URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: cassiagumrefined.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-04-23 12:22:02 UTC
Total malware sites :3
Online malware sites :0 (0%)
Offline Malware sites :3 (100%)
A record(s) observed :3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-05-14 09:37:57 119.18.54.90Not listedAS394695 PUBLIC-DOMAIN-REGISTRY- INyes
2025-04-27 10:03:11 68.178.145.155155.145.178.68.host.secureserver.netNot listedAS26496 AS-26496-GO-DADDY-COM-LLC- USno
2020-04-23 12:22:04 162.241.148.128162-241-148-128.unifiedlayer.comNot listedAS46606 UNIFIEDLAYER-AS-1- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2020-04-28 05:55:05http://cassiagumrefined.com/js/file/TH98/SWIFT%...Offlineencrypted Formbook ext xls oppimaniac
2020-04-23 12:22:09http://cassiagumrefined.com/js/file/TH98/86HTe.exeOfflineexe Formbook ext oppimaniac
2020-04-23 12:22:04http://cassiagumrefined.com/js/file/NG90/89NTb.exeOfflineexe Formbook ext GuLoader ext oppimaniac

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-04-29 00:31:01a574b201fa1b1b05d857cff48993efd19a3f700c55d6a7ea8ea9a1da30becb62exeFormbook
2020-04-29 00:31:01a63dfd81e0eb6283bc0051a3c1f80ba0eb818d132aafe5e6a1cc3cd63a3433ffexeFormbook
2020-04-28 11:04:0155cf5e68816fcdbf38c5c1b306e3fc3d1dae18b8a578b714a3bc23d728c2ef33exeFormbook
2020-04-28 11:03:58b12ef83752daeb6755b31cce4d8367246b380fc4d8d5bfd5e42e36f34df5c8d6exeFormBook
2020-04-28 07:51:48bd4e6fad01c570c9f91de1385bae851f8c5498428de7d998dc874eb5f682ea6fexe  
2020-04-28 07:51:4736cf15c7906183eac126f2943a83b58c9d97292cb09040291084e09cdde0152cexe Formbook
2020-04-28 05:55:05dba9ce1271df959f843315f3671d98cac3ebaa5377f0a3d5ce59c36710c7c4a7docFormbook
2020-04-27 10:18:2477839da1c15d6390080afe07320af399a007d5b69bf4fcdf63fc71e795929cf7exeFormBook
2020-04-27 10:18:22569b8cf6219a91161d48291f13285babe58b3be185623f3ec44c65c8369c2278exeFormBook
2020-04-27 02:11:40e3e778591453a54d2cbd3ab1bb4ecb69ed94222f248aac24a95fb951fc6101f0exeFormBook
2020-04-27 02:11:40ef14e580eca50b75acae60fa7c6642fa89fc91ee8492f5193608937f4d78781bexeFormBook
2020-04-26 07:48:316c80262419efb953f1617c2edb188d5e71b3fd97585079648fc8853720e3f358exe FormBook
2020-04-26 07:48:191fe0526a4c4014b9a986dd3265ee007a4009f2491530a83113848184e25a1fb0exe FormBook
2020-04-25 10:32:49677f8495a56223da5a8f115113ae3f1f62b7214a6dc2b303961c924d4a9c562cexe Formbook
2020-04-25 10:32:37ee5d24692f47eb58ccd302e280a422a91eed36199622e25befe80765568dc8f9exe FormBook
2020-04-25 06:33:521e9ce0d6760bfc646d3ebfe2c2bf4ff35ac84bf622f8fbd734568d38db7cbb33exe FormBook
2020-04-25 06:33:471e9ce0d6760bfc646d3ebfe2c2bf4ff35ac84bf622f8fbd734568d38db7cbb33exe FormBook
2020-04-24 16:56:11211de7b1e7e6ff80740ca2ba9bdeed8ff09efed28730a6c38b23beba951c70a3exe  
2020-04-24 08:30:02737a78cd3f87205b5bc984ef9fc3b8a52a850cb5ef29a3ee0b77009b73136423exe  
2020-04-24 02:33:4095d5f321ec85b0584ede72123e9709b3c74f6125b1ea08b0357c5ef8d9b37b81exe  
2020-04-23 18:19:18c66780084ccdea3bf906a9e483927030485eb753e9796a9ff489a6330b28acddexe  
2020-04-23 12:22:098c9611ab9a8a8dbc44f93e6f81cb2c46ed936cdde7fb88b9410d50bde750cfb6exe 
2020-04-23 12:22:04dea51f7f074a8d9b0e30626e11ca4a79de602da24ba64d0222ee1162a5fbb5baexeGuLoader