URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 91.213.50.36
Firstseen:2022-12-04 11:18:03 UTC
Total malware sites :2
Online malware sites :0 (0%)
Offline Malware sites :2 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2022-12-04 11:18:03 91.213.50.36Not listedAS49943 UNKNOWN- AEyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-12-05 19:50:07http://91.213.50.36/files/hamburger.exeOfflinedropby PrivateLoader RedLineStealer ext andretavare5
2022-12-04 11:18:03http://91.213.50.36/files/spacemen.exeOfflinedropby PrivateLoader RedLineStealer ext andretavare5

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-12-07 02:29:03fad1b92b67d6509a5d114b43395bd428b8fff6b827198083f1abc801a9c78525exe 
2022-12-07 01:15:44bb6afd25daa350615afc7d47f8fd85ce5fd1175da59fd17210fb478fdbef4b7fexe 
2022-12-06 23:52:1999cb9ea998d774a077d760f6a767660a520bc882a73195b3cd0282c2e967fb13exeRedLineStealer
2022-12-06 19:05:235866f921e4e7d2eef8693f9fefb19ccd46224c02bb46dd51639d8680de185a40exeRedLineStealer
2022-12-06 16:00:00bc376ec9587207d00b9af28189d47c0341a430c93167b732be851a0725f4a37fexeRedLineStealer
2022-12-06 12:13:22089a7558a065052eccbaa9f3f734d4d1b5066bf2bb06fc9eef58104644e9bc3cexe 
2022-12-06 02:20:406e36d2c22f1896776a95909efa624b7ea6f2219e543c0c0db4d1cd155d393e54exe 
2022-12-05 23:54:593c17013b321895f72a5aa301831a7dcef8538ea75e166e8111272b22949a91c6exe 
2022-12-05 21:49:33707b217b7f9348730d740b5e0bdb03d451cb24250f423605feb3a8993c915626exe 
2022-12-05 19:50:0767735110d805d3ac6adfbbfb2cdaffa711aa3f29733b764998d55ae12c4d21a4exe 
2022-12-05 19:19:33619be6954b3bd1d1e0859633fa23adca8241f832f942a671523b649c50a6d543exe 
2022-12-05 14:45:48829d2daa87be83018ed8f9c8ad5879687a35ea9a4ddfcfef27e54cbf421ae045exe 
2022-12-05 07:20:336865fd1bbe89692f414c02bec576dbc0a3ac7012039c52239662ca7a2a0d7628exe 
2022-12-05 01:19:20ce8f55763490d6e40a5f388b796672b32a622235a3a45bb4e850bbb849efaaf5exeRedLineStealer
2022-12-04 23:23:47d31658e0fec53c1d98100d576418bbd1c1d3da46ce4aeadc181827a63ccd973aexeRedLineStealer
2022-12-04 19:06:13d937ab81bf303c19f7e729e1c75d4025e8aa1db22861da59ff5d69fb00a58140exe 
2022-12-04 16:39:410aefa3226697edb8c45682dd5c5feaee4ac2bbfcb07d724b31302a2d4de4dec6exe 
2022-12-04 16:16:54ca23870a45d3be35420a930a5eece560dbc792734fe32df17430a3f8820abd68exe 
2022-12-04 14:30:1713d19cf0f53c65faef0b0f569bfe7c0a740c9113a6c5a0441f9509b3db59bc54exeRedLineStealer