URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: conver.work
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2021-07-01 20:03:03 UTC
Total malware sites :3
Online malware sites :0 (0%)
Offline Malware sites :3 (100%)
A record(s) observed :1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-07-01 20:04:17 199.188.200.245server267-4.web-hosting.comNot listedAS22612 NAMECHEAP-NET- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-07-01 20:20:08https://conver.work/files/195_101cleaner.exeOffline32 exe RemcosRAT ext zbetcheckin
2021-07-01 20:20:06https://conver.work/files/154_127cleaner.exeOffline32 exe RemcosRAT ext zbetcheckin
2021-07-01 20:04:17https://conver.work/files/62_283cleaner.exeOffline32 exe RemcosRAT ext zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2021-07-16 07:39:55bf07b9144e804a0a1fb63f5f08ae9afc3f51d16fdc57be34812d39158e71df24exe RemcosRAT
2021-07-14 22:20:20d7cfab9ab1399aae36f468da34f3b2437e02183020c70b9b10dec2a67df6ed06exe RemcosRAT
2021-07-14 07:23:17b3c8e7adc498bf3560145c21917c9371d14532e70797306f713960abd9372f3aexe RemcosRAT
2021-07-13 20:19:303a61fdcf898bb80ba0db54d11a5ca00cbf0867c52efc4ed249274b192a79b123exe RemcosRAT
2021-07-10 09:00:072a2fc91f393f9af884a809b274b1a13a523d09e4a09bbf4899ecfa800bd394dfexe RemcosRAT
2021-07-09 19:18:40a4697614a7348ff9eee3f604bf5bf201a9db702792f8227faa84feacc9472f9fexe RemcosRAT
2021-07-09 05:38:2739c1cf05a4961c0e946d542b90e20a67a649e2142891e1b8072f825fe904644eexeRemcosRAT
2021-07-09 05:32:05b422bab6e44b0caeb6a2c779898c6ef9fea8efe1b5e9fd36fd3f07d6b57b0e2bexe RemcosRAT
2021-07-07 05:52:370368869232c83a81d04c8ed7c46563fd81e6c6f1aecef2ad13d85752375864b7exe RemcosRAT
2021-07-06 16:39:501e8773bd333371c44ca0f157a8515d6ebc9db41e61ea20bc690c7d4e25d18bd4exe  
2021-07-05 22:14:1841f469d18016a7ba9938f2f4409b7e15acd9657a4c639f772a05c53e93287aa7exeRemcosRAT
2021-07-05 21:54:22f78b8f13eb0533a8ad4048ec71de54b8dd7d6f02add47d775fd96c3a557face6exeRemcosRAT
2021-07-05 01:19:22a34adec7742a2507e7e7337ab5e8b580460331fd5b687bdea8b322dcff7b538eexe RemcosRAT
2021-07-03 15:48:27b05b65bb80e27b39f4937c5d9ee5146865272f5fd29d1f8d9a547a5569bce2e9exe RemcosRAT
2021-07-03 14:12:36d048fbb3e93917050dd8e5f365ac32c31a969145ee4ada681d3d6f5427fed9dcexe RemcosRAT
2021-07-03 06:43:113bb001d38dd85afd62000186b4d423fe41d3345598fb219f9ddf79521657df0fexeRemcosRAT
2021-07-02 18:23:36a97cbe10eadacbb0c33ad1222e1d123f82fe6afd858b3a6cdb01d9a5d1854521exe RemcosRAT
2021-07-02 14:29:424fa29b94facbbf7d09573362a101668a98d193f69f740125531e52d06b028952exe RemcosRAT
2021-07-01 20:20:08070dc47307cdec1dc80820401b39ecd316609f69815bfe7478ae16608a361fe9exeRemcosRAT
2021-07-01 20:20:06b5fc662dddd17b1e9b4ce76c7c40d94d9cc58b7b39955ea189582cfdce77f79cexeRemcosRAT
2021-07-01 20:04:17704cea9cf2bcfaf5eb8e072ec299125703ff291d1223db387365079758e366bbexeRemcosRAT