URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	45.153.34.90
Firstseen:	2026-01-27 12:13:04 UTC
Total malware sites :	19
Online malware sites :	0 (0%)
Offline Malware sites :	19 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2026-01-27 12:13:05	45.153.34.90		SBL679667	AS51396 PFCLOUD	NL	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2026-02-05 09:05:08	http://45.153.34.90/WEB/STEINSECOND.ps1	Offline	AgentTesla	JAMESWT_WT
2026-02-05 09:04:13	http://45.153.34.90/WEB/YALLOWSISI.ps1	Offline	PhantomStealer	JAMESWT_WT
2026-02-05 09:04:13	http://45.153.34.90/WEB/FFF.ps1	Offline		JAMESWT_WT
2026-02-05 09:04:12	http://45.153.34.90/WEB/arryaaaaaaaaa.ps1	Offline	PhantomStealer	JAMESWT_WT
2026-02-05 09:04:12	http://45.153.34.90/WEB/grain.ps1	Offline	a310Logger	JAMESWT_WT
2026-02-05 09:04:12	http://45.153.34.90/WEB/ENCRYPTED.ps1	Offline		JAMESWT_WT
2026-02-05 09:04:10	http://45.153.34.90/WEB/park.ps1	Offline	PhantomStealer	JAMESWT_WT
2026-02-05 09:04:10	http://45.153.34.90/WEB/arya.ps1	Offline	a310Logger	JAMESWT_WT
2026-02-05 09:04:09	http://45.153.34.90/WEB/EAZYYYYY.ps1	Offline	xworm	JAMESWT_WT
2026-02-05 09:04:09	http://45.153.34.90/WEB/DEB.ps1	Offline		JAMESWT_WT
2026-02-05 09:04:09	http://45.153.34.90/WEB/kkmk.ps1	Offline		JAMESWT_WT
2026-02-05 09:04:09	http://45.153.34.90/WEB/aryaphan.ps1	Offline	PhantomStealer	JAMESWT_WT
2026-02-05 09:04:09	http://45.153.34.90/WEB/FAN.ps1	Offline	PhantomStealer	JAMESWT_WT
2026-02-05 09:04:09	http://45.153.34.90/WEB/MODE.ps1	Offline	Formbook	JAMESWT_WT
2026-02-05 09:04:09	http://45.153.34.90/WEB/STEINN.ps1	Offline	AgentTesla	JAMESWT_WT
2026-02-05 09:04:09	http://45.153.34.90/WEB/STEINSECONDD.ps1	Offline	AgentTesla	JAMESWT_WT
2026-02-05 09:04:08	http://45.153.34.90/WEB/eazybim.ps1	Offline	AsyncRAT	JAMESWT_WT
2026-01-27 12:13:07	http://45.153.34.90/web/STEINEW.ps1	Offline	geofenced NLD powershell	fynn
2026-01-27 12:13:05	http://45.153.34.90/web/rod.ps1	Offline	powershell windows	Anonymous

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2026-02-05 09:05:08	3b39a26469f03e1a41a2cb3ab0f8a43bc05f3ea03ed43ac54139eba9fa19fc16	ps1	AgentTesla
2026-02-05 09:04:13	a08cde6bab4b2f683198287e9419f0e48918989c6000afb19f70ba0a0fab743b	ps1	PhantomStealer
2026-02-05 09:04:13	0a08eb9584f6fa1594367d7fd8aa29fd173227458be4718d31ded9066af0c216	ps1
2026-02-05 09:04:12	4b250434bed12ef47cdaea60072ffb83c48e94d873dcbfae378620499d2ec13b	ps1	PhantomStealer
2026-02-05 09:04:12	7868d1f155fb7d471cd1a5b1e44784fc5e432e4aabebafc5391c98cd8c85cf83	ps1	a310Logger
2026-02-05 09:04:12	be23fd00727294ea740c43445897c1c49f17683c1c68d11389d4f3c5a9a99cc9	ps1
2026-02-05 09:04:10	01afd8f97cb7e6f12bd97f06b862c27398ab81f7387c13b705fdf23050ffa0cf	ps1	PhantomStealer
2026-02-05 09:04:10	d5dfede85187855607aee7925e3d51571456e3955e7d4ead33ccbe6d391285a0	ps1	a310Logger
2026-02-05 09:04:09	d1ea4eef81008201f51a8da72e58779b6d89647f93a96155e8c1cd89a1d91ffb	ps1
2026-02-05 09:04:09	0c0a32f550ab253b514075b72bcdf112667a818fb89729d6cc0814b8e370bb38	ps1	XWorm
2026-02-05 09:04:09	9c9c2539e73f2ce45d2ec7b8c57e4086382f5101605af8b057e32599e91b0780	ps1
2026-02-05 09:04:09	195bcb3c7d1c263ae05679c48fcca088d8fea34d263a8b52a6aa8e225bc1b050	ps1	PhantomStealer
2026-02-05 09:04:09	18351edbd499d635aa72c66aa31134fe3525b89e279aa83a768a7be073a0ff76	ps1	PhantomStealer
2026-02-05 09:04:09	dcb462511b28de7cf8704850134b43309a002e3fac25648760cfeb69ec9b3f12	ps1	Formbook
2026-02-05 09:04:09	543bdbe29635cd71265a6a7f7fd1553ab31822c01f1aac1e9db622b4a22e1c55	ps1	AgentTesla
2026-02-05 09:04:09	f90c39785784b998e9dd6dcba99f9e9e452fadf65b8eb6da36ac0ac89c63f4d7	ps1	AgentTesla
2026-02-05 09:04:08	f297f5a682ff007d9f090e034cdda3bbb5a3d4b71fd3b87a2e7ac61c2e59f88d	ps1	AsyncRAT