URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 95.214.24.244
Firstseen:2022-09-11 06:47:03 UTC
Total malware sites :39
Online malware sites :0 (0%)
Offline Malware sites :39 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2022-09-11 06:47:05 95.214.24.244Not listedAS215873 tods-it- ITyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-08-26 08:20:16http://95.214.24.244/Z2KNEW/Mfceum-4.exeOfflineCoinMiner exe opendir abuse_ch
2023-08-26 08:20:10http://95.214.24.244/Z2KNEW/Ivnut-Z2K-2.exeOfflineAsyncRAT ext exe opendir abuse_ch
2023-08-26 08:20:09http://95.214.24.244/newz2k/Ivnut-Z2K-3.exeOfflineexe opendir abuse_ch
2023-08-26 08:20:09http://95.214.24.244/newz2k/Ivnut-Z2K-2.exeOfflineAsyncRAT ext exe opendir abuse_ch
2023-08-26 08:20:09http://95.214.24.244/Z2KNEW/Ivnut-Z2K-3.exeOfflineexe opendir abuse_ch
2023-08-26 08:20:09http://95.214.24.244/update/TPB-1.exeOfflineexe opendir RecordBreaker ext abuse_ch
2023-08-26 08:20:09http://95.214.24.244/HEXO-SOFTWARE/HEXO-SOFTWAR...Offlineexe opendir RecordBreaker ext abuse_ch
2023-08-26 08:20:09http://95.214.24.244/Z2KNEW/Rrobknnz-Z2K.exeOfflineexe opendir RedLineStealer ext abuse_ch
2023-08-26 08:20:09http://95.214.24.244/Z2KNEW/Z2K-1.exeOfflineexe opendir RecordBreaker ext abuse_ch
2023-08-26 08:17:06http://95.214.24.244/autotask/overlaycrypt.exeOfflineexe opendir abuse_ch
2023-08-25 22:57:08http://95.214.24.244/autotask/Moriwnrn.exeOffline32 exe zbetcheckin
2023-08-25 22:53:07http://95.214.24.244/autotask/Eppzjtedzmk.exeOffline32 exe QuasarRAT ext zbetcheckin
2023-03-12 09:41:05http://95.214.24.244/cheat-menu/CHEAT-MENU-LINK...Offline32 AsyncRAT ext exe RecordBreaker ext zbetcheckin
2023-02-26 06:36:06http://95.214.24.244/TPB-2-Links/Ntprfgupx-2.exeOfflineAsyncRAT ext abuse_ch
2023-02-26 06:36:06http://95.214.24.244/TPB-2-Links/TPB-1.exeOfflineRecordBreaker ext RedLineStealer ext abuse_ch
2023-02-26 06:36:06http://95.214.24.244/newz2k/Z2K-1.exeOfflineRecordBreaker ext RedLineStealer ext abuse_ch
2023-02-26 06:36:06http://95.214.24.244/limetor/Kgilth-LIME-2.exeOfflineAsyncRAT ext abuse_ch
2023-02-26 06:36:06http://95.214.24.244/limetor/Rrobknnz-LIMETORRE...OfflineRedLineStealer ext abuse_ch
2023-02-26 06:36:06http://95.214.24.244/limetor/Kgilth-LIME-3.exeOffline abuse_ch
2023-02-26 06:36:04http://95.214.24.244/Z2KNEW/Ivnut-Z2K-1.exeOffline abuse_ch
2023-01-12 07:17:05http://95.214.24.244/1337/TORRENTOLD-1.exeOffline.net exe msil RecordBreaker ext RedLineStealer ext jstrosch
2022-10-26 07:21:07http://95.214.24.244/newz2k/Rrobknnz-Z2K.exeOfflineexe RedLineStealer ext jstrosch
2022-10-01 07:21:06http://95.214.24.244/FreeApps/Rrobknnz-FREEAPPS...Offlineexe RedLineStealer ext abuse_ch
2022-10-01 07:21:06http://95.214.24.244/1337/Wjgqesf-OLD-2.exeOfflineAsyncRAT ext exe abuse_ch
2022-10-01 07:21:06http://95.214.24.244/1337/Wjgqesf-OLD-3.exeOfflineexe abuse_ch
2022-10-01 07:21:06http://95.214.24.244/FreeApps/Dzodhr-FREE-3.exeOfflineexe abuse_ch
