbook
2022-06-10 08:38:04516d04036325a5b8d02a92bc54f879454adb95f10c5782ad29caf17fcb1d47e4exeFormbook
2022-06-09 14:47:06ea686eef3f3467e0305477cf1759632fd744556b362b6571ec70e961fe9cd4dcexe  
2022-06-09 11:19:2220ab79cda3405249b033bd19bf4e7de25797664e8ae54d781ae36f28236c15deexe AveMariaRAT
2022-06-09 10:41:5967c422f6e70ab7f126b8b7eee480d4a0577015215359199b8e090aa855c0f199exe  
2022-06-09 10:16:3230e66e726d81b1f3fc5c48b7e619812b5682769ef9fd5e4be98706f58850b360exe AveMariaRAT
2022-06-09 05:57:303c29ade6ea5d05011a90fdfe39a3eb0a48738ffbec0ceb7a1bf2e4f321dfa557exeFormbook
2022-06-09 05:33:52bef4d2b112f31aa4e400f8a578eb87817ea1acda68d219f7c5d4387ceaf432cfexeFormbook
2022-06-09 05:01:28faea34e7c75efd701ec53a1767b8719725c91430164d28ec7853543be56acf41exeFormbook
2022-06-08 23:01:005e4433e97269a039b8019f2f66d24dba5e6641d97238ed46803793e1e71d8baaexe RemcosRAT
2022-06-08 15:52:04ac687e9f044af0ff976bffda1e272e9b8aa6a88ecbd1944594ca67485ddc6b87exe AveMariaRAT
2022-06-08 14:19:03e322a26ae84aa34c37b31d14fca0e535fa594d570765d93d3542d428e31da0c3exeFormbook
2022-06-08 13:53:25e9a379a7a0bec2e05abc9e95b41473ea999b8faa57f4e4aab6ae27eb9a35659cexe  
2022-06-08 12:04:568425a88a6f37dd87c2aac358fe3a248490b56bf4f7728620805f53bc166ceebeexe  
2022-06-08 11:54:58febb978e38144272e6868a6f9eb0a706dd8b84110671c950d8cfc94a782ec375exeSnakeKeylogger
2022-06-08 10:15:48c890f6556786c0c3bd8f2620c01139ae4bcdf0bb12e9b4328ef9dd721f0bed03exe  
2022-06-08 09:16:4117005c3f6ab6ebe800e76ba1ca0b8a2a3c5d4ae80d26ff8b3c243cd77c349bb4exe Formbook
2022-06-08 07:47:35e26d57d20573347570ab121da4e68e2c91f117758d3be696009c06aea9917794exe Formbook
2022-06-08 02:47:059530780503c903e1d83738e19e754c3756e067612adddcea2f64c25749b6a838exeNanoCore
2022-06-07 22:52:04181fd7b53768803803f237233c783ff3d8182f4e6560d0de84e7e342082d62c3exeSnakeKeylogger
2022-06-07 13:48:30e7360eb09aba6bffffb11d2b0b00923f0ec4406561f8f30936e55b920858cf3bexe  
2022-06-02 11:20:58724822c0f33c87c4b05fc64ff9c817348b4decd6dc2b3836fd51d0a97cf14949exe GuLoader
2022-05-13 09:20:1117f010ef410c5b3862600e5bb68ed50701dabf89bdf47fde54855cd1a2ac1778exe  
2022-05-04 17:09:048e821b21f721613d360dd307998fbc3be883a40388db9cf747f52282bb2bd6f9exeFormbook
2022-05-04 06:53:46ca3a1f727d3c7812e7aa13fa3eb2556a1809ce7abcf66c768cbab003c18df6ccexe  
2022-05-04 05:46:5278a2515202f0adf4b4a54a6e791a14eaa85d3b2989f5201fe05c64c55b365837exe  
2022-05-02 23:06:489f39d353d5f156e615e6cf058a45dd3a437a02e582940b86c5d24db3363d96dfexe  
2022-05-02 02:58:469ac06de0ab3464aefa19a385a38369f069ff6ceee10a2e35691d0e3a2dd5f4e2exeAveMariaRAT
2022-04-27 18:31:59dc20351f5143916c3be56337c798bc4d6389afe08c7a2fc610283989391c3604exeLoki
2022-04-27 03:29:09c377d4ba33414c4c1d17c9d0e650bb4a7b180ec4684d9d93ce91c4f1623aa0f0exe  
2022-04-24 15:39:3995238253abf331a4301fdb440c85821dd3027422330dabba0651999ed51a4e0cexe  
2022-04-22 00:28:003b6550678e55d4c9e190e430e166c71692c153675c839ce21deee83b5ead1a96exe  
2022-04-21 16:36:4515cdc3738968a706bf091081c9252614bd0b88463566c9d302b73ad5cbfa20ecexe  
2022-04-21 12:48:03e467de436bdab4d5135f3e96abe24eb7b912e9b8024dc020b39c0e5df4745304exeLoki
2022-04-21 11:31:00467f56bac6833fd37c3008e275c85a43352a3bc9712e803e7ebef5d86a47ce47exeLoki
2022-04-21 06:45:20756e345be599ee11b7749fdcf9d20f469700e46a33779c405fac4d3df8b0f8d0exeFormbook
2022-04-21 06:12:27c163d625749010e876b1e3c170944902c430af46a5e7b5283be19560e1fa5d17exeFormbook
2022-04-20 17:30:1971118e935b23f1ce813db4c7e8bc6780d3423aebb179b56e65ef798868a2a1b0exe  
2022-04-20 01:02:35eded9c78e74ca871e5604264160e190e165349cd2b07a35ebc75e3199f0d1b70exeFormbook
2022-04-19 13:46:54ca5c3b92cc3d548da5a93007d123a5bf220cb07710b4db37c6516b140e789fbaexeFormbook
2022-04-19 07:18:25a396367b7b3e4c3efda4ad18600a579f8439dfee2a7863463636702b02499308exe  
2022-04-19 06:14:357852218d62ced429453e33ba2385cac330960e030011fbb5559407bf9e322b1cexe  
2022-04-18 19:12:04650baaf8397e4aa4925a88c44c5ab63f5b61b4c03607eb511b3bd6dc6d98f652exeFormbook
2022-04-16 19:12:0366502063c5ee1c2cf1a783b46f1dddcec54f20cba83b5633abd775adb80ffd0eexeSnakeKeylogger
2022-04-14 14:06:42d50173dc59cba004a72f1dfab19e4da58c8e38127e7d101ef255cccfc53f3194exeFormbook
2022-04-14 13:41:3760c1e1bdf2a237e2cd35032e7e634bc76e0e9364bef46d17c0688bb8e095c8feexeFormbook
2022-04-13 23:45:21a214eab4e3b84f641d8c0e8bc9a7421da61260088b2b5e2a5da32ebdf29e9213exe AgentTesla