URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	20.83.148.22
Firstseen:	2024-11-26 11:54:04 UTC
Total malware sites :	33
Online malware sites :	0 (0%)
Offline Malware sites :	33 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2024-11-26 11:54:10	20.83.148.22		Not listed	AS8075 MICROSOFT-CORP-MSN-AS-BLOCK	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-03-21 19:30:31	http://20.83.148.22/02.08.2022.exe	Offline	censys CobaltStrike	DaveLikesMalwre
2024-12-12 06:45:10	http://20.83.148.22:8080/test30.exe	Offline	Cobalt strike CobaltStrike	lontze7
2024-11-27 10:30:11	http://20.83.148.22:8080/test29.exe	Offline	Cobalt strike CobaltStrike exe opendir	Joker
2024-11-27 10:30:11	http://20.83.148.22:8080/test27.exe	Offline	Cobalt strike CobaltStrike exe opendir	Joker
2024-11-27 10:30:11	http://20.83.148.22:8080/test26.exe	Offline	CobaltStrike exe opendir	Joker
2024-11-27 10:30:11	http://20.83.148.22:8080/test28.exe	Offline	CobaltStrike exe opendir	Joker
2024-11-27 10:29:06	http://20.83.148.22:8080/test25.exe	Offline	CobaltStrike exe opendir	Joker
2024-11-27 10:29:06	http://20.83.148.22:8080/test24.exe	Offline	CobaltStrike exe opendir	Joker
2024-11-26 11:55:30	http://20.83.148.22:8080/test12.exe	Offline	CobaltStrike	Joker
2024-11-26 11:55:29	http://20.83.148.22:8080/test6.exe	Offline	Cobalt strike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test18.exe	Offline	CobaltStrike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test17.exe	Offline	CobaltStrike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test-again.exe	Offline	Cobalt strike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test7.exe	Offline	CobaltStrike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test8.exe	Offline	Cobalt strike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test22.exe	Offline	CobaltStrike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test21.exe	Offline	Cobalt strike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test14.exe	Offline	CobaltStrike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test15.exe	Offline	CobaltStrike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test_again2.exe	Offline	CobaltStrike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test13.exe	Offline	CobaltStrike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test16.exe	Offline	CobaltStrike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test_again3.exe	Offline	CobaltStrike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test20.exe	Offline	CobaltStrike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test11.exe	Offline	CobaltStrike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test5.exe	Offline	CobaltStrike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test23.exe	Offline	CobaltStrike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test_again4.exe	Offline	CobaltStrike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test10.exe	Offline	Cobalt strike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test19.exe	Offline	Cobalt strike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test10-29.exe	Offline	CobaltStrike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/test9.exe	Offline	Cobalt strike	Joker
2024-11-26 11:54:10	http://20.83.148.22:8080/pantest.exe	Offline	CobaltStrike	Joker

