URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 51.255.46.245
Firstseen:2024-07-21 15:28:04 UTC
Total malware sites :7
Online malware sites :4 (57%)
Offline Malware sites :3 (43%)
Newest active malware site :2024-07-21 15:29:05 UTC
Oldest active malware site :2024-07-21 15:28:05 UTC (Age: 1 year, 10 month, 15 days, 4 hours, 23 minutes)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2024-07-21 15:28:05 51.255.46.245245.ip-51-255-46.euNot listedAS16276 OVH- FRyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2026-01-09 13:09:00http://51.255.46.245/formind.php.oldOfflineelf php Anonymous
2026-01-09 13:07:05http://51.255.46.245/test.phpOfflinezip Anonymous
2024-07-21 15:29:05http://51.255.46.245/CVE-2023-36874.zipOnline abus3reports
2024-07-21 15:28:05http://51.255.46.245/printnightmareOffline abus3reports
2024-07-21 15:28:05http://51.255.46.245/nc64.exeOnline abus3reports
2024-07-21 15:28:05http://51.255.46.245/nc64.zipOnline abus3reports
2024-07-21 15:28:05http://51.255.46.245/b64Online abus3reports

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2024-07-21 15:29:050002579bc46cab729b17d9cd27bec267d9d6692e3d617390561d3736a0a23865zip  
2024-07-21 15:28:053e59379f585ebf0becb6b4e06d0fbbf806de28a4bb256e837b4555f1b4245571exe  
2024-07-21 15:28:050ea34b6df5b27f579aca431222a0c13fbc0323ddb99495938eec2eeb1f9f0b72zip  
2024-07-21 15:28:053d5c6c4b14552f7a724aa0940f11a04936356780cf4db9a208ea0f2b2d5cf9d2txt