URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: anondrop.net
Domain registrar: n/a
Domain registration date:2023-11-17 14:01:06 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2025-08-22 14:58:05 UTC
Total malware sites :23
Online malware sites :0 (0%)
Offline Malware sites :23 (100%)
A record(s) observed :7

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-12-21 17:41:29 104.20.34.162Not listedAS13335 CLOUDFLARENETn/ayes
2025-12-21 17:41:29 172.66.150.166Not listedAS13335 CLOUDFLARENETn/ayes
2025-09-29 18:28:39 88.99.145.13static.13.145.99.88.clients.your-server.deNot listedAS24940 HETZNER-AS- DEno
2025-08-22 14:58:18 188.114.96.3SBL690066AS13335 CLOUDFLARENETn/ano
2025-08-22 14:58:18 188.114.97.3SBL691350AS13335 CLOUDFLARENETn/ano
2025-08-23 07:23:29 104.21.12.72Not listedAS13335 CLOUDFLARENETn/ano
2025-08-23 07:23:29 172.67.193.190Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2026-03-16 20:36:12https://anondrop.net/1480759612251570226/1.pngOfflineTokGrabber zip burger
2026-03-06 07:12:10https://anondrop.net/1479090540531421216/1.pngOfflinepayload stealer burger
2025-08-26 10:41:14https://anondrop.net/1409832249968562361/.binOfflineexe njRAT ext xworm Anonymous
2025-08-24 06:33:16https://anondrop.net/1408852323941224540Offlineanondrop.net c2 grabber host Lumma malware onion RedLine ext tok LukasKraux
2025-08-24 06:33:11https://anondrop.net/1408850133260435466Offlinejavascript malware RedLine ext LukasKraux
2025-08-24 06:33:09https://anondrop.net/1408850362915361032Offlineanondrop.net c2 grabber host Lumma malware onion RedLine ext tok LukasKraux
2025-08-24 06:33:09https://anondrop.net/1408851068389163010Offlineanondrop.net c2 grabber host Lumma malware onion RedLine ext tok LukasKraux
2025-08-24 06:33:08https://anondrop.net/1408850668046913618Offlineanondrop.net c2 grabber host Lumma malware onion RedLine ext tok LukasKraux
2025-08-24 06:33:05https://anondrop.net/1408851485831336028Offlineanondrop.net c2 grabber host Lumma malware onion RedLine ext tok LukasKraux
2025-08-24 06:33:05https://anondrop.net/1408851906733805629Offlineanondrop.net c2 grabber host Lumma malware onion RedLine ext tok LukasKraux
2025-08-23 06:08:08https://anondrop.net/1408497057118945382/1.png?...Offlinepayload zip burger
2025-08-23 06:07:22https://anondrop.net/1408513419396780093/youcan...Offlineexe Anonymous
2025-08-23 06:07:19https://anondrop.net/1408513385234170099/okk.exeOfflineexe Anonymous
2025-08-23 06:07:19https://anondrop.net/1408511905642840086/5.exe?...Offlineexe Anonymous
2025-08-23 06:07:17https://anondrop.net/1408511385196957717/1.exe?...Offlineexe Anonymous
2025-08-23 06:07:14https://anondrop.net/1408511527308230770/3.exe?...Offlineexe Anonymous
2025-08-23 06:07:14https://anondrop.net/1408511823509983295/4.exe?...Offlineexe Anonymous
2025-08-23 06:07:09https://anondrop.net/1408513351461507094/jew.exeOfflineexe Anonymous
2025-08-23 06:07:08https://anondrop.net/1408511993392136346/6.exe?...Offlineexe Anonymous
2025-08-23 06:07:07https://anondrop.net/1408511459306111087/2.exe?...Offlineexe Anonymous
2025-08-23 06:07:06https://anondrop.net/1408511188198883381/Fracta...Offlineexe Anonymous
2025-08-22 18:48:10https://anondrop.net/1408497057118945382/1.pngOfflinestealer Riordz
2025-08-22 14:58:18https://anondrop.net/1407503691094818816/1.png?...Offline abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2026-03-16 20:36:11079c938c61b6a16e1c0cb7d3ec168acd482b24851f1926bf2c60324af08fd265zip  
2026-03-06 07:12:10cfb26839493b9ca09171f21fc6a9c5c65aaf570e347749993e03068cb41895b8zip  
2025-08-26 10:41:14df690a7617a5e166f671ca7304281a769b9ef9d96f6d414639e56ef6bf72af80exenjrat
2025-08-22 18:48:1097d2ee5634d9c8010f145b9059e31d7787c8d3c6ae6fc43e6b3cb5b0845e3e95zip  
2025-08-22 14:58:189e9d780f48d96f7788b7e26d861f0357e38a2187c1603926998f1d8d19c71566zip