URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	43.132.12.146
Firstseen:	2024-10-06 12:48:11 UTC
Total malware sites :	2
Online malware sites :	2 (100%)
Offline Malware sites :	0 (0%)
Newest active malware site :	2025-10-07 23:28:25 UTC
Oldest active malware site :	2024-10-06 12:48:36 UTC (Age: 1 year, 7 month, 29 days, 0 hours, 40 minutes)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2024-10-06 12:48:35	43.132.12.146		Not listed	AS132203 TENCENT-NET-AP-CN	SG	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2024-10-06 12:48:36	http://43.132.12.146:9000/Photo.scr	Online	CoinMiner exe iframe Photo.scr scr	NDA0E

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-10-07 23:28:25	b914abc696286a639a847d2e3a4a36ff682f30a87b08c4ffc61f2e0cf5e7ec5f	zip
2025-05-08 23:03:50	dcb08671de1e600233e54e238c54bbc3eb920edcb5737eaca55bf0db40f07f87	exe	CoinMiner
2025-03-15 14:11:53	50fd54504c022357012b14c396c701fe33778d106f3428012e28fd10145e21ca	exe	CoinMiner
2025-03-14 16:18:15	38fa19f75214c9e66bdeb4f6ae6dae11b7f21ed6804a4d41b7180741c53622fb	exe	CoinMiner
2025-03-14 15:32:31	c1c656f5fc2237e7f6c19a20d9a9a80e2def045d3d58d2ddc499bcece6fd9df6	exe	CoinMiner
2025-02-26 18:09:11	e02a370054fb9c9d594f939f093ef69f6d566fadb0685905a98a346a67d3482a	exe
2024-10-06 12:48:32	807126cbae47c03c99590d081b82d5761e0b9c57a92736fc8516cf41bc564a7d	exe	CoinMiner