URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: china.dhabigroup.top
Domain registrar:NameSilo -
Domain registration date:2023-05-16 20:05:59 UTC
Abuse complaint sent to registrar: Yes (2023-12-24 08:18:09 UTC to abuse{at}namesilo[dot]com)
Domain registry:TOP registry -
Abuse complaint sent to registry: Yes (2023-12-24 08:18:09 UTC to abuse{at}nic[dot]top)
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Blocked
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2023-10-17 06:28:03 UTC
Total malware sites :25
Online malware sites :0 (0%)
Offline Malware sites :25 (100%)
A record(s) observed :13

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-12-14 00:27:34 188.114.96.3Not listedAS13335 CLOUDFLARENETn/ano
2023-12-14 00:27:35 188.114.97.3Not listedAS13335 CLOUDFLARENETn/ano
2023-12-14 01:02:09 188.114.96.9Not listedAS13335 CLOUDFLARENETn/ano
2023-12-14 01:02:09 188.114.97.9Not listedAS13335 CLOUDFLARENETn/ano
2023-12-23 10:39:38 188.114.96.0SBL686925AS13335 CLOUDFLARENETn/ano
2023-12-23 10:39:38 188.114.97.0Not listedAS13335 CLOUDFLARENETn/ano
2023-12-13 23:00:54 195.211.96.134vds1222153.hosted-by-itldc.comNot listedAS204957 GREENFLOID-AS- USno
2023-10-17 06:28:05 104.21.4.159Not listedAS13335 CLOUDFLARENETn/ano
2023-10-17 06:28:06 172.67.132.61Not listedAS13335 CLOUDFLARENETn/ano
2023-12-15 06:24:34 104.21.52.41Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-12-24 08:17:05http://china.dhabigroup.top/_errorpages/thedres...OfflineAgentTesla ext exe abuse_ch
2023-12-20 16:09:06http://china.dhabigroup.top/_errorpages/somzx.exeOfflineexe SnakeKeylogger ext abuse_ch
2023-12-20 15:56:06http://china.dhabigroup.top/_errorpages/alphazx...OfflineLoki ext lokibot ext James_inthe_box
2023-12-20 14:30:13http://china.dhabigroup.top/_errorpages/spfasia...OfflineAgentTesla ext OriginBotnet James_inthe_box
2023-12-19 04:36:06https://china.dhabigroup.top/_errorpages/spfasi...Offline32 AgentTesla ext exe zbetcheckin
2023-12-18 20:38:07https://china.dhabigroup.top/_errorpages/somzx.exeOffline404KeyLogger AgentTesla ext SnakeKeylogger ext Xev
2023-11-29 14:33:03http://china.dhabigroup.top/_errorpages/zackzx.exeOfflineAgentTesla ext Formbook ext James_inthe_box
2023-11-29 04:26:07http://china.dhabigroup.top/_errorpages/B13zx.exeOffline32 exe Loki ext zbetcheckin
2023-11-28 05:26:06http://china.dhabigroup.top/_errorpages/mmtrade...Offline32 AgentTesla ext exe zbetcheckin
2023-11-28 04:42:06http://china.dhabigroup.top/_errorpages/damiano...Offline32 AgentTesla ext exe zbetcheckin
2023-11-28 04:41:03https://china.dhabigroup.top/_errorpages/samuel...Offline32 exe GuLoader ext zbetcheckin
2023-11-28 03:48:06http://china.dhabigroup.top/_errorpages/maxzifl...Offline32 exe Formbook ext zbetcheckin
