URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 92.52.217.50 |
|---|---|
| Firstseen: | 2023-02-23 09:02:03 UTC |
| Total malware sites : | 6 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 6 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2023-02-23 09:02:11 | 92.52.217.50 | Not listed | AS46450 PILOT |  US | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2023-03-27 10:40:06 | http://92.52.217.50/__72210/csrss.exe | Offline | exe GuLoader  Loki opendir |  abuse_ch |
| 2023-03-21 10:36:05 | http://92.52.217.50/1120_002/csrss.exe | Offline | AgentTesla exe GuLoader opendir | abuse_ch |
| 2023-02-28 08:47:05 | http://92.52.217.50/OneDrive/csrss.exe | Offline | AveMariaRAT exe Loki opendir | abuse_ch |
| 2023-02-24 13:53:06 | http://92.52.217.50/googlespace/csrss.exe | Offline | exe Loki opendir | abuse_ch |
| 2023-02-24 01:18:05 | http://92.52.217.50/windows/csrss.exe | Offline | 32 AveMariaRAT exe Loki |  zbetcheckin |
| 2023-02-23 09:02:11 | http://92.52.217.50/wincloud/csrss.exe | Offline | AveMariaRAT exe Loki opendir rat | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2023-03-27 10:40:06 | 7ad5d6556bce29cc5fc40ad9a797f1c8981403653e05b34cc748f6aa95d20250 | exe | GuLoader | |
| 2023-03-21 10:36:05 | c46e251d3f75d5171ef41c926444aa590b089eca868141b1abad8ec0930b506e | exe | GuLoader | |
| 2023-03-02 00:21:40 | 61e2ff70bbb995f92725a88db6dd9a2cd4fc0982338db40b8594f778b70b7e11 | exe | AveMariaRAT | |
| 2023-03-01 06:52:49 | 97042f8b612c8a2665acff9618f7863e2b2a1c6a16d0facc2a5a59ae17540770 | exe | AveMariaRAT | |
| 2023-02-28 08:47:05 | e2260c68631c4c1be8b873c859e84a2c9737cb348414b1fb2860a139d781a8b8 | exe | AveMariaRAT | |
| 2023-02-24 13:53:06 | e9c64471b4c246a56482795221391c1321f0b95e658841d3ebe379fc51b05a92 | exe | Loki | |
| 2023-02-24 01:46:09 | 998b2f2a21162ab7b45888e075cfdde61abf8c782d2a79bad5c532e537bada1a | exe | Loki | |
| 2023-02-24 01:18:05 | d5cb1606ff03d81b9ea9d7c2bc0f5a1edf4111128c3297ced689893bd0ded9ff | exe | Loki | |
| 2023-02-23 09:02:05 | 3952f433586344471f8ab039c2b682b090a38d880d5f2335483d07347068b0a8 | exe | AveMariaRAT |