URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 84.54.50.31
Firstseen:2023-06-01 10:41:04 UTC
Total malware sites :44
Online malware sites :0 (0%)
Offline Malware sites :44 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-06-01 10:41:10 84.54.50.31Not listedAS212755 EXACLOUD- ESyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-11-01 06:26:35http://84.54.50.31/Ari/2xxload.txtOffline abuse_ch
2023-11-01 06:26:34http://84.54.50.31/Ari/GoodLL.txtOffline abuse_ch
2023-11-01 06:26:34http://84.54.50.31/Ari/newdllll.txtOffline abuse_ch
2023-11-01 06:26:34http://84.54.50.31/work/donotreply.txtOffline abuse_ch
2023-11-01 06:26:20http://84.54.50.31/work/supportgr.txtOffline abuse_ch
2023-08-25 03:58:04http://84.54.50.31/Ari/NMK9938.exeOffline32 exe Formbook ext zbetcheckin
2023-08-25 03:58:04http://84.54.50.31/ari/2.exeOffline32 exe Formbook ext zbetcheckin
2023-08-24 09:48:07http://84.54.50.31/work/financee.txtOfflineAgentTesla ext ascii abuse_ch
2023-08-24 09:48:07http://84.54.50.31/D/vec.txtOfflineascii abuse_ch
2023-08-24 09:48:07http://84.54.50.31/work/bbetterrr.txtOfflineascii abuse_ch
2023-08-24 09:48:07http://84.54.50.31/work/og.txtOfflineAgentTesla ext ascii abuse_ch
2023-08-24 09:48:07http://84.54.50.31/Ari/Dll.txtOfflineascii abuse_ch
2023-08-24 09:48:07http://84.54.50.31/Ari/xb.txtOfflineascii Formbook ext abuse_ch
2023-08-24 09:48:07http://84.54.50.31/work/zkbin.txtOfflineAgentTesla ext ascii abuse_ch
2023-08-24 09:48:07http://84.54.50.31/D/mazi.txtOfflineascii Formbook ext abuse_ch
2023-08-24 09:48:07http://84.54.50.31/work/nigbinn.txtOfflineAgentTesla ext ascii abuse_ch
2023-07-19 07:42:05http://84.54.50.31/Ari/choileety.exeOffline32 exe RemcosRAT ext zbetcheckin
2023-07-19 07:37:05http://84.54.50.31/Ari/MNKLOP873.exeOffline32 exe Formbook ext zbetcheckin
2023-06-29 05:18:05http://84.54.50.31/D/btt.exeOffline32 exe NanoCore ext zbetcheckin
2023-06-28 10:06:04http://84.54.50.31/D/nanobtd.exeOffline64 exe NanoCore ext zbetcheckin
2023-06-28 08:31:04http://84.54.50.31/D/mo.exeOffline32 exe NanoCore ext zbetcheckin
2023-06-27 17:31:33http://84.54.50.31/D/bird.exeOffline32 exe RemcosRAT ext zbetcheckin
2023-06-27 17:31:33http://84.54.50.31/D/AA.exeOffline32 exe SnakeKeylogger ext zbetcheckin
2023-06-27 17:31:05http://84.54.50.31/D/Lion.exeOffline32 exe NanoCore ext zbetcheckin
2023-06-27 16:39:06http://84.54.50.31/D/grace.exeOffline64 exe NanoCore ext zbetcheckin
2023-06-08 07:37:05http://84.54.50.31/D/YY.exeOffline64 exe RemcosRAT ext zbetcheckin
2023-06-08 07:32:04http://84.54.50.31/D/SY.exeOffline64 AveMariaRAT ext exe zbetcheckin
2023-06-07 08:46:05http://84.54.50.31/d/HH.exeOffline64 exe RemcosRAT ext zbetcheckin
2023-06-07 08:46:04http://84.54.50.31/d/SS.exeOffline64 AveMariaRAT ext exe zbetcheckin
2023-06-07 07:48:05http://84.54.50.31/d/nevv.exeOffline64 exe zgRAT zbetcheckin
2023-06-02 16:12:05http://84.54.50.31/D/Dollar.exeOffline64 exe RemcosRAT ext zgRAT zbetcheckin
2023-06-02 16:04:04http://84.54.50.31/D/H2.exeOffline64 exe RemcosRAT ext zgRAT zbetcheckin
2023-06-01 19:42:06http://84.54.50.31/D/VLC.txtOfflineAgentTesla ext opendir abuse_ch
2023-06-01 19:41:13http://84.54.50.31/D/seadorf.txtOfflineopendir abuse_ch
2023-06-01 19:41:13http://84.54.50.31/D/fara.txtOfflineAgentTesla ext opendir abuse_ch
