URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 202.55.132.154
Firstseen:2021-11-10 10:20:03 UTC
Total malware sites :26
Online malware sites :0 (0%)
Offline Malware sites :26 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-11-10 10:20:05 202.55.132.154SBL534430AS63737 VIETSERVER-AS-VN- VNyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-01-27 13:37:06http://202.55.132.154/glcouldB2/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2022-01-26 13:55:06http://202.55.132.154/couldA9/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2022-01-25 10:41:04http://202.55.132.154/intel(r)/vbc.exeOffline32 exe zbetcheckin
2022-01-25 10:08:33http://202.55.132.154/googlecould/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2022-01-25 09:52:06http://202.55.132.154/gcould/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2022-01-18 16:08:06http://202.55.132.154/oswindows10pro/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2022-01-17 07:30:05http://202.55.132.154/winos11pro/vbc.exeOfflineexe Formbook ext abuse_ch
2022-01-13 14:38:07http://202.55.132.154/oswindows11/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2022-01-11 17:14:06http://202.55.132.154/savecloud2091/vbc.exeOffline32 exe Formbook ext zbetcheckin
2022-01-11 14:29:05http://202.55.132.154/windows10/vbc.exeOfflineFormbook ext James_inthe_box
2022-01-05 08:28:06http://202.55.132.154/windows_ny/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2021-12-17 15:54:06http://202.55.132.154/021mscloud___wp/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2021-12-15 11:29:07http://202.55.132.154/____20388__0055/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2021-12-14 17:02:09http://202.55.132.154/____11679_2900/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2021-12-08 15:59:07http://202.55.132.154/mpy_cv_209_4780/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2021-12-07 12:13:07http://202.55.132.154/re_cv_9088_6001/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2021-11-29 19:52:06http://202.55.132.154/072500002_0/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2021-11-28 08:03:05http://202.55.132.154/981900000_2/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2021-11-25 18:44:06http://202.55.132.154/384500000_1/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2021-11-24 18:28:06http://202.55.132.154/4267111111_2/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2021-11-23 09:24:07http://202.55.132.154/76190111111_1/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2021-11-22 14:25:07http://202.55.132.154/48680c/vbc.exeOffline32 AgentTesla ext exe zbetcheckin
2021-11-22 10:42:06http://202.55.132.154/2290nw/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2021-11-17 14:47:07http://202.55.132.154/x386w/vbc.exeOfflineexe Formbook ext opendir abuse_ch
2021-11-15 09:13:05http://202.55.132.154/66w880/vbc.exeOfflineAgentTesla ext exe opendir abuse_ch
2021-11-10 10:20:05http://202.55.132.154/w7h009/vbc.exeOffline c_APT_ure

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-01-27 13:37:06c4771044788147e2c9acb052dfbf6d291400add558b59ad0e6d0c5f42f3ec3e1exeFormbook
2022-01-26 13:55:067a39f705b79a26591fa930c917ebf37ac8f0394017521970a45cb8c49c3bbb65exeFormbook
2022-01-25 20:04:047be38caafd74c51f9f934d9d30c635f9d87918467a30d7b1f1282808da06ab2dexe  
2022-01-25 10:41:04cdf20c82c5ba706febfd3eba184eed5cd888be35530ce5e881785588287d69f8exe 
2022-01-25 10:29:191c3f48c41ff949d4c6b27d671146abb3f13be640843027a5ec33177bca81aef6exeFormbook
2022-01-25 10:18:41731b5cd4aa18acb39bcfbb690aa93ef24f374c96b4d61845a58781241bc0bdeeexeFormbook
2022-01-25 09:52:06b63c82c7ada645bc96da74ebd031970c0ee2e7a568c2929181c146144682b2c3exeFormbook
2022-01-18 16:08:061485956980a9f44192c5e1f6c8a4c9b6359de63b4a95e7c257f4ba6f9492a8ddexeFormbook
2022-01-17 07:30:05942196f0ca8e1253e7dd381b1855e4b56b8874a2d5def9d472507ddaf306ac86exeFormbook
2022-01-13 14:38:07a3c1b0817789d0b691bcbfa175958d2b24ad98020ba776c11aadde1d89a964baexeFormbook
2022-01-11 17:14:0673c029fbd27d0c281ac91d030160bd9ba859ab57db73b5fd7011f470ab90fc8eexeFormbook
2022-01-11 14:29:0510aa7088156f972d7f44c8183c9b26c4ca290e5e1b92b59585a91b9946fb73e2exeFormbook
2022-01-06 20:10:044cdb484aff91fc4c74a8f2750296212dd12af808fee3e01bf9b8d0feafbd8fc1exeFormbook
2022-01-05 08:28:06dc8c2ca84a7c5468cfb7b6bf59396e0333c8d145dc08fd1efbbebd9fa0082dd7exeFormbook
2021-12-17 15:54:06fa20666ddef2dcc581feec3be79cd35b4d9f44e2dc713ee0eaeae73673b83b0cexeFormbook
2021-12-15 15:12:22f68fa6b1bbbc7654157a918b34bb633c008a0e8f9cf608e763ddade76c543791exeFormbook
2021-12-15 11:29:07497ca74514404b8699709d6fd3e3ab89cbd5eeb8fb1a5dea69561297f6a5e09aexeFormbook
2021-12-14 17:02:07b5334d7f1855536729093e624f9a5b548cdf0c74db12aba62280f7064090e4a0exeFormbook
2021-12-08 15:59:07f00c0f04ef631da780c92bd7249339579672e0898ed1ff05fa7617d2c182e682exeFormbook
2021-12-07 12:13:07ffeca3430402f8d3862b9fbed99a0d376828de09665b4feee38b7231098d9171exeFormbook
2021-11-30 18:59:37e232396cca9b1a0136034efbe4c83270b49729f9595ed196a1d33d7993187a88exe  
2021-11-29 19:52:06992ba1b139e91db060bd5d50e486447e5b1b85f4629fd7be5baf83b33478860cexeFormbook
2021-11-28 08:03:057e1902c99be3570624c34b1a087ca24ed8d47430374b6a2366d0432cb3e2a423exeFormbook
2021-11-27 08:26:09e1201ef373367cba3508aa8b5006b8ec1aa34adde7147b1bba66173ee5af81a8exe  
2021-11-26 07:31:28e70cf40a69534b09d5765f2abfdee22b517f9303dee48a24aaaf7d34a82e7f01exe  
2021-11-25 18:44:06c98eac88f8f4243d7303b806cb58e0a89e33270cb4b33457c91938a2b2746238exeFormbook
2021-11-24 18:28:0659564998eea247b74fae4eda4ec4d033c71dac44ee51d9317df8dd88d0fc4fd7exeFormbook
2021-11-23 09:24:0704d583f5e12a75d174cd94b6c4599a5db274b7056a580e7a7ab9ded10d92f845exeFormbook
2021-11-22 14:25:076cfbaea63f104c3b3fbb7861a80a9696f66ff161aeedf7a36ba12b107490f0afexeAgentTesla
2021-11-22 10:42:063a6ba0e427cbc8428f15e8b347a9483fd11ad9aac6c65869c07665f76735f649exeFormbook
2021-11-20 14:38:16599b43dcb8a058249baa58e25eba17d1efdc24b7e82d07353923f2c4d718f540exeFormbook
2021-11-17 14:47:072a2ed868de7659c4ab333a44c6e55d69fa73edb4399997efeb48e39abfedc0a2exeFormbook
2021-11-15 09:13:05069bb81f95ee418773bbfe5a66c8f5ddcc3dcc66edccf2f338690a14da2296e4exeAgentTesla