URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 79.137.192.18
Firstseen:2023-08-05 14:02:06 UTC
Total malware sites :20
Online malware sites :0 (0%)
Offline Malware sites :20 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-08-05 14:02:10 79.137.192.18VPS-2059.lethost.networkNot listedAS216246 RU-AEZA-AS- RUyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-11-09 06:46:12http://79.137.192.18/latestmar.exeOfflineexe glupteba ext Smoke Loader ext Stealc abuse_ch
2023-10-23 16:02:13http://79.137.192.18/newmar.exeOfflineexe glupteba ext LummaStealer Smoke Loader ext abuse_ch
2023-10-08 10:50:12http://79.137.192.18/minda.exeOffline32 exe glupteba ext RedLineStealer ext Stealc zbetcheckin
2023-09-18 14:42:06http://79.137.192.18/mar3.exeOfflinedropped-by-SmokeLoader LummaStealer RedLineStealer ext Smoke Loader ext Stealc Casperinous
2023-09-13 08:35:08http://79.137.192.18/Mar.exeOfflinedropped-by-SmokeLoader RedLineStealer ext Casperinous
2023-09-03 04:12:05http://79.137.192.18/aafg31.exeOffline64 exe fabookie zbetcheckin
2023-09-02 07:36:06http://79.137.192.18/softtool.exeOffline32 exe Smoke Loader ext zbetcheckin
2023-09-02 05:15:07http://79.137.192.18/soso.exeOffline32 Amadey exe RedLineStealer ext zbetcheckin
2023-09-01 15:44:05http://79.137.192.18/rockas.exeOffline32 Amadey exe zbetcheckin
2023-08-26 08:08:09http://79.137.192.18/alotdata.exeOfflineglupteba ext abuse_ch
2023-08-26 08:08:06http://79.137.192.18/helptool.exeOfflineSmoke Loader ext abuse_ch
2023-08-24 04:57:06http://79.137.192.18/repairtool.exeOffline32 exe Smoke Loader ext zbetcheckin
2023-08-24 03:26:12http://79.137.192.18/rock.exeOffline32 Amadey exe zbetcheckin
2023-08-24 01:02:11http://79.137.192.18/datacas.exeOffline32 exe glupteba ext zbetcheckin
2023-08-24 00:14:07http://79.137.192.18/wowo2.exeOffline32 Amadey exe fabookie zbetcheckin
2023-08-20 00:18:09http://79.137.192.18/1808tui.exeOfflineexe RedLineStealer ext dms1899
2023-08-11 23:42:09http://79.137.192.18/31839b57a4f11171d6abc8bbc4...Offline32 exe glupteba ext zbetcheckin
2023-08-11 22:05:07http://79.137.192.18/toolspub2.exeOffline32 exe Smoke Loader ext zbetcheckin
2023-08-06 12:10:18http://79.137.192.18/latestX.exeOffline64 CoinMiner exe zbetcheckin
2023-08-05 14:02:10http://79.137.192.18/wowo.exeOffline32 Amadey exe fabookie glupteba ext Smoke Loader ext zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-11-13 07:08:08394806d79ea2ea4c7ee7af56633e23deee66847483e4d5fc7d0db558aed2c481exe Smoke Loader
2023-11-12 16:06:34fa90294c2cd7c12d68524c55cc5ed0e3276d0a7bbce8fedec1e0cf679e521298exe Glupteba
2023-11-12 05:42:018c5a38887768a98da1ba757c359a2f24b137ef9b78c7b5ba8383d999582d1b2bexeStealc
2023-11-11 20:53:358559eef75d44d48a5987571139ce0f791879fe3a7a21761a68f5f9dbac1ff216exeStealc
2023-11-11 07:01:12ac0cb31289c6ac9a630d67a58505ffe5bb4a834dd82e4bcdb1ce0423f313ae72exe 
2023-11-10 09:26:063e720c51e608d3126d9181df7df3333d89957d56d13d2b6686dd99fded9ee442exe Smoke Loader
2023-11-09 06:46:1260861a072ffc6b404ae640f7270e6d36afd5f4b0911866598be0800da4c16ab8exeSmoke Loader
