URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 37.120.222.121
Firstseen:2022-05-16 00:08:03 UTC
Total malware sites :15
Online malware sites :0 (0%)
Offline Malware sites :15 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2022-05-16 00:08:04 37.120.222.121Not listedAS9009 M247- DEyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-06-09 03:38:04http://37.120.222.121/store/items/74.exeOffline32 cutwail ext exe zbetcheckin
2022-06-09 02:42:04http://37.120.222.121/store/items/73.exeOffline32 cutwail ext exe zbetcheckin
2022-06-08 22:38:04http://37.120.222.121/store/items/70.exeOffline32 exe RedLineStealer ext zbetcheckin
2022-06-04 05:35:05http://37.120.222.121/store/items/67.exeOffline32 exe RedLineStealer ext zbetcheckin
2022-06-04 01:49:04http://37.120.222.121/store/items/71.exeOffline32 exe RedLineStealer ext zbetcheckin
2022-06-04 01:49:04http://37.120.222.121/store/items/68.exeOffline32 exe RedLineStealer ext zbetcheckin
2022-06-03 06:53:04http://37.120.222.121/store/items/63.exeOffline32 cutwail ext exe zbetcheckin
2022-06-03 06:44:04http://37.120.222.121/store/items/61.exeOffline32 exe RedLineStealer ext zbetcheckin
2022-06-03 06:44:04http://37.120.222.121/store/items/58.exeOfflineexe zbetcheckin
2022-05-21 14:36:06http://37.120.222.121/store/items/55.exeOffline32 exe RedLineStealer ext zbetcheckin
2022-05-20 18:51:04http://37.120.222.121/store/items/54.exeOffline32 exe RedLineStealer ext zbetcheckin
2022-05-19 19:30:04http://37.120.222.121/store/items/52.exeOffline32 exe RedLineStealer ext zbetcheckin
2022-05-19 11:10:05http://37.120.222.121/store/items/49.exeOfflineexe Gozi ext abuse_ch
2022-05-17 15:18:05http://37.120.222.121/store/items/34.exeOffline32 exe RedLineStealer ext zbetcheckin
2022-05-16 00:08:04http://37.120.222.121/store/items/48.exeOffline32 exe RedLineStealer ext zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-06-14 12:41:14ef59dbba5700bbf87952193a65aba19566308bdd572c690969526fdde4f5e910exe  
2022-06-11 18:05:29914d5829b8ec4e410c0e4ba18c6f44b5af52ba22eea4a5d46c11ddd58cf21e76exe  
2022-06-11 05:46:002f0d7290553d92d7adfe4486b6bc6eca98344b5e5206cf6f27316823d645f8e2exe  
2022-06-10 11:52:060a1bf3aba2715c8671b3b3c30d6c0825ee96ec0784bb31e6149b790b5061d804exe  
2022-06-09 03:38:04b392f2d4ca451b9b125219b6b4f17d491b76e5dc464cfe47f4963ba356db961fexeCutwail
2022-06-09 02:42:04dfde4df8173b90daa38575d60c96bfc157e045a04e16e46bf073a64fdfd1285eexeCutwail
2022-06-08 22:38:04bd7bdf1fe2307d49c71109ee8a7759b1919bccf1f0e6ee3daa76cf3834d7e3beexeRedLineStealer
2022-06-08 16:36:1947ffadda86571d9642135d259f21c26451a975fe277b7ad8687bc7ee5dd8269aexe  
2022-06-08 09:22:20df068daeb0780f5eb4a3a7adf50c3a52e36a64e0718881d0f88c32a834368d5aexe RedLineStealer
2022-06-07 23:52:26187e6cb834e42d832a4ced16565bf8b209b18601866cb36c25cace1239ced2edexe  
