URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	ddlakava.ac.ug
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-09-06 08:09:02 UTC
Total malware sites :	1
A record(s) observed :	9

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-05-27 10:52:30	94.142.138.213		SBL655622	AS211522 HYPERCORELTD	FI	no
2023-05-03 16:17:54	91.215.85.135		SBL615768	AS200593 PROSPERO-AS	RU	no
2023-04-14 15:56:54	94.142.138.104		SBL655622	AS211522 HYPERCORELTD	FI	no
2023-03-16 16:28:52	91.215.85.173		SBL615768	AS200593 PROSPERO-AS	RU	no
2022-12-18 13:00:28	91.215.85.158		SBL615768	AS200593 PROSPERO-AS	RU	no
2022-08-11 00:12:20	45.143.201.4	free.ntup.net	SBL625748	AS200195 VERASEL	RU	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-09-06 08:09:15	http://ddlakava.ac.ug/ghjkl.exe	Offline	32 ArkeiStealer AZORult CoinMiner exe RaccoonStealer RecordBreaker Rhadamanthys Vidar zgRAT	zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2023-08-07 14:34:49	29f5a8629986da0b4a353e5423fb39c505cba7c06e7aa4b5a4029c5a1669ae95	exe	Rhadamanthys
2023-07-25 00:35:55	dbe40b9e6a1cdb3db55a42228312ec4b8e5661ccef00dee81daadbe5bc56490e	exe
2023-07-19 13:04:11	bcf3266e8996bcdb7acb686034f264b07c228ce37f1212b663b636cc0317ee1a	exe	AZORult
2023-06-25 03:26:11	fc6ddb1f7644597b84d14e3efa4cd1a1d1ad0083141b3fa2a613cd3c092f6505	exe	Rhadamanthys
2023-06-22 03:38:51	7c53ab4cf5f997aa947c4fbadeccbbb7b43eb0eb204f57b446d87ae442d84eea	exe
2023-06-21 22:14:22	9c5f8a135e8ccfb39dc834cd68e0a03e55748996afc05d79a20797ea3139093b	exe
2023-06-21 05:23:52	40dced6790e58f1270085a263a71587925a23b113557a16e0bff530baf6d1810	exe
2023-06-20 18:51:30	07632404faa7fd83a0f1e4e9da20173c3f9ca38affd286a90dc362c73b26ee8e	exe
2023-06-12 01:13:44	5329037805cd075c557cd93ec733e06f9b70c1a8492135d4647c6820f1a3231b	exe
2023-05-28 13:33:27	5d2e841645576d0eefcc6bcc6c0d480c0c6874f05a56e92441319a5c41b38979	exe	AZORult
2023-05-12 05:33:50	bf1d731a91e424fd67778f176ac652fa5ca39f2ab188ef740184e4b2808c7b3c	exe	AZORult
2023-05-11 13:47:45	79a7c9d15971c14d78baccbf211b3ca1e9adcb0befc6d3d1c5d92902d70678e2	exe	AZORult
2023-05-08 18:16:55	84c18f78f11b9bc3fd3e96925d2a7b76ab5ecfb927c377ad27456e191815b24a	exe	CoinMiner
2023-05-08 17:51:36	c8dcace2c920912998c27f396e8945fa924757f3a7596a2da6044c1d0d47c7ab	exe
2023-05-03 11:13:35	83263fa7b8c560ae026a24d6ea9e6eafb16aa207cc5557c65c7f71f703f3a593	exe
2023-05-01 15:26:38	e99f79618b991de5d1052096950590a4fe833b885871a96bb1202e3d6dd876a0	exe
2023-04-30 11:50:33	ff277e11345c79a60de0ba45011460629487e82e8b0b58a8ddfdfeca2d7623f5	exe
2023-04-22 15:10:00	0127ebf8628f963a453520b0149fc11fc5d0a56536ce2a41c9dfdd3c597a0746	exe	zgRAT
2023-04-18 10:26:16	d9b498faf01b9eb598761915a6fc2fb4f1ab2317d354348baca6794730fd15d3	exe	Vidar
2023-04-14 17:24:54	0cff8404e73906f3a4932e145bf57fae7a0e66a7d7952416161a5d9bb9752fd8	exe	Vidar
2023-04-08 22:44:39	5119433510a4aee04ba7f2ead9f3e636081f2571a6eb39997d49aca021a0a28b	exe
2023-04-07 16:26:36	4130ce135fbfab00618f261a0397e88479d2f61e1ed0d09ebcde525439774f3e	exe	AZORult
2023-03-23 11:06:16	60289bfd6a3a67726074cccced70f113419fea3b76c00855fb7dc5fa332d3f7a	exe	Rhadamanthys
2023-03-16 16:28:52	a54493e71a7f28fe61e607ba4c089ada71e13ff9e1df6cef5619a4163e2b0a1f	exe	AZORult
2023-02-05 09:08:58	4908e51e65bf67fdc3a559be7c47c3df1354a4a864b931cb176d282048f8d9c2	exe	AZORult
2023-01-13 06:09:11	8c5df030de0c79f2155a60e0d5f41889ec8d07d441279d406996dca4639f8539	exe	RecordBreaker
2022-12-18 14:24:05	746669c6be1807fdafbc7ee3f1e958e1b584fa31688742bcc044d269af94b0d8	exe	RecordBreaker
2022-11-26 16:22:39	9063dd7d69236cca3007587ccc04334b4289ec456f6983673f3d9f749092a29c	exe	RecordBreaker
2022-10-06 00:43:07	d4227ec9dd2159223342099e0ed7d55c0691fe677ab2fc513c149a137e50ced8	exe	AZORult
2022-10-02 10:54:29	f0c0ac751d55d69d9e82c66e7f7f8ab5e298c5808302e8b6424ad3aa1bf1c338	exe
2022-10-01 16:27:43	9a81a9c84d36a49be8286458ce7c919538647711b28fedae9b5521762ff76030	exe
2022-09-16 10:28:24	e553b05dd2afafadb6ad38d3463056e50cfa31ba3ac5489a7a114ec35ef10194	exe	RecordBreaker
2022-08-19 04:59:48	65020d58d04109f2e8f46d12e43aeee9e98ec182db4bd4a2b2c336978e696c06	exe	AZORult
2022-08-14 05:18:20	ea34b776b896df9512f0aab37e3b0d56ff012a0906910a957db335f9e7dcf2d4	exe	RecordBreaker
2022-08-11 00:12:20	d75d7b0534ff648f16f5751be79a2c23158b6412a780180aec78c77c7e95071d	exe	AZORult
2021-10-03 08:20:39	394c61c695af669dcfe4d3dcf73de5099ed8e7fea036dd25f45ff6d234f9547a	exe	ArkeiStealer
2021-09-27 21:25:34	4b4392d46103cc0a5116c62cd042d7817a4b749949cc5d45610b57d23cb47527	exe
2021-09-25 06:23:24	3ef65642968377f832f577a3631fac424e24e3c86ead5539d31b0583ddd69de3	exe	RaccoonStealer
2021-09-17 13:01:06	e80d7de90473de5e1d9fb140d2537896872f7a7ca665e9342514426604f4f708	exe	RaccoonStealer
2021-09-11 14:04:35	7b8ffb495d71939d9dfb9b4f4b0bd9bd9d3fad675aa487e2b20129c33f877c50	exe	ArkeiStealer
2021-09-06 08:09:15	93ddf61c1aa7c0b867ffbd579b9febdeed4b027d14f8b86d62f7da493706731c	exe	AZORult