URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	45.204.214.219
Firstseen:	2025-09-23 14:20:04 UTC
Total malware sites :	4
Online malware sites :	0 (0%)
Offline Malware sites :	4 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-09-23 14:20:08	45.204.214.219		Not listed	AS62468 HKCLOUDX	HK	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-09-27 10:52:07	http://45.204.214.219:1230/config.json	Offline		abus3reports
2025-09-23 14:20:19	http://45.204.214.219:1230/xmrig.exe	Offline	CoinMiner	BlinkzSec
2025-09-23 14:20:18	http://45.204.214.219:1230/2.bat	Offline	CoinMiner	BlinkzSec
2025-09-23 14:20:08	http://45.204.214.219:1230/Server.exe	Offline	PurpleFox	BlinkzSec

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-11-19 16:22:24	e90ddaeae8424f1eba36357f84e3079c8bfb56c0e0bfe5ce2566e7153999f5dc	json
2025-10-16 17:12:25	3aacc5364f6a102455f89ecfef8148d7b64bada3bc79b37c4ca1e8c9fa9d5fa0	json
2025-09-29 22:29:04	9a5be6d0e6449d4d7fb2deb39eff1ca43878969eea0105e5477172d7e354d37b	txt	CoinMiner
2025-09-27 10:52:07	abf81a81f614d07f2fa69b0e6bd3f7f76bea2a5e2ab1721d12200c9bf769b601	json
2025-09-23 14:20:18	403829e447bf34459fb5082cd5adfb63be3068575d483b52ccbfd2e4cf4a5232	unknown	CoinMiner
2025-09-23 14:20:18	b01518004b2cab37334060d2563908936223d3f8c81a95845b28717752fe1c60	exe	CoinMiner
2025-09-23 14:20:08	1fe21e70078942fa8dc7bccb5362e86b0e6340c533eb8e01b59e34a0dd61bd05	exe	Purplefox