URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: daniew06.top
Domain registrar:NICENIC -
Domain registration date:2021-11-22 08:43:24 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Blocked
Cloudflare :Blocked
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2021-12-02 13:25:09 UTC
Total malware sites :2
Online malware sites :0 (0%)
Offline Malware sites :2 (100%)
A record(s) observed :1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-12-02 13:25:10 37.0.10.226Not listedAS3758 SINGNET- SGno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-12-02 23:02:26http://daniew06.top/download.php?file=file.exeOffline32 exe zbetcheckin
2021-12-02 13:25:10http://daniew06.top/downfiles/file.exeOffline32 cryptbot exe zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2021-12-03 17:42:15459c1bdbc258f54069b4100b659f028c6083d539230a8c9cff3fd7fe1b97ba9dexe CryptBot
2021-12-03 13:41:098fa5bd420dc9825b97ff67dfce099b6c98a1fd81926de89ee11470407cc41d93exeCryptBot
2021-12-02 17:37:57e9e18fdd9efcf6a55df8db2e956f245e584a3a9907327e73ecd07e8f34435f62exeCryptBot
2021-12-02 13:25:1042173b9b5ae6bcec8b65312e270633a3df6fa4355c9ac4973486291f0fcd8052exeCryptBot