URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: admindepartment.ir
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Blocked
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2020-06-11 05:12:32 UTC
Total malware sites :34
Online malware sites :0 (0%)
Offline Malware sites :34 (100%)
A record(s) observed :8

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2020-10-28 08:07:52 104.237.252.41Not listedAS16628 DEDICATED-FIBER-COMMUNICATIONS- USno
2020-10-22 19:45:00 185.207.37.206Not listedAS203061 itproximus- COno
2020-08-24 09:08:23 193.228.91.147Not listedAS213953 MizbanDadehPardis- IRno
2020-06-11 05:12:37 194.180.224.87host.vmpars.netNot listedAS200436 tehrangaming-com- IRno
2020-07-08 11:10:00 185.123.101.144Not listedAS206991 IXIR- TRno
2020-07-02 08:21:21 185.207.38.107Not listedAS203061 itproximus- DKno
2020-06-11 05:12:37 185.207.38.108Not listedAS203061 itproximus- DKno
2020-06-11 05:12:37 185.47.204.168Not listedAS50340 SELECTEL-MSK- RUno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-10-14 06:14:06http://admindepartment.ir/notepaq/omo.exeOfflineAgentTesla ext exe abuse_ch
2020-09-30 07:05:06http://admindepartment.ir/notepaq/bknu.exeOfflineexe NanoCore ext abuse_ch
2020-08-31 07:37:36http://admindepartment.ir/wealthx/wealthbuild.exeOfflineAgentTesla ext exe zbetcheckin
2020-08-31 07:33:18http://admindepartment.ir/notepaq/siml.exeOfflineexe QuasarRAT ext zbetcheckin
2020-08-31 07:33:10http://admindepartment.ir/notepaq/dgn.exeOfflineexe MassLogger ext zbetcheckin
2020-08-31 06:03:06http://admindepartment.ir/notepaq/pla.exeOfflineAgentTesla ext exe NanoCore ext QuasarRAT ext gorimpthon
2020-08-02 03:41:07http://admindepartment.ir/arinzex/arinzex.exeOfflineAgentTesla ext exe zbetcheckin
2020-08-02 02:40:08http://admindepartment.ir/templx/CRIPTERFILETMA...Offlineexe zbetcheckin
2020-08-02 02:33:12http://admindepartment.ir/wealthx/wilbur.exeOfflineAgentTesla ext exe zbetcheckin
2020-08-02 02:32:37http://admindepartment.ir/mazx/tserver.exeOfflineAgentTesla ext exe zbetcheckin
2020-08-02 02:23:08http://admindepartment.ir/wealthx/bensway.exeOfflineAgentTesla ext exe zbetcheckin
2020-08-02 02:10:07http://admindepartment.ir/mazx/tsbuild.exeOfflineexe Loki ext zbetcheckin
2020-08-02 02:05:36http://admindepartment.ir/sabix/sabix.exeOfflineAgentTesla ext exe zbetcheckin
2020-08-02 02:01:38http://admindepartment.ir/wealthx/benzway.exeOfflineAgentTesla ext exe zbetcheckin
2020-08-02 01:23:06http://admindepartment.ir/wealthx/steph.exeOfflineAgentTesla ext exe zbetcheckin
2020-07-14 09:22:42http://admindepartment.ir/wealthx/kayboi.exeOfflineexe zbetcheckin
2020-06-16 15:54:12http://admindepartment.ir/templx/Frank%20crypte...Offlineexe MassLogger ext zbetcheckin
