URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	antivirf.ru
Domain registrar:	R01
Domain registration date:	2021-11-02 11:01:58 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-11-11 01:32:09 UTC
Total malware sites :	17
Online malware sites :	0 (0%)
Offline Malware sites :	17 (100%)
A record(s) observed :	4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-11-03 02:00:28	31.177.76.144	expired.r01.ru	Not listed	AS48287 RU-CENTER	RU	no
2022-11-03 02:00:28	31.177.80.144	expired.r01.ru	Not listed	AS48287 RU-CENTER	RU	no
2022-04-16 05:47:03	195.161.62.100		Not listed	AS8342 RTCOMM-AS	RU	no
2021-11-11 01:32:09	81.177.141.85	srv246-h-st.jino.ru	Not listed	AS8342 RTCOMM-AS	RU	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-12-05 22:53:16	https://antivirf.ru/huro.exe	Offline	CoinMiner exe	Cryptolaemus1
2021-12-02 05:16:11	https://antivirf.ru/kler.exe	Offline	CoinMiner exe	zbetcheckin
2021-11-29 02:09:05	http://antivirf.ru/kristian.exe	Offline	CoinMiner exe	zbetcheckin
2021-11-28 20:17:07	https://antivirf.ru/biga.exe	Offline	exe	Cryptolaemus1
2021-11-28 20:16:51	https://antivirf.ru/antivirus.exe	Offline	CoinMiner exe	Cryptolaemus1
2021-11-28 20:16:10	https://antivirf.ru/big.exe	Offline	CoinMiner exe	Cryptolaemus1
2021-11-11 02:36:10	http://antivirf.ru/kolop.exe	Offline	CoinMiner exe	zbetcheckin
2021-11-11 02:36:10	http://antivirf.ru/from.exe	Offline	CoinMiner exe	zbetcheckin
2021-11-11 01:46:05	http://antivirf.ru/man.exe	Offline	CoinMiner exe	zbetcheckin
2021-11-11 01:46:05	https://antivirf.ru/monsterbez.exe	Offline	CoinMiner exe	zbetcheckin
2021-11-11 01:38:10	http://antivirf.ru/cold.exe	Offline	CoinMiner exe	zbetcheckin
2021-11-11 01:38:08	http://antivirf.ru/mani.exe	Offline	32 CoinMiner exe	zbetcheckin
2021-11-11 01:38:04	http://antivirf.ru/kolopl.exe	Offline	32 CoinMiner exe	zbetcheckin
2021-11-11 01:32:11	http://antivirf.ru/System.exe	Offline	exe rustystealer	zbetcheckin
2021-11-11 01:32:10	http://antivirf.ru/wing.exe	Offline	32 exe RedLineStealer	zbetcheckin
2021-11-11 01:32:10	http://antivirf.ru/main.exe	Offline	CoinMiner exe	zbetcheckin
2021-11-11 01:32:09	https://antivirf.ru/soldd.exe	Offline	32 CoinMiner exe	zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2021-12-27 07:44:07	16160e3f55e97aae9e5d23dec2b4c00a24257f1e90bd11bb0527f2a6f6cdfc79	exe
2021-12-27 03:01:14	9d497d2cf3035e9f3e78d067f0a6ae88d0e8f3fdf7e850124bbe49d28f203935	exe
2021-12-26 23:52:23	6be674487a770fda62ec45fc533fedde9c34c4faa14c7e9abddc92165b77a278	exe
2021-12-26 22:52:10	777553d5a6a0e9263654e1db5c8008344fe4e1f2c562e8e0f7cc06db2e16324f	exe
2021-12-26 19:58:48	58381176d9cf06011cd8ff1fbf786fc1edf54f2391e9d3eac773797ff30346ac	exe
2021-12-26 19:53:09	4027ef7fcd754b6c32865452a76bfc0ed9d0cfa50e89819dfd1dea5a3acb977c	exe
2021-12-26 10:45:53	c9736e3edf1e82194e0c6c5c5a0215171469d7c46ea90277ce559df8e5eb8eff	exe
