URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	cryptersandtools.minhacasa.tv
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-07-04 06:52:10 UTC
Total malware sites :	7
Online malware sites :	0 (0%)
Offline Malware sites :	7 (100%)
A record(s) observed :	8

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-07-11 08:48:46	191.55.119.23	191-055-119-023.xd-dynamic.algartelecom.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no
2023-07-10 07:02:53	177.191.231.238	177-191-231-238.xd-dynamic.algarnetsuper.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no
2023-07-09 06:25:16	189.41.122.199	189-041-122-199.xd-dynamic.algarnetsuper.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no
2023-07-08 07:52:01	189.41.124.254	189-041-124-254.xd-dynamic.algarnetsuper.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no
2023-07-07 05:15:04	191.55.156.181	191-055-156-181.xd-dynamic.algartelecom.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no
2023-07-06 08:28:55	177.106.216.53	177-106-216-53.xd-dynamic.algarnetsuper.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no
2023-07-04 07:39:56	186.210.128.242	186-210-128-242.xd-dynamic.algarnetsuper.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no
2023-07-04 06:52:14	186.210.131.65	186-210-131-65.xd-dynamic.algarnetsuper.com.br	Not listed	AS53006 ALGAR_TELECOM_S/A	BR	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-07-08 09:44:12	http://cryptersandtools.minhacasa.tv/e/native	Offline	HTI	JAMESWT_MHT
2023-07-08 09:44:11	http://cryptersandtools.minhacasa.tv/e/js_startup	Offline	HTI	JAMESWT_MHT
2023-07-08 09:44:09	http://cryptersandtools.minhacasa.tv/inf/Rump/t...	Offline	HTI	JAMESWT_MHT
2023-07-08 09:44:08	http://cryptersandtools.minhacasa.tv/e/js	Offline	HTI zgRAT	JAMESWT_MHT
2023-07-08 09:44:07	http://cryptersandtools.minhacasa.tv/inf/downlo...	Offline	HTI	JAMESWT_MHT
2023-07-08 09:44:06	http://cryptersandtools.minhacasa.tv/inf/inf_js...	Offline	HTI	JAMESWT_MHT
2023-07-04 06:52:14	http://cryptersandtools.minhacasa.tv/e/e	Offline	HTI zgRAT	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2023-07-09 23:58:54	8d4a797b42b0d87998ee2fe1fefd43e1d67a5e2f2bb648f429162c128bf9f0b6	txt
2023-07-08 09:44:12	f58565c3c9e3819111bcb97efe9687cc9e2cb9bc9ab493cf0ecc711b26de20b3	txt
2023-07-08 09:44:11	a514c104823d768d0dbdb8aa1b44a2aa1358b38e44b9d575afb9c198a37aa868	txt
2023-07-08 09:44:09	1c2417e5b0021682072cac8fbb09fbaf33fdddf5deaedca72e36b6bed4ce2cf0	txt
2023-07-08 09:44:08	93d5c4487a6a50f5e204d46211fd6619b471c831cec533d1f63a54ba597252bc	txt	zgRAT
2023-07-08 09:44:07	af786445b7518c400063457487c582436f10157a1cee8e6784cc2d9584b1944d	unknown
2023-07-08 09:44:06	af786445b7518c400063457487c582436f10157a1cee8e6784cc2d9584b1944d	unknown
2023-07-07 16:22:39	93d5c4487a6a50f5e204d46211fd6619b471c831cec533d1f63a54ba597252bc	txt	zgRAT
2023-07-04 21:42:27	706a9862b7a6fa1d00d529150b8ae6efef8d1566513ea0b9f74086ba2180c923	txt
2023-07-04 06:52:14	2bbff6e8a1f3be90118bd50b97bc27169db6f6c03ab13d7e723cb5891d201747	txt