2020-06-16 15:53:20http://admindepartment.ir/iseeyou/iseeyou.exeOfflineAgentTesla ext exe zbetcheckin
2020-06-16 15:53:13http://admindepartment.ir/wealthx/ecomx.exeOfflineAgentTesla ext exe zbetcheckin
2020-06-16 15:52:47http://admindepartment.ir/rawnyx/rawnyx.exeOfflineAgentTesla ext exe zbetcheckin
2020-06-16 15:51:11http://admindepartment.ir/geemonix/geemonix.exeOfflineAgentTesla ext exe zbetcheckin
2020-06-16 15:50:46http://admindepartment.ir/templx/temple%20cript...Offlineexe Loki ext zbetcheckin
2020-06-16 15:50:29http://admindepartment.ir/majicmanx/rajx.exeOfflineexe Formbook ext zbetcheckin
2020-06-16 05:27:13http://admindepartment.ir/wealthx/livewealth.exeOfflineAgentTesla ext exe gorimpthon
2020-06-11 15:42:12http://admindepartment.ir/arinze/arinzex.exeOfflineAgentTesla ext exe zbetcheckin
2020-06-11 13:15:15http://admindepartment.ir/wealthx/wealthbenz.exeOfflineAgentTesla ext exe zbetcheckin
2020-06-11 13:11:37http://admindepartment.ir/majicmanx/majicmanx.exeOfflineemotet ext exe heodo ext Loki ext zbetcheckin
2020-06-11 13:10:37http://admindepartment.ir/nwamax/nwamax.exeOfflineAgentTesla ext exe zbetcheckin
2020-06-11 07:55:23http://admindepartment.ir/mazx/mazx.exeOfflineAgentTesla ext exe Formbook ext zbetcheckin
2020-06-11 07:53:09http://admindepartment.ir/templx/temple%20file%...Offlineexe Formbook ext zbetcheckin
2020-06-11 07:51:34http://admindepartment.ir/templx/Frank%20FB%20C...Offlineexe zbetcheckin
2020-06-11 07:49:11http://admindepartment.ir/bigmanx/bigmanx.exeOfflineAgentTesla ext exe zbetcheckin
2020-06-11 07:48:36http://admindepartment.ir/templx/templecriptedf...Offlineexe zbetcheckin
2020-06-11 05:12:37http://admindepartment.ir/wealthx/wealthx.exeOfflineAgentTesla ext exe NetWire ext gorimpthon

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-10-23 01:47:4208a943bc43e998fe74adc25f1ca2d8d9a2a64c7e57fe8482ad54aaf22c06d3c6exe 
2020-10-22 20:10:16d2cae6f4464b0996ca72d84e6c02f49e28345e60e41b397016d8a947804c2ce4exe 
2020-10-14 06:14:06c1fa48c0b9c81541dc2ba39db3fc1c410f6231e8df9aa69c02bdd1c8549b453aexeAgentTesla
2020-10-01 06:23:01753a7493be05ba01034f3c861ff1805a4336616e84469f40800d876dcba3381aexeNanoCore
2020-09-30 07:05:061725f5e6df571844e0f722d506d02ecd0e2cf42bef2f1cbb48259c1f690f34cdexe NanoCore
2020-09-30 04:26:32b5c4d300159abd434180619278d854f173ed7b5362e03b55653f25068ab68b9eexe  
2020-09-24 21:56:03cb6c181823fd61558c1e6cefa9f1634d1676984316caa071c24268df493d3629exeNanoCore
2020-09-24 09:50:33f33465f150ab2953fc885528545da23ce9c986c2358f4857a418cfdeb95f6979exeAgentTesla
2020-08-31 11:21:213f52ed2c4f4cdf6f5b68918eb857152bf6835df6ddfb21266c11d6f6fc900c94exe QuasarRAT
2020-08-31 07:37:3674d261f737365ae8f8777ad29dc201feba27d57fc6d061ba9ada91a98ac357a6exeAgentTesla
