URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	47.104.173.216
Firstseen:	2024-05-25 14:38:04 UTC
Total malware sites :	12
Online malware sites :	7 (58%)
Offline Malware sites :	5 (42%)
Newest active malware site :	2024-08-10 16:58:43 UTC
Oldest active malware site :	2024-05-27 07:47:08 UTC (Age: 2 years, 0 months, 10 days, 12 hours, 36 minutes)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2024-05-25 14:38:07	47.104.173.216		SBL692487	AS37963 ALIBABA-CN-NET	CN	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2024-08-10 16:58:43	http://47.104.173.216:9876/sthealthclient.exe	Online	RedLineStealer RedNet SnakeKeylogger	abus3reports
2024-08-10 16:55:13	http://47.104.173.216:8082/GGWS.exe	Online	RedLineStealer SnakeKeylogger	abus3reports
2024-08-10 16:55:07	http://47.104.173.216:8082/GGWSUpdate.exe	Online		abus3reports
2024-08-10 16:55:06	http://47.104.173.216:8082/server.txt	Offline		abus3reports
2024-05-27 10:13:08	http://47.104.173.216:9876/GGWS_UPLOAD.exe	Online	32 exe RedLineStealer SnakeKeylogger	zbetcheckin
2024-05-27 08:36:14	http://47.104.173.216:9876/STHealthBQ.exe	Online	32 exe RedLineStealer	zbetcheckin
2024-05-27 08:36:14	http://47.104.173.216:9876/STHealthUpload.exe	Online	32 exe RedLineStealer	zbetcheckin
2024-05-27 07:47:08	http://47.104.173.216:9876/STHealthUpdate.exe	Online	32 exe RedLineStealer	zbetcheckin
2024-05-25 21:41:09	http://47.104.173.216:8081/STHealthUp.exe	Offline	32 exe RedLineStealer	zbetcheckin
2024-05-25 16:11:13	http://47.104.173.216:8081/STHealthClient.exe	Offline	32 exe RedLineStealer	zbetcheckin
2024-05-25 15:22:09	http://47.104.173.216:8081/GGWS_UPLOAD.exe	Offline	32 exe RedLineStealer	zbetcheckin
2024-05-25 14:38:07	http://47.104.173.216:8081/MyCheckBack.exe	Offline	32 exe RedLineStealer	zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2026-05-27 09:08:04	1ee25b05e4bb023a72014ca14e559f06dc50401dfa2be880eecb29cc1cc98b7f	exe
2026-05-20 13:03:54	6bcda9498e9a4ce517614fedbad0be227ccf0cf56989805a4c5da18e5623dfe5	exe
2026-05-07 11:42:56	3e4e49ab5d8d4fd1373e94cda322de38e65e9e28089191075a9c7e0084d4989e	exe	SnakeKeylogger
2026-05-07 08:08:14	1c3687c524d1460014a37016aff495963068e6ebf70738ce0707b68da1425fda	exe
2026-04-30 05:24:57	700133e065ae108fadaa1147fc504c031039972cc5ca9dc494799c1f6a0a49e1	exe
2026-04-30 05:24:43	ecd76b42a306f73cfccc73421e7b0ad5571556589bde4b9feb311203193c97c6	exe
2026-04-21 06:46:47	a45b4e536306f14e660ce699153c4edd33006cac6a0461b66a099e508e4e085a	exe
2026-04-11 22:16:37	7dfb0fe51ace9222b5476f340a023e847badde5a2aca4765f00f10c8a7ab8de0	exe
2026-04-11 16:08:50	eae2480c86b77a360b158a803f7863057724c81cb2fd5c5894f898b0aa63689b	exe
2026-04-11 16:04:35	1c8df2cdbd3bed37ba873cc0235ca869479afd229be55f80b16a7f1ab0368a0d	exe
2026-04-10 04:57:47	989e3e1e4e06e9efebcde8e5f353979da7dbb9e524f93257c07c19f4b46455e5	exe
