URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 82.221.139.139
Firstseen:2019-05-21 17:31:06 UTC
Total malware sites :85
Online malware sites :0 (0%)
Offline Malware sites :85 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2019-05-21 17:31:08 82.221.139.139Not listedAS50613 ThorDC-AS- ISyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2019-06-10 09:16:03http://82.221.139.139/gixc/xxxx.exeOffline cocaman
2019-06-10 09:16:01http://82.221.139.139/gixc/offer.exeOffline cocaman
2019-06-10 09:15:57http://82.221.139.139/gixc/next3.exeOffline cocaman
2019-06-10 09:15:53http://82.221.139.139/gixc/fridy.exeOffline cocaman
2019-06-10 09:15:49http://82.221.139.139/iqjml/putty.exeOffline cocaman
2019-06-10 09:15:46http://82.221.139.139/iqjml/Putty.htaOffline cocaman
2019-06-10 09:15:46http://82.221.139.139/iqjml/Document.htaOffline cocaman
2019-06-10 09:15:45http://82.221.139.139/omevx/danielok.exeOffline cocaman
2019-06-10 09:15:45http://82.221.139.139/omevx/out-304703773.htaOffline cocaman
2019-06-10 09:15:45http://82.221.139.139/mskhk/out-1152070644.htaOffline cocaman
2019-06-10 09:15:43http://82.221.139.139/qgba/out-1264234788.ps1Offline cocaman
2019-06-10 09:15:40http://82.221.139.139/qgba/out-1366887656.ps1Offline cocaman
2019-06-10 09:15:38http://82.221.139.139/qgba/out-725217797.ps1Offline cocaman
2019-06-10 09:15:36http://82.221.139.139/sohul/xf/out-1793614601.htaOffline cocaman
2019-06-10 09:15:36http://82.221.139.139/sohul/ob/Products.exeOffline cocaman
2019-06-10 09:15:34http://82.221.139.139/trdd/files/out-498079171.htaOffline cocaman
2019-06-10 09:15:34http://82.221.139.139/uczf/out-2112577385.ps1Offline cocaman
2019-06-10 09:15:31http://82.221.139.139/uczf/out-1780867571.ps1Offline cocaman
2019-06-10 09:15:29http://82.221.139.139/uczf/out-1362402180.ps1Offline cocaman
2019-06-10 09:15:21http://82.221.139.139/uczf/out-282333756.ps1Offline cocaman
2019-06-10 09:15:17http://82.221.139.139/xfnmq/november.exeOffline cocaman
2019-06-10 09:15:16http://82.221.139.139/xfnmq/cock.exeOffline cocaman
2019-06-10 09:15:15http://82.221.139.139/xfnmq/1250706505.htaOffline cocaman
2019-06-10 09:15:15http://82.221.139.139/yiylr/supra3/out-80192609...Offline cocaman
2019-06-10 09:15:14http://82.221.139.139/yiylr/supra3/cucho7.exeOffline cocaman
2019-06-10 09:15:10http://82.221.139.139/yiylr/supra2/out-95319660...Offline cocaman
2019-06-10 09:15:06http://82.221.139.139/yiylr/supra2/out-34812763...Offline cocaman
2019-06-10 09:15:06http://82.221.139.139/yiylr/supra2/0606movire.exeOffline cocaman
2019-06-10 09:14:19http://82.221.139.139/pogvr/vertigo2/out-769387...Offline cocaman
2019-06-10 09:14:18http://82.221.139.139/pogvr/vertigo2/out-663198...Offline cocaman
2019-06-10 09:14:16http://82.221.139.139/pogvr/vertigo/PO_9490_IMG...Offline cocaman
2019-06-10 09:14:16http://82.221.139.139/pogvr/vertigo2/out-418168...Offline cocaman
2019-06-10 09:14:04http://82.221.139.139/pogvr/vertigo/PO_9480_IMG...Offline cocaman
2019-06-10 09:13:52http://82.221.139.139/pogvr/vertigo/PO_9480_IMG...Offline cocaman
2019-06-10 09:13:36http://82.221.139.139/ggjv/rootx.exeOffline cocaman
2019-06-10 09:13:29http://82.221.139.139/ggjv/prodfy.exeOfflineNanoCore ext cocaman