2022-10-01 07:21:06http://95.214.24.244/update/Rrobknnz-TPB.exeOfflineexe N-W0rm abuse_ch
2022-10-01 07:21:06http://95.214.24.244/1337/Rrobknnz-TORRENTOLD.exeOfflineexe RedLineStealer ext abuse_ch
2022-10-01 07:21:05http://95.214.24.244/FreeApps/Dzodhr-FREE-2.exeOfflineAsyncRAT ext exe abuse_ch
2022-10-01 07:21:04http://95.214.24.244/TPBActivetor/Update.exeOfflineexe abuse_ch
2022-09-29 05:14:04http://95.214.24.244/HEXO-CLIENTS/Rljanzfv-2.exeOffline32 AsyncRAT ext exe zbetcheckin
2022-09-29 04:24:04http://95.214.24.244/HEXO-SOFTWARE/Sazae-2.exeOffline32 AsyncRAT ext exe zbetcheckin
2022-09-27 04:36:05http://95.214.24.244/HEXO-CLIENTS/Rljanzfv-1.exeOffline32 exe RecordBreaker ext RedLineStealer ext zbetcheckin
2022-09-27 04:36:05http://95.214.24.244/HEXO-SOFTWARE/Sazae-1.exeOffline32 exe RecordBreaker ext RedLineStealer ext zbetcheckin
2022-09-25 11:58:07http://95.214.24.244/newz2k/Mfceum-4.exeOfflineCoinMiner exe zbetcheckin
2022-09-25 04:54:06http://95.214.24.244/TPBActivetor/Mfceum-4.exeOfflineCoinMiner exe zbetcheckin
2022-09-14 00:58:04http://95.214.24.244/tpb-2-links/ntprfgupx-1.exeOffline32 exe RedLineStealer ext zbetcheckin
2022-09-11 06:47:05http://95.214.24.244/TORRENT-SPAM/Kbdxdxwj-1.exeOfflineexe opendir RedLineStealer ext abuse_ch
2022-09-11 06:47:05http://95.214.24.244/TORRENT-SPAM/Kbdxdxwj-2.exeOfflineAsyncRAT ext exe opendir abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-10-07 09:07:2414e6226ef19ee7e637e02468d1f470e0122734c183494d56437dd0ef0c75f922exe  
2023-09-25 12:43:47c32b016b13b27c5e8b378ce8cec7e15602ff71e34ca998aabb38878bdfb1c16fexe  
2023-08-26 08:20:16e0418fa6c397e401b1cfdbb5202296c45ea77100ae6f9c7e5868cc3393a854ecexeCoinMiner
2023-08-26 08:20:10dd44612801b32da18885221e9211c565eecceeef71217b5b9858b839d6f8dc0dexeAsyncRAT
2023-08-26 08:20:0978bd069d6b2a1e617941b71b6953e0a8c792f49d3afbf3663610d60e280048faexe 
2023-08-26 08:20:09dd44612801b32da18885221e9211c565eecceeef71217b5b9858b839d6f8dc0dexeAsyncRAT
2023-08-26 08:20:0978bd069d6b2a1e617941b71b6953e0a8c792f49d3afbf3663610d60e280048faexe 
2023-08-26 08:20:09bb08e330702eccd5a5cd5f69a6ab725687324b6274381e5ad5c6abc0f78d5606exe RecordBreaker
2023-08-26 08:20:09f00b2b25861c0218820c23eca788881bc73c8470f59872989acf60c04cd83630exe RecordBreaker
2023-08-26 08:20:091478dd1a798dd70f503833edaa09b3ff8ae4cb1c4313fbc842686c0b1dd909ffexeRedLineStealer
2023-08-26 08:20:09f00b2b25861c0218820c23eca788881bc73c8470f59872989acf60c04cd83630exe RecordBreaker
2023-08-26 08:17:067bcde76356cbd428ffd4fd3288f1f07d49db7d3d772b9671bfa2bb1f98a3ae17exe 
2023-08-25 22:57:08f3aba98cd53c71d4d5e917e9e1fd43e3db61b46c59610eefba45b8c81f3e68ffexe 
2023-08-25 22:53:07bd275a1f97d1691e394d81dd402c11aaa88cc8e723df7a6aaf57791fa6a6cdfaexeQuasarRAT
2023-08-22 23:53:54f00b2b25861c0218820c23eca788881bc73c8470f59872989acf60c04cd83630exe RecordBreaker
2023-08-22 23:52:35bb08e330702eccd5a5cd5f69a6ab725687324b6274381e5ad5c6abc0f78d5606exe RecordBreaker
