URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 3.36.53.50
Firstseen:2021-05-14 06:45:03 UTC
Total malware sites :12
Online malware sites :0 (0%)
Offline Malware sites :12 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-05-14 06:45:09 3.36.53.50ec2-3-36-53-50.ap-northeast-2.compute.amazonaws.comNot listedAS16509 AMAZON-02- KRyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-05-14 11:59:08http://3.36.53.50/dose/origin-009.exeOfflineexe Formbook ext zbetcheckin
2021-05-14 11:55:08http://3.36.53.50/dose/xele-097.exeOfflineexe Formbook ext zbetcheckin
2021-05-14 06:46:09http://3.36.53.50/dose/origin.exeOfflineexe Formbook ext opendir abuse_ch
2021-05-14 06:46:08http://3.36.53.50/dose/hoome.exeOfflineexe Formbook ext opendir abuse_ch
2021-05-14 06:46:08http://3.36.53.50/dose/xele-07.exeOfflineexe Formbook ext opendir abuse_ch
2021-05-14 06:46:08http://3.36.53.50/dose/xele-09.exeOfflineexe Formbook ext opendir abuse_ch
2021-05-14 06:46:08http://3.36.53.50/dose/origin-09.exeOfflineexe Formbook ext opendir abuse_ch
2021-05-14 06:46:08http://3.36.53.50/dose/xele-08.exeOfflineexe Formbook ext opendir abuse_ch
2021-05-14 06:46:08http://3.36.53.50/dose/origin-08.exeOfflineexe Formbook ext opendir abuse_ch
2021-05-14 06:46:07http://3.36.53.50/dose/origin-07.exeOfflineexe Formbook ext opendir abuse_ch
2021-05-14 06:46:04http://3.36.53.50/dose/o.dotOfflineopendir RTF abuse_ch
2021-05-14 06:45:09http://3.36.53.50/dose/xele.exeOfflineexe Formbook ext opendir abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-03-16 02:51:47e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855unknown  
2022-03-15 18:48:31e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855unknown  
2022-03-15 15:22:09e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855unknown  
2022-03-15 15:13:09e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855unknown  
2021-10-04 01:47:45896374bff9a92cb450780b374e6c9d43cc49cc5f0dc1363a6842af5847dfa81eunknown  
2021-10-04 01:47:31472216c414ddbf072a5ac2a14d3afbb7316454ab8ef09d94457a4ad688bb75a9unknown  
2021-10-04 01:43:17e235fd1fed4b9d420c63785d47dd95c159f41ad8390995778a4d7f749cb0fbfeunknown  
2021-10-04 01:41:39318df58b438d55155a531ca7939de71d2278b5a801a52bae87d7e3a7822e4ef0unknown  
2021-10-04 01:35:5372d7b5974ca79a9921c5c3c1f72d9a92c30c05a3f2dc7118a0bd13b331e2313aunknown  
2021-10-04 01:35:44ac02876814bfd55e765f2d64cf333e13789f6e9aae0d52658263e61dab03ca90unknown  
2021-10-04 01:34:3297ef7174dcd586e8040ec6dca2238f0c7657be30af6921ba38f42a5d23c07a0aunknown  
2021-10-04 01:32:01495aef5204cdca39e4450637564cf9eb22ad590d141dcba7156a17ab5ab97eb7unknown  
2021-10-04 01:28:34a4f51940ace756563c3fc07058c8121a533817fec14b50e3f949d95822552818unknown  