2020-08-31 07:33:1859266059bf9ed1325138907f3f74f4838600be78e310b8165333935e18817d5aexeQuasarRAT
2020-08-31 07:33:10c0c4c97332bfb8b5254c089e82c05d0a7d171747b72f991f7e3bdb2ed74856d0exeMassLogger
2020-08-31 06:03:06dc0087097e433036c00aaf8751d4cd9dc3e309fdba09c2ee1415a4060aa1ccedexeQuasarRAT
2020-08-16 22:03:04a0955d4ef3817387bec8e5a810ff6da2381c4096d400b9240b8f26512cc1f2a0exe  
2020-08-14 21:50:330c64a5f3da2aa48e205bd8257694d12be32ea8238778f08e8842010262a51463exe  
2020-08-13 09:15:55d971b912d348370ab44f57db3b4daa9528a993d2b3d99ab5a7acb36f54b7a109exe  
2020-08-09 01:48:421e2b83ad13f149e3ab309e265f7b331134bb1551935458887d3f5c7c10a9b450exe  
2020-08-07 00:48:35f7670fa48ef7237b7e2f1335a5a3b15d87743555193eb62cbc46852025679c78exe  
2020-08-07 00:48:35092ab9d8086a125fb0362e4195e8f04d704b5d131d7bb9db46c78f74014f8eeaexe  
2020-08-05 21:51:548b856dd25e158c922b7cd6aed39fdea72e942008fc5cde5eb1eae64767d15e69exe  
2020-08-05 21:51:526ecadb6092182034bdf4590bb7ebd6b44a2865ddaa54e3eec4029df65a3ce5edexe  
2020-08-05 21:51:45909efb9465ebe72fe80dc326e85ba158227cd505ac8c69ac4334a9b0576a0095exe  
2020-08-05 21:51:4367d2ce1dadacb18fb208256ab2f9843a251b4437867891f7565f94d93e993dffexe  
2020-08-05 21:51:41e7eb025d846f9de4cb84cf04310973b86365d02e52179654363948fe3e860accexe  
2020-08-05 00:14:21b88618c003b8d3cd651d9a4fb6a317fd05ffb0d4ebdc274a9a1a73e8f54545e4exe  
2020-08-02 03:41:06aa5bb63c10ba7512a7f1612ca4b89768023be9fe17bcdf07665ec06640ca242dexeAgentTesla
2020-08-02 02:40:08eaef97b002e2c107e934642c55af2a8e7089f7b1d724ba5b04eb062a44937b96exe  
2020-08-02 02:33:1244fd1c5a6cf9d95f429de5929a91715aa2a9f7dd1d111f245dd17a808ec7ea25exe AgentTesla
2020-08-02 02:32:37d43996c18aa13389f63a8b20bb6ea8a6596874d841d4b41cc45a9ae5499a7a38exe AgentTesla
2020-08-02 02:23:072c316b5563aef763826d71cc133b116e4f423580432e37b304c7c7a1f502ae4dexe AgentTesla
2020-08-02 02:10:07b711fd224c116ba002c53e9c782218650f469bf088d47df7dfb3e48870e5cad9exe Loki
2020-08-02 02:05:36496915df405522ba15593a35d2c7d2da7adbe9dec2cfe62d2db4a47e81fddccaexeAgentTesla
2020-08-02 02:01:38fa963327c91d9d8fb99fb2afae8bf10a36c799e42a52e0f2aae0cf3065ed3e82exe AgentTesla
2020-08-02 01:23:069a42338d361b71893083ada112fb44abd6a5031167530b37bb216ecab36a40d0exe AgentTesla
2020-07-28 17:05:30faaf71c5fd35706219ccb6b3cf703461b6ee81da98e3eb97d52886ac119c9719exe  
2020-07-28 13:12:177820aaf8d9b59132a60deac3618900ca47a00a53cf0ea2bd83d0acb3b44828c9exe  
2020-07-27 09:33:103375ebdd6b86a65de02eff797ad80b7c11a9c7141a169fdb97eb8bd593aa12c6exe  
2020-07-25 17:16:44aec8fdc885479ec823e814d26a70179e19593b013c41b421b89c40fbd2f48faaexe  
2020-07-25 04:27:5269a5d10707666d99f908169130a310aeafd5e1aca70a07d0cc4f1448a5368ceaexe  
2020-07-22 13:46:40db62b328c542a7bcdc583d45c26524db74ffd5a6d4041ba79cb9740414f1404fexe  
