URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: fafhoafouehfuh.su
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2019-05-15 12:11:00 UTC
Total malware sites :5
Online malware sites :0 (0%)
Offline Malware sites :5 (100%)
A record(s) observed :13

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-09-05 10:01:55 31.177.76.32Not listedAS48287 RU-CENTER- RUno
2023-09-05 10:01:55 31.177.80.32Not listedAS48287 RU-CENTER- RUno
2020-04-19 16:01:04 88.218.16.27Not listedAS213953 MizbanDadehPardis- IRno
2020-04-05 19:01:14 93.126.60.109asmanfaraz.110.60.126.93.in-addr.arpaNot listedAS44375 AISDP- IRno
2020-03-14 10:07:21 92.63.197.225SBL686329AS211736 FDN3- UAno
2020-02-05 21:11:46 92.63.197.190SBL686329AS211736 FDN3- UAno
2019-09-02 23:23:19 193.32.161.73SBL654473AS49468 MAGHOST_RO- ROno
2019-06-05 15:48:10 193.32.161.77SBL654473AS49468 MAGHOST_RO- ROno
2019-06-06 22:47:20 1.1.1.1one.one.one.oneNot listedAS13335 CLOUDFLARENETn/ano
2019-05-15 12:11:06 94.156.133.65Not listedAS10557 CNW- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-12-24 15:44:10http://fafhoafouehfuh.su/44.exeOfflineexe phorpiex ext abuse_ch
2022-12-24 15:44:09http://fafhoafouehfuh.su/55.exeOfflineexe phorpiex ext abuse_ch
2019-05-15 12:11:23http://fafhoafouehfuh.su/22.exeOfflineCoinMiner emotet ext exe heodo ext zbetcheckin
2019-05-15 12:11:12http://fafhoafouehfuh.su/11.exeOfflineCoinMiner CoinMiner.XMRig emotet ext exe GandCrab ext heodo ext phorpiex ext zbetcheckin
2019-05-15 12:11:06http://fafhoafouehfuh.su/33.exeOfflineexe zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-01-07 07:05:38cb541b99627ce8472599a1145595037b9314cb616d2d5c54e5cf139074237034exePhorpiex
2022-12-24 15:44:10764621435395609860a78ef6d107832fb9bb7f41f02c0bf11a180d9309c008aaexePhorpiex
2020-04-20 18:01:5768657be04f5b550fec4671437e5dc5849408eada96f5ff44cb0972b0e28ca5beexePhorpiex
2020-04-08 02:46:40f8a3b64aa3c1c639a5ce1b100de860d4f97703879df0d01ce0118ae97c1b7423exeCoinMiner.XMRig
2020-04-05 19:01:10a8f46fedf70cc67b71c9e147d30b72d6ca8b9708ec73e45e48b83bb97a383a65exe  
2020-03-20 15:05:5111b00a800ef9e28b93329362c4923340080370bd506627273207ca1a422a4534exe Phorpiex
2020-03-17 14:06:25993d2f33be65ced84cdcaff1e57616a80f708ecfacb6f7b12c94aa65e121f080exe Phorpiex
2020-03-14 10:07:2103618500f13e022c459a4bb603f40a464b5c520907a0634d442fb9c4f8f27d29exe Phorpiex
2020-03-12 23:06:26260623d46d2b96d2158293bd8eb21611a4d5dbbbd7996abcff2fa5d17d84a0acexe  
2020-03-11 07:08:100fdd21beb009e9675f955733c80e8053b5dafbb12d22b9cb761af3df82be6505exe Phorpiex
2020-03-11 02:25:109d378340ae4e0da80a590927f139f70a875b3809592139024bf27e4c70997f9fexe  
