URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	202.79.168.65
Firstseen:	2023-12-14 08:51:04 UTC
Total malware sites :	6
Online malware sites :	0 (0%)
Offline Malware sites :	6 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-12-14 08:51:05	202.79.168.65		SBL669379	AS152194 CTGSERVERLIMITED-AS-AP	SG	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2024-02-16 08:19:09	http://202.79.168.65/resFAkCna1.bmp	Offline		abus3reports
2024-02-16 08:19:06	http://202.79.168.65/pssa.zip	Offline	backdoor webshell	abus3reports
2024-02-04 11:48:46	http://202.79.168.65/fscan.exe	Offline		Rinolock72
2023-12-14 08:52:09	http://202.79.168.65/frpc.exe	Offline		abus3reports
2023-12-14 08:51:06	http://202.79.168.65/mazi.elf	Offline	ConnectBack	abus3reports
2023-12-14 08:51:05	http://202.79.168.65/a.txt	Offline		abus3reports

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2024-02-16 08:19:09	6b71172737e3261183d15636d80eeff6e2746ec980364f41dbeb8a06a65ea3f9	unknown
2024-02-04 11:48:46	78eed41cec221edd4ffed223f2fd2271a96224fd1173ed685c8c0b274fe93029	exe
2023-12-14 08:52:09	7251a83dbc0d7cf3975d21b03bcbe79723b5e0b1f7071c68eef81862fa58cf8b	exe
2023-12-14 08:51:06	c7b3d3da745510a14e3cc3ea75328b5bd948e1bd1b7d629c8fb348ace00af2fe	elf	ConnectBack