URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: dwefrfgqwgq.top
Domain registrar:Key-Systems -
Domain registration date:2022-03-17 12:33:48 UTC
Abuse complaint sent to registrar: Yes (2022-03-24 23:31:02 UTC to abuse{at}key-systems[dot]net)
Domain registry:TOP registry -
Abuse complaint sent to registry: Yes (2022-03-24 23:31:02 UTC to abuse{at}nic[dot]top)
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2022-03-24 23:27:04 UTC
Total malware sites :4
Online malware sites :0 (0%)
Offline Malware sites :4 (100%)
A record(s) observed :21

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2022-04-01 13:38:24 46.161.1.69Not listedAS48558 M-Line-AS- RUno
2022-04-01 09:54:41 185.38.84.89Not listedAS12616 HOSTING-MSK- RUno
2022-04-01 08:27:03 91.203.192.44SBL669463AS47196 Garant-Park-Internet- RUno
2022-03-31 23:12:23 46.161.1.59Not listedAS48558 M-Line-AS- RUno
2022-03-31 13:56:58 45.10.244.40Not listedAS214822 MTFINANCE-AS- RUno
2022-03-31 09:44:13 194.87.94.144ptr.ruvds.comNot listedAS48347 MTW-AS- RUno
2022-03-31 09:10:27 95.142.45.32v2191491.hosted-by-vdsina.ruNot listedAS48282 VDSINA-AS- RUno
2022-03-31 06:39:11 77.232.43.47host-77-232-43-47.macloud.hostNot listedAS212441 CLOUDASSETS- RUno
2022-03-31 05:46:10 91.224.22.23Not listedAS61317 ASDETUK- UAno
2022-03-31 00:04:23 91.224.22.15Not listedAS61317 ASDETUK- UAno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-03-25 00:39:04http://dwefrfgqwgq.top/holler/rolle.exeOffline32 exe RedLineStealer ext zbetcheckin
2022-03-25 00:00:18http://dwefrfgqwgq.top/holler/rolle2.exeOffline32 exe RedLineStealer ext zbetcheckin
2022-03-24 23:48:04http://dwefrfgqwgq.top/work/top.exeOffline32 exe RedLineStealer ext zbetcheckin
2022-03-24 23:27:08http://dwefrfgqwgq.top/work/mix.exeOffline32 exe RedLineStealer ext zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-04-02 08:45:1024b22fad75e103206b8933ae43683a69d1545f5df03d02928b09a158e31234ceexe RedLineStealer
2022-04-02 08:32:521005232670c8eaf9a50f548824ba78cf8970e323a9fe0b814f2c8ea47b2507b3exe RedLineStealer
2022-04-02 06:09:33b75e2124caa6ea512a2f6924456516e7b22f97e2b5bfdc283fddce806969fbbaexe RedLineStealer
2022-04-02 05:54:01ff891b5c3f2131dddee448d5c838a13abb98ee5a0c06a27504e33f67ae8e2390exe RedLineStealer
2022-04-02 04:17:498af1e3c3580f804f2e08427d98386395444a13055a7b5a93e2f32249ab430867exe RedLineStealer
2022-04-02 04:14:360abc6bf50c4efe4e33e0878ed7e5f4aa55a1ddce87eee2366274e75369d55785exe RedLineStealer
2022-04-02 02:37:50afafcd17938bac49ea8d0060dc56e4768779f1556e04cc55cbd81c48f7e68cc2exe RedLineStealer
2022-04-02 02:35:1602e37184e931776170617003b079b1a01017e90418ce55a47ad2a503ea78117cexe RedLineStealer
2022-04-02 01:30:4952b9f99389b816c814ab1614f4916b330eabea56cb6c22492bac13af96c9727cexe RedLineStealer
2022-04-02 01:30:41f99d53d21d4c5ef7535e17fc9a25194d6cc1f3c89cf97ca550169597a7c55cd7exe RedLineStealer
2022-04-02 01:16:2452b9f99389b816c814ab1614f4916b330eabea56cb6c22492bac13af96c9727cexe RedLineStealer