2026-04-10 04:57:28	8e3bc6793e5570383a98db5f7c32eff7e84b8fe7be29e7305a64b9197df7601c	exe
2026-04-10 04:21:46	7f94069e597b2657a1a839a9509ec405371347d1674f0227e7561ca4685abdae	exe
2026-04-09 10:49:00	317dbdb7797a504f9a15ef0207871ed8910d4a89c63874c16759800512e3def0	exe
2026-04-09 10:32:05	798d9242d4f3a76196bf3fc1a2c2011e377ffc875bcfd218ea536193fc43c9bb	exe
2026-04-09 10:00:41	33c188f95c24744ca5ada66d9820967fcee148a5c0771f91bb88f58d2cc556dc	exe
2026-04-08 10:53:40	e723dd7a655f93845893140fba3c08f896158204982d6f4ea10e60ceb6204c69	exe
2026-04-08 10:10:24	06c4777276dbdc6f930571e2b1804f15a1b54c8079d6adad49cddf99b28ddb26	exe	RedLineStealer
2026-04-08 04:22:33	e9c3efd76af8a87cf38ff2e5fa490cade78c9c3d671b7abfd08a5fd5e7c46fdd	exe
2026-04-04 16:09:56	1232ac9e5d648f7de060314b4d81ffe72a8a88a3558106ef73aff8873ca7ed61	exe
2026-04-04 16:04:01	8d5b91bf1727fb9ab994b43a718e625de830cefeaa14a1809e05b96b021bbd43	exe
2026-04-04 10:20:59	5382462f104f42f5e4b3ae40640b84709129d112996a8b98b0067121499e5d0e	exe
2026-04-04 10:11:41	66aa329f4477638f7214cbf8ece7a2c9bc99fd5e882bb4660b89f9e4ff6ae876	exe
2026-04-04 09:09:13	5b95fac31ceabcc878af21555e96232f5baa47335134d358b7ed2d9a24a89556	exe	RedLineStealer
2026-04-03 15:58:24	254ebe2e29035810eb1422737e72b130b5cda3f20f8ce077436690f0cd990822	exe
2026-04-03 10:58:34	15a2a20125aaac6e2796470eaf65454419799dd7f84e13b21544e20151130ba6	exe
2026-04-03 09:52:42	c835d1d2e03b9845de604abaec613c59e6966147bdfc3dc18459ebcca44c9a27	exe
2026-04-01 15:30:06	d87f2bfb9fd22f7b4f2876412ac0aeeb1570f9b37cb9c5ad2dd5434bca825198	exe
2026-04-01 14:59:19	0c0363bf24b7deab4eaff31bfa86cf7310b12d5aa4cb46eb895265701899c401	exe
2026-03-26 10:03:52	1a79484611f4d54ddade6ad3535b98d4c461d5d2d0d585931255516d6e310b45	exe
2026-03-24 15:01:23	0e8e4cb0519385d12426f0b0eb2f692a4dd29a7ee4b91d0c47e0ae77983de2a1	exe
2026-03-21 08:52:12	f9c15fadbd32fd4bc4162871e21c72460060196f975cc98c539654c76cdac47f	exe
2026-03-20 07:28:40	2704b1e8099cb470b57a73c710a14721f64e5d20da794a6924168d6c24a5495b	exe
2026-03-18 09:17:53	2639fa5ebce2479983a1b934769806719dbb294db287fb34479acd95336869fc	exe
2026-03-18 09:14:14	aebb2af76f51297bb1f3adedc467db214355d5956150cd852c45559a50d6a994	exe
2026-03-17 14:53:13	97aa83cc32dd502d8b689f2d6e0c55e42ad096b3aa14e88eb96bc28beb7f70f5	exe
2026-03-17 08:49:39	8f872bfa62ae61dd6b9893dfac1fad1b8c8f14540069ad8f4c0179dc3d6a4829	exe
2026-03-16 09:33:08	ccc8e42db74dbd0dfb0d8a115f5f3a131523adab8c76fbebeef393e63d6746c1	exe
2026-03-16 03:29:23	f11dbcf89e780c9f96843fe5310d2996ee167125cc6153fad37a9b4cc12cbfec	exe
2026-03-15 15:29:40	c36f30be991ce71dfdb20f5348ee130f311e7ea9bd1562c0fb4f5d4179aa8fa9	exe
2026-03-11 08:52:19	8db1247e9b7455ede0d8109f260601706e2ca05ea2cca529f31588d41c22b9f4	exe
2026-03-10 03:42:06	aff2d7a372b8fc5e9b40ed6ad0e3b698ee7d57451dc215a8b8db919d4860c22e	exe	RedNet
