URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 50.87.194.40
Firstseen:2022-04-01 13:17:03 UTC
Total malware sites :8
Online malware sites :0 (0%)
Offline Malware sites :8 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2022-04-01 13:17:06 50.87.194.4050-87-194-40.unifiedlayer.comNot listedAS46606 UNIFIEDLAYER-AS-1- USyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-04-01 13:17:06http://50.87.194.40/123/TrdngAnlzr1645.exeOfflineRedLineStealer ext JAMESWT_MHT
2022-04-01 13:17:06http://50.87.194.40/123/TrdngAnlzr1756.exeOfflineRedLineStealer ext JAMESWT_MHT
2022-04-01 13:17:06http://50.87.194.40/123/TrdngAnlzr10422.exeOffline JAMESWT_MHT
2022-04-01 13:17:06http://50.87.194.40/123/TrdngAnlzr9562.exeOfflineRedLineStealer ext JAMESWT_MHT
2022-04-01 13:17:06http://50.87.194.40/123/TR15Setup.exeOfflineRedLineStealer ext JAMESWT_MHT
2022-04-01 13:17:06http://50.87.194.40/123/TrdngAnlzr98262.exeOfflineRedLineStealer ext JAMESWT_MHT
2022-04-01 13:17:06http://50.87.194.40/123/TrdngAnlzr1649.exeOfflineRedLineStealer ext JAMESWT_MHT
2022-04-01 13:17:06http://50.87.194.40/123/TrdngAnlzr2249.exeOfflineRedLineStealer ext JAMESWT_MHT

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-04-04 09:04:39de342b73ab279eccec76de26007344ba122df43f5cb1ded839f75579206f85b0exeRedLineStealer
2022-04-04 08:45:0876b69b97bc5937703aaa0ce5d4f2676fe709de38bd7a9c3d5dedc5a951b63601exe  
2022-04-04 08:03:0800542f0048cd8881b5109b88af7d3eb37a4568bc0b53c9b9a8ae8cf349f8c118exe  
2022-04-04 08:00:488b802e9d01e925f36658b16dda785732a3d4a86c90a372a549162d40eb7710f6exeRedLineStealer
2022-04-04 07:58:4621e4967adbe7dfeedfb2c8a2d52e4ecfdf97f0e5b0846d58652b29b56a43222fexeRedLineStealer
2022-04-04 07:53:26170418ed34e1abffcb85b53766635c8ffd47e8c1736882079414520c8bdcac86exeRedLineStealer
2022-04-04 07:51:41a5adf079ee8487bfe30a6a9ea6e21a9f1fb961ab4b092bde5383df1cea66f080exeRedLineStealer
2022-04-03 18:34:02fb3026be3a81015638c6b2bebabe336bbbc2a8dc65f4f136f654ad824e27707bexe  
2022-04-03 18:30:1430f382831b4c17949f756a77e0b00a1973002d508b08fa47084d4f7877337441exe  
2022-04-03 18:30:03d0926df00d01a5803727201678f8848ec100e38e9e9fd146bcf7460b31705e8bexe  
2022-04-03 18:05:1099defb11e7c7715d555dbd0d0619216a05b5211faf15656c368452663fa3405fexe  
2022-04-03 18:05:009b49471fb346891620f0de8c6289916380d2c32908836512db37c7bc58fa2f52exe  
2022-04-03 17:45:324995062d58cad9acd9527d9bf8c637d89e9b5ce027f6946c25b7e7c74b89c5ddexe  
2022-04-03 17:44:304a9ad5dba915f00777428e0d39115eecfce1aee412c970e51ba0f4f30e680378exe  
2022-04-02 15:42:26a0dcbf9dd0a8adb5fa2abe1aac7762dc8f5c91d3d83d4151016955e961ec8d55exe  
2022-04-02 15:35:49447366fc01332bc55b8e9aa0f8a36ecb71fad811f4f40e549be93c8f3d532d8eexe  
2022-04-02 15:21:36e709eb684453dfbf04996d580d6b3dd1b4bbb70c79f5d30b02ff70c7925d1256exe  
2022-04-02 15:17:37d60173f0ad3f5b6d1f0a8b0dcf14e628a38743e997eebe603745cba3158e63f6exe  
2022-04-02 14:52:20763c427c1e8401601b86d7db34a3e64bf478e325b5ba5ad81633f4c67353cf56exe  
2022-04-02 14:52:04965359a05318ea2ba4a8bc9205c77ff9b182988f7eeb83635db95e5decd37022exe  
2022-04-02 14:45:4137d0096142c27c95a0759511190e3413d88a0ffe631d8e0f24eb29c44a029e3fexe  
2022-04-01 15:15:54d23a3aae9a1c5b8d5502b108856f0360a4af56c79fe421ca9125ba6bc259420dexeRedLineStealer
2022-04-01 15:10:5256633dbf1eb43f772795a409d8bba5a5dc1e21ca111af731166dcb4fdab66ea9exeRedLineStealer
2022-04-01 14:37:280d39fdc74c89e90f5952fc1352a22d9c1ed239453e5f6d98805aaeeedbce3022exeRedLineStealer
2022-04-01 14:35:551534e4e66fa526483fb3406f68c6f893828669a8eacd3a062f91159152ff8777exe  
2022-04-01 14:34:17957f1fe678da9b87111beb0ee535f17afbd288d76b0214f4fa8322c3fa27d878exeRedLineStealer
2022-04-01 14:33:29978b0c32e4c5b86af8105a45a539b77c3fd30cddf53946ee6037690dc6f715eaexeRedLineStealer
2022-04-01 14:33:20cd1cc36478fbaeee62611449fb00e84a5fcd5b2f50182eedcb4fec60d37a3046exe RedLineStealer
2022-04-01 13:17:06f4ca00a988875fb8a01beeadd538610519b23866d0f16d27bb1c7e647d7a5a47exeRedLineStealer
2022-04-01 13:17:063d616db3bac20e1f2aeb4aa9ad6c53a64fb2ae692ddd4dfbca34e7552a772c13exeRedLineStealer
2022-04-01 13:17:063c3bf835742e7a36b7a7c7866965e351077c08c48479f2cd988133bf65f22cefexeRedLineStealer
2022-04-01 13:17:062a0ceaf5ac0039a9409b47ebbe01ba3872726a6b6318bd697b8199396df49301exeRedLineStealer
2022-04-01 13:17:065e83f90e54bfad61111ff0ba791c63da7c5ad638d99dd66eeb1bf4994c51be9eexe 
2022-04-01 13:17:06035135ef9ff11b79d5904a8ea08a1a430e6d9ca3d75bb30c0bd47d0f72486153exeRedLineStealer
2022-04-01 13:17:0526561f10cc120df745a1bbb4062af13aaf13129002ca36de757d11764849194fexeRedLineStealer
2022-04-01 13:17:055df70b6d4395c363a2f97843733996bceabfc71a9b30f6ef7361161b34b45bc6exeRedLineStealer