URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 45.155.165.63
Firstseen:2022-09-27 05:35:04 UTC
Total malware sites :15
Online malware sites :0 (0%)
Offline Malware sites :15 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2022-09-27 05:35:05 45.155.165.63Not listedAS203039 Cavea- ILyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-10-04 09:44:06http://45.155.165.63/br1/loader/uploads/Fqynock...Offlineencrypted PureCrypter abuse_ch
2022-10-04 09:44:06http://45.155.165.63/br1/loader/uploads/Doc_205...OfflineAgentTesla ext abuse_ch
2022-10-04 09:44:06http://45.155.165.63/br1/loader/uploads/Ztprenn...Offlineencrypted PureCrypter abuse_ch
2022-10-04 09:44:06http://45.155.165.63/br1/loader/uploads/Rkmlppk...Offlineencrypted PureCrypter abuse_ch
2022-10-04 09:44:06http://45.155.165.63/br1/loader/uploads/Purchas...Offlineencrypted PureCrypter abuse_ch
2022-10-04 09:44:06http://45.155.165.63/br1/loader/uploads/Purchas...Offlineencrypted PureCrypter abuse_ch
2022-10-04 08:05:05http://45.155.165.63/br1/loader/uploads/Ref4075...Offlinea310Logger ext JAMESWT_MHT
2022-09-28 16:11:05http://45.155.165.63/ig/loader/uploads/ProDetai...Offlineencrypted PureCrypter abuse_ch
2022-09-28 16:11:04http://45.155.165.63/tq/loader/uploads/Product_...Offlineencrypted PureCrypter abuse_ch
2022-09-28 16:11:04http://45.155.165.63/tq/loader/uploads/Specific...Offlineencrypted PureCrypter abuse_ch
2022-09-28 16:11:04http://45.155.165.63/tq/loader/uploads/Inquiry_...Offlineencrypted PureCrypter abuse_ch
2022-09-28 16:11:04http://45.155.165.63/ig/loader/uploads/62317520...Offlineencrypted PureCrypter abuse_ch
2022-09-28 16:11:04http://45.155.165.63/ig/loader/uploads/Specific...Offlineencrypted PureCrypter abuse_ch
2022-09-27 12:21:03http://45.155.165.63/tq/loader/uploads/Product_...Offlineexe Loki ext vxvault
2022-09-27 05:35:05http://45.155.165.63/tq/loader/uploads/Specific...Offlineencrypter PureCrypter abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-10-04 09:44:066e0701cecbb45ca08494a99a5fc7fab24c59b2a71b563479749b603385b4e221txt  
2022-10-04 09:44:06fc23a4a16e5f2ad4467d969f7a53b5a67d9d3d33ef3d427c7aa883916f8c251cexeAgentTesla
2022-10-04 09:44:06645bf9182a5340e9393a6f82559b4b6369457f519f93518b1ee77605726af2aatxt  
2022-10-04 09:44:06a5aeaba4e7b6c6c68d2feee203d500f9a050529e9e0ac13aa70136617a696b05txt  
2022-10-04 09:44:063154d26eeb8800d4cbf389394eb3dead3c280fe342328a53aeb120ed36e0f3d8txt  
2022-10-04 09:44:064db9d641a7a8b41e436d515596871437933cb3129ef3c21df1a2eb8487366c5atxt  
2022-10-04 08:05:0546c448666ad8300643c8f42807cac9db14ba882c23eb45ce4aac4f4284fc0cb7txt 
2022-09-29 06:29:0755ca37249d7997885f28d14d06efb5ffcac72a106376aba0ce36e8cc06ae361cunknown  
2022-09-29 06:27:4755ca37249d7997885f28d14d06efb5ffcac72a106376aba0ce36e8cc06ae361cunknown  
2022-09-28 16:11:046e93efa4ec10117426545d1eda6c22bd29bea65ba1b08a010f700b464f90bd2aunknown  
2022-09-28 16:11:041b88197613f1c501120d3452c20a264bc4f2596d9781975f9054b444dffccb46unknown  
2022-09-28 16:11:04a78fda0695a8466acb9ef64f069694d8bd094a20775bed75673262331e581113unknown  
2022-09-27 12:21:03ee4bbea4d6324108d6c44c4b82c1dc613e83e548a001c57dbdb73a968ec4cc8bexeLoki
2022-09-27 08:36:42c57fb4e48fa4d3a2ead3075c0fb82c0608bbe4303b7f2f04045dd78b907907a8unknown  
2022-09-27 05:35:04efd556055d5fca822daac1b5d6bcb1a763c5b96a04b035965b3f7e592c609481unknown