URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 35.178.245.215 |
|---|---|
| Firstseen: | 2022-11-03 09:01:03 UTC |
| Total malware sites : | 7 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 7 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2022-11-03 09:01:04 | 35.178.245.215 | ec2-35-178-245-215.eu-west-2.compute.amazonaws.com | Not listed | AS16509 AMAZON-02 |  GB | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2022-11-14 10:58:05 | http://35.178.245.215/779/vbc.exe | Offline | exe opneidr RemcosRAT  |  abuse_ch |
| 2022-11-12 08:25:06 | http://35.178.245.215/233/vbc.exe | Offline | exe opendir rat RemcosRAT | abuse_ch |
| 2022-11-12 08:25:04 | http://35.178.245.215/__________0000___________... | Offline | doc opendir rat RemcosRAT | abuse_ch |
| 2022-11-10 12:37:05 | http://35.178.245.215/670/vbc.exe | Offline | exe opendir rat RemcosRAT | abuse_ch |
| 2022-11-08 07:15:06 | http://35.178.245.215/250/vbc.exe | Offline | exe opendir rat RemcosRAT | abuse_ch |
| 2022-11-03 09:01:04 | http://35.178.245.215/zxzxaa_----_-_-_------zxz... | Offline | doc opendir | abuse_ch |
| 2022-11-03 09:01:04 | http://35.178.245.215/400/vbc.exe | Offline | AgentTesla exe Formbook opendir | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2022-11-14 10:58:05 | 34a28524e0c669a18d0160728935aa95ae4c33325499515efddfcc13fa1a941d | exe | RemcosRAT | |
| 2022-11-12 08:25:06 | 1e7e4ce9fa5c34c4bd330c45e18b9766b47078c84c7584573921b0f8fa76bfc7 | exe | RemcosRAT | |
| 2022-11-12 08:25:04 | 03a785d662fab866269f06538316bd06103abecb28f10e26f02b82d3e43a2887 | rtf | RemcosRAT | |
| 2022-11-10 12:37:05 | 4d54ba1e4eccdeaa5423f0bae61f1f97a9e21afc4ba3db55f6e6b78d84bf26cf | exe | RemcosRAT | |
| 2022-11-08 07:15:06 | 790b3b8530edbb84ca3a96c2dead6309fd0c12e7f2c08083fc363fe7588d4000 | exe | RemcosRAT | |
| 2022-11-03 13:47:39 | 6ab86203a97749492649d6d0676a0e17f0d22f90b53cfdeb25d6c615a1732075 | exe | AgentTesla | |
| 2022-11-03 09:01:04 | 25b0e3522009088a48e1301bdf17e19a6552880cb42ce49c3f1d8882747722b7 | unknown | ||
| 2022-11-03 09:01:04 | 2a120e17b0bdb650b18850d94ed56e7591ca7e3d3ae30a9d34e27e898b871682 | exe | Formbook |