URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	cikgushashi.com
Domain registrar:	NICENIC
Domain registration date:	2021-11-05 08:43:09 UTC
Abuse complaint sent to registrar:	Yes (2021-11-05 23:41:01 UTC to support{at}nicenic[dot]net)
Domain registry:	VeriSign Global Registry Services
Abuse complaint sent to registry:	Yes (2021-11-05 23:41:02 UTC to info{at}verisign-grs[dot]com)
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-11-05 23:35:08 UTC
Total malware sites :	1
A record(s) observed :	9

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-29 05:32:25	104.21.87.86		Not listed	AS13335 CLOUDFLARENET	n/a	yes
2025-04-29 05:32:25	172.67.142.135		Not listed	AS13335 CLOUDFLARENET	n/a	yes
2022-11-07 16:50:09	58.64.137.69		SBL676527	AS17444 HKBNESL-AS-AP	HK	no
2021-11-25 06:45:01	45.130.41.12		Not listed	AS198610 BEGET-AS	RU	no
2021-11-08 07:38:09	185.162.11.18	srv16840.hosted-by-eurohoster.org	Not listed	AS207728 EUROHOSTER	NL	no
2021-11-06 22:47:50	193.232.179.71		Not listed	AS208626 serv-tech	RU	no
2021-11-05 23:35:10	194.87.185.127		Not listed	AS58061 SCALAXY-AS	CZ	no
2023-02-01 00:30:50	104.21.47.2		Not listed	AS13335 CLOUDFLARENET	n/a	no
2023-02-01 00:30:55	172.67.143.136		Not listed	AS13335 CLOUDFLARENET	n/a	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-11-05 23:35:10	http://cikgushashi.com/pub33.exe	Offline	32 exe RaccoonStealer RedLineStealer Smoke Loader	zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2021-11-08 10:29:49	492b287d0e12d4ac97386445a7ae49c02156776f70de5fac1b26edef8cc23d31	exe		Smoke Loader
2021-11-08 09:27:20	2de57dd2ce1f80243ef7158318db24162edec36cc100aca8a584502be1c07fee	exe		RedLineStealer
2021-11-08 08:02:48	d108d02cc4980051ebf5714fcec87736de3d65e32de9297c1c6148a30a6655bf	exe		RedLineStealer
2021-11-08 07:04:58	fa39fc60620f4f17937d7866016ba0367143ec8f07baac15941c5c9be299c0ec	exe		Smoke Loader
2021-11-08 06:19:28	79187da9596d8ca101e3f91a0637dd5f26c1016bfc2f593b754d49721a964412	exe		RedLineStealer
2021-11-08 05:19:55	c935bb8aeb42e612d50cf1290ba04e50d2c5c2d312d788f399d334165c7b2f04	exe		RedLineStealer
2021-11-08 05:02:39	2affdaec2b15b17e5d125ac1a6fb957469d1aa1dbd40e4bae38c42968cc9563a	exe		Smoke Loader
2021-11-08 04:46:40	6cb63365dc477316ad28464d537986a1cb08c4739d4343603baa073327aa58c0	exe		Smoke Loader
2021-11-08 04:19:42	c154f6b9d70bbed049b3c8b2468c4991ac0928bbf0e7f7b842656db496dc44de	exe		RedLineStealer
2021-11-08 02:49:02	a9199bc7ee9a1310ab12cb298918578c320f27bf42b76a257fcc7cfe4d894ebe	exe
2021-11-08 00:06:07	9d8655f8c66bf894ecb896717d728719d48627322d192a82d689c03b4b853e9f	exe		Smoke Loader
2021-11-07 23:16:55	89b25284f76d77e18a3a444adfe759fd58b9f3c3de5c7434bada7c3a8a8f0df0	exe		Smoke Loader
2021-11-07 21:33:41	ba1b1a445cb01b81c1bd09f568f9b5a6f8af360972ef4ecd89bfa7eaa71f6a95	exe		Smoke Loader
2021-11-07 19:27:45	17936941c27a3a1e4b81f90e702826481a8f1a558f47e48feb25ae1267a2ab55	exe		RedLineStealer
2021-11-07 18:45:30	3fef684ef703efa989f107769611d25b35e7e8ecca5df4834d3f6316017475bf	exe
2021-11-07 18:08:03	35c522f94882acf5380f879de60764744383223060be20cd98a463816b6a17a9	exe
2021-11-07 17:08:26	8d23aaaa83434c14a79e26861866641f5e30819145b41ea55bfa2af53288ee30	exe
2021-11-07 16:11:53	5b2171b57dcffccf67042e9361b07b8fb04e83a79e48caf66811f99687c6a306	exe		RaccoonStealer
2021-11-07 15:25:41	66d3d53c2242d3b2d933404b92d3f1e5c2382439a191fe6a0506ca4e9476e785	exe		Smoke Loader
2021-11-07 14:25:49	839242b4ab783541e13193b9c716c5dc9d8f231055d8d7b18b84393d67277e58	exe
