URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	5.252.21.239
Firstseen:	2026-03-21 23:22:05 UTC
Total malware sites :	30
Online malware sites :	0 (0%)
Offline Malware sites :	30 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2026-03-21 23:22:09	5.252.21.239	vm4914119.example.com	Not listed	AS209847 THE	NL	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2026-03-22 18:15:20	http://5.252.21.239/files/7535437325/hGTWd27.bat	Offline	c2-monitor-auto dropped-by-amadey	c2hunter
2026-03-22 18:15:20	http://5.252.21.239/files/8468794285/gMZcvzp.exe	Offline	c2-monitor-auto dropped-by-amadey	c2hunter
2026-03-22 18:15:20	http://5.252.21.239/files/7268244560/lJWEIBb.exe	Offline	c2-monitor-auto dropped-by-amadey	c2hunter
2026-03-22 18:06:19	http://5.252.21.239/files/8520831842/ItFz5ZS.exe	Offline	c2-monitor-auto dropped-by-amadey	c2hunter
2026-03-22 07:18:07	http://5.252.21.239/files/7268244560/aXV4mjN.exe	Offline	c2-monitor-auto dropped-by-amadey rustystealer	c2hunter
2026-03-22 03:52:11	http://5.252.21.239/files/1323113534/0GEqRqp.msi	Offline	connectwise dropped-by-amadey fbf543	Bitsight
2026-03-22 00:58:17	http://5.252.21.239/files/8167064937/lU3Mc6r.exe	Offline	dropped-by-amadey fbf543	Bitsight
2026-03-22 00:06:06	http://5.252.21.239/vidar/random.exe	Offline	c2-monitor-auto dropped-by-amadey Vidar	c2hunter
2026-03-21 23:50:07	http://5.252.21.239/files/rdx/random.exe	Offline	dropped-by-amadey fbf543 Vidar	Bitsight
2026-03-21 23:46:05	http://5.252.21.239/files/7776573655/KSsORhg.exe	Offline	c2-monitor-auto dropped-by-amadey gcleaner	c2hunter
2026-03-21 23:45:09	http://5.252.21.239/files/7782139129/ZSZfFtn.exe	Offline	dropped-by-amadey fbf543 SalatStealer	Bitsight
2026-03-21 23:45:08	http://5.252.21.239/files/7115306239/4VbzEBd.exe	Offline	c2-monitor-auto dropped-by-amadey	c2hunter
2026-03-21 23:45:08	http://5.252.21.239/files/7453936223/KAQ8PQ5.exe	Offline	c2-monitor-auto dropped-by-amadey Vidar	c2hunter
2026-03-21 23:45:07	http://5.252.21.239/files/7782139129/1fz7hzL.bat	Offline	c2-monitor-auto dropped-by-amadey	c2hunter
2026-03-21 23:44:06	http://5.252.21.239/files/8717422379/VMa1dJb.exe	Offline	dropped-by-amadey fbf543	Bitsight
2026-03-21 23:44:06	http://5.252.21.239/files/8531638373/QWFfVk7.exe	Offline	c2-monitor-auto dropped-by-amadey Vidar	c2hunter
2026-03-21 23:43:11	http://5.252.21.239/files/7782139129/S6xWuZ1.exe	Offline	dropped-by-amadey fbf543 Vidar	Bitsight
2026-03-21 23:43:05	http://5.252.21.239/files/7341834371/BgAtGH0.exe	Offline	c2-monitor-auto dropped-by-amadey Stealc	c2hunter
2026-03-21 23:42:07	http://5.252.21.239/files/7850695435/gpaMBVQ.msi	Offline	c2-monitor-auto dropped-by-amadey EternalRocks	c2hunter
2026-03-21 23:42:07	http://5.252.21.239/files/8434554557/X8cqVrA.exe	Offline	c2-monitor-auto dropped-by-amadey PureHVNC Vidar	c2hunter
2026-03-21 23:42:06	http://5.252.21.239/files/5900855435/eNLe4nm.exe	Offline	dropped-by-amadey fbf543 Vidar	Bitsight
2026-03-21 23:42:05	http://5.252.21.239/files/8574065846/HPlEReH.exe	Offline	c2-monitor-auto dropped-by-amadey Vidar	c2hunter
2026-03-21 23:42:05	http://5.252.21.239/files/8499672124/b1JNsvy.exe	Offline	dropped-by-amadey fbf543 Fuery	Bitsight
2026-03-21 23:41:07	http://5.252.21.239/files/8036065901/ggGms6j.exe	Offline	c2-monitor-auto dropped-by-amadey OffLoader	c2hunter