2023-11-02 18:13:473b7f28a994da86db40f924af3024108e31f55d7fc1fd0a98348daf963a2c65cdexe Glupteba
2023-10-31 12:56:21a179ba5bfb90fc8260e11141698050f23487888f1e5d85ff517fa8be1051cebaexe Smoke Loader
2023-10-29 16:31:216aee985525aef643dda7fc0ac2b6c46dcbfe0d10cd127453fa5e1927441b3644exe  
2023-10-29 15:30:50a1886f685166d4be80d54dfc12e8b369deb4384b249e6aa60e7f8c7d02816191exe Smoke Loader
2023-10-27 19:21:43896142c5f46f8890805bf33993e952ce267d3c7b895695391beba9baf57a2860exe Glupteba
2023-10-26 07:37:540ff5066a1c9caf9db55ddca514049faa9badfd6bee0a6e8ba825ee8198b65efbexeGlupteba
2023-10-25 13:17:485c2b4e332af8aebcad025d8c58ae6d643bffbf4b4c69ffd801fd9f38ab98da05exe Smoke Loader
2023-10-25 10:04:274a6db4730d885be4e893ff633040523942225198e923cea63de2a772c88e7d12exe Backdoor.TeamViewer
2023-10-24 20:37:15b13f3f708d62bbfcbd90f59d761fb5b518ba402c88f095efdf29c51706ef613bexe Backdoor.TeamViewer
2023-10-24 17:54:36402e27610cc92a63c480eb4566fc350328da856bb809a146c821fcde0496a712exe  
2023-10-24 17:12:48fdf4a095842205019610d68c054cd30e9c6e859ec8f6492c5b83c2227f3e5b1fexe  
2023-10-24 15:27:083ff3e11128ead9eca87a33ac9bc9453cb8450212c0a002bd464243188a3d2f03exeLummaStealer
2023-10-24 09:57:26def5feed42fc356d4590a40e2a44ba163c44fa7f689c975f00dc0554613400b5exe  
2023-10-24 08:13:2108e3325fc4e8290185758d0015abcab6d5327e0ae4dd90d49d77f94c007682f8exe  
2023-10-24 06:59:3220ea338af45c4221e0ac33de59e84a3cf0d0eed2f609fbad4d3227f5131de0e2exeBackdoor.TeamViewer
2023-10-24 03:58:20c0ac5d1a8ecec0939b5fce4b90a3c08ca17bd656293f4f064cec7d44e84d0601exe  
2023-10-23 16:02:13ebf0fbb2d06f3a42839c341b052cfe7b8b4e0b7e93a5f37a3c426f27a762e63aexeBackdoor.TeamViewer
2023-10-21 08:41:13d6bee325008fa7c6e921fcb5822ab51dfc56242db3dde66afbfbdd898375d749exe  
2023-10-19 07:16:43447256dff90ad94ec11db31690f298be6cccacb3433710fcdd27b909f04f373cexe  
2023-10-12 11:08:04f9f9b154f928549c7a4b484909f41352048ce8148c678f4ec32c807c1d173a39exeRedLineStealer
2023-10-12 07:08:577b56b03a973a7f1d05ae4936c945ddb59601fe808dd6149fd5d4571dda90ca7aexe Backdoor.TeamViewer
2023-10-12 07:08:458110472e22390be4bdf9a31516dd55064036505ea63983b35a70f41637655d55exe Backdoor.TeamViewer
2023-10-12 06:09:491dfb34a0def7fc937b0bec7ca8abcbbcc5a0859e4d236c84f634ede4f3cf31a2exe  
2023-10-11 22:13:2044cd48e24b4b02990be8037d3aeb360be0546f9ebaee29f11825b77235941852exe  
2023-10-11 16:22:11daed0466ca4cd862394eaa4d058808a589bff5162b8d3657bd9c9eb48b131aa6exe Backdoor.TeamViewer
2023-10-11 16:15:498091373539cb3c22bc308db65b46268944322f9f5b4ce0f5203231ab3d1d12beexe Backdoor.TeamViewer
2023-10-11 11:27:2568290c345862d32ccaa326a157f8ad2a5c4fe3ec0658c984f0d6616a96a85125exe Backdoor.TeamViewer
2023-10-11 11:10:37fda8c093b4551f9399e19712be09fd16f5acd4a10c35f90594f1c012bab7e70dexe Backdoor.TeamViewer
2023-10-11 02:45:3364402338dbb6446e137d5c03b02db2572a3164f884fc9a5bae080104d2fc8135exe  
2023-10-10 16:43:24b27d92e9b7f7e7b9ebcf69a63c02797978050ec749c9fa18df3205362f2847e1exe Glupteba
2023-10-10 16:05:14f9bc3ddfb1e5e253dac94c91d2d678ad2f1c61537207e71fc04d42af28b04520exeLummaStealer