2023-11-27 22:54:06http://china.dhabigroup.top/_errorpages/wealthz...OfflineAgentTesla ext James_inthe_box
2023-11-05 22:30:10http://china.dhabigroup.top/_errorpages/nonnyzx...Offline32 AgentTesla ext exe zbetcheckin
2023-11-05 21:44:05http://china.dhabigroup.top/_errorpages/agodzx.exeOffline32 AgentTesla ext exe zbetcheckin
2023-11-05 18:28:03http://china.dhabigroup.top/_errorpages/isbinzx...Offline32 exe Formbook ext zbetcheckin
2023-11-05 16:58:05http://china.dhabigroup.top/_errorpages/whesilo...Offline32 AgentTesla ext exe zbetcheckin
2023-11-05 16:58:05http://china.dhabigroup.top/_errorpages/spacezx...Offline32 AgentTesla ext exe zbetcheckin
2023-11-03 07:16:10http://china.dhabigroup.top/_errorpages/nelfbin...Offlineexe Formbook ext abuse_ch
2023-10-31 07:17:05http://china.dhabigroup.top/_errorpages/pablozx...Offlineexe Formbook ext abuse_ch
2023-10-26 07:15:08http://china.dhabigroup.top/_errorpages/sbinzx.exeOfflineexe Formbook ext abuse_ch
2023-10-24 05:53:04http://china.dhabigroup.top/_errorpages/sbin22z...Offlineexe Formbook ext abuse_ch
2023-10-19 04:21:06http://china.dhabigroup.top/_errorpages/plugman...Offline32 AgentTesla ext exe NanoCore ext RemcosRAT ext zbetcheckin
2023-10-18 03:55:06http://china.dhabigroup.top/_errorpages/obizx.exeOffline32 AgentTesla ext exe Formbook ext zbetcheckin
2023-10-17 06:28:06http://china.dhabigroup.top/_errorpages/owenzx.exeOfflineAgentTesla ext exe Formbook ext abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-12-24 08:17:466ac86da45b97aade5d52a647dfe12e0c56dcadb50dfe627e4d515317b41884d8exeAgentTesla
2023-12-22 11:27:25432dee63e52d4f18e438a553bb7eee9fa4ae9a93a80448fa2c5600db54380e0fexe AgentTesla
2023-12-22 11:06:00432dee63e52d4f18e438a553bb7eee9fa4ae9a93a80448fa2c5600db54380e0fexe AgentTesla
2023-12-22 09:03:21f34480f8462a24d19e249d846b334d50d3b127defa794568d7acdf2ca18c53fdexe AgentTesla
2023-12-22 08:23:59f34480f8462a24d19e249d846b334d50d3b127defa794568d7acdf2ca18c53fdexe AgentTesla
2023-12-22 02:13:055a8c5767ceaf7970ca7325cabc625e5102c4546bcf8166465e03d3adc6c5d4efexeAgentTesla
2023-12-22 01:12:415a8c5767ceaf7970ca7325cabc625e5102c4546bcf8166465e03d3adc6c5d4efexeAgentTesla
2023-12-20 16:09:0646cbe36431f2a4fb01b369f2278086f216fd0750d87c64e9e1800652b4218777exeSnakeKeylogger
2023-12-20 15:56:068ab4dee97e1c991a21be3bac6a68a35d4c9f85c70d333b4ce6d55c688cc2d87fexeLoki
2023-12-20 14:30:13fe98cdaacbbe31c9dee59a926693dc719ea9f1839ff62fa6997f5faf32a6a1aaexeAgentTesla
2023-12-20 12:06:37fe98cdaacbbe31c9dee59a926693dc719ea9f1839ff62fa6997f5faf32a6a1aaexeAgentTesla
2023-12-20 09:39:35ea6c346a6075b0a0cc69b7cae95daecfa6d0e3321ed42b38c80e95ab1f3eb7dbexe  
2023-12-19 04:36:0513b7466c7a14443b730d635559302d0baa822e5c0bbe1ce4ec6cd9e1ea9d317cexeAgentTesla
2023-12-18 20:38:0746cbe36431f2a4fb01b369f2278086f216fd0750d87c64e9e1800652b4218777exeSnakeKeylogger
