URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	dswa.1337.cx
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Blocked
AdGuard :	Blocked
Cloudflare :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-06-25 14:59:03 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2021-07-11 07:44:36	37.0.8.105		Not listed	AS48628 CoreISP	GB	no
2021-06-25 14:59:05	136.144.41.59		Not listed	AS14178 Megacable_Comunicaciones_de_Mexico_S.A._de_C.V.	MX	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-06-25 14:59:07	http://dswa.1337.cx/windows.exe	Offline	AgentTesla LimeRAT NanoCore Neshta RedLineStealer RemcosRAT SnakeKeylogger	Cryptolaemus1
2021-06-25 14:59:05	http://dswa.1337.cx/chrome.exe	Offline	AgentTesla Neshta RedLineStealer RemcosRAT	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2021-07-13 23:32:37	97c3aa0cc8d19f8b56a41a00ca49375deb5172bded57237614ddd50a15341537	exe	SnakeKeylogger
2021-07-13 11:59:51	d021e872a4841ee35b654e3dfb946b8f880f3a598050bde20550899410456321	exe	Neshta
2021-07-13 11:49:44	0f588cc0f351e5a7a82372fb978693bd088484d89d2219267a4fd7f7c52203d8	exe	Neshta
2021-07-13 07:00:08	438f7d98e5121ce6bd3018bd9e3e46964a4651fe22152ae5ad1ebc6d6f6b5b12	exe	RedLineStealer
2021-07-12 11:08:23	5da623419cc45578fb40c1724da878e6ec2509f2ee8085051b7dcfcad8c9efc8	exe	RedLineStealer
2021-07-11 14:31:06	8e4c2e59aeff7aa83545597af30118fd8a596775ca8e44b058c20355e4810fe8	exe	SnakeKeylogger
2021-07-08 11:55:45	bdc053240c0b051e88e2a38119cde7e92473f04fd9b6c08960a8a59cf91e1ec5	exe	NanoCore
2021-07-08 06:26:25	36d66cc784c6f77b43ed1293123ffdd00c3121fef540f1cfa9c17f1da6e6aa4c	exe	AgentTesla
2021-07-06 08:52:39	80aca809c83398c7688271324e08048d271f4dbadb9956c6901e1e954f94b22f	exe	AgentTesla
2021-07-06 08:49:43	71b37b08c29c3da6a2ce10a171c87767ba77dee171d94b48a56e4413e30b2169	exe	RemcosRAT
2021-07-02 12:51:39	b84bd3ee362bb7cec2a79c5db0b60264b0ee99a4e769790c0b426aca5393b3dc	exe	AgentTesla
2021-07-02 12:43:59	de7ce842fcb7346c2bbdf01da4e6d0d8e2ca20332b880fe8ada7d66ed184d630	exe	RemcosRAT
2021-07-02 06:33:35	8ed58f06094292e16e162dc9eaea2841152796cb76ed5d8ae2c2f3013958d303	exe	AgentTesla
2021-07-02 06:32:00	463f7c4188aeeeea4da33b41fb0c420a3e9a7855e8e2a139add7d255153ea7ee	exe	LimeRAT
2021-07-01 11:55:05	d6882af91695b65b4113b5e072e39d7c1f1121d4984202c6c0063c3ebaea7fac	exe	AgentTesla
2021-07-01 11:52:29	657cf5b353228351f20b758886ed20ea09b2f2ad0740ab826e8ffdf2df8ab947	exe	RemcosRAT
2021-07-01 01:18:59	0b21cb47c8a19319e7a3ea04878670d09a51e7b377fdcb9e0009f1cb0700348b	exe	RemcosRAT
2021-07-01 01:14:12	6830905eba294273b6b4dd27f4e8670d4c05013d85e88df7db1b99d42619f0f6	exe	AgentTesla
2021-06-30 12:34:47	6858fcd2f6b042dc538d1c3fa198a4cc93dbb65a3e8d61da0700aa83dad8af93	exe	AgentTesla
2021-06-30 12:22:25	f19b2e31a0bc55cb5d4ab540605cfeffca6dd241cbe4e96e065d403a7273534a	exe	RemcosRAT
2021-06-29 10:25:52	6714a382e6ba715750a955376d50c9d86ef46f7efe500c217794f7b07c42f656	exe	RedLineStealer
2021-06-29 10:17:43	7f0f83a20ac901a1abbaa6ea5f1a95646a281599540a55c404db8262ab25eb3c	exe	RedLineStealer
2021-06-25 14:59:07	ff91b720363ded7601beba0c3b9f73c4cd677c79e88f9b82113073d0691df7a9	exe	RemcosRAT
2021-06-25 14:59:05	64fce96e0bb9bcb37d060524b027b87aa3cdd7cc8986608e3eb124fe7f82741c	exe	AgentTesla