2019-06-10 09:13:26http://82.221.139.139/ggjv/polgh.htaOffline cocaman
2019-06-10 09:13:25http://82.221.139.139/ggjv/pitt75.htaOffline cocaman
2019-06-10 09:13:25http://82.221.139.139/ggjv/pdgs.exeOffline cocaman
2019-06-10 09:13:14http://82.221.139.139/ggjv/out69.htaOffline cocaman
2019-06-10 09:13:13http://82.221.139.139/ggjv/out-1340172983.htaOffline cocaman
2019-06-10 09:13:13http://82.221.139.139/ggjv/keyboard.exeOffline cocaman
2019-06-10 09:13:02http://82.221.139.139/ggjv/fgooh.exeOffline cocaman
2019-06-10 09:12:56http://82.221.139.139/ggjv/booksx.exeOfflineLoki ext cocaman
2019-06-10 09:12:55http://82.221.139.139/ggjv/beep.exeOffline cocaman
2019-06-10 09:12:43http://82.221.139.139/ggjv/bedpls.exeOfflineAgentTesla ext cocaman
2019-06-10 09:12:39http://82.221.139.139/ggjv/ORIZ.exeOfflineAgentTesla ext cocaman
2019-06-10 09:12:32http://82.221.139.139/ggjv/LOZ1605.htaOffline cocaman
2019-06-10 09:12:31http://82.221.139.139/ggjv/BRRvzO.exeOfflineNanoCore ext cocaman
2019-06-10 09:12:11http://82.221.139.139/ggjv/BIDXS.exeOfflineLoki ext cocaman
2019-06-10 09:12:02http://82.221.139.139/ggjv/79267560.htaOffline cocaman
2019-06-10 09:09:22http://82.221.139.139/lfmj/myscan111.exeOfflineexe opendir cocaman
2019-06-10 09:08:03http://82.221.139.139/lfmj/out-1394117594.htaOfflinehta cocaman
2019-06-05 19:41:38http://82.221.139.139/sohul/sd/crypted.exeOfflineexe zbetcheckin
2019-06-05 18:16:13http://82.221.139.139/gixc/jun4.exeOfflineFormbook ext Racco42
2019-06-04 04:31:05http://82.221.139.139/iqjml/Document.exeOfflineexe zbetcheckin
2019-06-04 04:31:04http://82.221.139.139/sohul/xf/Final-PO-100MT.p...Offlineexe zbetcheckin
2019-06-04 04:23:08http://82.221.139.139/sohul/xf/COA-Amendment.pd...Offlineexe zbetcheckin
2019-06-04 04:23:05http://82.221.139.139/iqjml/Document.docOfflineRTF zbetcheckin
2019-06-04 04:23:04http://82.221.139.139/sohul/ob/cProd1.exeOfflineAgentTesla ext exe zbetcheckin
2019-06-04 04:14:10http://82.221.139.139/ggjv/gpty.exeOfflineexe zbetcheckin
2019-06-04 04:10:19http://82.221.139.139/ggjv/jazm.exeOfflineexe zbetcheckin
2019-05-30 15:05:09http://82.221.139.139/ggjv/hoooop.exeOfflineexe Loki ext zbetcheckin
2019-05-30 15:05:07http://82.221.139.139/yiylr/prueba/ndosu3pl.exeOfflineexe zbetcheckin
2019-05-30 15:05:06http://82.221.139.139/trdd/files/contract2.exeOfflineexe zbetcheckin
2019-05-30 15:05:05http://82.221.139.139/gixc/incfb.exeOfflineexe zbetcheckin
2019-05-30 15:01:03http://82.221.139.139/gixc/imtop2.exeOfflineexe zbetcheckin
2019-05-30 14:56:07http://82.221.139.139/sohul/xf/Swift-Copy.exeOfflineAgentTesla ext AZORult ext exe zbetcheckin
2019-05-30 14:56:05http://82.221.139.139/ggjv/accounts_details.exeOfflineexe zbetcheckin
2019-05-30 14:56:03http://82.221.139.139/iqjml/Test.exeOfflineexe zbetcheckin
2019-05-30 14:23:03http://82.221.139.139/ggjv/inkx.exeOfflineexe zbetcheckin
2019-05-30 14:15:03http://82.221.139.139/ggjv/obs.exeOfflineexe zbetcheckin
2019-05-30 14:10:05http://82.221.139.139/ggjv/zim.exeOfflineexe zbetcheckin
2019-05-30 14:05:03http://82.221.139.139/ggjv/hopes.exeOfflineexe Loki ext zbetcheckin
2019-05-30 12:56:08http://82.221.139.139/kzoqb/swift%20copy.rtf.zipOfflinedropper HawkEye ext lnk zip ps66uk