2022-04-02 00:53:12a7cd9b43314773dfb9cff411116f7ad3ace062fd49ac888c743d2eb8b717cd2fexe RedLineStealer
2022-04-01 22:58:45e590f25a87849b29825fd6b8b683ce27c4ebea0e6e0cdd717bec1f5c9001122fexe RedLineStealer
2022-04-01 22:41:36024799c144dc1bac968f1b09bb9ce44db8221ed652c9435c6f38522430ad9ddfexe RedLineStealer
2022-04-01 21:39:1791dc6af46c05c3d4dd50a3723a493940b599e8a23fd397890b99e226b57dbe85exe RedLineStealer
2022-04-01 21:02:416b7fac49e2f635251ac6a3845ec1702bcb923f7259691a7b3fa9595065e44e95exe  
2022-04-01 20:31:00c7df701d727283f8e2ec08ea566a765b59d4f98a92befb0519a22fa3d576aab1exe RedLineStealer
2022-04-01 19:55:223827b50d797c5297dc596f8178fe40bfd5ccafef3e1ac1fbcaf038c5b1faf3f0exe RedLineStealer
2022-04-01 18:28:491eb806f35e0725c673985b3f27015327429e5dc7c86422a05605b607ec3a1685exe RedLineStealer
2022-04-01 18:16:336a6e9347c2f6fcb8771f183758fa59a651ffa7db33dfdf016834cd3627f1ef59exe  
2022-04-01 17:13:037b49d279640e78ed2f2f9a63ae1cee35ac7b7bb1c8b04ec9b8d46805d024f6b9exe RedLineStealer
2022-04-01 16:40:36cc55161c018da7746ff8e8276c4e687074455f1be898850c2b256baa400185a9exe  
2022-03-31 20:39:2528328f0fa11561cabba1fda7d859061834052133c411216d4efb4d2ca4186f39exe RedLineStealer
2022-03-31 20:33:5628328f0fa11561cabba1fda7d859061834052133c411216d4efb4d2ca4186f39exe RedLineStealer
2022-03-31 16:36:2711b14d8c66f66a517398f87ea27ee735d896c34fb8a244d139adfe871e959167exe  
2022-03-30 19:50:474e52361b50763e8afb4521e5b2b71ef14193a2b00d8cb18bc8c26bf66859d4efexe RedLineStealer
2022-03-30 19:47:15f27bad25a7cd0fa8fa981680109c8df95e768a5c517af5e244fe5f4984387fabexe RedLineStealer
2022-03-30 19:13:459bfb584b658b14859af7478cafb28b1baed60141566056a22f239d80d6fce9deexeRedLineStealer
2022-03-30 18:26:33818c6fe4d685efacf5608a731d7ec09d1e7fdb5752069296e7861500c738d627exe RedLineStealer
2022-03-30 17:59:08b035039b382018f4dcc4134d4ad3d3bae3b96b6b58e385a98a543887d7dee3a9exe RedLineStealer
2022-03-30 17:39:18b035039b382018f4dcc4134d4ad3d3bae3b96b6b58e385a98a543887d7dee3a9exe RedLineStealer
2022-03-30 17:33:11e1ccd2f2479f358e05c388d73c358b9c47d7d681a94255465cd4370059b56283exe RedLineStealer
2022-03-30 17:20:2292d516f8876dbb84aab623f02d9650451d93b38a9e69c24ae1e3afe93257b02dexe RedLineStealer
2022-03-30 15:46:4988160f0e829fffd70ddfa78c0cc32d6cd7c0d21eed1ee383586ab6626d862711exe RedLineStealer
2022-03-30 15:32:5765dfae5afa3080284766bdde95d3d7d1a0ca967b8568469ed32089a6e87c7e98exe RedLineStealer
2022-03-30 14:48:13304acc1823ca2fefe83394d78643c62d08c99067f339f187fb97fe15a94ee130exe RedLineStealer
2022-03-30 13:54:0154d9d26581158ac6021931121a2ce3ae13cefacad06bd98320488b8a43e1f519exe RedLineStealer
2022-03-30 13:53:09fa93eecd2669d08a23663e63b913503342eb5aaad0f80e7c00cdb59c477760feexe RedLineStealer
2022-03-30 13:05:22466445a018f2245cb60e9f410fd4d23233733f5dbe2e7696f5074576c0588f0fexe RedLineStealer
2022-03-30 13:04:56a4519b4ba186e7e6e75e74fa46970d67b16ad803145c7fbfd87aad84b21ef4dfexe RedLineStealer
2022-03-30 12:28:145ae30f989e5fd2407e440a51f2d72a8817f3d41b29eab02f4fbd0d6b1c05e8aaexe RedLineStealer
