URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 5.42.64.35
Firstseen:2023-11-25 09:35:05 UTC
Total malware sites :13
Online malware sites :0 (0%)
Offline Malware sites :13 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-11-25 09:35:07 5.42.64.35Not listedAS39493 RU-KSTV- RUyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2024-01-13 05:24:35http://5.42.64.35/InstallSetup4.exeOfflineexe Stealc adm1n_usa32
2024-01-13 05:24:35http://5.42.64.35/InstallSetup1.exeOfflineexe Stealc adm1n_usa32
2024-01-13 05:24:35http://5.42.64.35/InstallSetup2.exeOfflineexe Stealc adm1n_usa32
2024-01-13 05:24:29http://5.42.64.35/InstallSetup7.exeOfflineexe Stealc adm1n_usa32
2024-01-13 05:24:25http://5.42.64.35/InstallSetup10.exeOfflineexe Stealc adm1n_usa32
2024-01-13 05:24:22http://5.42.64.35/InstallSetup6.exeOfflineexe Stealc adm1n_usa32
2024-01-13 05:24:21http://5.42.64.35/InstallSetup5.exeOfflineexe Stealc adm1n_usa32
2024-01-13 05:24:20http://5.42.64.35/InstallSetup8.exeOfflineexe Stealc adm1n_usa32
2024-01-07 07:27:09http://5.42.64.35/InstallSetup3.exeOfflineStealc adm1n_usa32
2023-12-09 07:20:37http://5.42.64.35/InstallSetup9.exeOfflineexe Stealc abuse_ch
2023-12-07 20:42:05http://5.42.64.35/updHost.exeOffline32 exe MarsStealer Stealc zbetcheckin
2023-12-01 04:00:09http://5.42.64.35/syncUpd.exeOffline32 exe MarsStealer Stealc zbetcheckin
2023-11-25 09:35:07http://5.42.64.35/timeSync.exeOfflinedropped-by-PrivateLoader MarsStealer Stealc andretavare5

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2024-01-14 18:05:5884d2ce38130e6f8dffad16566f4cb82a020383a267b5c0d9ff4d6e251be80ce4exe Stealc
2024-01-14 17:48:27985cc988cf232438663843aa3513054fb3152e28ae3d70933f199c4057e030f4exe MarsStealer
2024-01-14 15:19:42e64f210599281a9124a3af317b7500dc3da685a81fe3d9bc7dd43f8ed154a12aexe Stealc
2024-01-14 15:08:41a7a5f8f103b4c93383ffdb966990a4a059f4a70bbb5a7a9054034f3f751a70b5exe Stealc
2024-01-14 13:07:47a76676ecfa312fe9f2d980ba6c28e32c420c5d098c8c9d92b53748afdc826674exe Stealc
2024-01-14 12:52:222916c0e2458f9cff593ae3de2866f5fb4a20de62f58069a373d6b0a501751ae5exe Stealc
2024-01-14 12:46:128d7d30f6bb0341b28ee8379c35f1ca4d8e4e397f02cc021606923d2c20493ef7exe Stealc
2024-01-14 10:05:57811c656dd2c2c40ba14e6699ecaf4c83f0068c3af8e092fd6f6ef4b3f2dc2b48exe Stealc
2024-01-14 09:40:000b0ef7dee94628c78c67c9441e4ec85b92d5ec44972dfa59216a8585f5cd97d9exe Stealc
2024-01-14 07:19:12e64b23115dd520deffc04e78bf8c4225ea0ce179c6b5e848322363f45edb601bexe Stealc
2024-01-14 07:11:05cf2a5639ef3420894dbea5f6a61d1106473e3dae0033aa6ea28f3df27a6b9d5cexe Stealc
2024-01-13 23:07:28156ccd33170ff9883475f88eba4ab7f3087a2ea3e6c5267129935254562fafa7exe Stealc
2024-01-13 23:05:01e113206b1fdade350b4aadf6e4f3141381f4874d13f35f79aea88ebb64b598f4exe MarsStealer
