URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: derweekge.com
Domain registrar:Key-Systems -
Domain registration date:2022-07-24 14:40:43 UTC
Abuse complaint sent to registrar: Yes (2022-07-31 14:01:02 UTC to abuse{at}key-systems[dot]net)
Domain registry:VeriSign Global Registry Services -
Abuse complaint sent to registry: Yes (2022-07-31 14:01:02 UTC to info{at}verisign-grs[dot]com)
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2022-07-31 13:57:04 UTC
Total malware sites :1
A record(s) observed :76

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-08-28 21:47:39 15.197.210.240a919c7bb70d59115b.awsglobalaccelerator.comNot listedAS16509 AMAZON-02- USno
2022-08-04 11:30:00 35.205.61.6767.61.205.35.bc.googleusercontent.comNot listedAS396982 GOOGLE-CLOUD-PLATFORM- BEno
2023-07-20 17:46:15 104.155.138.2121.138.155.104.bc.googleusercontent.comNot listedAS396982 GOOGLE-CLOUD-PLATFORM- USno
2023-07-20 17:46:15 107.178.223.183183.223.178.107.bc.googleusercontent.comNot listedAS396982 GOOGLE-CLOUD-PLATFORM- USno
2022-07-31 17:15:23 211.59.14.90Not listedAS9318 SKB-AS- KRno
2022-07-31 13:57:08 115.88.24.202Not listedAS3786 LGDACOM- KRno
2022-07-31 20:16:43 110.14.121.123Not listedAS9318 SKB-AS- KRno
2022-07-31 15:52:10 115.88.24.203Not listedAS3786 LGDACOM- KRno
2022-07-31 14:50:29 210.92.250.133Not listedAS3786 LGDACOM- KRno
2022-07-31 13:57:08 211.119.84.112Not listedAS3786 LGDACOM- KRno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-07-31 13:57:08http://derweekge.com/vento/6523.exeOfflineexe Formbook ext RecordBreaker ext RedLineStealer ext Smoke Loader ext abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-08-04 09:16:28243a75dc30b284465f64236e138b90d3df2583d0557b747196cb8505bbebe9aaexe Smoke Loader
2022-08-04 08:20:38abeb8459cb65d26fd3f15902ae6eb936dc2c3fc44853c23096944ec32aac62e3exe Smoke Loader
2022-08-04 07:31:09a40ae5749f3ac6131d82ecabb3132ac621a694b6f3f09efb2efe8dbbcdf124cfexe Smoke Loader
2022-08-04 05:36:595ca373fdfc9aa77bb2ecdc2cdc2c757037b0e97be8fad24226d6a10337794686exe Smoke Loader
2022-08-04 04:52:174551bd67d551611259cdb34737e074ccc6b6f59a8eab6b3248e6e7e4db355c75exe Smoke Loader
2022-08-04 04:19:292a66d497a4ca3710cad6097360bee5fdbfc9da5d380e572ff36ed35750cfdc8cexe Smoke Loader
2022-08-04 03:28:5738f1a8295562d35ee3b070621ed410d88f87dd6e75fcfa1e0eedaf01518bdb27exe Smoke Loader
2022-08-04 02:03:42b244b857853e3f9fc0e0bd75010a77ca6f251f073391e5fb4ac7ccc632fc4f40exe Smoke Loader
2022-08-04 00:59:48a8aafa2d874cfa7780add830ee89d00ba49763ada3ac455bcd7eb6e5bc584c72exe Smoke Loader
2022-08-03 23:30:59f779732b6e5f81f0a3ff53095322c05bfebcb92da6811ccec69e199f0ba1ed06exe Smoke Loader
2022-08-03 21:31:182738d2bd9fdd3ed2c16f489032881c23855019fef8ea1e7dfce60c4a74691044exe Smoke Loader
2022-08-03 21:03:24048cb78b56dbdf2ea6821e45e708c52768d67621f2830f55bc74052e89fb3e0cexe Smoke Loader
2022-08-03 20:00:38f0e3b390f12c8106b899adde4f2f472a995b57a6d5ea7eeebf3010b9a7983421exe Smoke Loader
2022-08-03 18:31:06a36be4f1b9d259635f3a83055ed9676da391b9080e8347d62a1e1bbc3033edc5exe RedLineStealer
2022-08-03 17:10:0968e0f529c64be0b61d78c54e4c7b70ec02c3dacd6be9814c6b4c87b14c6aa8abexe Smoke Loader