2023-10-10 06:33:5000a2f65e91222361100e91bf2859b1c2321dbadbe226aa8291254ce63cb211d0exe Backdoor.TeamViewer
2023-10-10 05:58:582b35b12fd8b68b9696a882fc96866ad0d5dee78403a7dc0fc1a015b485ac9a8cexe Backdoor.TeamViewer
2023-10-09 22:21:26c81cee973bcb85d3ab943e32fe4a19cdc3fa195fbce18e6c3ea8ed16bd1678fcexe Stealc
2023-10-09 22:05:483481e519a886d3970e852d0513034efd0c9d71481b70533ca3c6b92ec83c1d50exe Stealc
2023-10-09 21:35:18f4166750bad878e8314f03edc986ea707563b6531ef24e93a75bdd6a6eb3d661exe Backdoor.TeamViewer
2023-10-08 21:16:0344feea369c299cc4ef2cd5bdd8bdc1fc06aaedf80b0a1e79e4575e5df5b90d08exe  
2023-10-08 20:37:08173cf6b50cfad4fa06f6826452aeceae743a49fb7c2cdc6445961c01dc11da92exeBackdoor.TeamViewer
2023-10-08 20:26:5931c5da8614998e7836aaf3c70559f7710edbd4b536b840e0c63babfdc95c5921exeBackdoor.TeamViewer
2023-10-08 10:50:12d822320e69cb0ddf07bd762ddf9d56bf46bae93a37ed1abc7d37485faf56761aexeBackdoor.TeamViewer
2023-10-06 11:57:159002295e57a8a0222a1913eb099fc39c83a42575374af6b5e6fb78d33e7487faexe  
2023-10-06 05:52:0130c661162c05ea875950df6cc6fc4f8b97983119d5eac439475b7ca31aefb756exe Backdoor.TeamViewer
2023-10-03 07:57:25f9f9b154f928549c7a4b484909f41352048ce8148c678f4ec32c807c1d173a39exeRedLineStealer
2023-09-28 21:03:2903765cd4acad61f85cb2237a6f6f9b8dd98774aa492c8439a2343d14b5c7d01eexe Backdoor.TeamViewer
2023-09-28 18:24:475b87ce68e1675eba8902b7531a1318b2d231f211949c0b3357e235ec69ddcec3exe  
2023-09-28 14:55:139a31e105688533003e4bc86ef9497529e22fb021c86d6431cd33189a31f3864fexe Backdoor.TeamViewer
2023-09-24 13:11:559b9cbe098bcd6261d2ec404c6da54c7977f7d9919b3daac26c72fa30fa8aafe6exe Backdoor.TeamViewer
2023-09-22 20:02:214b77eeabc30512a512339603a46914b3060a3447dd3c53743bd2cc03c21f2229exe Backdoor.TeamViewer
2023-09-21 10:20:106afeaa7fde0ee12455c602921a605042b33d9741962cac3015b03334a158e6a2exe Backdoor.TeamViewer
2023-09-19 20:32:05521e1daebb7e7a0ad94d160e1f3f10157b87c8c744c9b2c6a5f4d1b16c5e665fexe Backdoor.TeamViewer
2023-09-19 18:58:33ce6ddf38ddc57698642bc07efc9088f66f1a6fcb421851fe668b84e7f1169726exeFabookie
2023-09-18 14:42:06ace208a4aebe9ac1b659808b108c795961d1160de5b147be47b5624f6de46830exeSmoke Loader
2023-09-13 08:35:08f9f9b154f928549c7a4b484909f41352048ce8148c678f4ec32c807c1d173a39exeRedLineStealer
2023-09-12 14:03:38f342950ea78a3910911df852de530912090acea09b895e299d4ba0132ee146eeexe Smoke Loader
2023-09-12 13:52:38ac81724fd3a660ce17e5d5b2b560285e4725f93ecc4d9ed9fcfab041532914c2exe  
2023-09-09 21:38:23e0c0dad38a7b96cd4bd4049a100b4c483b5f6cdf8d44c005f6039d294debfec8exe  
2023-09-09 21:20:14fc1e3944f18236351bd996c56eb16c45df332a974a8fb5844999d08908f9efc5exe Fabookie
2023-09-09 21:19:3127026282d2170cd2dc30551e302b4615e8a66ba719333fd1b02d2259603bacc7exeGlupteba
2023-09-03 08:53:17b9d5f28e9a2202320f803f236b5f4a1d73a5bc6330ac210020136b50180c71f9exe Smoke Loader
2023-09-03 04:12:052777cb1ff9e857722dbf3987bd5c8263486ecf02c9a409bc772b071e0ba01ba9exeFabookie
2023-09-03 01:03:24a09d7d79ba4e1177ee17cc8f10e21508b3b69cf2a29c0f8b3bb478a65ad60846exe Glupteba
