URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 45.137.22.103 |
|---|---|
| Firstseen: | 2021-07-28 14:48:03 UTC |
| Total malware sites : | 8 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 8 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2021-07-28 14:48:04 | 45.137.22.103 | hosted-by.rootlayer.net | Not listed | AS51447 ROOTLAYERNET |  NL | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2021-08-10 07:29:04 | http://45.137.22.103/local/vbc.exe | Offline | AgentTesla  exe opendir RedLineStealer |  abuse_ch |
| 2021-08-09 05:48:03 | http://45.137.22.103/gdata/vbc.exe | Offline | AgentTesla exe opendir | abuse_ch |
| 2021-08-04 12:56:03 | http://45.137.22.103/document/document.wbk | Offline |  info_sec_ca | |
| 2021-08-04 06:08:03 | http://45.137.22.103/mvd/vbc.exe | Offline | AgentTesla exe opendir | abuse_ch |
| 2021-08-03 05:51:04 | http://45.137.22.103/cctv/vbc.exe | Offline | AgentTesla exe opendir | abuse_ch |
| 2021-08-02 05:48:03 | http://45.137.22.103/xmls/vbc.exe | Offline | AgentTesla exe Formbook GuLoader opendir | abuse_ch |
| 2021-07-30 05:44:04 | http://45.137.22.103/http/vbc.exe | Offline | exe Formbook opendir | abuse_ch |
| 2021-07-28 14:48:04 | http://45.137.22.103/window/vbc.exe | Offline | exe Formbook opendir | abuse_ch |
The table below shows recent payloads delivery by this host.