2026-03-21 23:40:07	http://5.252.21.239/files/7115306239/Qub5kf3.exe	Offline	dropped-by-amadey fbf543	Bitsight
2026-03-21 23:40:07	http://5.252.21.239/files/gop/random.exe	Offline	dropped-by-amadey fbf543 Vidar	Bitsight
2026-03-21 23:27:06	http://5.252.21.239/files/unique5/random.exe	Offline	c2-monitor-auto dropped-by-amadey Vidar	c2hunter
2026-03-21 23:26:07	http://5.252.21.239/final/random.exe	Offline	dropped-by-amadey fbf543 NirCmd	Bitsight
2026-03-21 23:23:08	http://5.252.21.239/test/random.exe	Offline	c2-monitor-auto dropped-by-amadey	c2hunter
2026-03-21 23:22:09	http://5.252.21.239/files/neo/random.exe	Offline	c2-monitor-auto dropped-by-amadey	c2hunter

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2026-03-22 07:18:07	656c6585eed987efb12836b59447f9fce7dc4399f63c95427c05fbff3cb52bba	exe	RustyStealer
2026-03-22 03:52:11	262de07dbddabb37257670e9b5cdf0a796caa7e2c52949f8d8c089ae6400ead6	msi	ConnectWise
2026-03-22 03:44:30	c2ee8ea3a0374b1bbceac9bf883b6d2666b2807e871ae8aa36611b9eba6a4ee4	exe
2026-03-22 03:31:38	03f44dd98bf2c2a9fa5f683f061f2bd0b35d0326c61b71496299848e91edd612	exe	Vidar
2026-03-22 00:58:17	acb9730b28fdc0753562880d2a3887005b113d45a3f9e847e0fe1b9184f81a2a	exe
2026-03-22 00:06:06	844aa9ac5bd2d5d9517dd7a8fd06f3dbc32a794a3f0973da94c6436764503fd7	exe	Vidar
2026-03-21 23:50:07	6c643706fb6ffa1622de6f9256be0e6676748e8b99dd1d3e31749695cfe79822	exe	Vidar
2026-03-21 23:46:05	9f27adf5141ad1376a2d31bec739b0c464e4903e0afcd267abf380ff867a89e9	exe	GCleaner
2026-03-21 23:45:09	db6381cb9c7713c1b142fa6013d85c84e8121917036131e707488f1dc1111f2e	exe	SalatStealer
2026-03-21 23:45:08	ba4b2d2d3e414c96ecf7efa75cc9b9311f5e3f4692782b06f5ed197a021030b0	exe
2026-03-21 23:45:08	a6edec8bb8a1de71eff27deecd7aae78ef4514dc8e2ed3dd83aeaf25a7e4a188	exe	Vidar
2026-03-21 23:44:06	1588e28cc6363ba74f755ac49d2f66572d279b43ce8449b49f934aa98523f382	exe
2026-03-21 23:44:06	5ae30eecdfb95d98cf238ff69b392cb36d1d3fb09481d79fa92c69dad48a0df0	exe	Vidar
2026-03-21 23:43:11	d6004a74d6a6a13bf680141e01999eb3635ebbacd50fa36d734fe3396afbe8e2	exe	Vidar
2026-03-21 23:43:05	764adefbf141f0d492793bc9eb509864fffce59611f20592d905e554ed67ee74	exe	Stealc
2026-03-21 23:42:07	de6a89934b09b3a090a3e742e4375b366a56a9b3ad12d5112be2b56c3124ceb5	msi	EternalRocks
2026-03-21 23:42:06	fcdbd61ecd787b4911d79ef7bdbcbfc78fc94c41c68c05dc318da317e925718c	exe	PureHVNC
2026-03-21 23:42:06	af441c0683f07249f0a9a6e88aff3dd58e8c7597624a2719aa553464f8aaa960	exe	Vidar
2026-03-21 23:42:05	cff753b684ed47012476d3cd6e5341b863baa66077371bfd8c5e47413fcfe255	exe	Vidar
2026-03-21 23:42:05	bef91f1e5dfeb2029ac4ec450cec86ef2208d41c3d7391e997873af5a7f56cc9	exe	Fuery
2026-03-21 23:41:07	ab5a5aa399949370a99cfc953d9e93a11c7a5c16623f9ce3b94da126e3c9bd49	exe	OffLoader
2026-03-21 23:40:07	ba4b2d2d3e414c96ecf7efa75cc9b9311f5e3f4692782b06f5ed197a021030b0	exe
2026-03-21 23:40:07	c4ad2d2df36d58cd27d9d0525aa82b8ab46c9f1d453db1e4d032cbfe9a489106	exe	Vidar
2026-03-21 23:27:06	d31f50a42ef9a7629522f1a49c4ce12210d4f193b38cb122867c1038f69dc267	exe	Vidar
2026-03-21 23:26:07	ff63cd69a3d0f26569404323dd3f23433547706d440f6887dce760f89afa95ce	exe	NirCmd
2026-03-21 23:23:08	50c063208801f6250ad0984212bbff667fa4b979b5443a639b24bc5bbdce0b5d	exe
2026-03-21 23:22:09	495289174bc60415fa365c6df143d1da3a88f4992abce76d5e6e83e941e46b67	exe