2021-11-07 14:10:51	bfaaa01fcab99e26fe88b2991c5e6542b949bb05dda37e18a8b0346aa5d5266c	exe		Smoke Loader
2021-11-07 12:34:47	c61c1765a7559f3c03a90492b402f1c1a44b1a6e4c3cacbff41f52b61b6d6424	exe		Smoke Loader
2021-11-07 12:03:46	20093823a3edbcf53ea0f88953027eef6e3a9e07b7e365f0211fb1e213eed21d	exe		Smoke Loader
2021-11-07 11:15:16	570a362bdbf5e6a01066e3724d6a22f7832d0f8496ed276d5f9e1cfef93943e2	exe		Smoke Loader
2021-11-07 09:16:23	88302c6e28e0d1f89f207be13a4eb9a7988c84db79d76d97078c6bcc1d08b3c5	exe		Smoke Loader
2021-11-07 08:40:23	402b0a019bafa68836e3c9b0ce5dd5ea09e8de4b77e2d2600587092929935fd5	exe		Smoke Loader
2021-11-07 07:49:24	31ec2ce289e35d7d414c84f19bf5b4b1fdaa535c6bae420a434a4bd0879514ee	exe		Smoke Loader
2021-11-07 06:38:15	4fd3156280731df7c453704b390bb430c0d12bc26dc16a3f99e78fc5743f23a8	exe		Smoke Loader
2021-11-07 05:34:12	c8770da2e894acaca21815bb1b8fb21052f5dac00ad524992d74129b3df5c7ef	exe		Smoke Loader
2021-11-07 03:38:18	94b9091e69863a5031de9443dadda3181f6a212f9b002255fde9c75d89d82ae5	exe		RedLineStealer
2021-11-07 01:50:01	f474c007a6fd8b84812e27c12a0be6dff3c891b66519f02838afb521e18cc170	exe		Smoke Loader
2021-11-07 01:22:54	9c082cf496bf4ddc966569acdef5d56addbb6a3d727107115d45acf1b4e93a6e	exe		Smoke Loader
2021-11-07 00:24:35	9e7632c03dbae593a01af86ad90ba4821b52861f699762ea02161522f5df3bcb	exe		Smoke Loader
2021-11-06 23:04:55	e41a317c3da41afc39f3a4be2c971e4f935921fa852c70a32418c02580828755	exe		Smoke Loader
2021-11-06 21:57:30	a9138cca62cdbce40d67a682428e47e1693bd4d5851cb94e288abeb685b7941d	exe		RedLineStealer
2021-11-06 21:36:58	71fe581bed4fba2e6f17e7de665fb282e723469338a474fec341906af7aa7286	exe		Smoke Loader
2021-11-06 19:52:48	e6aaca7625a72d571f49e1cfb8db184091e6f94454e6b6ae7abd1f2533b1cd84	exe		Smoke Loader
2021-11-06 18:54:36	e6238fb1eb2824e6a562be352a5bc3da193bf7d3cb55cfbc54acad12d4055058	exe		Smoke Loader
2021-11-06 17:08:27	172d7f301e207c1ec8f2515f01c79294d627f1b63b980cd1fb3b7c6ce6e448d0	exe		Smoke Loader
2021-11-06 16:15:21	84b9b1eb50157b4133582de9e1aae63abbb271f84000199d74ce9afc27b36cc7	exe		Smoke Loader
2021-11-06 14:25:36	ae54dd1d910018c5d1738970f40ac09b24ad16716c8714da9d15865fe429b992	exe		Smoke Loader
2021-11-06 13:21:24	47d959853a4e80132492a3f46362bd2c0ca8d4bd0056df6147db530cd79f1740	exe		Smoke Loader
2021-11-06 12:03:44	9f6cf9c7dddb0b66387179a9aab3aae37bf55d21d72833dcfc84fdad88083c9c	exe		RedLineStealer
2021-11-06 11:38:36	22e800961064f209c953696425f73d0648ed44557f460c5440a43455250affd0	exe		RedLineStealer
2021-11-06 10:32:25	64d3a564af0cd822041f48275424612e97f120200ddfb4395eda22a30062efe9	exe		Smoke Loader
2021-11-06 09:00:37	a97bd19461c735427e7d9ba8d821d8f7c63fec9c0bb31396d9c9a9ea65b3de9c	exe		Smoke Loader
2021-11-06 08:30:24	ab807f440f04fedc0170f812b31f524f29257e7bedad77183976cd59762dd06f	exe		Smoke Loader
2021-11-06 07:30:10	21ac6c9fd01a1cf9275c9dbf8b74508813026b0693181f5031c858229a5a111b	exe		RedLineStealer
2021-11-06 05:29:38	199bc18551e8786a107ed743e9aed93e6128a972bb02d76c88bd0c10687a39ab	exe		Smoke Loader
2021-11-06 03:31:30	307a3a815ae335ed015c58023562f2a3d39d5886c33e7607b7ef18a51c8b6ac3	exe		Smoke Loader
2021-11-06 01:49:26	1b18fa66c118038ca44d0c3d4cad02914a435fed0a7a0bc3357a4b65afe2b515	exe		Smoke Loader
2021-11-06 00:06:20	847d782c741af4a7d25e61c5a170c0f4dfc6eee906f4b7028c61f5dbc00d55b3	exe		Smoke Loader
2021-11-05 23:35:10	14ec56bd0fcc57afecaa43f81321aeae0ab3a21ea79e5ad4bc0b73ebd08b959b	exe		RedLineStealer