2022-08-03 16:42:48f8785ddac955a2a1e240214cfe722bf88ba7012b849cb7d84ce3995165df4605exe Smoke Loader
2022-08-03 15:53:01f4e22465a3a1d007d678751b7b5b751577988244cc299e8939127c50be3cb3c4exe Smoke Loader
2022-08-03 15:22:16c588b14439582de364010fe141d7230421ecd379a9f2deccd199044ad1e005d6exe Smoke Loader
2022-08-03 14:50:53a9b900fea651b9fecf6782c923361c40a69392d5f036dccb36073929e72faa93exe Smoke Loader
2022-08-03 13:31:185bceda3218c047d8b978e2d245e59da6a19254083c10cbdd0ffe331309cecb86exe Smoke Loader
2022-08-03 12:15:41e4f83bed14b8979fa882af8f7099d27302cd0e6e60bdfb41bcff5ed39b05c259exe Smoke Loader
2022-08-03 11:15:17efd516cf87d276f82b2f274ad2bb75e805a215cb1a57ad8cc3ee5a77efbc3329exe Smoke Loader
2022-08-03 09:42:08b3c939ee5e44117c90c0e08346011828b47a8a70b41b568ce0a0bb7678cdd105exe Smoke Loader
2022-08-03 09:23:4180c8c74132ba4a5f2f905ac779f8dedf4688a2267288a8cb5fa544fe7c8b2830exe Smoke Loader
2022-08-03 07:38:44ea7d5e831642b69bbc1c61081a8d664aa1f4dd7953955e580773ea6a53fb586eexe Smoke Loader
2022-08-03 06:10:1009619e21c8ede9e3a148fa7cd03203734f18e190e33a06b557d6f5276caf8df6exe Smoke Loader
2022-08-03 04:23:0868779e42e50d7a492b0c2e15e12a734f3a0189317ab749a7f8980260a80a520dexe Smoke Loader
2022-08-03 03:28:54379e068e45de6345985fc773f3118dac439845a9d853b9978536ff1870a5ae0bexe Smoke Loader
2022-08-03 00:47:237b4446bd6b0466c89aeb637058458c9f8f870a152006301fc5ad2eb7ed04b7ffexe Smoke Loader
2022-08-02 23:51:44dc1a9f6a302906f09f414d81100c6bebcaf8d7342d83f926c7aa6c0812e18374exe Smoke Loader
2022-08-02 22:37:25a358944bc973b017d35987d2cb1c6a802a22569e36f30abeea3898861c5307dcexe Smoke Loader
2022-08-02 21:01:001bc0904c9d4ace37dea000de3fd33d5aa1a77792dd83d0b5d69ff9d1d5de7213exe Smoke Loader
2022-08-02 19:56:1351ede31b168cf1b7344dc17e4991bf1b8d6e07959855bc7bdda910c3b953aed0exe Smoke Loader
2022-08-02 17:40:19eed2670a3150b183ca587c3eb05177361f5a920fad20e026c8f1573f72a8b0beexe Smoke Loader
2022-08-02 16:24:168a3fc6d0e340632110fa443e359b78dbb464140278225d239332bad9668e7f2aexe Smoke Loader
2022-08-02 14:41:333c8f12367fbdc2505a3651815806a4ca1622ec9f292ecad3972649df9b41d587exe Smoke Loader
2022-08-02 13:23:4388a1e6e3bd358504c267588fd3f73466f93c5e5c16f3d3febbb6885545ff3a9cexe Smoke Loader
2022-08-02 11:55:2430b1210d7a8774d27e3494fdd663801b80bc1100af9cf2d884fa9a7578bd40f8exe Smoke Loader
2022-08-02 10:09:069c31cbdfa968ba3596b2def16918deef63b0c91fcef4999b8b8c6b44ead8e198exe Smoke Loader
2022-08-02 09:04:496953289daf72bb8fb6b06c8dacf39394a16161bb70ee03a49fbdac1f65d3d53dexe Smoke Loader
2022-08-02 07:24:102e3f8bdf857b4a3b81af98a59d0cb55bad7ded7a860fdb3ccaed37b30c371231exe Smoke Loader
2022-08-02 05:56:17bbd3f90867320fdd67878034d99d83f481d6d41f76b9082f6ecc3c432e353761exe Smoke Loader
2022-08-02 04:28:58f8ede9b2010f84057a6ff339077c4dc30bf76369af230b9e2efc2c9786287298exe RecordBreaker
2022-08-02 03:37:128eccbe0ec11c87d10b77d305f54b945632b68c8e1cd4920b2ee1d3bb5eee7f73exe Smoke Loader
2022-08-02 02:45:09721883dc502067844f9776e026fe10b31e41fcc39b910447c646e7c368ea64e0exe Smoke Loader
2022-08-02 01:46:31780d2d5e1f580ee89328a0df45b67ecdfb16b70f60a5d493633d907d8e2cfeb3exe Smoke Loader
2022-08-02 00:06:5603e84618b68374816a5bde2dad32f2c53ddc34ac7b6a526949ce2166a4ddd53dexe Smoke Loader