2024-01-13 22:41:59d85f8a6694ab0108d6505ca39ace03f528b7b1bc7270b54bfdb701bc2e6d81baexe Stealc
2024-01-13 21:03:27d105632dd0d82cbc3d77beb11a950c9859a39149f47f0f1c61e0de23b998c6eaexe Stealc
2024-01-13 20:38:25e8bf9644f115f1784f6c3fa8af17ca8847d071a7de7ca50a2b7a640b9b5a1533exe Stealc
2024-01-13 18:43:27b88917df8ab6842e6127df08b1b6152144a837524f435bf164b54c3c6b4e6a8cexe Stealc
2024-01-13 18:22:57cbfaaef1099abd890bb669db6e512cf6b415e6933d854454b1b60e6c915278d7exe Stealc
2024-01-13 18:06:3177b5215200e7dca66e3b0550d698fb92fb6451229b5ae052f4c8301ab6508651exe  
2024-01-13 17:48:20731973fc70c6e99a40dd7ad1a286c40cb60b93891deee660914602dafd2396a4exe Stealc
2024-01-13 16:18:594513b9d18f674f1c37ce26d97589e39b3ed2e5d03976834379ed4f11c84eb9d3exe Stealc
2024-01-13 16:13:2236586b89d27d08f434da7ed3df6b07244ace3dd66cbb09d150722a5822b24404exe  
2024-01-13 12:57:18c31cf0cdcfadfdb0378fbd310f9c7f975d52d6fb78a1e2afaa6ea60db65b91eaexe Stealc
2024-01-13 12:50:1788757cc118891c853405480a9a28fd40945cf8df7b295922977acc5c6d6cecf0exe Stealc
2024-01-13 09:42:03c7e62498ad5e72347aca75751c8d738fe04e84b284da074b642b256e0cd0ed3fexe Stealc
2024-01-13 09:39:036431b03054f7f90db9bbca41a6dd0bbbc5c3a13d02ddbe3854c0c17d227babe7exe Stealc
2024-01-13 08:46:1951bab84b70678180f6ea24a7dca8499a9da9b0dce0d37daa857edcffb623b561exe  
2024-01-13 08:41:14c7be32ddee1bca203f3a103b3646dc674fa75016c51a4e8eb7e3514d23b37b0aexe Stealc
2024-01-13 08:19:065ebd149b61a3dcb06dfc177fffee6a987fcbeae5d00302c19ebf47eeaff9f399exe Stealc
2024-01-13 05:24:35e4b81a5e79ff5b6ba6f6eda3b8bda8172409ac2165a23dba8d04f717adf07577exeStealc
2024-01-13 05:24:3575a12cb6482913d06c937ae11d60924c7be2185efe86f797b7cfe7dc5a39194fexeStealc
2024-01-13 05:24:3552153ae2e71c5fba7369ff6b92e88063f17919f157fe98a6d32f62ab97385532exeStealc
2024-01-13 05:24:291b9aa5466581a39963462602ec9b3fb18f7afbda1175d6b3460e035a7ba485d0exeStealc
2024-01-13 05:24:241be268eaff61a1b16c5707f42075e1ee1af7a8f746ee458869c977fba0f2b28dexeStealc
2024-01-13 05:24:21a5c3953bc98a6e0d255ef2349c578fe7d9c3acb9484c5d2c9c34673d1392c431exeStealc
2024-01-13 05:24:21eacc93b234973aaaf3424812107fe56a1986be3a929cff5bf2bba67a045077fdexeStealc
2024-01-13 05:24:209e900bf1cc6d62045a6e460c8f366c7c062cb5357d21029e9733f5926a8770fdexeStealc
2024-01-13 01:04:475cc850585eaf0e782481a30f836d40d18d51315d6602b1a37243cfab06965ab1exeStealc
2024-01-13 01:01:30bd0619e369e9f557fa70e19f5447a08a625cec708e14459d53fdb338ecf30305exeStealc
2024-01-13 00:37:19d8cb8a6674b5b682d13c91dd83bf6bf5f82904ff51a84ed5839579d1bb78ddbeexe Stealc
2024-01-13 00:30:20f4689354ea2620405059edf0d8a172b4a6313f6612cc34d6c30b448e3e77e95dexe Stealc
2024-01-13 00:24:2799b17f65086683e643b651c4ae515ab5a35f022f1f507573f5e1da69f474eb6bexe Stealc
