URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 205.185.122.246 |
|---|---|
| Firstseen: | 2020-05-13 14:27:02 UTC |
| Total malware sites : | 2 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 2 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2020-05-13 14:27:07 | 205.185.122.246 | Not listed | AS53667 PONYNET |  US | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2020-06-10 05:51:03 | http://205.185.122.246/files/june9.dll | Offline | dll ZLoader  |  abuse_ch |
| 2020-05-13 14:27:07 | http://205.185.122.246/files/may13.bin | Offline | Parallax ParallaxRAT | Anonymous |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2020-06-10 11:37:16 | c653365657fbf65429ad845d0a0d93106e972aca929739560ff4b4796bd2be08 | exe | ZLoader | |
| 2020-06-10 05:51:03 | 0829886e0ca34a32fa545e0a53d7a2208d963b7b826a14aefde94d9ff4f549e5 | exe | ||
| 2020-05-13 16:01:15 | 76c2929d5ccb9232c3e3b9825bbde0f7fb135a1cdc035297322212b48f1b91c3 | exe | ParallaxRAT | |
| 2020-05-13 14:27:06 | 2ae1c7a5828344b803f6c5085ff52866be49fc5ec3c3e868d850283a6e8fce59 | exe | ParallaxRAT |