URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 96.44.159.144 |
|---|---|
| Firstseen: | 2025-09-11 06:23:06 UTC |
| Total malware sites : | 6 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 6 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-09-11 06:23:08 | 96.44.159.144 | 96-44-159-144-host.colocrossing.com | Not listed | AS36352 AS-COLOCROSSING |  CA | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2025-09-12 06:48:09 | http://96.44.159.144/arquivo_20250911012138.txt | Offline | RemcosRAT  rev-base64-loader |  abuse_ch |
| 2025-09-11 14:48:15 | http://96.44.159.144/img/keepingbestgoldwithbet... | Offline | ascii js RemcosRAT | abuse_ch |
| 2025-09-11 14:45:07 | http://96.44.159.144/500/verygoodpeoplesaroundt... | Offline | ascii js RemcosRAT | abuse_ch |
| 2025-09-11 06:49:07 | http://96.44.159.144/arquivo_20250911010035.txt | Offline | ascii Encoded rat RemcosRAT rev-base64-loader | abuse_ch |
| 2025-09-11 06:23:13 | http://96.44.159.144/imgs/optimized_MSI.png | Offline | abuse_ch | |
| 2025-09-11 06:23:08 | http://96.44.159.144/img/keepingbestgoldwithbet... | Offline | hta RemcosRAT | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2025-09-12 06:48:09 | 01c46a7315a202e4dbc470de47b9857e9ba2ffd4f9c4d1318f909dff27e8eabd | txt | RemcosRAT | |
| 2025-09-11 14:48:15 | 3509fb04e772680941a132634df2000b73406c6aa34effaad055904237337fe5 | js | RemcosRAT | |
| 2025-09-11 14:45:07 | 1d412c6fef4d9a142d1c1910bfb91d00ea62ce86dab0f6a473423601b6042464 | js | RemcosRAT | |
| 2025-09-11 06:49:07 | e414f8ef1552b53d2910a0c19bd73e5880fd0f6948abe1d305da53b0984d78f9 | txt | ||
| 2025-09-11 06:23:13 | 08a5d0d8ec398acc707bb26cb3d8ee2187f8c33a3cbdee641262cfc3aed1e91d | unknown | ||
| 2025-09-11 06:23:08 | 3509fb04e772680941a132634df2000b73406c6aa34effaad055904237337fe5 | hta | RemcosRAT |