2022-06-06 21:00:53380f198e2d2818ca64f32e37c83958a6b8e4e451010874dacf6d040433b829fbexe RedLineStealer
2022-06-06 20:24:5958419a4fde7ae4ecf840fddc48c2b1834495d44cb6805425879182bc65976870exe  
2022-06-06 12:06:47b9d256f25b8149d1da737f546639d0c1df5024a5192bab2c8331dce262bcd869exe  
2022-06-05 11:25:412a4b5921cb6820b1f515f7429acc594ff5d955154b8b5dfd7057b994d04ef660exe RedLineStealer
2022-06-04 21:33:54cc4d172f559dd1bbc8d71e42ced60f85b80c06b08560d5b530811477b926c4f3exe  
2022-06-04 05:35:054ae9e2ab85203d10c2d5a8e4a236204af82bec2d6aa3bca13772ab7eae2b986eexeRedLineStealer
2022-06-04 01:49:04714ba1e4369f152990e8a9ec9b2e214a46f18185e8e5f6e6c1f480c277e5c077exeRedLineStealer
2022-06-04 01:49:04c91a726d5a55526f286ce86528f4a0a42250c1376aa4c651b3d06cc535665b80exe  
2022-06-03 06:53:04095a3f84debd7481b880016a770c211a793847f61c72499b4702b16fd9666b28exeCutwail
2022-06-03 06:44:0472c734d9063b759f2cb6e8c812a93133ad0c60a1ae4ec1c40344e357f83b2d0dexeRedLineStealer
2022-06-03 06:44:0486c1e8b03e5bf8c525aaec48ff09dfcde01ee163efc46df07485faec0d1f4ffbexe  
2022-06-01 08:32:49fe1e7ec148a7e753c1dc7f3cab536204d495edf2f14f2eba9a8ff158bc424aa6exe RedLineStealer
2022-05-31 22:46:21be1ae2f1e4c014283ccb0b94896fad615a995aa2257a19dc8965e45639f1d9baexe  
2022-05-27 14:13:5579be8e61b71194ae948624f495ea841a92c851740cb7fc88bb494ea2c7f608c1exe RedLineStealer
2022-05-26 14:05:418dd55723834d0cba04bfda5eb7a47e57b84336f0bd87f796b2572c4d7ef73ee8exe RedLineStealer
2022-05-25 10:34:530f510cb7a27c3736758de0457d9d5b9ef145a619db893cb8ebd27178273f3a89exe RedLineStealer
2022-05-24 10:45:0745b1b0ff48b9d799a04a70caa1fa1cc25c2cc7a19940f411eef6aefd210c6d97exeRedLineStealer
2022-05-23 15:10:0688226c4b0b2a8d5818ced673d4b15b1013ec0fa912d115083fb23b55adba992fexe RedLineStealer
2022-05-22 12:15:247eff2dcd0f61e8b963b56b68862ae870a352888dbd419436baf7de3ed7baedddexe RedLineStealer
2022-05-22 10:56:24538c436cf05450512ff49fcbbe418aa52c409e73a546fe12b7602a65a3e5ed48exe RedLineStealer
2022-05-21 14:36:0610d94abd5900b4658aee2a6e4f66fa97bde81047ccac8340d78fae45711f10e4exeRedLineStealer
2022-05-21 10:14:143f566d72b50bd370995478a4ddb3c0f3c5a95f567933795aa32a2f0b542f1bdfexe RedLineStealer
2022-05-20 18:51:042c6e680456a5d80d6c230d34d82ba6a3ad5c9041bb75776e6385e0b182e3624aexeRedLineStealer
2022-05-19 19:30:04388a1e2184ffca2bfa61c2f652c46f6811bb09c50a8bfafbefb3c5dad1000ba3exeRedLineStealer
2022-05-19 11:10:05988177454fe3a5ba8fcdf7f3124e2c56f312b776542d3763540c254df6fe6f76exeGozi
2022-05-19 08:49:38f2c6d10d589f6ef5862d25941be5cb65c803b8fdb38fbefa9f6214ac359efffeexe  
2022-05-18 09:43:104125204f08185955b9fe80b6835389fba0106997a77c42d1283dacac75d6b2a6exe  
2022-05-17 15:18:049decc60453eafb9217db9d5ee5eee169e67c957fd9c452e1d45b9a42aa67cd3aexeRedLineStealer
2022-05-16 00:08:04348f724a18befe64fae7989cc3ee74c6c763a6c939198313ed394b3bc94e473fexeRedLineStealer