URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	95.169.201.100
Firstseen:	2024-12-04 12:42:04 UTC
Total malware sites :	48
Online malware sites :	0 (0%)
Offline Malware sites :	48 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2024-12-04 12:42:06	95.169.201.100	ip-95-169-201-100-114435.vps.hosted-by-mvps.net	Not listed	AS202448 mvps	DE	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2024-12-04 13:07:05	http://95.169.201.100:18960/build/readme.pdf	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 13:06:05	http://95.169.201.100:18960/readme.pdf	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 13:06:04	http://95.169.201.100:18960/build/readme.txt	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 12:56:05	http://95.169.201.100:18960/uploads/team-5/load...	Offline	Rhadamanthys SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:09	http://95.169.201.100:18960/uploads/team-3/load...	Offline	Rhadamanthys SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:09	http://95.169.201.100:18960/uploads/team-1/load...	Offline	Rhadamanthys SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:09	http://95.169.201.100:18960/uploads/test-2/read...	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:09	http://95.169.201.100:18960/uploads/team-3/read...	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:09	http://95.169.201.100:18960/uploads/test-1/read...	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:09	http://95.169.201.100:18960/uploads/team-5/read...	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:09	http://95.169.201.100:18960/uploads/team-4/read...	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:09	http://95.169.201.100:18960/uploads/team-1/read...	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:09	http://95.169.201.100:18960/uploads/team-2/read...	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:06	http://95.169.201.100:18960/uploads/team-5/read...	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:05	http://95.169.201.100:18960/uploads/team-1/read...	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:05	http://95.169.201.100:18960/uploads/team-5/read...	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:05	http://95.169.201.100:18960/uploads/team-4/read...	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:05	http://95.169.201.100:18960/uploads/ttest-1/rea...	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:05	http://95.169.201.100:18960/uploads/team-3/read...	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:05	http://95.169.201.100:18960/uploads/team-2/runn...	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 12:55:05	http://95.169.201.100:18960/uploads/team-3/runn...	Offline	SPAM-ITA	JAMESWT_MHT
2024-12-04 12:47:07	http://95.169.201.100:18960/build/readme.exe	Offline	exe Rhadamanthys	abuse_ch
2024-12-04 12:46:14	http://95.169.201.100:18960/readme.exe	Offline	exe RemcosRAT	abuse_ch
2024-12-04 12:46:10	http://95.169.201.100:18960/output/readme.exe	Offline	exe Rhadamanthys	abuse_ch
2024-12-04 12:46:10	http://95.169.201.100:18960/uploads/test-1/runn...	Offline	lnk Rhadamanthys	abuse_ch
2024-12-04 12:46:10	http://95.169.201.100:18960/hercules.exe	Offline	exe	abuse_ch
2024-12-04 12:46:10	http://95.169.201.100:18960/uploads/test-2/runn...	Offline	lnk Rhadamanthys	abuse_ch
2024-12-04 12:46:10	http://95.169.201.100:18960/uploads/team-3/runn...	Offline	lnk Rhadamanthys	abuse_ch
2024-12-04 12:46:10	http://95.169.201.100:18960/uploads/team-5/runn...	Offline	lnk Rhadamanthys	abuse_ch
2024-12-04 12:46:10	http://95.169.201.100:18960/uploads/team-4/runn...	Offline	lnk Rhadamanthys	abuse_ch
2024-12-04 12:46:09	http://95.169.201.100:18960/uploads/team-1/runn...	Offline	lnk Rhadamanthys	abuse_ch
2024-12-04 12:46:06	http://95.169.201.100:18960/output/readme.txt	Offline	ascii	abuse_ch
2024-12-04 12:46:06	http://95.169.201.100:18960/text.txt	Offline	ascii	abuse_ch
2024-12-04 12:46:06	http://95.169.201.100:18960/readme.txt	Offline	ascii	abuse_ch
2024-12-04 12:45:13	http://95.169.201.100:18960/uploads/team-3/read...	Offline	exe Rhadamanthys	abuse_ch
2024-12-04 12:45:13	http://95.169.201.100:18960/uploads/test-2/read...	Offline	exe	abuse_ch
2024-12-04 12:45:12	http://95.169.201.100:18960/uploads/team-1/read...	Offline	exe Rhadamanthys	abuse_ch
