URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 51.124.222.69 |
|---|---|
| Firstseen: | 2021-12-13 14:55:03 UTC |
| Total malware sites : | 2 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 2 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2021-12-13 14:55:05 | 51.124.222.69 | Not listed | AS8075 MICROSOFT-CORP-MSN-AS-BLOCK |  NL | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2021-12-13 15:16:03 | http://51.124.222.69/goodrat.exe | Offline | 32 AsyncRAT  exe |  zbetcheckin |
| 2021-12-13 14:55:05 | http://51.124.222.69/build.exe | Offline | 32 exe RedLineStealer | zbetcheckin |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2022-02-18 07:05:15 | 61a44f14f7db181301ad8c3b4649d9c9158893d2e7db43d9adad8306a40adc32 | exe | RedLineStealer | |
| 2021-12-13 15:16:03 | 9cc01f1e20f42b91a7821c4b96679ab05834c9cbbe42e9b127f7ce0cb631e176 | exe | AsyncRAT | |
| 2021-12-13 14:55:04 | 02880a81b63c1b1918b7755b35a9b932eb83b8c929060f166d1bcda85d33f933 | exe | RedLineStealer |