URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 31.210.20.22 |
|---|---|
| Firstseen: | 2021-09-28 05:39:03 UTC |
| Total malware sites : | 9 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 9 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2021-09-28 05:39:06 | 31.210.20.22 | Not listed | AS14178 Megacable_Comunicaciones_de_Mexico_S.A._de_C.V. |  MX | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2021-09-30 19:45:04 | http://31.210.20.22/xxm/oii.exe | Offline | 32 exe Formbook  |  zbetcheckin |
| 2021-09-30 19:22:04 | http://31.210.20.22/xxm/zou.exe | Offline | 32 exe Formbook | zbetcheckin |
| 2021-09-28 06:20:06 | http://31.210.20.22/xxm/uo.exe | Offline | 32 exe Formbook | zbetcheckin |
| 2021-09-28 06:20:04 | http://31.210.20.22/xxm/cc.exe | Offline | 32 exe Formbook | zbetcheckin |
| 2021-09-28 06:16:05 | http://31.210.20.22/xxm/hak.exe | Offline | 32 exe Formbook | zbetcheckin |
| 2021-09-28 06:16:03 | http://31.210.20.22/xxm/bin.exe | Offline | 32 exe Formbook | zbetcheckin |
| 2021-09-28 06:16:03 | http://31.210.20.22/xxm/es.exe | Offline | 32 exe Formbook | zbetcheckin |
| 2021-09-28 06:16:03 | http://31.210.20.22/xxm/jol.exe | Offline | 32 exe Formbook | zbetcheckin |
| 2021-09-28 05:39:06 | http://31.210.20.22/xxm/ooo.exe | Offline | 32 exe Formbook | zbetcheckin |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2021-09-30 19:45:04 | 1fae82dd43e0af0adf50dea57a3a609682ea8a604d67701448ab91d3193f4eb1 | exe | Formbook | |
| 2021-09-30 19:22:04 | f136f4f9c59c4ff2582063222c6df106a3d1e3d7d9220ff73e3cb2ec487fe1db | exe | Formbook | |
| 2021-09-28 06:20:06 | a2d7a6453efd6b8c31af2e225ae7f93064d44fe328b5bb2e530d820e5e6ca5f8 | exe | Formbook | |
| 2021-09-28 06:20:04 | 83242a0f42be34e66e502e4a3a45d2470f3b24aef8a1d8484711f4439d7fe74a | exe | Formbook | |
| 2021-09-28 06:16:05 | 0c22acaa973cbb781aea92dc1fb5a8c7cc1fd2abd403f2a6b9703f8f1e1c8657 | exe | Formbook | |
| 2021-09-28 06:16:03 | c63cb761da677849b8382eb1d926569f00a04d57f2c789b63e7f2eb2e368a00c | exe | Formbook | |
| 2021-09-28 06:16:03 | daac858e9ca5b0c8044385c2d94cbef17c41b0bd5c569ad7e03f0a51b4caab7a | exe | Formbook | |
| 2021-09-28 06:16:03 | 129d230573fdb00a681a7f0c507bc16d2efcd08c4408f544f1d7653162b2cd92 | exe | Formbook | |
| 2021-09-28 05:39:05 | 67cb5ce28fc7e9a5dae6c7be6da453844762fdea43d985cfc761c1ded66487f0 | exe | Formbook |