2023-08-22 23:24:34f00b2b25861c0218820c23eca788881bc73c8470f59872989acf60c04cd83630exe RecordBreaker
2023-08-22 23:22:20f00b2b25861c0218820c23eca788881bc73c8470f59872989acf60c04cd83630exe RecordBreaker
2023-08-22 16:08:1066e3a760eae179ef8183f0e9df0d39b0162a62cd2b377d5c0fd54bc4d59c48fdexe RecordBreaker
2023-08-22 15:59:59b655ddde5c881f4f0f661e64c32765dab777adb6eb2ff557d67f35da1738356bexe RecordBreaker
2023-08-22 14:54:35b655ddde5c881f4f0f661e64c32765dab777adb6eb2ff557d67f35da1738356bexe RecordBreaker
2023-08-22 14:48:53b655ddde5c881f4f0f661e64c32765dab777adb6eb2ff557d67f35da1738356bexe RecordBreaker
2023-07-20 12:45:48a966cedd464a05cf86a0f3c6d4b3e5f6d1a3c430fa0658fab350517f24dca4a6exe RecordBreaker
2023-07-14 08:38:5564f39cbaef2cf37d8412f5d41040a448206c6f659f3eb3a24f84af1ecbd85497exe  
2023-07-11 20:10:39c363b5dfbef3f04c1d3bea0fa24237560830100879b2b372e1344867e4dd16ecexe  
2023-07-10 15:09:14efb997a49308f5d17e627e53ab4900c465d2820bbaaf8d4dda4027a1c44b1482exe  
2023-07-06 00:09:599d05e8ef93511f02e7f0d270402b37658817a2d233f9cd12b40b87d4a4af7a77exeRecordBreaker
2023-07-05 23:46:5636dc266ad1ea8df01393368710ee6c6fd21629e833252cf0f3f63dffd908c805exeRecordBreaker
2023-07-05 23:40:0036dc266ad1ea8df01393368710ee6c6fd21629e833252cf0f3f63dffd908c805exeRecordBreaker
2023-07-05 23:38:4836dc266ad1ea8df01393368710ee6c6fd21629e833252cf0f3f63dffd908c805exeRecordBreaker
2023-07-05 23:38:0436dc266ad1ea8df01393368710ee6c6fd21629e833252cf0f3f63dffd908c805exeRecordBreaker
2023-07-05 23:25:2136dc266ad1ea8df01393368710ee6c6fd21629e833252cf0f3f63dffd908c805exeRecordBreaker
2023-06-21 15:47:26b98c25c9332c08071cdce0e2076000fc1c918b058af7bfd572724b1e86f8ecb5exeRecordBreaker
2023-06-21 14:57:49b98c25c9332c08071cdce0e2076000fc1c918b058af7bfd572724b1e86f8ecb5exeRecordBreaker
2023-06-21 14:24:04b98c25c9332c08071cdce0e2076000fc1c918b058af7bfd572724b1e86f8ecb5exeRecordBreaker
2023-06-21 14:23:13b98c25c9332c08071cdce0e2076000fc1c918b058af7bfd572724b1e86f8ecb5exeRecordBreaker
2023-06-21 14:22:32b98c25c9332c08071cdce0e2076000fc1c918b058af7bfd572724b1e86f8ecb5exeRecordBreaker
2023-06-21 14:18:26b98c25c9332c08071cdce0e2076000fc1c918b058af7bfd572724b1e86f8ecb5exeRecordBreaker
2023-06-11 16:16:531ac42cdcfe4c50559ecbd39d0626bfaaa569b6b92f28ac38eaa3d063d910c806exe RedLineStealer
2023-06-11 14:01:598b1cc654137ba48a02b726637867607fa13cb0b915b77ad185f3f1ff3580d112exe RedLineStealer
2023-06-11 14:01:37bcadc49beaceeb27068906d6673923c24c12ff73914d6a5ebb66e054565f41feexe RedLineStealer
2023-06-11 13:53:436cd2c786beaa8465fb5c7d16772eddbff0ec333137c2a0b941a05be702ad7361exe RedLineStealer
2023-03-12 09:41:04280474eb2d29702b7026467d357d2a34d58c08c82a264c174bce9e4bf694c19bexeAsyncRAT
2023-02-26 06:36:0631e477a3732cf4d377bbb89c5a5a3763dadd3581ce07534bb4fc54efb951823bexeRedLineStealer
2023-02-26 06:36:06819d812044fccc25692d6f0919850536d3486bdfdf296bea08ea3291fe1d425cexeAsyncRAT
