URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 52.56.119.158 |
|---|---|
| Firstseen: | 2021-11-23 09:22:03 UTC |
| Total malware sites : | 7 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 7 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2021-11-23 09:22:04 | 52.56.119.158 | ec2-52-56-119-158.eu-west-2.compute.amazonaws.com | Not listed | AS16509 AMAZON-02 |  GB | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2021-11-26 19:20:05 | http://52.56.119.158/40004/we3-09.exe | Offline | 32 exe Formbook  |  zbetcheckin |
| 2021-11-26 19:20:05 | http://52.56.119.158/40004/we3-88.exe | Offline | 32 DBatLoader exe | zbetcheckin |
| 2021-11-26 19:20:05 | http://52.56.119.158/40004/we3-07.exe | Offline | 32 DBatLoader exe | zbetcheckin |
| 2021-11-26 19:19:04 | http://52.56.119.158/40004/we3-08.exe | Offline | 32 exe | zbetcheckin |
| 2021-11-26 18:17:03 | http://52.56.119.158/40004/we3.exe | Offline | exe Formbook opendir |  abuse_ch |
| 2021-11-23 11:01:04 | http://52.56.119.158/www1/ckim-1.exe | Offline | 32 exe Formbook | zbetcheckin |
| 2021-11-23 09:22:04 | http://52.56.119.158/www1/ckim.exe | Offline | exe Formbook opendir | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2021-11-29 01:20:18 | 667e8635796cd94ca4161f15f33e8c9d837c7c35a25d583e4f978ad76d9b86f8 | exe | Formbook | |
| 2021-11-26 19:20:05 | ba10b4ebe4ae3556a1320c7a9b8cb14da16042061c33f1ded73c193cbac8f346 | exe | Formbook | |
| 2021-11-26 19:20:05 | 91b5c318543587a212464565a4df06eae2ad2823338389134f06c4409047e18e | exe | DBatLoader | |
| 2021-11-26 19:20:05 | 62d54d23908b06fb851da8829798a3d82110e0c189a8794f9d7deb9642f1542d | exe | DBatLoader | |
| 2021-11-26 19:19:04 | 2aed66a90e0179ee2d8db5a3d74ec6e4f7a46c81f4efa0c00218d46655db10b6 | exe | ||
| 2021-11-26 18:17:03 | bc42c1e528e70d0f4152e78278ed1a0e4bacf4cab8bb21da9ea8f99a48676355 | exe | Formbook | |
| 2021-11-23 11:01:04 | e65d1335f3495f7d469bea81683253ee0845b3b3980cfaea09c4a7837a6c66eb | exe | Formbook | |
| 2021-11-23 09:22:03 | 2c81bc76bb2b34fc085a6ff0beb19fda2b1e400ad67341f55185b8d8b7351643 | exe | Formbook |