2019-05-30 12:56:08http://82.221.139.139/kzoqb/out-617248242.htaOfflinedropper HawkEye ext hta ps66uk
2019-05-30 12:56:08http://82.221.139.139/kzoqb/Rf.exeOfflineexe HawkEye ext ps66uk
2019-05-26 23:18:05http://82.221.139.139/sohul/ob/out-1905889191.htaOffline JayTHL
2019-05-26 23:18:04http://82.221.139.139/sohul/xf/out-1779112046.htaOffline JayTHL
2019-05-26 23:18:04http://82.221.139.139/sohul/xf/out-815744598.htaOffline JayTHL
2019-05-26 23:18:04http://82.221.139.139/sohul/xf/Purchase-Require...Offline JayTHL
2019-05-23 13:45:08http://82.221.139.139/kzoqb/out-821986920.ps1OfflineHawkEye ext James_inthe_box
2019-05-22 11:36:04http://82.221.139.139/sohul/ob/Quotation.exeOfflineAgentTesla ext exe zbetcheckin
2019-05-22 08:40:28http://82.221.139.139/sohul/xf/RFQ-958786995.exeOfflineexe NanoCore ext zbetcheckin
2019-05-21 17:31:08http://82.221.139.139/kzoqb/oil.exeOfflineHawkEye ext James_inthe_box

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2019-06-10 10:30:4899cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:29:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:29:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:4899cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 10:10:0699cb31480ec18f642a80303ef08fd2e7e8ed24da68ceb9a53a0b2f9fbd123e89hta  
2019-06-10 09:16:03770fa66f73a62b77a37fce032faa9b932a775f20377d9fd66cca2592bbc496c4exe  
2019-06-10 09:16:01c5d61cec7bca1e7e7ffa545cfbbd110045e920165bc5529790dce13f8ad13e6dexe  
2019-06-10 09:15:57912af8d7f0f7adea5b3f4a75fb51b5e7ea0f04125c7c09bb3720d1d720d80e62exe  
2019-06-10 09:15:53c98e8371a93618cc4d8289193f127ef9db1ecafbf3484ac4c0778ac4328aa93cexe  
2019-06-10 09:15:494553cb27cc06eff8a397b8d00bd3a1affe07a5db3b46a61bdd10f32b74b29b06exe  
2019-06-10 09:15:4564a39bc8f77812153983fa2eb7e9c64aeb78d9c724c3336247f7ba0e64e206c8exe  
2019-06-10 09:15:36d62c05d8404d75f3be395cbd0650ef455053659822afa9a32d55b835ee2e2a91exe Dyre
2019-06-10 09:15:1768d64264c331980bafc4dea6b53cb8f58605bcca45d0e923ac0e4873a7c9a806exe  
2019-06-10 09:15:16fea366d3b9293897d5baa72a413c50231c586637ad643ef49fc06358df5b9673exe  
2019-06-10 09:15:146527c70f063fb6d48165d2860b1f9f0d1de527ba496f1bde0c5d2285019e979bexe  
2019-06-10 09:15:0628434aa0132f9aa654ba8e5a1153a3180a6c47b5dab4a3083888f4b6394d357bexe  
2019-06-10 09:14:16587187fa4e3affb23dc097a76379da89b81207a8326964fc771908955b7266a6exe  
2019-06-10 09:14:04782610b7078166f1f68d43a16e698950db6d32bff23793ae3ca93a9e31495d7cexe  
2019-06-10 09:13:526a7094256c550e2b09363147e579f221637dc311ca29bfc4e7afc7c5e5847dbaexe  
2019-06-10 09:13:367d8342a1d0942ba5cbcecad956a20cbabadbfc47d5b64be860dd3b79e94c9ac8exe  
2019-06-10 09:13:29ea80388639cc959e4ec7518b2964f66c56e81503e6dfb0d964576421894acc44exe NanoCore
2019-06-10 09:13:2564285401d038e0e69c8435cd421b7a3dd619f8b249ebac16660cfbfd4a363adaexe  
2019-06-10 09:13:13ee08a2ad61de63e72bb6c4cd55644bfe5e93e449bc25b059ae10561981c2edb8exe 
2019-06-10 09:13:02b05f971414dd3419a8fa75fc3cd11a5ab812d576660b6157e0b39138ff7924e9exe  
2019-06-10 09:12:560a30f1fc6b523881ecfcb3aeea8b8c3d86367e213618c9df18dfb8e3d48a0234exe Loki
2019-06-10 09:12:55cc033c5de1c17ea5ca569b9b045f274be92640edf591753ac37496fbec7dd43dexe  