2020-07-22 13:46:38b8992ef80ecb20be687239d11b626acca9900856c518527cf5f997b9d343222bexe  
2020-07-22 13:46:37af5ec8b1c6e8d0760ada3f5eae6d4589e3293b85621b5123b1878d7b0237f78bexe  
2020-07-22 13:46:376e06a523abadadf80dadbabf1543c4610224a80e0ee7e37bff1a2e2895300442exe  
2020-07-19 04:27:08b7e41c6229f4952ce6fc9e99ab84c6e4e7d4bd116b042ff0bab8695b7e666b90exe  
2020-07-19 04:27:0669a5341c07873d2ac0c735341a5214e0b0715cf9f6e089181910c8be0a3892b5exe  
2020-07-19 04:26:5815a0e9fcaf6637c593744384bc2e72b3cc41d4ea7b8ee8850e3e020818662bc8exe  
2020-07-19 04:26:567329db9d896ef50f5e584d9487abd56473bdc5769f1a1768a64ef339619ea9e3exe  
2020-07-19 04:26:5490f5da63d24d5db165b564d84ec4cfed902eb79ddd08d6e554f04b34057c323aexe  
2020-07-14 09:22:42f46a8092fbdb1c7af4de488c6fa5218778b429716c62c374e76d3ea6b00c731aexe  
2020-07-13 23:40:20faab680e8a8c577bb914b273f970c269b303c065d18181a0e953ea5cdeecb746exe AgentTesla
2020-07-13 12:05:50b0dca7beac04bb222ce15a52bcfab697d531f17ec3c0bbc476b6bdc185e94a09exe AgentTesla
2020-07-13 10:08:0301b41cf35ad23a2472e14dd1da91763d1e9e6fe609a20372992242552a0fd3a5exe AgentTesla
2020-07-13 03:54:0664fdec834bb254bc6e8061d9b2f1109741d2647caf6be88b11634b8dd4e6f209exeAgentTesla
2020-07-12 21:42:468885bc803954f823e791b279d1f5e18b6937b3fe8213570a8cfcfbceec055f6dexe  
2020-07-10 12:09:1563d350fe26f6794e59fbec3672582224b61f1f4c73dcb65b9ce9b683625c5b49exe  
2020-07-08 03:55:118e7d8dc49220d4ac88858ec8401d0d2b2a0c21d7b8e301c68de51e8a99238363exeAgentTesla
2020-07-07 09:59:0619e86b11cb99cf682df6b74a6ee2372a9718a9b043d53e93cbeae61cee9b1f98exe  
2020-07-07 09:59:06cd03561f0a0473dd4c477e139012d4b52f3ef7cd0f02c1ad506cd69f13f844bfexe  
2020-07-07 09:59:013fc86aae2344e4d51301f17133b53d84741c85a0fef97da00bab7ece9e2e805aexe  
2020-07-07 03:47:5733bcefddfe33309988df1c54e8ed74d92c9bc377b118e280efa173c70155c48cexe  
2020-07-07 03:47:56ec8e5db4785eb456adb40077d345d84ad6abc56bb1c438a899edfad32237da3eexe  
2020-07-05 23:28:07353642fc4ffd5650fc0a7454be7a6c871088f60dbec1c92f60edd28b4b14b966exe  
2020-07-05 23:11:39d6c7595917d15a6bec9defc311e5e33ff66fb99ee78f9a1a38762792fb41908cexe  
2020-07-05 02:59:2156daf95631cdc32e71f0dc34625562588e05f3f3147950208529ce4f14592e32exe  
2020-07-05 02:59:13719c26761fb85e6d89c6e6ac213afd5845c232c8024c12f003b764e45d32452aexe  
2020-07-05 02:59:12ee806dadd3a141df537bb8aad4f850269863daa7215fc31f42c69b7bfa455f63exe  
2020-07-04 20:43:44c7feb6ee21897155ada00a5f63de6dcb8ff7127b8e5cc1a0aeee80f6b5fb14ecexe  
2020-07-04 20:43:430c7c2a31d0cb4c93d4ebd60477835daed285e413b3074f23195791c63df1639cexe  
2020-07-04 20:43:3778200412b400cf34815aad3c34a07cad722f2c04bded1d4efcfd7fbc020d707dexe  
2020-07-04 18:08:28a4de68e6bb62e6afb62f6ec6a79b803a144cac34854387a818365a77ad31af14exe  
