URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 212.14.244.222 |
|---|---|
| Firstseen: | 2025-11-06 20:59:04 UTC |
| Total malware sites : | 2 |
| Online malware sites : | 1 (50%) |
| Offline Malware sites : | 1 (50%) |
| Newest active malware site : | 2026-02-08 17:41:19 UTC |
| Oldest active malware site : | 2026-02-08 17:41:19 UTC (Age: 19 days, 10 hours, 34 minutes) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-11-06 20:59:07 | 212.14.244.222 | Not listed | AS12975 PALTEL-AS |  PS | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2026-02-08 17:41:19 | https://212.14.244.222:808/02.08.2022.exe | Online | censys CobaltStrike  shellcode |  NDA0E |
| 2025-11-06 20:59:07 | http://212.14.244.222:806/02.08.2022.exe | Offline | censys CobaltStrike |  DaveLikesMalwre |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2026-02-08 17:41:19 | b93c48a76e1af0e4ae8994bccd5bda4faa1f4207571f64c9e3fa2fb384c0adb3 | unknown | ||
| 2025-12-04 23:53:45 | 154b951c27854ccecf417da59493ac1b606dda13775025b8d893c85fab14612c | unknown | ||
| 2025-11-25 12:03:07 | 9618876e2af7dc20b08e553ae09e75e1de2d7c431ffa58a031831baeb433fbd2 | unknown | ||
| 2025-11-06 20:59:07 | 87ad41dc851ca5e34ba6e812e671292448b7f6683481764d58d26279f8356cac | unknown |