2026-03-10 03:34:42	7209041bf34d725bbf172a10c38c150ca4401f44cabeb25d26a2057c0390ed17	exe
2026-03-09 08:46:25	b0ab864487436501a079f9c4ee44e73436250145ae195357946f8d65717f9241	exe
2026-03-09 03:35:06	e93832fd151fb1c57bfc8e45223d681b590a521b9292b35164f89d16e8f2f543	exe
2026-03-05 14:36:09	ee709cedab33e41de67cf183cfe252b01ea52f4216abbd3e85029446ea2d0821	exe
2026-03-05 02:05:26	c1aeeb9f9da24b99cda746bd29821670c58dd6cf3c300079677f897f4f9fec35	exe
2026-03-04 13:35:12	69a82e9886c4940b175ffe6fb87262d78ba56716d3298b38ac732cf9d2d84eb2	exe
2026-03-02 13:37:56	dec73e022ab8758b7251f9af4cc7af2c1987aa9ff1ce3491ce8ad21bf20c4277	exe
2026-02-08 06:59:57	fec8567478269d70fc3dd038dddcc263bd594fadffeb4043fa7ef9e3d0d5b59a	exe
2026-02-02 06:05:45	90ad63dc80fb1288d996c14d94abed65c5578478b7184333d790d841fafd38a3	exe
2026-02-02 01:05:27	ddc263592663be3d5467623ebb28dec9f826fe0f1bc7a6c5ed4c25cf36bfa46d	exe
2026-01-31 18:27:20	a992724894543a5fddb4f810d5582897c7cff9d6d3ed17a567e1d29f16afbb4f	exe
2026-01-31 18:22:12	b254114a025cd00cfdc9895f5e4efc7a52e793797e076a4d598564322a138728	exe
2026-01-29 06:51:33	a70514009e86709dfd18f2de5f171a3aedca8c260003a95ab954f60a27c11420	exe
2026-01-29 05:39:17	8b25ad72ad7ca85b32fb71e4ba29b8000a26e6c595b304e6783e201808bff63a	exe
2026-01-29 05:23:36	8044c4a2607106addd29dd41cec20ae4caacc3eefc2ba2b25afe9246d11b086d	exe
2026-01-27 09:58:07	57efd1cfac6b5f995efce90065ddd272049d232f8c33749f0ed7b4d2220456c6	exe
2026-01-27 06:07:49	32cd7ec660ec29502d52011c96f89928c80a81394cedc7da99b58292e1d8553b	exe
2026-01-26 11:18:13	d6ab276cc9545d9f4e0eed1ea11c1e4d91dd0c840590afe1179199d98493653e	exe	SnakeKeylogger
2026-01-26 06:43:34	7fef52cfbde93db593841abe028ef5029edd11da5a5dca8fa8f0a9709ce9278c	exe	SnakeKeylogger
2026-01-26 06:31:52	030ee553b8043c8e98614328edd63c69a6cc05940901e25856b9745faa760c69	exe
2026-01-23 07:32:26	1323bb548e5b6d0f664e66cd222dcdddc811c1f3676139b31a69364a1c044a78	exe	SnakeKeylogger
2026-01-22 08:49:49	ede15e5ac8e2b46b1328996c633a06b150d179b856597abfcc62c0504cee1212	exe
2026-01-19 08:06:36	e98e696e4105aeaf6a3ba05ea20b3b1bb03e0b6ddef10b36171712c5aee491d1	exe
2026-01-18 07:20:18	05505b2a4a2eb43bc41fb095f1db16bab4dc58f92c74b707b5543fd6c98cc96c	exe
2025-12-11 17:36:40	c7af907f85140bab90d131a2a0152eed646dd73304f5d0b0bd8dffd9008aef59	exe
2025-12-11 07:13:38	612d4c01530c88a500a76fb410cf5301143d14ce1a8e190eb9c4dc063c63629f	exe
2025-12-09 19:14:01	6f5e584b239bae8b15252702aa784442bd3814d9ba9cf29b91fccc0491d1f5e5	exe
2025-11-25 12:11:16	a7f03ed9951505481d8999bd8437d54dcef6cd6cf7f35edc12ed88c553a31eb8	exe	RedLineStealer
2025-11-22 09:50:24	cbb5f3cda6ded0e58ee7062e0dfca5c613c42574be54a822afc1deda4bcda900	exe	RedLineStealer
2025-11-18 09:10:14	b0501d33749106cd6d8947ab37f71937e1ef878bf7f199dbdda46ac4e407d393	exe	RedLineStealer
2025-11-17 07:34:02	fb5c5a9988975215d82d86dc67dd26697db81ad3088a6c25fc46db1b098e9fc8	exe	RedLineStealer