2021-10-04 01:27:5265019838f6cf72be3e9592f18310d63f6bf9e3d41b341f5ebdb8506c1a7b2b19unknown  
2021-10-04 01:26:37575c52a11f293b9761ee0a651815bad33f2abebef6e89242f8169a9ec3c72dceunknown  
2021-10-04 01:24:348d66a297cf2256f171c48d969d8ef7dba5bcaf01fc3798b114682c980edbe77funknown  
2021-10-04 01:20:14d417c3072d7242bd056899ede834fb410a1e11cdc1f187baeb433c2871152580unknown  
2021-10-04 01:18:09dfdc5318ff53c1d275eb0e211b55673c16a27fd818344e250afddcde5878d14eunknown  
2021-10-04 01:14:15dee1ead8538f9b1237c7bbb1620e2f083380cd7bedf422cf86ee6b16bd4a972funknown  
2021-10-04 01:14:10a9e91e8cb00ff0d76915d9c2a11fd4a30f4be8d9399a9c11c898e650ab2ababfunknown  
2021-10-04 01:07:2841b84af7b4063bc65c73372afa62d9ba888e8f6e2ebaa59e67c463777586ce87unknown  
2021-10-04 01:06:40919bbb1619f593490e8bcc1bd4594d8383f568c4cdb0a31d49ef3fcd4ee9b9b9unknown  
2021-10-04 01:04:485f4d2b36dda782055a84fa80aadaab5ba9bf3bb47d0bf4ad93b00b52b39c8d97unknown  
2021-10-04 01:02:04a0db73784227405eb2df5dfdf6c8eaa78bdae00407f1e3b082328adc26aba64bunknown  
2021-10-04 00:52:51796852e00b75d32b87b8ac09db603e6c7277e3b519edcd69f0c31e31f594f5b6unknown  
2021-10-04 00:50:540208ef9b78ffbaa620581c54339cf8347a87aeecc0ab9c99b676a8077dedf4e6unknown  
2021-10-04 00:41:11735afdc80fa8e09135347be4bf769355f0f27cc0af5a963a6c37387bf4124828unknown  
2021-10-04 00:28:01495fc6cc1d519934cfc7c9365c07e56a0f87730f71b1589746552c59eb9de457unknown  
2021-05-14 11:59:08d69e95a9ca264c1547cdb2475244a145e79a321a58d35c2b2dd6183a032aaf16exeFormbook
2021-05-14 11:55:08d69e95a9ca264c1547cdb2475244a145e79a321a58d35c2b2dd6183a032aaf16exeFormbook
2021-05-14 08:39:55e62bee8f0c99c6cf8eda6269bcea8963adb8edd4963381af0fdbd374a7c5b20bexeFormbook
2021-05-14 08:27:43e62bee8f0c99c6cf8eda6269bcea8963adb8edd4963381af0fdbd374a7c5b20bexeFormbook
2021-05-14 06:46:09d69e95a9ca264c1547cdb2475244a145e79a321a58d35c2b2dd6183a032aaf16exeFormbook
2021-05-14 06:46:08cf8267515b516bbd024f13e14fd7433a05e4917b7b7af2509680823c9e2aff0cexeFormbook
2021-05-14 06:46:08cf8267515b516bbd024f13e14fd7433a05e4917b7b7af2509680823c9e2aff0cexeFormbook
2021-05-14 06:46:0814b95763e86e899de22402ae2d7204ff7d9ceab85a12a1599a6c8d5964fa306aexeFormbook
2021-05-14 06:46:0814b95763e86e899de22402ae2d7204ff7d9ceab85a12a1599a6c8d5964fa306aexeFormbook
2021-05-14 06:46:080285b729fa9a511922d5bb84b6f8fc8496a591570e88c548fd5da39d03d97d4aexeFormbook
2021-05-14 06:46:07f3a5f73b6bef3d25071f3e2fb2f3c6402683d2770539e5b046bdc7b485ce3c0bexeFormbook
2021-05-14 06:46:070285b729fa9a511922d5bb84b6f8fc8496a591570e88c548fd5da39d03d97d4aexeFormbook
2021-05-14 06:46:04580fcb4aabec4ce45b738205b941104863253c17784a90f70bca9256854accc9unknown  
2021-05-14 06:45:08d69e95a9ca264c1547cdb2475244a145e79a321a58d35c2b2dd6183a032aaf16exeFormbook