URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 15:25:52	185.146.167.193		Not listed	AS48254 TWENTYI	US	yes
2020-11-19 08:02:05	206.130.99.140	sl-508-26-shared.slc.westdc.net	Not listed	AS13213 UK2NET-AS	US	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-08-11 05:38:07	http://augustair.com/Resources/eft/edi.exe	Offline	bitrat RedLineStealer RemcosRAT	AndreGironda
2021-08-05 05:38:11	http://augustair.com/log/remit/edi.exe	Offline	RemcosRAT	AndreGironda
2021-07-14 06:24:10	http://augustair.com/log/remit/mail.exe	Offline	remcos RemcosRAT	AndreGironda
2021-02-18 06:29:04	http://augustair.com/log/remit/edi.js	Offline	js rat RemcosRAT	abuse_ch
2020-11-19 08:03:03	http://augustair.com/log/remit/edi.vbs	Offline	RemcosRAT vbs	abuse_ch
2020-11-19 08:02:05	http://augustair.com/log/remit/edi.jpg	Offline	Encoded RemcosRAT	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2021-09-23 22:40:59	19f7f97c17580f22d17edc3e01639286a09eb587863dd298aebee46125bf5307	exe		RemcosRAT
2021-09-14 22:17:24	3eff13340e0b34b34a87485ef702924b8b80fa506f120c297c8474c3afcc2c85	exe		BitRAT
2021-09-13 18:16:42	f193f6876576b6969474c670850280a89df1091b0abfea162d74b98483c7314d	exe		RedLineStealer
2021-08-24 17:15:20	54d90bf7f12a3b1369e8ef4f708a58fed9d7950e1a87c9d5d805b974a148ce9e	exe		BitRAT
2021-08-17 18:59:38	29dd2b13f081a0c7f8312c4b4c433ccdcc3b3a83b91a16a88393370dda44f60b	exe		BitRAT
2021-08-16 16:19:49	71c81318d16023aba7c537168d68b7d87eeeb085725d0904c3ea7298fc43d7e8	exe		BitRAT
2021-08-12 18:42:32	9d077371cd1d6dc2b8b337d0bc978afb1e910a947bb0e14c15a37c70c745704c	exe		BitRAT
2021-08-11 23:31:58	bf6b69cb7063d748e6404300ed8b587473b20b2239605862ccbec909bccf7485	exe		BitRAT
2021-08-11 06:29:12	730cad1b268ed70bf04cd6b94439813a6483b69732420a6748a868376c08bea2	exe		RemcosRAT
2021-08-11 05:38:07	6d7fac5d7bfe833eb0756a174ceb9ea8280cd3f9858215924284af1b559bd81f	exe		BitRAT
2021-08-11 04:01:22	730cad1b268ed70bf04cd6b94439813a6483b69732420a6748a868376c08bea2	exe		RemcosRAT
2021-08-05 05:38:11	ded1412f9509d9fbc0c48687c3611d6cd8356ff0f00a9a2c5836890a5df03925	exe		RemcosRAT
2021-07-27 19:58:14	6575fa393fb6628051e380e29e2933ceceb9099e1d6378ac2b137478b732ab5a	exe		RemcosRAT
2021-07-27 19:24:11	f980b2377c9cd2ff4415608fff97031062be1788bfd981ae55f9e92c4985ada4	exe		RemcosRAT
2021-07-15 00:59:00	0b1970568987b6e2a949dde9d4e249d704cbfaf622c80741db02dd711838abff	exe		RemcosRAT
2021-07-14 06:24:10	38520db387146a005345d7862edcd4a22d3b4db1c7ae863202fa60b0eab42166	exe		RemcosRAT
2021-04-04 23:28:50	27b32d0375a6aff4ae330d9a574dfcc17d14f37b6adea3727d337388585b2483	txt
2021-03-17 06:14:49	49be31aeff0dd112d067ce1eb1b8d3b2f5cc9ad0d9ed903ed0565fb51a4bd23b	txt
2021-02-25 11:31:53	7d0a476538855ebcd55313366a753d89566c40712d5c522575f424ef61c3d81f	txt
2021-02-17 21:28:53	0287c3b3799b18a86c95d279802562dcfc493a5b9fed6938c8b9c4a9224fcd29	txt
2021-02-10 06:34:29	81a73957e44bfadbef17d234c592b261dbe9a5c828ad8c99547cc82547914018	txt
2021-02-04 23:06:07	47909d7b5ccde1376d77acc283653ec760000ec9041a5ad1997d05c94586ea2a	txt
2021-01-29 00:07:44	1e3219f6a22bcd8194eefbac02f05c063aedf77196b25d52461dd81d878bf2c2	txt
2021-01-27 04:07:53	f34aba4ec6ef12489570885c37d16336d39babb89d476bbe86a331890916cb74	txt