URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 92.118.112.135 |
|---|---|
| Firstseen: | 2024-07-02 10:35:14 UTC |
| Total malware sites : | 5 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 5 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2024-07-02 10:35:20 | 92.118.112.135 | downtown.ip-ptr.tech | Not listed | AS215540 GCS-AS |  US | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2025-04-26 20:03:07 | http://92.118.112.135:8080/part/setup7372.msi | Offline | MetaStealer |  BlinkzSec |
| 2025-03-26 23:59:06 | http://92.118.112.135:8080/part/setup0321_or.msi | Offline | MetaStealer opendir WsgiDAV |  DaveLikesMalwre |
| 2025-03-26 23:59:03 | http://92.118.112.135:8080/parts/manual.pdf.lnk | Offline | MetaStealer opendir WsgiDAV | DaveLikesMalwre |
| 2024-07-02 10:35:20 | http://92.118.112.135/test | Offline | exe extracted IDATDropper lnk-commandline LummaStealer |  NDA0E |
| 2024-07-02 10:35:20 | http://92.118.112.135/carrieragreement | Offline | exe extracted IDATDropper lnk-commandline LummaStealer | NDA0E |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2025-04-26 20:03:07 | 17ad6e2c8fb12b9c3d587cf7a4814bf6e20758589e82517420f196599c75f1ec | msi | MetaStealer | |
| 2025-03-28 02:02:34 | b60860b5220f8b5a4f32ef886281c47047a0714216db1cc9b1e860fbb0ce356e | msi | ||
| 2025-03-26 23:59:06 | 2d797cf3f988dfdaf8f4e24ce2ca3f672ee1ec4558fb3f8d71ee3648e27fc17c | msi | ||
| 2025-03-26 23:59:03 | f8d686b204fe9c50773a3ab103c8a5416ff72c9b1b86b70d388074bb7f732d52 | lnk | ||
| 2024-07-02 10:35:20 | 5f57369c4674379fa79b527de529edb70ce652852aeb0a6ce53ceca2e38b8448 | exe | LummaStealer | |
| 2024-07-02 10:35:19 | 0fe2752dee872bfce63101f0eb671b98dfc60cf70f9fbfc4dbf7023037f6df09 | exe | LummaStealer |