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-03-21 19:30:30	ff05bf8b3d2b34a578b743a240ab59c0750504c5e203df1ff5ece6927dc3167e	unknown
2024-12-12 06:45:09	e2f0800a6b674891005a97942ff0cf8ab7082c2ecfc072d5c29cd87ecb1f09f6	exe	Cobalt Strike
2024-11-27 10:30:11	b9a30bd6a26cade7cd01184c4f28dd3c18da218a3df2df97d3b294b42e34ef14	exe	Cobalt Strike
2024-11-27 10:30:11	819105084e3cccedac4ae2512a171657b4d731e84333a561e526d2b4c2043257	exe	Cobalt Strike
2024-11-27 10:30:11	db032c18992b20def16589678eb07e0d3f74e971f4efc07196d7cd70a16753bc	exe	CobaltStrike
2024-11-27 10:30:11	8978e8d5c2cdf2620aa5541469ac7f395c566d7349f709c1d23dda48a0eda0d0	exe	CobaltStrike
2024-11-27 10:29:06	19fd10efb6bdfb8821692fd86388a1feae7683a863dd4aa1288fcd8a9611b7c2	exe	CobaltStrike
2024-11-27 10:29:06	ad01183c262140571a60c13299710a14a8820cc71261e3c1712657b9e03f5ee1	exe	CobaltStrike
2024-11-26 11:55:30	d58fee4abb20ce9214a9ed4ae8943a246a106bbe4f2b5332754c3b50ce7b0995	exe	CobaltStrike
2024-11-26 11:55:29	49bf8246643079a1ec3362f85d277ce13b3f78d8886c87ee8f5a76442290adde	exe	Cobalt Strike
2024-11-26 11:54:10	994d0670d75433df8e0f2cce833d19d3045d3527143ce2ccf4cb4c04d4157a62	exe	CobaltStrike
2024-11-26 11:54:10	bc9e52cd6651508e4128eb5cc7cab11825b0cb34d55d8db47b2689c770c1b0b1	exe	CobaltStrike
2024-11-26 11:54:10	55eb3a38362b44d13ae622cc81df37d1d7089c15f6608fd46543df395569e816	exe	Cobalt Strike
2024-11-26 11:54:10	29cfae62adef19cd2adf20e32908289270ebd3bdd52b407818b8f641bfb1314a	exe	CobaltStrike
2024-11-26 11:54:10	67256a1f764ec403d8a1bcb009e701069b815db72869eae0b59dab1f23ebc8e8	exe	Cobalt Strike
2024-11-26 11:54:10	4ab79ee78e0abe5fff031d06a11f1de1a9e0c935097e1b829ad3e8b077700936	exe	CobaltStrike
2024-11-26 11:54:10	407f4efed0f09c97d226da99b030bf628fcd9a2f8ee1416c1f4f1bd482d372a8	exe	Cobalt Strike
2024-11-26 11:54:10	b105f79e0eac7079fc2998949eee28fb0bf7f9a08c4912477031ac8d7e897406	exe	CobaltStrike
2024-11-26 11:54:10	0ef39ccad2c162a5ab7dc13be3bba8f898fb38ba2f7357e840bd97456537decd	exe	CobaltStrike
2024-11-26 11:54:10	4801ead85ca08f439f695f198f5a87032c688143b3fe679b2b0872102c0d58ea	exe	CobaltStrike
2024-11-26 11:54:10	4c3618c90ca8fac313a7868778af190a3c22c8c03132505283b213da19ce9b7f	exe	CobaltStrike
2024-11-26 11:54:10	0961766103f8747172f795b6cbf3c8ef06a1ded91fe49ff0f2f280cc326d1d9a	exe	CobaltStrike
2024-11-26 11:54:10	9e808115bf83004226accb266fcbc6891f4c5bc7364d966e6f5de4717e6d8ed1	exe	CobaltStrike
2024-11-26 11:54:10	10591da797b93e3607264825685f76d6327f4463bf21953e66600abc6550b213	exe	CobaltStrike
2024-11-26 11:54:10	76ad6d0544c7c7942996e16fee6ef15aed4b8b75deb3c91551a64635d4455031	exe	CobaltStrike
2024-11-26 11:54:10	cb1eee26a7d2050feb980eccb69d35c05b5a0d28821972df19d974b386d9e4fe	exe	CobaltStrike
2024-11-26 11:54:10	8c3924e850481889d5423eb7131833b4e828bf289d3f1eb327d491cb85a30d61	exe	CobaltStrike
2024-11-26 11:54:10	b01b19c4d71f75f9ec295958a8d96a2639d995c20c133f4ffda2a2dabe8a7c28	exe	CobaltStrike
2024-11-26 11:54:10	f38408d7e7dd4873930980fedfa841d515d3b4e12a7f33ba1d384c627186afda	exe	Cobalt Strike
2024-11-26 11:54:10	c2c06c7b68f9ac079a8e2dcab3a28df987613ec94dbb0b507da838de830dcaa8	exe	Cobalt Strike
2024-11-26 11:54:10	ce94cf176e146813c922782ded112003e45749cb07bb7c635241c1c39e54a36a	exe	CobaltStrike
2024-11-26 11:54:10	520db0cc6b1c86d163dff2797dcbc5f78b968313bedea85f7530830c87e0287f	exe	Cobalt Strike
2024-11-26 11:54:10	706dccc82df58b5d49a8bcccc655a9dce0d47410bc922eb9a91108e5a1f82cfb	exe	CobaltStrike