URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 66.63.187.164
Firstseen:2025-06-16 06:22:03 UTC
Total malware sites :2
Online malware sites :0 (0%)
Offline Malware sites :2 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-06-16 06:22:07 66.63.187.164Not listedAS36352 AS-COLOCROSSING- USyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2025-07-22 04:30:20http://66.63.187.164/v9d9d.exeOfflinec2-monitor-auto dropped-by-amadey xworm c2hunter
2025-06-16 06:22:07http://66.63.187.164/v999f8.exeOfflineAmadey c2-monitor-auto dropped-by-amadey xworm c2hunter

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-07-25 22:33:2556b7434758412a53e839c141c5e801de7c74851af1187a76675dc6b3ce80fdb2exeXWorm
2025-07-23 23:05:59f8e72c4db348eb70ec22401abfc618e8a58f115c41be7acb36fd6732f367c37cexeXWorm
2025-07-22 04:30:202cd8c0e75cf76381f06dfe465a542e52eefa713b0bea2557763e0c0c45b21481exeXWorm
2025-07-14 17:42:039a48791ce4a8a84da69e681b573be582fb3c6eebb2a20874310873fd39b3e5eeexeXWorm
2025-07-12 11:05:56526bcbcd52ee42370b6f1058d850813a6a802ad80a2bc387f8e884f7cd151d47exe  
2025-07-08 22:47:24b60a32eb10bd8116ec74bf71318ecb7ae1dda54fa266a81cd98f6dfc03ffd652exe  
2025-07-07 04:38:3533033f739d757918a5a69c6d0d47fceb724128dd2fa0f2bb76d6a307f283d26fexeXWorm
2025-07-03 23:33:05d17dbd27deb737cb8e02e1c05823ec358c4a919cb36ec9f783845bad0d92e16aexeXWorm
2025-06-29 23:16:0963d9d59c9f36e2496a5842f5fba7a171c270d17319271d6685afda7c38417349exeXWorm
2025-06-28 10:02:497b748fbc361bb66d5af0ab5c7e709186b1a3110e9fa0a2912a2e6b577d8b0b94exeXWorm
2025-06-27 10:09:332d2506e0655a5f5c2bb91fa474998dcd88c77b91eb639c72f4a3bc92e2416c4eexe  
2025-06-23 11:20:51715f32d3ba36774ca6d9428f60872e309e88915575e7a10bda2e85eea28f0a9aexeXWorm
2025-06-22 05:33:159b27277854d19bd2015d5af143ff17e1466bef512cdc3c29a9eb262ecbabc0bdexeAmadey
2025-06-20 05:24:139f49ae273a8087da0c1604a8d665b4381ac8d3f51c9ccbd65097181594452b85exe  
2025-06-16 23:32:41d6085d46c672a2a678af3c8d245227a5665a7adc5149d721bcc3229d9c987f5aexeAmadey
2025-06-16 16:19:43545fcfa74ab3830c3529202dad8af360a1578b6eff550bf5d9986ab1af40554fexeAmadey
2025-06-16 06:22:07dffb6dc781261370654389e525a629ab9368b2fca8ffb545b879adce237ec3ddexeXWorm