2020-03-10 22:40:33a9e8cc04eb20306734cbb0aaed90746f2e87260a1d66f20413efdf1c331fe0b0exe  
2020-03-10 20:56:25e115c62d6bd273a988c07570b40cd9caed1873b8bc85384797debb9182a113fdexe CoinMiner
2020-03-09 20:08:35468340a7d422c3525d4bb9c274511d77ce715f86f42eb8c790f5cc59bda6c32aexe  
2020-03-06 09:08:448a3b9a9dc3f14dce7dff9280df58eeb183b4f3b8c57289d05212ce22e25d1c16exe Phorpiex
2020-03-04 22:23:0640a6fb569e0abd218106b96ea9f7f6e74e094937c63ed4fcd44bdd754542228aexe Phorpiex
2020-03-03 21:35:381565d1de4d537a94e30ccfa2fcd87fcd56245fb03f72ff680ded7c1d1850ff68exe Phorpiex
2020-03-03 19:08:412d78656550bb256779b9cadbf5970b5b9b097e600bb6d00bd91775c1eef84609exe Phorpiex
2020-02-12 00:09:08bfcf5fc1fcacbddc064955b2fe662a88f27dde3056d116dfc7857c9261c27d1bexe  
2019-09-02 23:23:21d12100599ef8bf6d65b49159a00713e7e147d19d387af087e7313fa3a5ef473bexe  
2019-08-14 07:59:38b2ab7405186aa88a72c21e7ef3a5fa5e9f0ca25aadfb49c80e8b09ea507bd054exe Phorpiex
2019-08-06 07:05:08d0fcb364a1d37c93740edcb88695de72de8b53fcf29c6bb0fcbc792897fd9b8bexe Heodo
2019-08-01 12:17:2877689e7752470501d26cf8a5e2eb9b4e1ac372b27b2151268e0acf024e355f99exe  
2019-07-27 17:10:111ab8feefd67f3706a42f996a3291d24a7ab2c5eb67d98236eb73995d587576adexe CoinMiner
2019-07-25 23:49:0729c5bee50ae4ae71dee17438c7833ce25eac1a7dad491703eec74cf266b0e889exe CoinMiner
2019-07-23 15:36:13db9e9ebd3bde83b601be37c975f9a90edb75bd09dff87548c4bc1157eaf73fe6exe CoinMiner
2019-07-23 15:36:01db9e9ebd3bde83b601be37c975f9a90edb75bd09dff87548c4bc1157eaf73fe6exe CoinMiner
2019-07-18 18:47:130c77b260ee3fdd2754cd4f289efce709519aad34fa3cb84663655a6240e45973exe Heodo
2019-07-18 18:47:130c77b260ee3fdd2754cd4f289efce709519aad34fa3cb84663655a6240e45973exe Heodo
2019-07-18 01:33:17cfa7edc52cb8289ea0822520adf2c116c879c522af81a8aea35e9421a9019535exe  
2019-07-18 01:33:16cfa7edc52cb8289ea0822520adf2c116c879c522af81a8aea35e9421a9019535exe  
2019-07-17 07:42:3164d187bed40d023e14d41b1a80d528f5c12dcf743fcb4de91530567d3244e09eexe  
2019-07-17 07:42:3164d187bed40d023e14d41b1a80d528f5c12dcf743fcb4de91530567d3244e09eexe  
2019-07-12 06:42:296379c818071dbb2ef35c6f56c1bcee95da8791a5f24f4f74cd6c5deb788384e3exe  
2019-07-09 14:39:209dbbb31e9df0c42d83a0fa7b610a9438dc3d727d8dd7eaa81418df25f87d5981exe  
2019-07-07 15:19:169e38c7f093d4f02631406ca00ed549386e794bf7bc0c53e6147b1cbaf10c8a69exe  
2019-07-04 21:01:1248393fed57d7c4309373e400080449afa794f665f1a573ab26cfb316de4cef80exe  
2019-07-02 22:44:13b1650c6085710bd89fdec14ce9a1a5f52d7199ab98671d994181b1e7116a0a86exe  
2019-07-01 09:00:257f9af5447e0da4702f9fefab0bb095b1323813c657c7387e74dcc0774f691349exe  