2020-07-04 18:08:28d0aa937abece7fa493148a87ab28dcd092d5da21f81efa6eeb2db7c496a34904exe  
2020-07-04 18:08:281ca7ccaa296918e183d5929529de0e022aec97803aae9699bae6f025764ba5b5exe  
2020-07-03 17:58:2746c8f18406858855660a89b5169e8aaa1c7eb94427e52764a21887e86f1fb8cfexe  
2020-07-03 17:58:21f273d2af23fb886216c1aaeba80ae075769ff67958a9092c216e30fbba278375exe  
2020-07-03 17:58:1569a6b331b8f13a6e1de415a068fe13b8ec74fadcea15edbdae083045f8f875e7exe  
2020-07-03 01:50:0600f87bd21e6ee8cb152f24a64cfde3cb6bf18fd33d9892de0b7367d01b0b2a63exe  
2020-07-03 01:50:01fd05a84f9f567bdf318783e87bc697ef2f397824a6cb582d11734efcb7df9182exe  
2020-07-01 11:00:46ece1bdecefaee06257bcff36555fdfd03545311a76dd520fa54c7a454746d253exe  
2020-07-01 11:00:46ce6fc151b657d8db3c621140a9cff93eac0c00915181338ddac6453540cd3761exe  
2020-07-01 11:00:4360a9d9ad6b30e508403c9e6bc2311ca4bf439840d2d4e0f2fde7f8bfe2e0876bexe  
2020-06-30 04:58:23a4c70297087ab9d2ba1dfa7452273fdf66295bf4ab7fa001e04841a9dd8c02efexeAgentTesla
2020-06-30 04:30:3670269ba1f23e8f46a31cee165214a21ae0e47babd75af19946acd296fb15c24fexe  
2020-06-30 01:14:522df3fb91b09e4014778087cd23a2863627c1775ed1dd08c33e63168639b1d48eexe AgentTesla
2020-06-30 00:08:2515c4fa85cbc2c692575d38601a56e49a52a23d74a2dce110bf17beadf46672bbexeFormbook
2020-06-29 21:15:491f0b4510b266b9882c00ca2232d62f936fe019c5953b7ff609ed021c171c9506exe  
2020-06-29 21:15:496744405cb42ddeb65a38727f60af41eb8bf272f20d11d08f4983f5eda9e3ca7dexe  
2020-06-26 19:27:53183d879478e3079574b83fc9e63192b3948e489ac323bbb3b3dd59bbd336c791exe Heodo
2020-06-26 18:35:136e37d894bd94f403056bc80d47a9f7131eb45e06c2419db29d00c25eddbc80c7exe  
2020-06-24 05:40:332757335c8c41d84520827e8ceddbca445515649055720421b82c358ad2033d28exeAgentTesla
2020-06-24 05:09:199d7b60918b46f41b880d6d2adb266bec969f4a38f3c293758e2fb8aa32d78907exeAgentTesla
2020-06-24 04:41:45774b96525607e99c817973a4fc9279c70ead81b7c3347b8ae5e0aa202c8606fbexe  
2020-06-24 04:41:45b91e75fbace5180c3130cc39c2745858e86fc5e4dc0a0a6134baa508495b5b1fexe  
2020-06-23 23:47:4760899adcff7a2ef08372c10e34600a206613943a28cd63aaabd8291f89edaf32exe  
2020-06-23 23:47:468577187fe6f8bb20ae9ced4e598781310cad0e0d3390c8ce674f5d2976fa2a95exe  
2020-06-23 12:37:224d69edbfb0ddf03fa20d939ec09c9c2b082f27d141294d2040be60fcce818eb3exeAgentTesla
2020-06-23 12:07:214e892591da59a34dbe9f193aee50de68ada3b074011a28f14323539147c554a6exeAgentTesla
2020-06-23 10:21:29c19fb97d3e525f1cee45c33c03b3f60b8d2e27a57ccf7c9900ee85c7807bdb31exe  
2020-06-23 03:32:23bbfdcc6a453c09bd8317c43a3e052d26cdf3cc5cd025f8ea31db70eb60cb0df8exe AgentTesla
2020-06-23 02:34:1187a0795dc92456c39733e634ca8f189db0e0d8e90bcf755fc7950f121b25c426exe AgentTesla
2020-06-23 01:31:11435e6e086381079a2053bf32c6eaad7e3689ae4a3f9dc667f162d0fe0df9c06dexeAgentTesla