2023-12-14 13:18:3061c11d170ceb320bafd7872824de7ce33d10fdbb5ef585e67487f9afcde5e207exe Formbook
2023-12-14 02:05:366e1354e8f98dc8491e30fcd2e64638874ff4d6c521e158a7495b78dd802a2850exe  
2023-12-14 01:02:09add05b10b13891172810c8f90bf624f892ad69fed993944491736cc283a31b01exeAgentTesla
2023-12-07 15:08:10f96ec7b8deb20a1f569aa97ca83cb01d3d547f56e0113f7d4f6d81ac2457bfb1exeFormbook
2023-12-06 07:05:23a400163ff05373a5b8f7d0eb5e2b3efebbde782cafb1b4bd167aaa6cc2b4e9d9exeFormbook
2023-12-06 02:24:54c5f627e96016f33374d51c988a8a5c41072cc03ed73adcaf19dee2853976d50fexeFormbook
2023-12-05 07:13:477f50e41f876ba8fcb2aba2ef12bc48a5378363a60d3b5dada11ffee027de9879exe Formbook
2023-12-05 02:46:43de75b43745c380f3ff5aadcc1b8c12869d0905377d903b868638360f16f8acffexe Formbook
2023-12-04 16:23:5756b45823ca44e1959238432a9da3365844e8e416f79127f94eb0926d3ccc422dexe Formbook
2023-12-04 08:04:00d76f0bd5be27187672f2b89be93eba20033cadb397398143bfe6f81d8ef4d9ddexeFormbook
2023-12-04 06:42:15d149fc6adc07ffa848eb414438af0bb68cee6b0f3d7c4fe5dc919e7f5182bd27exeFormbook
2023-12-04 02:04:51529eadbbbabaf043158e40ec137e40f33c818f9eacd89dfdbc844f574ee85766exe Formbook
2023-12-04 00:59:38a3e976c5f8b9e3039d059d5ff191e101184cbe57659e26adeac329de319b7d0bexe Formbook
2023-12-03 16:16:216bf7843d672f60dc32a986a9db555c78e31b38f4b70d4e0af687e9e0a69fa8f8exeAgentTesla
2023-12-01 08:16:42974ea2be86b0522eb455956d1efb56e665907b0ee2b0bdd7b08d71d139b5d264exe Formbook
2023-12-01 03:49:35117b1e683c1f3cd129ade43fa0d4d9ec92e47439d67eb489d4dc3efc3138c0d0exe Formbook
2023-11-30 03:50:52699e987cabfc7a0a4856a7e57bc9ed2f94a6b993e885cfc45e423e923ca1b59aexe Formbook
2023-11-29 14:47:20a8149ed051ce39e0fd94eb4f6af6934cc9e5860242aec44c3ea3a36454af69dfexeFormbook
2023-11-29 08:41:079ac3ba328288fab79fddb47315bd24a8d9e7b9b99b03df042fdc03aee20202abexe Formbook
2023-11-29 04:26:0783e2ffe6b128ed3d1aa198c0ef32edf87e13242263788d0fbf18848f753e51bcexeLoki
2023-11-29 03:11:000fa32bd9031ce39788bc74912def8e1c2c7bb82de8976ee94d2d15fd4c890355exe Formbook
2023-11-28 08:52:32f3822be58e564a1b2a398a19230c9c883db834f2728123af346eb7e74c3a86c7exeAgentTesla
2023-11-28 05:26:0610d6198467fcc04e45b7afffd30ff0931dea09be00cf22983987789b2f0df3adexeAgentTesla
2023-11-28 05:20:27904f4e6a7dc31297a5fce04c171d480a62231c654c90632d0a54890dbf1fffe8exeGuLoader
2023-11-28 04:42:06a1f0549c87d8f85082139d291768119dd287b04eede4786516579901bfc261cfexeAgentTesla
2023-11-28 03:48:06499b9aba5bbcc6a66bc341089f9cf3debf205fc2ac3c9ee85862f395bc9eed66exeFormbook
2023-11-27 22:54:06d5268264e03035ae08616679859a12d0652285022884342333b068c226a209a5exeAgentTesla
2023-11-20 05:58:305766d6d90cf61f5f2728d72d49360714ec2353a8811d695c2ebcde6efd3bbb6cexe Formbook
2023-11-20 02:19:55fa48dec8b030ce43b148cb8d250aab820e819ef39df8b3fc94852202d0d41af7exe  
