URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	79.137.192.13
Firstseen:	2024-07-16 10:07:40 UTC
Total malware sites :	30
Online malware sites :	0 (0%)
Offline Malware sites :	30 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2024-07-16 10:07:44	79.137.192.13	VPS-5520.lethost.network	Not listed	AS216246 RU-AEZA-AS	RU	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2024-07-21 06:30:17	http://79.137.192.13/prog/669b5b78252ea_googles...	Offline	32 exe Vidar	zbetcheckin
2024-07-21 05:42:10	http://79.137.192.13/prog/6698c0ab59e68_aerosof...	Offline	32 exe Vidar	zbetcheckin
2024-07-21 04:56:06	http://79.137.192.13/prog/6699582c986e9_appdriv...	Offline	32 exe SystemBC	zbetcheckin
2024-07-21 04:56:06	http://79.137.192.13/prog/669bd79ba7b76_crypted...	Offline	32 exe RedLineStealer	zbetcheckin
2024-07-21 04:56:06	http://79.137.192.13/prog/66990947b9f24_crypted...	Offline	32 exe RedLineStealer	zbetcheckin
2024-07-21 04:55:06	http://79.137.192.13/prog/669a659129ee2_crypted...	Offline	32 exe RedLineStealer	zbetcheckin
2024-07-21 04:11:06	http://79.137.192.13/prog/669a08aa861a2_fileman...	Offline	32 exe Vidar	zbetcheckin
2024-07-20 16:12:06	http://79.137.192.13/prog/669bd79ba7b76_crypted...	Offline	dropped-by-PrivateLoader RedLineStealer	Bitsight
2024-07-20 07:19:06	http://79.137.192.13/prog/669b5b78252ea_googles...	Offline	dropped-by-PrivateLoader Vidar	Bitsight
2024-07-19 13:43:06	http://79.137.192.13/prog/669a659129ee2_crypted...	Offline	dropped-by-PrivateLoader RedLineStealer	Bitsight
2024-07-19 06:58:06	http://79.137.192.13/prog/669a08aa861a2_fileman...	Offline	dropped-by-PrivateLoader Vidar	Bitsight
2024-07-18 18:56:08	http://79.137.192.13/prog/6698c0ab59e68_aerosof...	Offline	dropped-by-PrivateLoader Vidar	Bitsight
2024-07-18 12:56:06	http://79.137.192.13/prog/66990947b9f24_crypted...	Offline	dropped-by-PrivateLoader RedLineStealer	Bitsight
2024-07-18 06:26:06	http://79.137.192.13/prog/66979ab41b05f_crypta.exe	Offline	32 exe LummaStealer	zbetcheckin
2024-07-18 06:21:06	http://79.137.192.13/prog/6697dafdd90a3_crypted...	Offline	32 exe RedLineStealer	zbetcheckin
2024-07-18 05:38:06	http://79.137.192.13/prog/66979a57f071c_otraba.exe	Offline	32 exe LummaStealer	zbetcheckin
2024-07-17 19:53:06	http://79.137.192.13/prog/66979a57f071c_otraba....	Offline	dropped-by-PrivateLoader LummaStealer	Bitsight
2024-07-17 15:10:06	http://79.137.192.13/prog/6697dafdd90a3_crypted...	Offline	dropped-by-PrivateLoader RedLineStealer	Bitsight
2024-07-17 11:22:09	http://79.137.192.13/prog/66979ab41b05f_crypta....	Offline	dropped-by-PrivateLoader LummaStealer	Bitsight
2024-07-17 10:32:19	http://79.137.192.13/lopsa/66967d2323cae_cry.exe	Offline	32 exe Vidar	zbetcheckin
2024-07-17 09:49:07	http://79.137.192.13/prog/66968b7e12e95_crypted...	Offline	32 exe RedLineStealer	zbetcheckin
2024-07-17 07:23:22	http://79.137.192.13/prog/669662d10259b_file150...	Offline	32 exe stop	zbetcheckin
2024-07-17 05:53:04	http://79.137.192.13/prog/669698e482bd9_finesof...	Offline	32 exe Vidar	zbetcheckin
2024-07-17 05:05:10	http://79.137.192.13/prog/6696629242869_crypted...	Offline	32 exe RedLineStealer	zbetcheckin
2024-07-17 05:04:36	http://79.137.192.13/lopsa/66967d2323cae_cry.ex...	Offline	dropped-by-PrivateLoader Vidar	Bitsight
2024-07-17 04:15:10	http://79.137.192.13/prog/6696621cecc83_crypted...	Offline	32 exe PureLogStealer	zbetcheckin
2024-07-17 00:25:13	http://79.137.192.13/prog/669698e482bd9_finesof...	Offline	dropped-by-PrivateLoader Vidar	Bitsight