2023-06-01 19:41:13http://84.54.50.31/D/Dll.txtOfflineopendir abuse_ch
2023-06-01 19:41:13http://84.54.50.31/D/Nano.exeOfflineNanoCore ext opendir zgRAT abuse_ch
2023-06-01 19:41:13http://84.54.50.31/D/ga.exeOfflineopendir zgRAT abuse_ch
2023-06-01 19:41:13http://84.54.50.31/D/M.exeOfflineopendir SnakeKeylogger ext abuse_ch
2023-06-01 12:29:04http://84.54.50.31/D/R.exeOffline64 exe Formbook ext zgRAT zbetcheckin
2023-06-01 12:28:04http://84.54.50.31/D/D.exeOffline64 exe Formbook ext zgRAT zbetcheckin
2023-06-01 12:28:04http://84.54.50.31/D/ARR.exeOffline64 exe SnakeKeylogger ext zgRAT zbetcheckin
2023-06-01 12:28:04http://84.54.50.31/D/ar.exeOffline64 exe SnakeKeylogger ext zbetcheckin
2023-06-01 10:41:10http://84.54.50.31/D/NEV.exeOfflineexe RemcosRAT ext abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-08-25 03:58:04648d1707c269dd6067524d0de5cf82e39b5141fb0556738aa13b31c2402b79cdexeFormbook
2023-08-25 03:58:048dee64363a078fefac0ebda6136979e006bebc231ff17a99cc56c352d3dd1951exeFormbook
2023-08-24 09:48:07134d9a42360bd96ee5f92a31e7ef429749ab516616e205b9321d01530febfb00txt AgentTesla
2023-08-24 09:48:0757a86825251f86207de68fe71f770844a1efc159a89cc2088f3aec12c8185aa3txt Formbook
2023-08-24 09:48:0762e422b503bdb0c01ea43289398a329404cf1d23ebc3c939bd96014356da381etxt AgentTesla
2023-08-24 09:48:07b5426f30ce963fddade6a43387fbbe27447fae12b60ecf4a6dc95307d0714724txt AgentTesla
2023-08-24 09:48:07e07465bf8278bdc98a4c70f5bef4a6c2c2b1a5188226c087772424cbdb5b4a09txt Formbook
2023-08-24 09:48:07ead08435d33bc6813b6d5efff2fa1aef031b8c95e8eb0c8bf54ec187b96363actxt  
2023-08-24 09:48:071a50cdae5bb1f54ae76b24c6c5d9ce3f7bc55ca018bad1bfab26e5cd8400f6e8txt AgentTesla
2023-08-24 09:48:0797cc20798768a526acda10cc065eb8bedff6ebc3fcebfab561c6cb6a505d3209txt  
2023-08-24 09:48:07c72c63f18805ff4748505cf9bbda5c398f59a6de00579f26e88e29e00a4bddd7txt  
2023-07-19 07:42:05ac901bf5882f14e9e07235b8488b6479b4519addda6dbfb89147401c1e9e6e4fexeRemcosRAT
2023-07-19 07:37:058904fe72b770215a4e3bc82f6e1fda9756a147fb86bdac2fec7ebac577866764exeFormbook
2023-06-29 05:18:05e001f869409aab2a43e2472af86813a98f35f9d4cf8e267de5b1ed06d0a3ae1cexeNanoCore
2023-06-28 10:06:046c2e104bb3a97e3f5054b9436ec4f200cc6187a051f67f19a97856655e9175faexeNanoCore
2023-06-28 08:31:0499ab8405bda88a4990c2f46ca14251aab1498bec940ae809d354613f2ec4ff7aexeNanoCore
2023-06-27 18:22:52692d4bd4039b369085c4529e425513503a4731717bed3b11bbd4b46e8d079ff9exeSnakeKeylogger
2023-06-27 18:15:2600a5e0dcc0112b71820c19fa7fd1c3e47d0c9b58270279b0cf870d5a9259c566exeRemcosRAT
2023-06-27 17:31:051480f8c6b0fba994c00375e833b1c7aa0399e8aa92f00a41d3038f851d64ff9eexeNanoCore
2023-06-27 16:39:06b68c297a7780902c0b67ee593d52271a0e5c14370f15718b6d816030bcf20e88exeNanoCore
2023-06-19 06:52:07e1cf35a98cc9a3e08243dce9b26b0aa4468cdfa06b4a3f7615f7e088e195bdc4exeRemcosRAT
2023-06-16 05:41:090f611b87697a816d5b37f745fa94c89315327ba3458c190fe41efd891ccd5196exeRemcosRAT
2023-06-15 06:21:4076a1273c6769b73bccd386cb56621464e2ffcac27ea6b49c03456a6a656d4d5aexe AveMariaRAT
2023-06-08 07:37:05c296470f0a24955e74c6695312974b6f7b32b89147368e84804b47f76d5befa3exeRemcosRAT
2023-06-08 07:32:04be1d695a2d40d12c961f141f6837bc5b5203989ce206c2d66bb531c21c2dbe7aexeAveMariaRAT
