URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 45.66.230.128 |
|---|---|
| Firstseen: | 2023-05-30 09:59:03 UTC |
| Total malware sites : | 7 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 7 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2023-05-30 09:59:09 | 45.66.230.128 | Not listed | AS216312 XhimiNet |  AL | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2023-06-03 03:59:04 | http://45.66.230.128/257/hkcmd.exe | Offline | 32 exe Loki  |  zbetcheckin |
| 2023-06-03 03:59:03 | http://45.66.230.128/iou/iuiiiuiuiuiuiuiuiui%23... | Offline | RTF | zbetcheckin |
| 2023-05-31 08:44:03 | http://45.66.230.128/il/MuviCIVc248.bin | Offline | encrypted opendir |  abuse_ch |
| 2023-05-31 08:44:03 | http://45.66.230.128/110/IE_CACHE.exe | Offline | exe GuLoader Loki opendir | abuse_ch |
| 2023-05-31 03:58:04 | http://45.66.230.128/il/ilililililili%23%23%23%... | Offline | Loki RTF | zbetcheckin |
| 2023-05-30 09:59:09 | http://45.66.230.128/ji/jijijijijjijijijijiijij... | Offline | encrypted GuLoader Loki | abuse_ch |
| 2023-05-30 09:59:09 | http://45.66.230.128/214/INTERNET.exe | Offline | exe GuLoader Loki opendir | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2023-06-03 03:59:04 | 2bdc7a2527b841fa13d5513e75347d8e822b00b2dcc968d106cc5a863b29ee89 | exe | Loki | |
| 2023-06-03 03:59:03 | 4e22abff39b796b7262d7b9873041310b499b287a42b6253aa9576b6ec8587bf | rtf | ||
| 2023-05-31 08:44:03 | e36774ae7aa2c18a35e3e13046fcde6c638d3cd67d469f964fef7c11dd5893be | unknown | ||
| 2023-05-31 08:44:03 | 733bf880b95b90976c6e7f066878d5450d4caa2014ef364056997cb6c49d87f8 | exe | GuLoader | |
| 2023-05-31 03:58:04 | bff33f3b468dfa85eb29f6d1335ceb67c54c5630dbc21d1261978f27cab57f45 | rtf | Loki | |
| 2023-05-30 09:59:03 | b068a6b2889500047781df72d19ff86d90b02c92f1f57bc1b0a5f6f774665fcb | rtf | Loki | |
| 2023-05-30 09:59:03 | 629969a0881903021d039f309d10a9028a1b967153706f7db6386c0773ce727d | exe | Loki |