2024-01-13 00:21:02e9e6516db686c237c15cbdbfea5f031cac6491c21091388395e303d1e80f991aexe Stealc
2024-01-12 21:57:328e2c2eaab535e110248e743c9911e6585e35cc5570e76e1f7171015d76d252b2exe Stealc
2024-01-12 21:03:3447a6fd99a56ef8c056bdb5d480cd387e56b3bdb11ad6ed4b7cb5ae80148b0118exe Stealc
2024-01-12 21:00:5039826e6b9c2247929a72a14729609cddaba3a549e35260faf118a8f0ce6c1cb6exe Stealc
2024-01-12 20:24:20c889d6d42963bdc01caf966e4b1ca485d6fe1dc3a9b84d05ef7fce3a59a7f49fexe Stealc
2024-01-12 20:21:35b896c9a38ec67d038d60cd8a1398062c079ad7666789dff8dc230601b1e71accexe Stealc
2024-01-12 17:14:238bdefbcab4ca2749e81ed5ef778f2890e65b13ae5084e460e714f5ecb18f72a6exe Stealc
2024-01-12 17:12:55b305ea1d1b3efaae0608c74cc78567115b0ed64ca76f9b1d93bce2ba4145ab28exe Stealc
2024-01-12 16:35:587730ccd4db14d5998fe4c93abdf4cca4fa9f6f49611766748e57ccf5afe4f113exe Stealc
2024-01-12 16:32:37e17b91beee25ff5e1de6e4551be0bb6505fe4bebe64a9b4bcb58e4c1ef230d90exe Stealc
2024-01-12 16:24:35f9416d1798cb3fcbe1dafc552c3ac071f3448ff399004d48512b419967a07deeexe Stealc
2024-01-12 16:16:26646ad640d3f155998561246fda012d5b253f618f35e45e09d72d0e5444bea017exe Stealc
2024-01-12 14:17:458aea48f2f7fe40be20bd2b47f5c3a79b0ce60d733ed2d9f047054b8d44fe6379exe Stealc
2024-01-12 14:08:106f903b80879fb45aa72f83d9bc35724d6ea48ad34f9aa80a0897e1d5f971d1b3exeStealc
2024-01-12 13:46:33b5ef154c0098077b75f43d213e881ca791acce04160a614ba02c56e6e2ccdc49exe Stealc
2024-01-12 13:43:35817a7bde4d6c5cf42f68ea2089cd5aae908a0e3a58dda077e3c46c626a409bfbexe Stealc
2024-01-12 13:18:03f42ddf9bd9b31879c9229eda2d72cec43c356af331229b3ff3bf5e1bdedfcb55exe Stealc
2024-01-12 11:39:28373a89e8ca8f231f8e18330bfc57a0abac43726731389075e43480a197987ed4exe Stealc
2024-01-12 11:29:37d3ef08e5eb6e036f90587a57d6635e86784e990d1acb4474f95dedc14877ffb8exe MarsStealer
2024-01-12 11:13:060bc5211a659bf5df3d0086ebcfdf26ac088c2711de5c7f81d636f133bf3b7a04exe Stealc
2024-01-12 11:11:0236598ba20ea7eb02a711d00d89986b9e77924a61669e05b39eca3b6d7f98618fexe Stealc
2024-01-12 10:46:3274ca33c9509df5e3c65ddcd786cbf8d1b998100520842e53f7d155164bfa3b65exe Stealc
2024-01-12 10:40:2112fe8bb1a77b50a445f93764681ac5723575f24ff849b12502235b59ba92a4d1exe Stealc
2024-01-12 08:40:32edff22ce93cf6d055ec9f0668cfb696a72c779aa3e8cbd645b615607d47693c9exe Stealc
2024-01-12 08:35:55e785ab406a1d6313047f8e8af40a9c6e5833594b46ae04058dbd69760369db91exe MarsStealer
2024-01-12 08:21:01ad320d0ac803acef0108add752663df4f4c9f54acd7806b1970cfa0ab45aeedbexe Stealc
2024-01-12 06:57:3234adfc2dc4a58cfad11ec2101fa0fd01f23ab55592679ea17dab0554387bd4daexe Stealc
2024-01-12 06:35:52b2dd610ea88def1ee62da3f9c2586774c9bd4e921c09a844725333cfb39ce686exe Stealc
2024-01-12 05:52:4060b30fd306565c276d335dfaceaa0b99f182e56e4f6d900475866c0cfd81196bexe Stealc