2021-12-26 08:28:41	fab44aaef8e91affe6d26ad28398e6dfaf69c52388297a262f24a527f62c5677	exe
2021-12-26 06:40:57	cc002ba08745f31dadc4fb312cc96e5f8b5462d8399f86bc0ec071ceefc4d6c5	exe
2021-12-26 03:30:54	968da412f993aadff3c28751e0257201cce0866a738274f421b1938ba2d26483	exe
2021-12-25 06:09:43	a6b1c72eda86c497c5e26c1f65f66792bab812d66710188fb2e0b93b8b2f4f03	exe
2021-12-25 04:40:42	71742739a9442ce358562d2397410f5d93a96954b4804eafe0cb2a558eb5174a	exe
2021-12-24 18:15:58	8071d4e4ee4e5b60b61265c7a47ffa8fc6762189524037f3c76c6f59d7bede5c	exe
2021-12-24 14:41:18	b2cae4cd062d47299bcc37fbbd469f9d9c280ac35d15809d6bc284e2d9a1b06a	exe
2021-12-24 14:07:42	80379bb99df77f885ca8dd872417d78321c34d18d4cc5305a8e46a975b003408	exe
2021-12-24 13:44:45	e8aa073b6a19c5c02c239dd75039cb93d0baf6309ee1cd841c85417139bc2e7d	exe
2021-12-24 10:35:11	bb3ff42f731ce6f06f44e0ab8fa5f9c27661363446cdabeb114a6e9f4620851c	exe
2021-12-24 07:39:32	078a92ec458586c81bf71e3fbe7c12598037b2d95cf3385d948e640b225fbc60	exe
2021-12-15 19:20:40	14f41fea8ffeb4ed1af253c7d218861270ff522df77a9650d926b3681ddea3f6	exe
2021-12-05 22:53:15	b57f69913740f87b3c6321c7e0a36be68b6a9769b755b444820c2d1a841198fa	exe		CoinMiner
2021-12-02 05:16:11	89ccef77d5908319e35ae3824b760f10dc8780e01f9ad4dac0e42ea9af498af1	exe		CoinMiner
2021-11-29 02:09:05	11799a402c4d9214f028ea725cf40016e450352fed6977c5bea97df61bcf9d62	exe		CoinMiner
2021-11-28 20:17:07	3c71db50b9de1b3a7032eb8da20be2403bb0fe1984b4d4eabf8be2c056e912fe	exe
2021-11-28 20:16:49	4827e968de06cd0dc23e4a5f435e7cb4a7df0c8335bd532b588beb1a6b8cf397	exe		CoinMiner
2021-11-28 20:16:10	274c8513e1e05f0b81ec8a77fc5a93d72ede7b1dbb3f576ceb610515c78c6e6b	exe		CoinMiner
2021-11-11 02:36:10	e06da8ca9df1d376c4df7f78733e01cdbdcd660e8c5ce2c575a2afabfed27cc0	exe		CoinMiner
2021-11-11 02:36:10	c6110583978af41e0ec6705f89b4c6c0acccb6b314b6376052f1b984bd282456	exe		CoinMiner
2021-11-11 01:46:05	d3971de408a80057671d1f39dd0aafcb4501903b6c9cf7f5fb51fffc0ab43599	exe		CoinMiner
2021-11-11 01:46:05	c2a7a2a0fcb69d153a1abc06e5b316a496501e89f71c761f620fbb6a3867af14	exe		CoinMiner
2021-11-11 01:38:10	9cff8f64cd247e33e2be368d294fa5fbc8fb207ba5807840e07a2f9ac9767b4c	exe		CoinMiner
2021-11-11 01:38:08	44d35218b3d50c6bde65093678b72db54e9a89fc28dfe391abb3e128571cec44	exe		CoinMiner
2021-11-11 01:38:04	05ab3b9e248a30ce63b15ff929a8ba5f7099f5cc3618ea9f297515d59cb004e6	exe		CoinMiner
2021-11-11 01:32:10	d7322d2705ab994d8769ca74cb6e109018d07afd764393ad89354d8ee98da914	exe		RustyStealer
2021-11-11 01:32:10	2f394d52b952eeea2fdc7b06629711193524d15f0b8b6d6765f02345c7185f99	exe		RedLineStealer
2021-11-11 01:32:10	f70e0c1d6dcec7a1da46f9b0a76f717d8b8d33bc8e15898d0dce194bec87eedc	exe		CoinMiner
2021-11-11 01:32:09	097798527e285d8896d8099ec86d8e5105b0f135337efc8cd4e3e1e3ec6532e1	exe		CoinMiner