2023-09-02 22:54:47563acabe49cc451e9caac20fae780bad27ea09aaefaaf8a1dfd838a00de97144exeAmadey
2023-09-02 22:51:56f9f9b154f928549c7a4b484909f41352048ce8148c678f4ec32c807c1d173a39exeRedLineStealer
2023-09-02 07:36:0602afba9405a5b480a7b1b80ec9abab41e462f8c30567f1926105a63eaf13e059exeSmoke Loader
2023-09-02 05:15:07836253d5026a357aa7d50bb553c16481812b8462541c1ac16730c72af29508a9exeAmadey
2023-09-01 15:44:0582ecd2b864229b43116466944478c474ac7ff2e8a0dd4f24df59d325953c2b30exeAmadey
2023-08-30 09:05:286936a56efd4d51f236841a94f58686ad099773e0adbef02561cda498347181f4exeSpambot.Kelihos
2023-08-30 08:38:260a43bc29b96992aaec01af4c1a83318e1db149f8d8f216425c371b3a1400bf8eexeSmoke Loader
2023-08-30 08:36:1363cc4816ad2c1aef24453c1455da828fff06962b36bc33dab7e2b9005465ef4aexe Glupteba
2023-08-30 08:34:52673192e23603b5a23173abeb594103e7babf154eb3af5288ccfb0fa6db6eacf5exe Amadey
2023-08-27 10:53:533c3765a39069b1f6dbcaafb23721a289df7c3e1b540e2de3c76facb867bba7dfexe Glupteba
2023-08-27 09:32:5610d5acaf335351c394065caea772a79d686fab672649cb94315342fe0a9e4df4exeSmoke Loader
2023-08-27 07:24:313bda837b7567cc5917c300ca3360d91434bf002656f1504276aa700ccfb5ca90exe Amadey
2023-08-27 07:13:2041208caccffa396b398d634e94671e3adb43a8602a4a7fccb6fd66460e6a800bexe Amadey
2023-08-26 08:08:09336e13cf278f9d39ac6d95cede295d3af1c903b5f0ca9c865f1a44f07683bcd8exeGlupteba
2023-08-26 08:08:06b1e4aecc6fa5f38ad4c3f016ea1d789ba210c5fa63dfb3c0ceb9ebd9bf390e50exeSmoke Loader
2023-08-25 18:54:16e8911bb8e59c1b64ec8c6867ee2be66ed5b39c584ce80ffbbdf8640ccbcae65bexe Spambot.Kelihos
2023-08-25 18:44:5448f42120cc5b3683db52663963704e8f0a7d935a2a24e3911e83079fb4f25ff3exeFabookie
2023-08-24 23:16:38204abec1681b81493fdb85e58cfd41bee21bea6ac719ca74f6fa694966afb507exe 
2023-08-24 15:13:31e9dc3c310187d5aa3a5451c4c6799792b5e6c501da776f0adeaf16302aa84e6eexeAmadey
2023-08-24 06:19:455f28b73d46cfd9702df5c1991aad67eff91c69ed2ba9bbc7dc5e14c74168d2eeexeAmadey
2023-08-24 04:57:0653db21b2aff17083eeaf5d5988127944ffe4508ddd160cf50ab3d9d942d81160exeSmoke Loader
2023-08-24 03:26:1276e0a05722db609c2d5fc63f43fd52e093404f10f14722aa7f44fb967d2f153cexeAmadey
2023-08-24 01:02:1127ea24685a6d2531295871e4ddafb9c9a47873e0bc434d0fef0706d5487dc42cexeGlupteba
2023-08-24 00:14:07274f3f634099fc303b594c76743a296a478881fe29d2a0aa66afb18909d9f83fexeAmadey
2023-08-22 18:42:4402e9058781d5049657a3aa2195e65d45e5661838c67d4758d6688a8a08017825exe Amadey
2023-08-21 07:49:2321212005cab0c428350885901cfa75f3594429556a96d3d1ea249e521934c04bexe Smoke Loader
2023-08-20 12:34:07e1a38f28bfc577d34e564012e8e1bf4d6cb7e9a925072069880462da66a89844exe Amadey
2023-08-20 00:18:099785eec1ff877367352742e441815f7f7372615e463e3a5862fa7881eb2e7081exeRedLineStealer
2023-08-19 11:16:059c0d4c8b4e95b4920afdd0cf7ba6c76e7d6c35cefa90b0f1a28a99c0d463b09eexe Smoke Loader
2023-08-19 10:57:21f9d21597eb2b1e91e51ceee8864d7ff32b901ed05490d3c6003745c35d124e73exe Glupteba
2023-08-19 10:42:11b761a47868b1174d72d0f1ae8bee20d9bd15f9fa704f6c60518a1913e37f0501exe Amadey
2023-08-17 15:51:4454ddb518557763510383ebbd7cb7d8d83fd2c3487ba18fbee692f42b20683d72exe Fabookie