2023-06-08 03:52:57c1a155ea8051e4e8af694595085b4562aa0c3ff48f89d3cb043f6d4b4e8bb54fexeRemcosRAT
2023-06-08 03:05:031fdf23401a81a5b558b87e91316f8104167fa88d6a849a17d1dc4f372582ef6aexeNanoCore
2023-06-07 10:04:10e69d1e9f023deebccd2174f8507017de6ce4d62fb2c3603b708be5889c371b22exeRemcosRAT
2023-06-07 08:46:05e1eb3fe18ad660415f59eaac2c768afa1b20e07f107dfc207da8b0880a888aafexeRemcosRAT
2023-06-07 08:46:040e56b689196e7f1ddef9fad8cc6db33ba3bcc529b1ddb9cd5940ae206289d667exeAveMariaRAT
2023-06-07 07:48:05dc984e3a8de291d49bab5940b8f8047d2a7d8f0dab4231342c36edcee9cbb92eexezgRAT
2023-06-07 02:37:215ddf1289ab0bc93ce442ae80a0ba8b4c25d4dfc78fff12da0f41a691c351aa32exeNanoCore
2023-06-07 01:47:576bd5f1893f962f7a87363e844adde28b9568de5acd944482195e789890400876exeSnakeKeylogger
2023-06-06 23:08:4474c7371f4ee7b52bb7c9c79610027e6e927e3bfca8ef841407e1610f72f11aa2exeRemcosRAT
2023-06-06 09:30:1380ea9f71426b05efb585d8d8807321a5aa8f652be7cf79e91c518cbda0b424fcexeRemcosRAT
2023-06-06 04:19:3823bccc733779e2c39a4ce431a77b9f3317817972fc118f70ce59b735d98fe89fexeSnakeKeylogger
2023-06-06 02:29:39bc54380e0004ee82e6e6a07b4dc3c37481572257294fabc856248e597bcb8ccdexeFormbook
2023-06-05 09:02:136ca06d119da53e4bcd4752e62971541d0d4d2cfc86bad01b9ba8253c3d2615d3exe zgRAT
2023-06-05 02:48:076d592f2214ae13601c1658e2fa60f9695f83d009f14a49f5bff59ac128d6b4e3exe zgRAT
2023-06-05 02:09:341d28cee9d618d8f15b3875ea1ac44a8bf4d9c59171da3227ba3b973e0c9fdb1aexe NanoCore
2023-06-05 00:42:01b10f4e89c274f555831b579741eee78466267b2e29ac96aece5c823cc0a4a961exe zgRAT
2023-06-05 00:33:28328a5426be097c76306ec665ea50b48474ff0dbae951fce23649ccd38b649d38txt  
2023-06-02 16:12:055460fc226b1d4fe8e3d5c11e4afcd3b4ee67ccc9725ac71d27d6e1a5ea36f1d2exezgRAT
2023-06-02 16:04:04617c26fdcee79a9c0bf97456acaa65c691e7269866ad88aabf655330d2fc50bdexeRemcosRAT
2023-06-02 07:07:5662e28e9fdfdefd8ba9053db4a21628873dbf8abaa58b35afe7ac5d43f552d22eexeSnakeKeylogger
2023-06-02 02:44:30ddb98ded906fcfd2732f66b011373ad9b73da96d935c04ae2b550ed5af5a7403exezgRAT
2023-06-02 02:37:59685522dda736e8c071fcc9dc4b7bb3d58c45f36828eb0b8ca8557e5ec56499adexezgRAT
2023-06-01 19:42:0622e6237344c81a5337a6e5ad5916e6aaf01af808ccefd9da42487c6689c39e1atxt AgentTesla
2023-06-01 19:41:1374cef918a24f7e55e6dd275460232d04b26078085940ddce80fd91056cae89ecexe  
2023-06-01 19:41:13cb4f6af54720f788ff6c07b1a09030764441c0fcddc07fc4d442a82e57d20a31txt  
2023-06-01 19:41:13cfab72d37ad10cd3c3bca88d5a9de18f31b220a4303711fe3755e7034c85ab83txt AgentTesla
2023-06-01 19:41:132c333dc268b16b5eac73f98d75fc9a23f54f49d279639b017767e80b1acc073cunknown  
2023-06-01 19:39:34391a43e128f1ee34ce61bc1c787867f3c1d6f6af117db338d9186a94d2273c5bexezgRAT
2023-06-01 19:39:34e28909c004f094d21d333e507708ec6f5cd0cc78144b3f9ff01a053cbd443beaexeSnakeKeylogger
2023-06-01 12:29:040084deed7d859c58e182b2b92ecc63ee163d454c324aa03542780a063448b9dbexeFormbook
2023-06-01 12:28:0464d54d89dbd69eacd646355f619d09615475bbf9b5dfd100eb5491fff65f7b9dexeFormbook
2023-06-01 12:28:04e4e48fd7e9b03db186315f6afa59deb72c2d8d741bc1411bd4a11b73bd2b8371exeSnakeKeylogger
2023-06-01 12:28:0421a26f3536172cb4f2f597eb7794578e7fda662d54d96e4e70da37a49348d454exeSnakeKeylogger
2023-06-01 10:41:041ce96a0eb6a0a1c3b3a995bd955d1ba4dad1f452d761fa7dd978aec9e7965031exeRemcosRAT