2024-12-04 12:45:12	http://95.169.201.100:18960/uploads/test-1/read...	Offline	exe	abuse_ch
2024-12-04 12:44:05	http://95.169.201.100:18960/uploads/test-1/load...	Offline	ascii Rhadamanthys	abuse_ch
2024-12-04 12:44:05	http://95.169.201.100:18960/uploads/test-2/load...	Offline	ascii Rhadamanthys	abuse_ch
2024-12-04 12:44:05	http://95.169.201.100:18960/uploads/team-4/load...	Offline	ascii Rhadamanthys	abuse_ch
2024-12-04 12:44:04	http://95.169.201.100:18960/uploads/test-2/read...	Offline	ascii	abuse_ch
2024-12-04 12:44:04	http://95.169.201.100:18960/uploads/test-1/read...	Offline	ascii	abuse_ch
2024-12-04 12:44:04	http://95.169.201.100:18960/uploads/team-4/read...	Offline	ascii	abuse_ch
2024-12-04 12:43:05	http://95.169.201.100:18960/uploads/team-2/runn...	Offline	lnk Rhadamanthys	abuse_ch
2024-12-04 12:43:04	http://95.169.201.100:18960/uploads/team-2/read...	Offline	ascii	abuse_ch
2024-12-04 12:42:06	http://95.169.201.100:18960/uploads/team-2/load...	Offline	ascii Rhadamanthys	abuse_ch
2024-12-04 12:42:06	http://95.169.201.100:18960/uploads/team-2/read...	Offline	exe Rhadamanthys	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2024-12-04 13:06:05	cf41e7881ec4a232f462ef0fc0e15c409619d18b3a8a84b49768268505af80e3	pdf
2024-12-04 12:56:04	6f2860f34e4939a8053741edc66effe93162ae0d0a961d768cf3b34bdb1d4da2	bat	Rhadamanthys
2024-12-04 12:55:09	cf41e7881ec4a232f462ef0fc0e15c409619d18b3a8a84b49768268505af80e3	pdf
2024-12-04 12:55:09	cf41e7881ec4a232f462ef0fc0e15c409619d18b3a8a84b49768268505af80e3	pdf
2024-12-04 12:55:09	cf41e7881ec4a232f462ef0fc0e15c409619d18b3a8a84b49768268505af80e3	pdf
2024-12-04 12:55:09	cf41e7881ec4a232f462ef0fc0e15c409619d18b3a8a84b49768268505af80e3	pdf
2024-12-04 12:55:09	cf41e7881ec4a232f462ef0fc0e15c409619d18b3a8a84b49768268505af80e3	pdf
2024-12-04 12:55:09	cf41e7881ec4a232f462ef0fc0e15c409619d18b3a8a84b49768268505af80e3	pdf
2024-12-04 12:55:09	cf41e7881ec4a232f462ef0fc0e15c409619d18b3a8a84b49768268505af80e3	pdf
2024-12-04 12:55:09	1ea5cb9cd5320960aaa1f401db478e07a71582f7c610b4d4867c5b7629c13576	bat	Rhadamanthys
2024-12-04 12:55:08	8de3d851efc7e0d42da0ecbc656ab93362595101d30b36ce36b7d698cdd99cd0	bat	Rhadamanthys
2024-12-04 12:47:07	e74135c647bb065e27f85b5bedb57b63c5731df0dd5d92877187be3cf6a2594e	exe	Rhadamanthys
2024-12-04 12:46:14	08c7fb6067acc8ac207d28ab616c9ea5bc0d394956455d6a3eecb73f8010f7a2	exe	RemcosRAT
2024-12-04 12:46:10	ac3a503e94f241344f10f178fe378ac1f945ccd71a88c575622d91b376e3b6ec	exe
2024-12-04 12:46:10	5faffbfc993cbdaeb7b5e8f5f95f5510c340667ed5daff4b6f88d1ade8915208	exe	Rhadamanthys
2024-12-04 12:46:10	ec5a9c16784662f753009c9f7c8dd0c18ba4b59848ea2abef2fc831876119550	lnk	Rhadamanthys
2024-12-04 12:46:10	297c1ce4d6707d8ffdb7d80da5a19ce711a45de04f6089735130e237a7ba670c	lnk	Rhadamanthys
2024-12-04 12:46:10	9bf0166f4fdd3742a9336d5c847a3a99eb7262533642b549ab3aa6d7e72174e1	lnk	Rhadamanthys
2024-12-04 12:46:10	ab4273834ce472dd93c67f8a16d218f7e0be29ae6ead796579dc7ca35e82bb4c	lnk	Rhadamanthys
2024-12-04 12:46:09	1ec28f3f19bf173c69b3a3a16ecf178117407b517d7f4f57a6cf1a9b15fbe915	lnk	Rhadamanthys
2024-12-04 12:46:09	46d1b27aa5c040327d90c5d9044fceef8825572906065a97d61def0cd3b49a8b	lnk	Rhadamanthys
2024-12-04 12:45:13	79755198eaa0d89aef549ed561d7a49c488055f20b25aeb5c3373379498d763e	exe	Adware.InstallCore
2024-12-04 12:45:13	a9ce2c8a98a02f9f90bb4b649a34a5decc294c60f66c2365cd06d4f787343472	exe	Rhadamanthys
2024-12-04 12:45:12	d0f631f6269c14fe7622f4a1085f99e6bfd235942ce57715914ee4a319484a55	exe	Rhadamanthys
2024-12-04 12:45:12	ac3a503e94f241344f10f178fe378ac1f945ccd71a88c575622d91b376e3b6ec	exe
2024-12-04 12:44:05	9926933a12076a75672d0f7053cdb83dca09ab42d9bb0d7b73d3562f7d62381d	bat	Rhadamanthys
2024-12-04 12:44:05	fee1f3875cc575f85ada4b58b2fb3fbc4f798314cc42fe6bb4be90ffce346fb6	bat	Rhadamanthys
2024-12-04 12:44:05	ce14a62151a1ee9ff5c559a25a8fece37c550197827d853b97669c6c8ee19e67	bat	Rhadamanthys
2024-12-04 12:43:05	82b067a5106de338e6c305589d4844fd0c20142e49c808aa182c9c789979046d	lnk	Rhadamanthys
2024-12-04 12:42:06	8de3d851efc7e0d42da0ecbc656ab93362595101d30b36ce36b7d698cdd99cd0	bat	Rhadamanthys
2024-12-04 12:42:06	c3427b813ad0c2e6563b844e6fc080a7f18ca62880e7f2119adaad4e278b1285	exe	Rhadamanthys