2023-11-19 23:46:24388a0c799faebfac0b16155db9e6087fcc8e9aefd56db857380acc36aa11c58dexe Formbook
2023-11-17 11:26:47263cb87efba7c1368587c1f9736ae1a7ad5459387792908804cd689cd23ea524exe AgentTesla
2023-11-17 07:10:349f9dc522c56f9e71ddfecfdc2a19a1a3a5d724a3f4df7b52e9847b30e1f82ae7exe AgentTesla
2023-11-17 03:04:41df6ca890b6c57b7e3a86b4d2849583c98e5c581ef14e37755bd272c0a2ec3368exe AgentTesla
2023-11-16 07:01:4876e4a5e23c32d448a6718887f2cdc8fba3d37b7907ab50e962917a7abd58f5c9exe Formbook
2023-11-16 06:58:330ebb771a41e09281b2fe6cbbc666322ef9aa305f47630023233c25f3a7bcb0a4exe AgentTesla
2023-11-16 03:28:49c58ee1f431830de9ebef623d97434e4e9d44bc5071acf79cca34cae18f8bd6d9exe Formbook
2023-11-16 03:00:563c3bf9a0945640f328c0a80e253543cda6783b6f81b22c8ab0008245ea6dd0aaexe AgentTesla
2023-11-15 23:23:42299950745849eaf8a63ec01e42013f496aa2b16d99b94122c57410e14a8844c1exe Formbook
2023-11-15 12:43:18fb0808c7e819c65c6cca92d68a8efecbeef517c952a942d6075124f3fcbc08cfexe AgentTesla
2023-11-15 10:51:3943f6d5dd131d8afd498d90eac6bfa60bf93bf8c4add2c08af2e13279a09a9544exe AgentTesla
2023-11-15 07:28:16940acbba394cb54720710c61b7e1e0690352bac55d586477523533613d35c7ecexe AgentTesla
2023-11-15 07:01:052913e01bf2825250ed3c5db236dcce19b01aacafe04afe100d2ca775a7fbe383exe AgentTesla
2023-11-15 02:21:590e751a5bcc53c0fc4ca2387de9f813655a2d3363ca65da546eab18f19125b20cexe AgentTesla
2023-11-14 11:28:478632a6cdacd3c2ca44c427d1ef6bea4a9c16a7089a31f12fe79ba6e108860902exeAgentTesla
2023-11-14 10:52:218285c8cd3f4e1c196aff1a4ad35cb620d39cb2c10291e8c450c7e768ff246e9cexe Formbook
2023-11-14 09:23:3736eb41b722d13b7055cde745205b7765b831bbeef2c434d5b7d4c82c614bd5caexe AgentTesla
2023-11-14 09:14:56e44c8c6ac40d66dd3d0ea95552196390759b2df6b9a762f37124688f760794a5exe Formbook
2023-11-14 07:51:257bed4e97553689407bd76e9be2928a12824f5bf06c85a2c1cc9dd2c49dcc5004exe AgentTesla
2023-11-14 03:04:46233163f77cb5c00725d585c1f2eb804b3e762aa62d522fcf3931abe2dd14fd40exe AgentTesla
2023-11-14 02:30:3295145c771434dd825809d958daafceaa22ab64c014b3cef802616bb659f339acexe Formbook
2023-11-14 02:23:39fd1c7ebef7bffdee7665d3c5623bba8bb61b10ccff67e3d8cc5144b692de4f29exe AgentTesla
2023-11-13 06:11:5033e42ae8f0660868df640a57434592fd834ce5680e923f345929ae8d92f9209fexe AgentTesla
2023-11-13 03:20:50e9676f9f6eb075c838b3d574aaa1c3be8a59449d1ee54eec7b73308bfe5047c6exe AgentTesla
2023-11-10 14:21:47a417da4eec41ccce59772248286ee9bfed2d781aec33db52829fac3d5beddc97exe AgentTesla
2023-11-10 14:03:103c5af02b843a0fd2df2f8558917ab584aa45de1ee6ab13612d589fd8c653bbf9exeFormbook
2023-11-10 06:32:4921218005d2b9dab517e80b87bf4b135e876a18f0d48cd77b29ca89332c615b92exeAgentTesla
2023-11-10 04:19:06cf1280dea0bfb86e585e302b4dc4fd51cb1f12847b4685cd377f1a6c8f63765bexeFormbook