2025-11-14 01:14:10	94349785eff29651d95beb7017b67c183d4196f3f0bbe3a7ff3e4e82f935feab	exe	RedLineStealer
2025-10-29 11:18:50	f148fca027cbaae739ba5a368672e6023b93115b741a214c63b941e674fa7c65	exe	RedLineStealer
2025-10-29 05:37:50	984c6fb10a66ffb4deddd73f64591d9714a7c4fd3af76caa1b629376ce5f51bf	exe	RedLineStealer
2025-10-28 05:21:42	bc6dec6a782560d7fa1518ec28ec33b155f8856d1898bf6ddd0b0f385e18e103	exe	RedLineStealer
2025-10-28 04:58:54	204163e5274529bb9ee4c05d54687d7ac86c2c9c5c44d10a2dd542cb78e0b3f3	exe	RedLineStealer
2025-10-23 04:44:45	efb3e09bdcfb2ad99c7ad5688a18673cdde18eefd1bc7bd1619e5c3d69ef79b2	exe	RedLineStealer
2025-10-10 08:21:11	e141b4150753e0f68e3fe6bda205f6ac261f532785cdc8a6c4838b17c2f7366b	exe	RedLineStealer
2025-09-29 10:38:24	8a6c28ee68aa59a48d619a5c2396561a015638bb9a1bd023e06dad645da8dcb8	exe	RedLineStealer
2025-09-28 07:08:56	b35873f2a28d42f9d0b72a112369d42773b8faf407f6c800859f60d4a2b6d277	exe	RedLineStealer
2025-09-24 14:02:13	7a239f6b41dadbef1ad5f91f7e9ead16b9c4e8e5cbae31d484bf80af288a42a9	exe	RedLineStealer
2025-09-19 05:49:25	cbd4b5a385ba3528e0a303d9f8d8af4df72736af059b59f4793a50d024524c7a	exe	RedLineStealer
2025-09-19 04:01:38	0839529c4dbd5541b5ff1889ede103322f7eb0e692fa5a2bb934864a04c14a44	exe	RedLineStealer
2025-09-16 09:27:48	2a73b211596d3e66b42e1dbd2bfb52948a37a642b4727a4df6f8df1a39d52b24	exe	RedLineStealer
2025-09-16 06:39:38	6b04e081b61d19856828dec62d3f680571645872f56f2a033dd1dd841998e5b8	exe	RedLineStealer
2025-09-16 03:03:58	02f26e5f0eec3223d3e57cd6d54748b491ff1035aceb0125de7e98bed6a949d4	exe	RedLineStealer
2025-09-07 14:31:12	76c882d28e6dc430882217fda6048b6b7daa0fd143b023ac789ee065eb25604c	exe	RedLineStealer
2025-09-06 15:10:42	b28115f500df606ea74b1ee23ca0deaa36f9078d1afa7d438ea491a8829698ed	exe	RedLineStealer
2025-09-05 09:10:56	83e48382985ed3f4a76046e7cf8aba15cde8c8560a0046cd7b3fd76493c25756	exe	RedLineStealer
2025-09-04 18:50:31	cdbd2d2c53cd3dcb029aed16eb553a9710fa98a743e4c6a5856583489275df8a	exe	RedLineStealer
2025-09-03 14:25:54	390a3b63aa310acb688636e07f397a912f7882f0e36fbb443fac652cc6dae967	exe	RedLineStealer
2025-09-03 08:26:06	8c9a48911729a19ef651ac77a947b9113adae9d5a5b1f4eb2e4b0ad79cd00f31	exe	RedLineStealer
2025-09-02 09:09:04	05ca341d0c04001db5d9e647995ebcc1295c50a407393bbab367009e991f2f49	exe	RedLineStealer
2025-09-01 15:27:39	742c80711a743088793795e56ea425a878a7a0f798a77c407a2b483faca52f57	exe	RedLineStealer
2025-08-29 14:02:31	6405065267d07d96651ffa63ae4f6f51481116ab6626c6f8b9baf0167575d071	exe	RedLineStealer
2025-08-29 02:01:09	5aa7f18912a774c76f7d72d72ca818db2ca81423308aeccc611204ac4d2ad003	exe	RedLineStealer
2025-08-28 02:41:11	af5114721e1859600e13a1f68806ed0fa7709cd03d1230ec7089215aa9a6a213	exe	RedLineStealer
2025-08-28 02:26:52	7c4464d9ddfa6cca3fdbb8d0954833187e12db156768cb8a8d2ffe2e600157b9	exe	RedLineStealer