2023-02-26 06:36:067304e4710381b20058acc561ff7a36df7e2ce614e8d8e045452bbfaec9f1ab6eexeRedLineStealer
2023-02-26 06:36:06e16bcff77a3468fa10bf4d67fb5e6c7d8d19564320895acdff5e1aaef74b5cfcexeAsyncRAT
2023-02-26 06:36:0537586dafcc6c040199746a3696e5bdc64701e3afbad58da6612bc134b8f785afexeRedLineStealer
2023-02-26 06:36:05f8cf70d11e4c1620c8bf0edb1ef50d564e6d4b8a293c0948957059526b3ed6d6exe 
2023-02-03 01:17:58650ada27b894204248d0af32365b2f400e4a19244293ef54c439d2c54345449eexeRedLineStealer
2023-02-03 01:08:11dce05561ae5582a0a5e716dcd273ed4b9359eb5a2fb556d103c63dc75f03622eexe RedLineStealer
2023-02-03 01:02:04ebb2dcf0d743e210a391d665b4589e3a0e41189ed1b21fcacc8c14caf13b1ce6exeRedLineStealer
2023-01-24 23:53:32e23bfe5194880ddc3c65cd67adc2851abc2d51a547207fd558631d5e9b6227cbexe RedLineStealer
2023-01-24 23:49:375fee060bb26c37da4d1205d84d457ed8513e59987a41a0ad094451f4ff14e4d8exeRedLineStealer
2023-01-24 23:49:140583d5be3f90408e4009070a24534fa160fcb54ad21e26d9ea6def5079ebee34exe RedLineStealer
2023-01-12 07:17:04c5aad4e5e357257061eeadaed8527c422c4408566da2047ac91250ec5d3d1276exeRedLineStealer
2022-10-26 07:21:071478dd1a798dd70f503833edaa09b3ff8ae4cb1c4313fbc842686c0b1dd909ffexeRedLineStealer
2022-10-01 07:21:06653388cbb84b4a94bcc4370bffca1672fe96f2fe5e3506001e65c3697c7c4191exe RedLineStealer
2022-10-01 07:21:0663b4600f00336a214819ed87c27c6ca6f809c5fbe12cd2a871447f72670846f5exeAsyncRAT
2022-10-01 07:21:069f8a1f56a75fcbae6a2a52fe6e74f00585e28b6aa8c02e380fb9a114d218c1d3exe RedLineStealer
2022-10-01 07:21:061eae8264ef6827178364adbe9650d4eec1e791ec327f803aea1ea32fb502133eexe N-W0rm
2022-10-01 07:21:0697261fee3b80f8396ae8c4c2522d7613b69b41644e5c8e03948aedf6778c3e42exe 
2022-10-01 07:21:0665209a1c9e0c0c1d5cfa80df4ff1ba6d1742e1b5ac8a4e32b38e49749c312cddexe 
2022-10-01 07:21:05cdfb3a8ed030bb040835d4e2d5fd150bff61006971ce84809183127fd758639aexeAsyncRAT
2022-10-01 07:21:0480fb795719141a03a232814442d0796bee6179700ef0a7156d08ee91cc633098exe  
2022-09-29 05:14:04462342db316acd9578f80e1b80471237fecc9479d2d70f7f413b1b47cd302400exeAsyncRAT
2022-09-29 04:24:041063141a71a9f3b788d4be37ff25d52cb29f7ec8105fbd8b90129073e78cd033exeAsyncRAT
2022-09-28 06:08:5291e70d1abc42ba99684c12f0048fdc2176913937233caa53131fa4813af09766exe  
2022-09-27 04:36:05b1d0054cc04e1f882313bfe5ecbcae1dc58245267311cf1eafa8f3d531687dbaexeRedLineStealer
2022-09-27 04:36:0579208f5bcd29a83d75bb073d3f48a483cd51dbd53e9cee5472ab4947a1ede05bexe RedLineStealer
2022-09-25 11:58:07e0418fa6c397e401b1cfdbb5202296c45ea77100ae6f9c7e5868cc3393a854ecexeCoinMiner
2022-09-25 04:54:06e0418fa6c397e401b1cfdbb5202296c45ea77100ae6f9c7e5868cc3393a854ecexeCoinMiner
2022-09-14 00:58:04644770baab7ff1c25fde1ea6c43be23c49989cf5699308460371773cde18bf2dexeRedLineStealer
2022-09-11 06:47:054895d63af52071e09f72f2a1dd3ec093970972dd4b82b6266b67536f24f82eafexeRedLineStealer
2022-09-11 06:47:05d8ccf0d00dbf712744ba342e641ad6faf8d917254e7fd44cef4e0e4cb3ac99c7exeAsyncRAT