2024-01-12 01:23:22c907febe2d362672ae3ac991d267b09e7eba5e0517d38903d5ec299d738489c3exe Stealc
2024-01-12 01:04:01b9bcb2539de7c716f9ea5d94a2c17992a9baf1088db084838657704ca3688513exe Stealc
2024-01-12 00:41:52980e2902770a2667813396276939f4b7062a16eefed923fa57aa33156e36fe30exe Stealc
2024-01-12 00:40:277571ca4be8999dff36b4ababd9ee1a0be547837fe8f3c3d697cfa802f906a252exe Stealc
2024-01-12 00:17:3806f8e58350e47ce2ec04ff9976eb465a3da79cfc9976f73fed9dd581bfb4c15cexe Stealc
2024-01-12 00:16:0170200c78068a3fa43db55d032a9bedce29fd0b7cc3f11a18fac6364f868877adexe Stealc
2024-01-11 21:19:47276de6a25801e8c4d80896fdb063e07649539fff4df1ba1753e0d02d5eeadbe3exe Stealc
2024-01-11 21:06:22d6341508b3300b69caacf89a74993ee3b0cb24c28b4dee66e39d849e0fc2d696exe Stealc
2024-01-11 20:22:4731c5ea588b833b92e146a64e44b56bf59fbb808d5406f3544d978b7d2763d603exe Stealc
2024-01-11 20:19:423f71b4b24f933f5abf91c6655816d9c126d52af592258876c2842f1e638ced9bexe Stealc
2024-01-11 19:56:063ef7c014a4663c1cf270d58b8cf701ced0ae23f3a6c710e6c9386dda3cc64611exe Stealc
2024-01-11 19:46:15f4e539558e52fee707dca1aaf5aad4e85c9fbcd8bdd8fd3cfecd107da73e00b5exe Stealc
2024-01-11 17:44:48492d712c41928d9d9d4c9cd208f232ec4b00ef64cdfb610a42c87074bfc79fa8exe Stealc
2024-01-11 17:38:30f93d1a83e9e4f9fd77199a784bb0c5747c98bb4c8135b6a8886d64ccedaaff0eexe Stealc
2024-01-11 17:23:504d7aae4973ec6d1c4d06410da20c99b8975763925e5d2044245e915d0f47b526exe Stealc
2024-01-11 17:08:12fa90aeaa97042e8fdf39467cf8e635e966ac08e8efb90402fa3ec3493990ceb2exe MarsStealer
2024-01-11 14:15:414b7763f16960cf7f830ba960eb39b6b7380570ae3e31dac228a5c378f6448ac1exeStealc
2024-01-11 14:12:29f59e14113499cca08023515dd41a573f0d8aa6bd7b04295fa22ef2bcfdfccbf3exe Stealc
2024-01-11 11:11:1646aae94f95e7ad97d4fa91e2becb49b3889b10100c95c09bda8faebe7639dd6dexe Stealc
2024-01-11 11:00:502e52ec1ef3f1839d2e6bda86c738b0460e7a43ea1c250b61bf6055a286c01b4eexe Stealc
2024-01-11 10:54:1140a10649644ee1dfd7fb8e23768a265c788dbb762b18f1e98ad84d5589baf2b4exe Stealc
2024-01-11 10:53:1784d7b5cf3792a8552cbe0bf6dfaebbb977a078b5b74007debe2c8537755e15d3exe Stealc
2024-01-11 07:59:18da6f24d0972b596a25cf337abacce15f01a5509374b545d76aab080b789a6fb7exe Stealc
2024-01-11 07:46:086c563d0ae1204e80f833e583b55beca977206103c6cf6086417e92423d792643exe Stealc
2024-01-11 05:53:058ca784fe40fb05af04b42ad805b6671c7df897d569ff77cc6234959e7d2d792fexe Stealc
2024-01-11 05:51:25ca9dd78d65440e15297f2ef91f796cc15b7f9baccf1bd2a853595646152e5b9aexe Stealc
2024-01-11 01:20:10d96573be3fea364ebee4c840893701efa5dd3fd3395ae199b13bfc53d212fd5fexe Stealc
2024-01-11 01:07:44860ea5b26b4297ef791f2bf7be670c89f5771a2384974c8fd1de9c862ecc338eexeStealc
2024-01-11 00:47:55ac9a509ac0c940cf34bf0dfca65b66adbc54494cb36c6811e214806bc3f6aca6exe Stealc