2023-11-10 03:23:345ff913a048669356b6caa413a7d7cca106ede598be29b9c51204677044f57d44exeAgentTesla
2023-11-09 13:25:4957f754eba9d66d89bf2cf7a0e16e75efbee776272e1f1d43a66b0542b8b9c843exe AgentTesla
2023-11-09 12:38:29dc60d2664af0f3881cc494e9295e0534293254f1023c22aed8159c3f85f08a4eexeAgentTesla
2023-11-09 12:20:3304073b41e1f33312946b820420b0ec47883fed34fe5b6db261bfd0b99feb0a91exeFormbook
2023-11-09 04:11:1610aef4b7f07631e404687b889f409fe604cb2d78ae832f65e7c8a17dcb7544e7exeAgentTesla
2023-11-08 07:50:53a563ab0cc303385af151163bb2fe3bb88d6681f865bad186db4019ac84c7270dexe AgentTesla
2023-11-08 03:20:046f577b99a77df44578b36abfc5fbbfe2832568c82292ce9f9a071522108defe1exe AgentTesla
2023-11-08 02:06:36d1164fe7652f2c5c800f0227383ebbd77157e84ff84d6713e4a8ea3ff7d47f86exeAgentTesla
2023-11-07 21:12:279680fcf70fd9253914ccf18d134c357b91fbce01f3f5161d13d54f0ddd464872exe Formbook
2023-11-05 22:30:103a1eb4645eb44979af0169ff47c499ea0b85604bc03bb209670a3282bfb1d5c0exeAgentTesla
2023-11-05 21:44:0513c8de47040b915d97bac353ff3d65cd4bb484ca02b76b6edb56766cefff0cdeexeAgentTesla
2023-11-05 18:42:068ede431d0ad3096d50b23828dac3e43ac4c05f5154be8e7ccf33b45d7abb118fexeFormbook
2023-11-05 16:58:05972d94b2359c6a9e5eaf927f25389073b5e226f920906f7d50c3e55cebe2f015exeAgentTesla
2023-11-05 16:58:05074b0928569d0bd3f56a9075e9dd562f6b6da76bde6187dc65eddbc4050f2eacexeAgentTesla
2023-11-03 20:17:30f6f98abf837a049522d544e95eaa09569bba0f8e0ec25db653f5e51ad1023455exe Formbook
2023-11-03 17:02:54fa53f9a0f4f52b4eb115252a9aecd5c71b6dc23588e5a16a912fe808b6bc9bb9exe Formbook
2023-11-03 16:58:57752552967593ae07bbf553fbcc53c3aa39bfca68b9bd7c14dd4873b48c73b826exe AgentTesla
2023-11-03 16:21:132757b05b00763acc8360a8cab76bc382cd6d4d44c2f102b99a7e49aad7831c1cexe Formbook
2023-11-03 07:16:10321409ee266700ca2cac296c34e8c77358c43503b2376df20a613445ef5b23afexeFormbook
2023-11-03 03:31:432230b251f4acccb3ec401aa9d70e85a5dc390ba5bcf25a4f11761256d1d18016exeFormbook
2023-11-03 02:19:29024aa4a117fa7c5952577b1e904510e09c0e048a7bfaf320fcbdb4f309c41ba5exeFormbook
2023-11-03 02:07:13b90afe6f1b6c0927ab21a826c04f4c0155dc15e8aadee54a18a08fe53a0ff7a7exe RemcosRAT
2023-11-03 01:46:33d6ff88b43bcd53c30a82e3daba836ac89bff4658cea9058db7e937f3b290d3b8exe AgentTesla
2023-11-02 03:16:00b58f87b08dad79544171f433df485d19e2f8cf9d95333292338796dc0e4b7f29exe RemcosRAT
2023-11-02 02:59:194a5be9ff6a2401e1d1d08a56acf3664ccddbae314a1d26e6debc90adb401d414exe Formbook
2023-11-02 02:48:00364e7e148cca350074ba66ede79f0fb3af3dbcbdd7bda13330e02c2709677e5dexe AgentTesla
2023-11-02 02:28:24d05f9af8ab2a4f8d284f8c55ff0d6bd49148f110d19dee193fafdd8a132b5c6bexe Formbook
2023-11-01 17:13:222330639757dc38e28e45d3e20cf7fa8988c8f094afd494ce16999c38277121baexe AgentTesla
2023-11-01 16:16:20bbf3cf4ed5267f3c9d51d83789332f041abc8b48f3889a38511d37824901955dexe RemcosRAT