2022-03-30 11:23:17648516e4c0f6a03fede99b91a0e3802eddfe8bab47e65b082068e91d9456dfbeexe  
2022-03-30 11:21:2110958ffd0e0c40650f03e652a7ec668da2d14a1870064412a76b4d2ff7d9d7beexe RedLineStealer
2022-03-30 09:55:4389dc62bf09e9db81144f572570d6406841f90111dfb54888c8326b934abc365bexe  
2022-03-30 09:31:039056bf280268dc3759fa18f97dd087ce5bea7acf0ed2dc879602b9ba6447473cexe RedLineStealer
2022-03-30 09:04:467036ec0b224c038d64e78a784648df739ae47c0c7fb283f8a0a9cf8050f221f1exe RedLineStealer
2022-03-30 08:06:48ff6ceca415c6baf0db45ec70e8f1c455392dc6c6efd09367600fe10b6c89bbe8exe  
2022-03-30 07:10:18e4f7704e30c8989c4a1fbe75c5aeb4090ed5033a23cb19b3d17c1eeb987e94c2exe RedLineStealer
2022-03-30 05:50:12e211c035f02100c4a01316bb71dfa952c6236867e4c9822d55fc0e50a4236bb8exe RedLineStealer
2022-03-30 05:36:40514ac97270ca8e24408bc8a822fb83a463e021704135dd6869460cc028347aa1exe RedLineStealer
2022-03-30 04:44:03533ed67b02641c188c8588528cd7cc4b7501adbde2f3ba289049a07e7d7f1103exe RedLineStealer
2022-03-30 04:40:18f62e906a0c298528e1f817b719f2b81f4ca4fdbbc72e0d4eac787c6bb71f82ecexe RedLineStealer
2022-03-30 02:41:133fdf99098502335d3f0b7f08998f0b857fc0a3590021b766141b5932b195c6d8exe RedLineStealer
2022-03-30 02:11:25b239ac9afd9a46b23af445739ce5e3e97f5b20dae1c7155281971e7fbc2e8a0bexe RedLineStealer
2022-03-30 01:33:032729470580c78ebf77c6656218b9e65fd791e569825cb73640f153c3b6363cc6exe  
2022-03-29 23:58:5571d78e917379716a073231e781d3761ead959249f1049ebe156399d3f8bd536eexe RedLineStealer
2022-03-29 23:57:3098bf218829339054a801d42bf829d6083bea9d2b6dee26d90e2249d146ad4a73exe RedLineStealer
2022-03-29 22:50:4570a3e989c74f533fcac7bf90003fe1753694ce5657064c7eb4efaaf0be1cf58aexe RedLineStealer
2022-03-29 22:39:13bf2ba5858b43dd1f1d3539c70677997bba15c8d0cee6913f36fbd1508285a079exe RedLineStealer
2022-03-29 21:58:4512ffb5b0eba7dd0593f4b99d737b9848dafd9a01fd6ebd0917c11a8c725496dfexe RedLineStealer
2022-03-29 21:48:315ea00629e28c3e326babc2348525e4f5e407ffe71574826151853b7010b849c1exe RedLineStealer
2022-03-29 20:57:172166e7028253e332cf77d1d3f195cdc2dc068fa424269db2ee91fd19b9d1db20exe  
2022-03-29 18:49:420534a76e3e4041ac3d18e46f64b9a5d68e119237da620c841d06043f1cdc6975exe RedLineStealer
2022-03-29 18:20:120534a76e3e4041ac3d18e46f64b9a5d68e119237da620c841d06043f1cdc6975exe RedLineStealer
2022-03-29 10:43:08017118612816b95f23b39dbb5a82ea128aaf3afe315ce0314c020a9848dd6d80exeRedLineStealer
2022-03-29 10:32:45722eed654101aa2b49e22d5640fb598ef6f2c9c0868ad4077a6ec1004422b24fexe  
2022-03-29 09:29:30393f88b816d5666375317cb78fe5564f18c7d7f7a5c893659edf7c56edeeddfbexe RedLineStealer
2022-03-29 09:24:24fecdf185457786c7fb4be84a6533f6fcbe8ba6c040daa8c05c28346cecc9cda1exe RedLineStealer
2022-03-29 08:06:053f5ce03f30360e89bff2f285a1e01ddd3b7dd170b3322b785cd956de9efe434cexe RedLineStealer
2022-03-29 07:59:13dfae60ced4d302cb8c9f542b52a8cdca8a4a73d5d66831b9c27463c7abfd5280exe RedLineStealer
2022-03-29 06:50:00bc905b4dc25d943d24e1dedb50acf76cbf2ebc6ee145b323350a1df523821127exe RedLineStealer
