URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 45.133.1.53
Firstseen:2021-05-14 12:27:02 UTC
Total malware sites :21
Online malware sites :0 (0%)
Offline Malware sites :21 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-05-14 12:27:03 45.133.1.53Not listedAS203320 TURIEN-AS- NLyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-05-27 12:34:03http://45.133.1.53/r5/ConsoleApp10.exeOfflineexe SnakeKeylogger ext abuse_ch
2021-05-26 14:49:02http://45.133.1.53/N5/f4p16.exeOffline c_APT_ure
2021-05-25 19:00:04http://45.133.1.53/6X/IMG_806_71_96_22.xlsxOfflineopendir xlsx abuse_ch
2021-05-25 19:00:04http://45.133.1.53/6X/gg5f2.exeOfflineAgentTesla ext exe opendir abuse_ch
2021-05-25 19:00:04http://45.133.1.53/6X/PL_175_063_107.exeOfflineexe opendir SnakeKeylogger ext abuse_ch
2021-05-25 12:19:03http://45.133.1.53/N5/usoleApp7.exeOfflineAgentTesla ext exe abuse_ch
2021-05-25 12:05:04http://45.133.1.53/N5/CApp6.exeOfflineexe SnakeKeylogger ext zbetcheckin
2021-05-25 12:05:04http://45.133.1.53/N5/sspp3.exeOfflineAgentTesla ext exe zbetcheckin
2021-05-25 10:21:05http://45.133.1.53/6X/ConsoleApp2.exeOfflineAgentTesla ext Anonymous
2021-05-25 10:21:05http://45.133.1.53/N5/IMG_175_0253.exeOfflineSnakeKeylogger ext Anonymous
2021-05-25 10:21:05http://45.133.1.53/6X/IMG_078_36_110.exeOfflineSnakeKeylogger ext Anonymous
2021-05-25 10:21:03http://45.133.1.53/6X/IMG_015_763_005.exeOfflineFormbook ext Anonymous
2021-05-25 10:21:03http://45.133.1.53/6X/IMG_806_71_96_11.exeOfflineRedLineStealer ext Anonymous
2021-05-25 10:21:03http://45.133.1.53/6X/ConsoleApp1.exeOfflineOskiStealer ext Anonymous
2021-05-25 10:21:03http://45.133.1.53/6X/IMG_010436088.exeOfflineAgentTesla ext Anonymous
2021-05-21 06:54:03http://45.133.1.53/2X/vg23ty.exeOfflineexe Formbook ext zbetcheckin
2021-05-21 06:53:04http://45.133.1.53/2X/ConsoleApp12.exeOfflineexe Loki ext zbetcheckin
2021-05-21 06:53:03http://45.133.1.53/2X/ConsoleApp9.exeOfflineexe SnakeKeylogger ext zbetcheckin
2021-05-21 06:26:03http://45.133.1.53/P1/ConsoleApp19.exeOfflineexe SnakeKeylogger ext zbetcheckin
2021-05-14 13:30:04http://45.133.1.53/3p/Yphgvocx.exeOfflineAgentTesla ext exe zbetcheckin
2021-05-14 12:27:03http://45.133.1.53/3p/Lbjmpll.exeOfflineexe OskiStealer ext abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2021-05-27 12:34:03c14aabff124b5374c5d132ad50b59b8de999c1633b5cea642644e3ed0108b5d7exeSnakeKeylogger
2021-05-25 19:00:04296c5aaa026cc04ea693ac6708d4262b27e29c20c21e7cc88ef1dd7ebbe9715cunknown  
2021-05-25 19:00:04c23b24164c355c27a96f321e7895f65a1898ea7517278dc754ac2631c3597bc5exe AgentTesla
2021-05-25 19:00:04f18a7eaf49157d0af4a7a039f89fbc3845fd5d83508c275d3dad474042c7a120exe SnakeKeylogger
2021-05-25 12:19:0341f5765ff9d2adb0017137bc2de0edf128b284ee57dd996ac6228d5b9529853bexeAgentTesla
2021-05-25 12:05:042ac8cf6ac077bd62d3fbf8bb604582ef76d5c83882ff9cbe3acfe24fb46f3d3bexeSnakeKeylogger
2021-05-25 12:05:044bf41cde4567b152c73e5443cf5665638c937f5591565de839f250a472179fd4exeAgentTesla
2021-05-25 10:21:05ad9ae0356fae8f4a43fec15aceebd060f28bfbbba90fdf2f67087f8d55edfbc8exeAgentTesla
2021-05-25 10:21:05516fb739c992183c8280a0c0bbdc8cff452f959cb8169e128209fcb1eeb63997exeSnakeKeylogger
2021-05-25 10:21:05cccba58e97df2ecb5e2d1980a0aba8a444dd235bb8bafe37c26c7ed3efb2461cexeSnakeKeylogger
2021-05-25 10:21:03ffeb538e279b53ac314ec71da8a83ffd3693cf31cd3705e23579c7f20d182de6exeFormbook
2021-05-25 10:21:03a6d808e92078de05a7901e0f877472f0ab878d0e4f71545c5fc55966a2650ae6exeRedLineStealer
2021-05-25 10:21:03740c6afe85c3b0084383a3598d6a49e9f07f58e7764fde5eb0367450672a6018exeOskiStealer
2021-05-25 10:21:031b122d90ecb306cc9067c1ec1623a19aadc0005cb1d31f49120a902d4f26d5dfexeAgentTesla
2021-05-21 06:54:03c6e3758af9817c19a3c8a5e0c0b19bcd59971d1b2b4c813862bbeb716d87931cexeFormbook
2021-05-21 06:53:03555ef005b76db7d2c8bcd3364b02c0f282fbd5cf1da87524e2f2160a6ff7d642exeLoki
2021-05-21 06:53:03ff9175a892b7139c1d34f6fed7c028e6f2a8c8c8fd5befea281cca4bb955918dexeSnakeKeylogger
2021-05-21 06:26:03d3369b50e963787693bdc2a967f3f156c91c09a83227e8c2d7851841150e4993exeSnakeKeylogger
2021-05-14 13:30:04b70027c172c604c7efb82fa3a5b74e266590d2b21ac002eff94881ca929506d5exe AgentTesla
2021-05-14 12:27:03126a9e14cf4f6768c6c51eaf4a302d78c40b249adbe57e4b73a4964d72138c69exeOskiStealer