2019-06-10 09:12:43bf1f53d79385d54c48ee07e29781ef78d376012e9eea136c2d5333378f099d73exe AgentTesla
2019-06-10 09:12:398f9703d92f257bae60a99be681b7093405673b5f1f1ca037bf888c0961e7fa8cexe AgentTesla
2019-06-10 09:12:31da93f625168bf431b8637ca6886cc0d0c36b09e3d2dc434036c125884d718313exe NanoCore
2019-06-10 09:12:110543e50ac7820376e85be9e8b2a4cb42d1a85aa73ff3f89436a5cf8c321e0e29exe Loki
2019-06-10 09:09:2216bca0b3169bf4cb8799851d4a413f9dc5d4a81606897864ed5ba8a606c705a0exe  
2019-06-05 19:41:38c1597d2f38f8287703f8b3ced3df17be2e042ba12c085271f716534bfe2a738cexe  
2019-06-05 18:16:130ffdf4f546761ebd92a2e46f3c6e4e0852990b66a502a18286586fd4a5ab995aexe  
2019-06-04 04:31:05adf8ab0c243d3d14813807c113641ba68aae354536ad71b6b9d4318b12c1d760exe  
2019-06-04 04:31:045d308544247111d3cec7c25f7d6c4292ee46a8c9fa85e6e8df73698047646ce0exe  
2019-06-04 04:23:0892520fab2fd71b43aa1d5f18838226780276b93dd24d14a9c7292289118ead85exe  
2019-06-04 04:23:0492d5d9b09c62b60d0ca99f548601c289aef40ccba7ad45a823c5232961bf7ba3exe AgentTesla
2019-06-04 04:14:103adce4b284295dff6b69a9573a03d604da7174fe625b8952ef3d6145846ffc14exe  
2019-06-04 04:10:1973b63615f3991490d3776b6926dfe0686ccfcf441f50a37cf7c9803a89e644c5exe  
2019-05-31 10:35:3243ab9b42ed3535a5276453c7cc9062c57e7a95c10796c081030f3ee8dd8b890cexe  
2019-05-31 10:12:31b7e03d326bbf2f87d938fda01037a3ffc5fe02526e0fc12790b2b817f262214aexe  
2019-05-30 21:52:120a10bac62377b55ec1595093dd060c3f9f084de099e672ccbba04c55a33e7394exe AgentTesla
2019-05-30 16:14:149b8127aeae82a9e9c9df3709bb5b4dc2d065a5f97d841e6c540c2a8a2b101ed1exe AgentTesla
2019-05-30 15:05:09e0411f23e7b0e6198874c815b7cc4d18668c265fc7301165ee601a268a82e293exe Loki
2019-05-30 15:05:07c0c05ef0003bb8da9aab7a3c584255da0205455e99b279ee39aa0bd6ea91cce5exe  
2019-05-30 15:05:06ef9af3475e2eee26db26435fc16bb6801e6128534c8938c3112137ebb7f4a87eexe  
2019-05-30 15:05:05304fdc0503ce531543b5150a94372c978be7d9825b889f766ef7187e467f2a43exe  
2019-05-30 15:01:03bdbd629a7069629435ee1266353581f22f49732b724fc1e6286472c8c24db1a2exe  
2019-05-30 14:56:07ed339c3bea8bfcfa0e90ce5cfba0a92994b4f27200aaed211cb9b4f295176b95exe AZORult
2019-05-30 14:56:0532518a1327dec68c4d6b8ef3743519501cd8297a71ebc10f85d86b2febf3cdbbexe  
2019-05-30 14:56:03fff4990546407ee7cc16cf71b62f6e0471e859c93cca3f3e975c7f9cfe9c65f7exe  
2019-05-30 14:23:03723938f3d14792847fc3ff1c300a9ea9b365e80c5b705099b8255c2e0d3ce041exe  
2019-05-30 14:15:039ded6b14e41761ae09cd3000ca85b433dadeede048195ee499ca8e41040a4c30exe  
2019-05-30 14:10:05debfcc2b87719a0a84f2d9c132fea9a532e5223a2199ddd7a2939b001d80e7ddexe  
2019-05-30 14:05:03e0411f23e7b0e6198874c815b7cc4d18668c265fc7301165ee601a268a82e293exe Loki
2019-05-30 12:56:08294766cefa3cff168753d17d3f6edaf2fade349ee32aec56793e68305a89dbd7exe  
2019-05-30 12:56:0822c0e53aaac043af412b8ff153dfa8dc23c7cd2df3d21cf359c0a014ec9269bezip  
2019-05-26 23:18:04483cb8fbb99400281f0c3ff0c7ac5f69f7112ecafb7ebcee110905397c06c105exe  
2019-05-22 11:36:04f425e4195d8211b50229e5447718509049b9e3b9dcdfa0bb9d9f4e83e84ae83eexe AgentTesla
2019-05-22 08:40:284a9c6e59e33faa38977042afef734ffb9dc0a48c4e9b45b1e801073d6b46487bexe NanoCore
2019-05-21 17:31:08f80bfb46b8ec5e2b7c7d2af9865af51e161dd4d4f96df47c9c85ca09779370aeexe HawkEye