2022-03-29 06:43:564f0c14ddfb291a9abee26f48cbda6384f78b9181959eb8551b227523dfa08414exe RedLineStealer
2022-03-29 06:25:417aef18a6f37676b01a06bb6c532fa256d7f6ad4fc0594ebad05cdcb7c3cc00dfexe RedLineStealer
2022-03-29 05:29:277b3ebc7c6e28d413ad234e6621fbdb44a45c547b2b20ccb7c03b099c481bc53bexe RedLineStealer
2022-03-29 05:00:24eccb2ec3e7edf17aaf09e41c8aab3f45fcb4aee06bf47fbc8f0f4999abaeb2d3exe RedLineStealer
2022-03-29 03:36:2559a7fb0c405575ddaae36ebc706f0a999872b7e6a008d7986a4cdb0547565652exe RedLineStealer
2022-03-29 03:27:34180cb648c977346dfb1fe134c6ef4ef876673ff6cd6d87d583fefb3b10eda411exe RedLineStealer
2022-03-29 02:47:54e8c1712e0489196efc9349939781e2a989681d14a95e83a30375753040b7ef3aexe RedLineStealer
2022-03-29 02:21:5516f548e7e872722c2746012f7ccd7759a970dabdb37d32d014116ff83313cfb2exe  
2022-03-29 01:09:00a63806a04c7dc23ef99da422feb1192d69b6b627aa39ccc989362ae508af899eexeRedLineStealer
2022-03-29 01:00:36cf0f1aa6daa5e46b0a8a0ab76ed31b54a96c6125617ad0d0d508d08df6ec6b9bexeRedLineStealer
2022-03-28 23:06:16a454a62f30bebc302c31e84a6244756351743ebd6f6a2e48b6b8c61432dd2399exe RedLineStealer
2022-03-28 23:01:17fbb9fcc294afcf8c6aa8232a78f428428dc8f120024cdc4e6608a12cfb77add9exe RedLineStealer
2022-03-28 22:42:48a7195f13946a807de7c48567e0f4f96267a7f0b4435307717ca5c57dfd56f1dbexe RedLineStealer
2022-03-28 22:27:376b536e0c06b38a775791b5078f4ad52172599a5879d2634edddf809a6d35f277exe  
2022-03-28 20:18:20de50a9cba8f30b0ab1d488fccf4e07d52bbb9cd340435c89a8ef248a1fdde229exeRedLineStealer
2022-03-28 20:17:41cbc785162fcc3a07fe7e9330cd3abbc98ca7857e7d1b92176c262bd16347e12eexe RedLineStealer
2022-03-28 19:45:31219fa2180e6724ff3a675aed4499038587e0cf09aa2227f9e7ef3fc1cb08795bexeRedLineStealer
2022-03-28 19:33:53219fa2180e6724ff3a675aed4499038587e0cf09aa2227f9e7ef3fc1cb08795bexeRedLineStealer
2022-03-28 18:25:29c7384f756e305e9a8d2115918090778b7d055e45b411d79608110f5275ebd3d5exe RedLineStealer
2022-03-28 18:03:519ebda86aa5459c6d98fc455e7f8b4358b321828623546c491f9eaef922292fa2exe RedLineStealer
2022-03-28 17:38:4353798329dc6965eb19b9141b11137ac422a1233c27af992db470df29dca20df2exe RedLineStealer
2022-03-28 17:02:0772863d9fcbfac3ee7d0166c4d1b84aa4b40e4052a90662807e3585ade3a25eebexe RedLineStealer
2022-03-28 16:38:193cb6f62ac18f52a40a07e7e05e2503f130ab374e0db9d87b799a404d02de7b54exe RedLineStealer
2022-03-28 15:49:058b4cf50e57bf824d420ee9754cae394ce57eac0caa3d0b1b38a780074646d47eexe RedLineStealer
2022-03-28 15:25:1586adea039dff9e4eb44320e864d8c0faa5da63d9dac6b587c1a4e2210baa5a4cexe RedLineStealer
2022-03-28 13:34:296be2b2f0de0b025876cbdc43fb9638e92bc878a29124d5212ffc3ba73a96e12cexe RedLineStealer
2022-03-28 13:17:536aa6b976c20a1ad3a0a1cca757ec2e545a49e255120669622308e1205dddb81eexe RedLineStealer
2022-03-28 11:08:4043040914436c62cf12b95df455bac8d00d5ad9bdc9aad8bbe00d5ffef2cbf318exe RedLineStealer
2022-03-28 11:00:30164d645404cbfd37a3415b408f5247344bbda3c3706ca186a4948a558597d7d2exe RedLineStealer