2024-07-16 17:42:43	http://79.137.192.13/prog/66968b7e12e95_crypted...	Offline	dropped-by-PrivateLoader RedLineStealer	Bitsight
2024-07-16 13:13:06	http://79.137.192.13/prog/6696621cecc83_crypted...	Offline	dropped-by-PrivateLoader exe PureLogStealer	Bitsight
2024-07-16 10:07:44	http://79.137.192.13/prog/6692518842cd4_BotClie...	Offline	dropped-by-PrivateLoader exe RiseProStealer	Bitsight

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2024-07-21 06:30:17	cd866b4aa47daf4efb5f4800b7972404a4dace852d2749ca11cf341ca63a368a	exe	Vidar
2024-07-21 05:42:10	fa41bf610e2af66a75a73cb1d348aecc9a275756710c05be99220bbddbd34674	exe	Vidar
2024-07-21 04:56:06	1354429a271a349329dbbfda561fe0eb43ae4005f5d3c4abdec9aef08cf23baf	exe	SystemBC
2024-07-21 04:56:06	96db11589e31f55a3bb06de8f13246d3220a483e5ff41f8fabbb1070e0bf52fa	exe	RedLineStealer
2024-07-21 04:56:06	f408c8ba5781966f6ce1da805de79deb4a5e3c9dfbe097493123257e6112bf71	exe	RedLineStealer
2024-07-21 04:55:06	b190b4f3105af4a2a02db28f27d1c723c09ba419ef73a89b555078c5041a2486	exe	RedLineStealer
2024-07-21 04:11:06	ad7f9e4949343c8fc588c99f74a6d09b5de57d4a90e48e003a28fbf0c80ec0a6	exe	Vidar
2024-07-20 16:12:06	96db11589e31f55a3bb06de8f13246d3220a483e5ff41f8fabbb1070e0bf52fa	exe	RedLineStealer
2024-07-20 07:19:06	cd866b4aa47daf4efb5f4800b7972404a4dace852d2749ca11cf341ca63a368a	exe	Vidar
2024-07-19 13:43:06	b190b4f3105af4a2a02db28f27d1c723c09ba419ef73a89b555078c5041a2486	exe	RedLineStealer
2024-07-19 06:58:06	ad7f9e4949343c8fc588c99f74a6d09b5de57d4a90e48e003a28fbf0c80ec0a6	exe	Vidar
2024-07-18 18:56:08	fa41bf610e2af66a75a73cb1d348aecc9a275756710c05be99220bbddbd34674	exe	Vidar
2024-07-18 12:56:04	f408c8ba5781966f6ce1da805de79deb4a5e3c9dfbe097493123257e6112bf71	exe	RedLineStealer
2024-07-18 06:26:06	6b35a3ad6701ca03ba3da93d777d28ece78d255f79e9cc0f2b6f2f5242b16067	exe	LummaStealer
2024-07-18 06:21:05	7010eb737bc8cbc8598ae5de392f485406f7fd1e821f0d7e6649f3022fcf8ac8	exe	RedLineStealer
2024-07-18 05:38:06	7ca22f8fdee2f8d29b2b5be6c848a612bf4628f9cb5de1c6754a5ab8030f8709	exe	LummaStealer
2024-07-17 19:53:06	7ca22f8fdee2f8d29b2b5be6c848a612bf4628f9cb5de1c6754a5ab8030f8709	exe	LummaStealer
2024-07-17 15:10:06	7010eb737bc8cbc8598ae5de392f485406f7fd1e821f0d7e6649f3022fcf8ac8	exe	RedLineStealer
2024-07-17 11:22:09	6b35a3ad6701ca03ba3da93d777d28ece78d255f79e9cc0f2b6f2f5242b16067	exe	LummaStealer
2024-07-17 10:32:19	9f2ed264e0c2d6a884e7ac348ca9453f846c6e6c3af69fbc5d40af7ecdc01b8e	exe	Vidar
2024-07-17 09:49:07	96b5ad76adbcdbd8794fc6ba8209ffdda1815304eda98e5b6d12d2aee2ff0051	exe	RedLineStealer
2024-07-17 07:23:22	4bb311ba0e479264b1d3c7deab5bfb44b0c1fb100d82aa7d605369b0ac938981	exe	Ransomware.Stop
2024-07-17 06:59:45	fe8bed09a836755e33c1ad4cae1ea15db42f7f5b5ac669d9a359d8c4fc1df9a1	exe	Vidar
2024-07-17 05:08:05	9f2ed264e0c2d6a884e7ac348ca9453f846c6e6c3af69fbc5d40af7ecdc01b8e	exe	Vidar
2024-07-17 05:05:10	73f00d2746a71e412b9c6d43c7f5e0ed5faf3e03730bfd6e24b8955e42c2267e	exe	RedLineStealer
2024-07-17 04:15:10	4aff6f753361faf1f93bf5cf4b12684940e42626034e197e8c3a84ae37c2a6bb	exe	PureLogStealer
2024-07-17 00:25:13	fe8bed09a836755e33c1ad4cae1ea15db42f7f5b5ac669d9a359d8c4fc1df9a1	exe	Vidar
2024-07-16 17:42:43	96b5ad76adbcdbd8794fc6ba8209ffdda1815304eda98e5b6d12d2aee2ff0051	exe	RedLineStealer
2024-07-16 13:13:06	4aff6f753361faf1f93bf5cf4b12684940e42626034e197e8c3a84ae37c2a6bb	exe	PureLogStealer
2024-07-16 10:07:43	6ffd157eb781504eadd72996c2cdbd4881034ffb7f7d2bc4b96d4daa61fb4d86	exe	RiseProStealer