2022-08-01 23:29:51142498d4f88354273e57c1f9f3b194ae064d8fcf2bcfe6c07928b5038041bac8exe RecordBreaker
2022-08-01 22:09:41f245364c960d91a6e887f9a130db3675690c4c1251f3ed99aba17122c93866a9exeSmoke Loader
2022-08-01 20:50:2363185cdd3772cd37d218cc6119bca308cec9ef85b0290004b8ede8e5bcf16cafexe Smoke Loader
2022-08-01 20:17:26e5b0e5d2f5ccb93d94a10e2693ab222ba84e2e70bd0a542ab8835ffcc890161bexe RecordBreaker
2022-08-01 18:38:427d8ef1dccd68490fc2adb9c3d79f6120ba0574266eff85656ee59eddaf172a19exe Smoke Loader
2022-08-01 18:06:369562de5aa5478ffa1e1fcd20caa32f49112d95063974acee55bb13a8c091b12eexe Smoke Loader
2022-08-01 17:04:05d024a9c302b55bf78d00bf242353ae3fc7bbf093c3ae620d74eaa898a89ab684exe RecordBreaker
2022-08-01 16:06:588b924cfb1f86f77cce127d0a5c3139c775e50406076fcca374329bd3853596e0exe RecordBreaker
2022-08-01 14:52:329182d7287cb4d6e3381255b4f73743d9b3307e4f172da2802ee09ad747401e01exe Smoke Loader
2022-08-01 14:17:51ed171665d73fffd78d8702656721d0aba573a89d8267629d1151114dc3d06f9cexe RecordBreaker
2022-08-01 13:37:18bc1863d55f4877646fc94d287cbb32410953f6fcd68c96e09142b67fb306ae77exe RecordBreaker
2022-08-01 12:37:032a1ecc36a5ac120dae2bfe076783af5fb5e3b36a652f929e6e13c7bbad4e825bexe RecordBreaker
2022-08-01 12:02:38746699c36c31302bdd1547eae0aa951f124cb1b9fecf926412c676dc0dea0072exe Smoke Loader
2022-08-01 11:08:24e986e313965665843845f3626b624e691640e721d01f986a7fbfcb7d09a05e0dexe RecordBreaker
2022-08-01 10:08:4334cc4d6076f0138aef067cde3f7ba808ad9f7e814e5777f10e014390255ed6f3exe RecordBreaker
2022-08-01 09:08:33f0d8c6e92f141e5dfbab79ac231f8a6c7282fbe87c63a3e1d880dc8218491910exe RecordBreaker
2022-08-01 07:55:17e87f68ad84b37f872821019b6aa640b768a7f7200a3ccd636a36a72ea11af815exe RecordBreaker
2022-08-01 06:33:20d1bf01090d9ec8523bc3bd0bd9d268e396577fe8a37a85e579b9e5338a15164bexe Smoke Loader
2022-08-01 05:08:4283fcaa9cb061ce9bfc2a872cba354a523ee024494ce1f7625dc17db22d2dddf7exe Smoke Loader
2022-08-01 04:31:557dcc9fa5e11e42d79adafaaba6e97f179738a9cedd9db58626ff78f888fb6494exe Smoke Loader
2022-08-01 03:36:0805aabc90048e82ff28603c7d4ef708d22c27e1c1d60e727649b9289afb0c9696exe RecordBreaker
2022-08-01 02:09:10df37537e5ed7a2cda5a00b43844f1735e0a16f57d5f05772775f5eab29cb6809exe Smoke Loader
2022-08-01 01:08:17f3f6ef3a67206ac60f93cbe144424cb9dee4e8e91a17e1327565a35088dd03f4exe Smoke Loader
2022-08-01 00:01:584046b1489b60ee0d0e1c098278a7ed29bbe74ab79e7231b7e185fcbddd238b64exe RedLineStealer
2022-07-31 22:29:271ba3b074d559bfe05acc2d769ca1b793e56ae76ba3ec9c190c830ed41e51d869exe Smoke Loader
2022-07-31 21:00:558f78c132ab5cdd69071f1a1173f65a49e58b8d6067fe14e6bc1f110cb4e10741exe Smoke Loader
2022-07-31 19:39:40b8752a0228d653bb2d7a2fac573f192df6e89e41d490d6144c1d4a79207e80f9exe RecordBreaker
2022-07-31 17:46:26224ae26c97222995a51b7bd52337749384052595ac3118de55e416fcf90ae168exe RecordBreaker
2022-07-31 15:54:26d238823b081e5c20c5a001dffc0b19629ade10f851c98a8b63b362d1b99320bdexe RecordBreaker
2022-07-31 14:23:12ba42c7e7d7c090fd8d3f5bd10fdc2b3a976dda7c0c3ddcb6db16ea90f3a3a8a7exe Formbook
2022-07-31 13:57:086decf642c3ee33ad3dd373e85e1b0de270c1a33105b243fbb96dc5ea9e89bb48exe Smoke Loader