URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	citycapproperty.ru
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-01-11 15:33:15 UTC
Total malware sites :	3
Online malware sites :	0 (0%)
Offline Malware sites :	3 (100%)
A record(s) observed :	72

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2021-12-09 08:05:49	92.53.116.105	timeweb.ru	Not listed	AS9123 TimeWeb-AS	RU	no
2021-06-14 15:02:21	35.185.52.235	235.52.185.35.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	US	no
2021-06-10 19:06:44	35.242.217.9	9.217.242.35.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	DE	no
2021-06-03 16:39:12	35.203.61.165	165.61.203.35.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	CA	no
2021-05-31 16:29:02	34.95.133.146	146.133.95.34.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	BR	no
2021-05-11 01:20:32	35.247.240.225	225.240.247.35.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	BR	no
2021-05-10 07:22:25	34.106.167.25	25.167.106.34.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	US	no
2021-05-09 18:58:50	35.247.109.11	11.109.247.35.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	US	no
2021-04-30 15:17:45	35.247.216.128	128.216.247.35.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	BR	no
2021-04-28 11:12:02	65.21.146.189	static.189.146.21.65.clients.your-server.de	Not listed	AS24940 HETZNER-AS	FI	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-06-02 13:15:09	http://citycapproperty.ru/zedmania/name.exe	Offline	exe QuasarRAT	zbetcheckin
2021-06-02 12:03:12	http://citycapproperty.ru/mailservice/nmode.exe	Offline	dofoil exe Smoke Loader	abuse_ch
2021-01-05 08:05:06	http://citycapproperty.ru/localmod/nmode.exe	Offline	dofoil exe Smoke Loader	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2021-06-02 13:15:09	2fb3d54a36d316831e170d9827dd8b7086875d24b92b1dda5b140151e75386f0	exe	QuasarRAT
2021-06-02 12:03:11	2818aa3050eba2fb576a881e61ed655ad29d99e45dc9e19afaeae18cc035f671	exe	Smoke Loader
2021-04-29 10:47:18	5f31050b511cf181abfa18b04cdc3a4152afc18c34b4ffc1087496144ac56a7c	exe	Smoke Loader
2021-04-28 09:25:47	d73e37b3ed710e4128e3c76e2f0fd61dbb2fdcddfd8cfa51ffe244fa19433bb2	exe	Smoke Loader
2021-04-22 05:32:19	f1018c92a0545fa449dff41150230eceae4bc8e4652a214c9efde2abb10bc71d	exe	Smoke Loader
2021-04-20 05:26:50	5d82b4f16469d125e3615431b1ccdbbf2decc388e1e3b417d2c0e12e0cca78f6	exe	Smoke Loader
2021-04-19 05:27:56	60922af94a3c7adf6d040dc1bd4d465983a38bd2410c050bef27deda8ce2002f	exe	Smoke Loader
2021-04-19 03:29:07	16e3380b11358d44b7e1e4cc6ee7ce80ef204321b731a550527375388703163d	exe	Smoke Loader
2021-04-19 00:38:24	5fb0f6085605274b85114c9bfe761e13e481abcaebe2adfb612e34542346cb4b	exe
2021-04-12 03:34:05	643bafce44fec576424c48dbef72072a1d27d33b60e25585d39bdbcffdca22e8	exe	Smoke Loader
2021-04-02 04:21:52	859abafdd459914e32b32dd036ec9f9ca9ecb60a293b4da6bcc08ebec22e9781	exe	Smoke Loader
2021-04-02 03:46:19	0f32500a74e76831740141dfc69676b97a72f9f66da30dfa3aa8648b836373cf	exe	Smoke Loader
2021-04-01 05:13:33	b5a1d98b73f59a3df3121b11001e26b11c5555e7ac80ac2b2d42f832db7a4a0c	exe	Smoke Loader
2021-04-01 03:47:52	3e034663b9f2c2463c68e677fd1bbc7643882e5d6cefc05910d9ad1230f89c8c	exe	Smoke Loader
2021-03-23 05:52:15	87cd4125176db45ac6d32ff5979fcaf1d29eeac328323f545326bf0d63400967	exe	Smoke Loader
2021-03-23 04:18:00	03d92e1238fcdb64e522bad8b8c152d85de2036a6aedf152e5c3bf24d3017d07	exe	Smoke Loader
2021-03-19 11:31:38	961b36bb78d27b3432fae08e5c4272fe295b5e24e832c6f6bf1ec3cf87057dab	exe
2021-02-18 06:54:50	c684906ca32b3dd720ecc86aa54ca56a69f8300e112bd3af5f54d569e9e5ba27	exe	Smoke Loader
2021-02-18 05:45:20	229c6f4db65ef671df9f2af39af518ed9dde8d5401c172190a936565cf2772f2	exe	Smoke Loader
2021-02-18 05:02:14	b2accff6cdcb8f4b5cbf2e493a8474f9e444a12be5f46d54a925bbe4a43a0703	exe	Smoke Loader
2021-02-16 13:53:22	a60a583165e55f8a569cf4942d7bfb9622ab349aa34aec48705f72cbf3b2e45f	exe	Smoke Loader
2021-01-27 05:18:06	74bbc2a055be8f2717fa06e764b100d02f9a1d9c2a026d281fbbbbb47b655199	exe	Smoke Loader
2021-01-26 06:49:41	ab9e78f844176f90e2815978b083362683d6080da73034a019de13489aa125e7	exe	Smoke Loader
2021-01-26 05:10:41	3a80488a011783f820406817bb351b4ba703110ed51a254eb678306c21507877	exe	Smoke Loader
2021-01-21 07:00:34	c65ea9eee506b0a71170d4e3778d3ccadda12f67217e89e3b93db61890ab548d	exe	Smoke Loader
2021-01-21 06:20:14	7872b734ebb4d0f224a04a88059432081d8908dd79e7d46ea8b4ba7b31ebfeb7	exe	Smoke Loader
2021-01-21 05:40:53	92fa3d23707a84257ef148d1afd2839ccc2ae0d14863216fd1652ced7cc685a3	exe	Smoke Loader
2021-01-21 02:08:22	75973aa6b9ede942a1a0ec330218c3a2bee3d2de638482592f1f60976898ca81	exe	Smoke Loader
2021-01-14 05:24:51	0b9555e73d90f0ff2506c001b5fed2e986f74e8e988cc1a4a8dc0e1dd377113b	exe	Smoke Loader
2021-01-11 06:10:14	d4e87e3eb3e3a5e08db5a708bd95fedac322088446c87ba37f0aeca529a928cc	exe	Smoke Loader
2021-01-11 04:55:43	fcb987579a7161622043553819e18e3dee2e50ea149e5b7438ac614548278405	exe	Smoke Loader
2021-01-06 06:06:40	6aceacb6120a5a270ad7906dcedc5fcf3059323b6c2f52e5b3eb83a91630ed8f	exe	Smoke Loader
2021-01-06 05:09:30	73bd0ef4821814fb351197b6967d35274f9f33de491faca434aeeb63a51072bb	exe	Smoke Loader
2021-01-05 08:05:06	824bb4f0ae66624021f9428d253f15f751653dfb059f9a2db4a6551b0a168a0b	exe	Smoke Loader