URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	ebie.xyz
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Blocked
AdGuard :	Blocked
Cloudflare :	Blocked
ProtonDNS :	Blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-07-13 07:59:03 UTC
Total malware sites :	11
Online malware sites :	0 (0%)
Offline Malware sites :	11 (100%)
A record(s) observed :	7

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-09-03 13:17:58	13.248.169.48	a904c694c05102f30.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	yes
2025-09-03 13:17:58	76.223.54.146	a904c694c05102f30.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	yes
2025-09-05 19:15:44	166.117.110.61		Not listed	AS16509 AMAZON-02	US	no
2025-09-05 19:15:45	99.83.161.153	a2b7bf3398455f345.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-08-28 10:14:41	150.95.255.38		Not listed	AS7506 MAINT-JPNIC	JP	no
2022-09-20 23:21:44	199.59.243.222		Not listed	AS16509 AMAZON-02	US	no
2021-07-13 07:59:03	185.239.243.112	ns1.20mb.nl	Not listed	AS212238 CDNEXT	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-07-19 20:33:08	http://ebie.xyz/ugopoundx.exe	Offline	32 exe Loki	zbetcheckin
2021-07-19 16:37:08	http://ebie.xyz/quotation.exe	Offline	32 exe Formbook	zbetcheckin
2021-07-19 15:13:03	http://ebie.xyz/quote.exe	Offline	Formbook xloader	James_inthe_box
2021-07-14 14:54:03	http://ebie.xyz/smartx.exe	Offline	exe Formbook	abuse_ch
2021-07-14 14:12:03	http://ebie.xyz/mazx.exe	Offline	AgentTesla exe	abuse_ch
2021-07-13 18:56:04	http://ebie.xyz/ashleybinx.exe	Offline	32 exe Formbook	zbetcheckin
2021-07-13 14:36:04	http://ebie.xyz/chungx.exe	Offline	32 exe RemcosRAT	zbetcheckin
2021-07-13 10:55:03	http://ebie.xyz/jayxz.exe	Offline	32 exe Loki	zbetcheckin
2021-07-13 10:51:03	http://ebie.xyz/whesilox.exe	Offline	32 AgentTesla exe SnakeKeylogger	zbetcheckin
2021-07-13 10:47:04	http://ebie.xyz/arinzex.exe	Offline	32 AgentTesla exe SnakeKeylogger	zbetcheckin
2021-07-13 07:59:04	http://ebie.xyz/catx.exe	Offline	AgentTesla exe NanoCore rat	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2021-07-20 16:34:06	04cdbb87050fa773ed542d18c1993851661cdebcd06acb6af05bd9e03d14a1c8	exe	AgentTesla
2021-07-20 07:06:15	7d05531d9460fab2b3f033c6daa0ad96f103d31cd4d743bb2543fceff24a8085	exe	SnakeKeylogger
2021-07-19 20:53:19	c93e913c5dd5c8371f2acb548cf3761cec09e76c5b37b3cb36163142ccc45b5b	exe	AgentTesla
2021-07-19 20:33:08	e97a4942254a12b854161a49aa1921910d93d2ea2d6af2f2ed771d7ed7d70bad	exe	Loki
2021-07-19 16:37:08	96a59a7f3a3aed504052f94d5808bfc4f42054104c955e3fe244f0b0750b48c2	exe	Formbook
2021-07-19 15:13:03	ffdce32ce2f9c0f99abb5cff3602bcc02f3ceb4933d145fe02f650244b513a51	exe	Formbook
2021-07-19 14:52:06	1e57ec3b629e18155d01329fd7ca2947f30f7a9dbb6a60e3f5de2f0d8934ed92	exe	AgentTesla
2021-07-19 11:06:53	51eb7e5e2034ecc3743a2bdf49627342f0cdcaf82384dc09812228618643c51c	exe	AgentTesla
2021-07-19 10:39:22	386eba6b68ddbb34754a2d335a0b0799ce2b6979ac792c51323b8f687853fe89	exe	AgentTesla
2021-07-16 02:42:17	eb49079f48b94e03346f8e7e2e6d90853fcadf1547ef19ae62c2d0ab9dc23460	exe	AgentTesla
2021-07-16 00:41:01	03a5f02e2510ecf8b8990cd651cc7085e057555e8be3415e48167e73ae3aeb40	exe	AgentTesla
2021-07-14 14:54:03	ba41a0e0bfc666b2f37abbb5fe9373d77922ea90b4f7c975e9aaaf27edec129e	exe	Formbook
2021-07-14 14:12:03	d0638a8dd7cdd32f69d17312f76a526f025c29511dd2fd9ba7bddc51867bc912	exe	AgentTesla
2021-07-14 10:45:19	5fb2d0f98ed386069283bf30b84dc9da845b0e6e02a1411e017f90b88aea0658	exe	SnakeKeylogger
2021-07-14 10:07:47	9951d9f054be7e8c7b662ce9c2fc30b5aaf61bdc8482d7fd6e4464e4923540af	exe	SnakeKeylogger
2021-07-14 07:38:01	3e1b4bf644f36778e4b8309d78e20a37747b5945e94b33f5ba17f224e041e6e4	exe	SnakeKeylogger
2021-07-14 00:37:43	4668c19e2ba4b487bdbdb747386dd1f319fe36450d4ab5b82010a8215bbc4da1	exe	NanoCore
2021-07-13 18:56:04	450178f7975019437a0e145934d9f99c1c4cc7be3b4ab8ab30454460447199a4	exe	Formbook
2021-07-13 14:36:04	1cbde001232b05773813dca161a55e63f8e082b7b53f900a4e235d2753bd1957	exe	RemcosRAT
2021-07-13 11:08:14	305ff91660cc5f742e0689b4e929725c874941242ffffb85247dde1b84ca8e79	exe	AgentTesla
2021-07-13 10:55:03	0152804ad2c328b9f25b337d05f405d265d00be4630b567f5f20175abb38585a	exe	Loki
2021-07-13 10:51:03	20099b68fc7896261434a79ffe3398f80a268118b180dce7a7af8c9b7260ec58	exe	AgentTesla
2021-07-13 09:19:50	a5da0c0fcaf0979b3e42e3b9f8c553e33cc0de3a0c3d7d727fabda99b859d044	exe	NanoCore