2019-06-29 14:17:427cb48b10cceccfbbbfb67677ddc9df820ee8c6d45a371dcf75edfd2fac8bf078exe  
2019-06-27 13:12:13fd6f317840d4aff0a173ec79b2c425461a4ecd46b33ce7b8f83efd8df6f8c9b2exe  
2019-06-25 08:37:16d29b5cfe743635c3ca941df6086f2c6440d376742e7984f27c066d59133a0b40exe  
2019-06-24 11:53:10a7ca204632f7c62e75b02978c62be386b47d4d0741f9bd7d826986cef7ca4304exe  
2019-06-24 04:15:127ef44ba16d0b062fa006d6da758affa17fbbeec52d3923324c1501d9dcee3a71exe  
2019-06-23 16:14:11c6c6735b4111fbded7e1904b892104bf022e3425af374936d9d3a8b56b4a27b7exe CoinMiner
2019-06-21 06:33:412253bec8888c6c8fa3227dd6f33206e412309f0787ee67deefa63c50e99b4645exe CoinMiner
2019-06-19 07:55:1894869576b92022ee8e17fd3d6663fdae331870eb9d83854787626b32f3ad84f8exe CoinMiner
2019-06-18 09:03:05fa9020c32b1c1b810b6c261e77863411bc64e70aed6d2a3bbbb82ebdcbaf8740exe  
2019-06-15 10:18:1124a341780548aa0e17616e48dd1286ef91bfd9efc928820b8aff7c14c85a0189exe  
2019-06-12 04:55:11f06bc76647c37e85b60aec384eba21a56a3dc2ddb0b962536b05f1b827fee8b1exe  
2019-06-10 17:34:31cdcca64a29f0bcd58c8a806a0bde74c82f51989e15a01f191fc4f8c31cd640a9exe CoinMiner
2019-06-08 16:07:516606987e6513c7738bcdfaa3d8422ef8a0385aa229ebea26de11e27074f6882eexe  
2019-06-05 15:48:081d8fd7ebe1a9ef61695e0699220c3477b0f947ce4a27a01dccb3b2ebd959ee5eexe  
2019-06-05 15:48:07ac0ea171c290812a7cd4cb774a12fb48b58e0e51d961404c069cca78af33d99cexe  
2019-06-03 01:04:38a8a87269b327752b7c38e1102df56a4fbb06721d753783b59a58c31882b6e153exe  
2019-06-02 03:42:217b0aab33ef164f9ac355102aca78710761abafedec4463e07312fc6d67668082exe  
2019-06-01 02:18:373c003520a83ed5b79d6aa53c0df087379137b4ebe26b2b501b27b014ccadec37exe Heodo
2019-05-31 04:44:21021a38e1421d50fe09927ca136fd3282e11f30a48029ae253ed3ef0a6b62c23cexe  
2019-05-29 20:55:188eabca3a0e42d3502043af28f360c99317310397a3e8c4b5cddc11a2e75ec5bcexe  
2019-05-17 23:08:40290d5d4bee5db0a583df35acc29ea88054006ac38c82dffc23168c3ce1b5b32bexe  
2019-05-17 14:51:386c76aab4a2ddd1d9d0879f714e27732049c3cd93b55a718b6180c49beb8889c3exe Dyre
2019-05-17 14:51:38c16b53acd39eec526698c8e4e90956880b1cdd30554d08086fe94b833ee3a5b3exe Ransomware.GandCrab
2019-05-15 15:52:12821a90b8df936ee05db98967e4591511978d723bae1a834ad8bb0177fd324529exe  
2019-05-15 15:52:12b48f5f3e709103fd14179776989e327baa563a2177e25800e234307f864c08f4exe  
2019-05-15 12:11:237e0b43b7f4fdf7e1bfb01caa8ab9245c5ca0b80a2744a8e780354693ac28043fexe  
2019-05-15 12:11:122aae2375a8cf31575ea9a80bdeddc9ec97586e156e4d0d466d42ffec800ec267exe Ransomware.GandCrab
2019-05-15 12:11:05baaff8ebec94a645cc64233ab915843abd3dba3f677bb7d18ef750900d9804a8exe