URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 45.139.105.159 |
|---|---|
| Firstseen: | 2022-10-17 09:33:03 UTC |
| Total malware sites : | 4 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 4 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2022-10-17 09:33:07 | 45.139.105.159 | Not listed | AS201749 iq-supercell |  IQ | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2022-10-19 13:27:04 | http://45.139.105.159/files/UyyLYKV.exe | Offline | exe |  vxvault |
| 2022-10-19 11:57:04 | http://45.139.105.159/files/FiNfBDd.exe | Offline | dropby PrivateLoader Socelars |  andretavare5 |
| 2022-10-19 04:51:04 | http://45.139.105.159/files/loader002.exe | Offline | exe | zbetcheckin |
| 2022-10-17 09:33:07 | http://45.139.105.159/files/Une1.exe | Offline | dropby PrivateLoader | andretavare5 |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2022-10-19 13:27:04 | 90207a64e0bdd9134a9cc741ff632993aae01825b9c1ea74328fb5fd43c971db | exe | ||
| 2022-10-19 11:57:04 | bc0537fefe3aa3f33b174df04a1b1e0d1d837f91c0350b0f5a9cacfcde5f9ef5 | exe | Socelars | |
| 2022-10-19 04:51:04 | ffdf7e20539e1aa6c31d8675e83b98bcb12f28810575509f8a8a79622dc456a8 | exe | ||
| 2022-10-17 09:33:05 | 85e5b6c3109f53edf81c55aef3f08cf321e350c7353a5d9774f927f77052bf2a | exe |