URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	fox-news-checker.cc
Domain registrar:	Epik
Domain registration date:	2022-03-23 11:09:54 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Blocked
Firstseen:	2024-07-13 12:04:04 UTC
Total malware sites :	34
Online malware sites :	0 (0%)
Offline Malware sites :	34 (100%)
A record(s) observed :	4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	SBL	ASN	Country	Active?
2025-06-20 22:41:17	209.196.146.115	Not listed	AS394456 EPIK-LLC	US	yes
2025-03-13 02:30:44	87.121.84.254	SBL683025	AS215925 VPSVAULTHOST	US	no
2025-02-14 14:53:05	91.202.233.151	SBL677411	AS200593 PROSPERO-AS	TM	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-03-18 12:03:09	http://fox-news-checker.cc/TPBActivetor/TPB-ACT...	Offline	exe LummaStealer opendir	NDA0E
2025-03-18 12:03:09	http://fox-news-checker.cc/update/TPB-1.exe	Offline	exe LummaStealer opendir	NDA0E
2025-02-14 14:53:05	http://fox-news-checker.cc/1337/TORRENTOLD-1.exe	Offline	Lumma LummaStealer	Riordz
2024-07-13 12:35:35	http://fox-news-checker.cc/limetor/link4.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:35:18	http://fox-news-checker.cc/1337/A.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:35:18	http://fox-news-checker.cc/TPBActivetor/link2.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:35:14	http://fox-news-checker.cc/TPBActivetor/link4.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:35:13	http://fox-news-checker.cc/limetor/link3.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:35:11	http://fox-news-checker.cc/FreeApps/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:35:07	http://fox-news-checker.cc/HEXO-SOFTWARE/link2.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:53	http://fox-news-checker.cc/1337/E.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:53	http://fox-news-checker.cc/limetor/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:46	http://fox-news-checker.cc/TORRENT-SPAM/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:41	http://fox-news-checker.cc/limetor/link2.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:36	http://fox-news-checker.cc/1337/B.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:36	http://fox-news-checker.cc/1337/C.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:32	http://fox-news-checker.cc/HEXO-SOFTWARE/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:32	http://fox-news-checker.cc/TORRENT-SPAM/link2.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:26	http://fox-news-checker.cc/1337/D.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:26	http://fox-news-checker.cc/FreeApps/link3.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:21	http://fox-news-checker.cc/FreeApps/link4.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:21	http://fox-news-checker.cc/TPBActivetor/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:21	http://fox-news-checker.cc/FreeApps/link2.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:34:16	http://fox-news-checker.cc/TPBActivetor/link3.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:18:10	http://fox-news-checker.cc/newz2k/link4.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:17:19	http://fox-news-checker.cc/newz2k/link2.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:17:11	http://fox-news-checker.cc/newz2k/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:17:10	http://fox-news-checker.cc/newz2k/link3.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:04:20	http://fox-news-checker.cc/TG-Source/link2.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:04:18	http://fox-news-checker.cc/update/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:04:14	http://fox-news-checker.cc/TPB-2-Links/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:04:13	http://fox-news-checker.cc/TG-Source/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:04:13	http://fox-news-checker.cc/TPB-2-Links/link2.txt	Offline	185.99.135.162 ascii link opendir	NDA0E
2024-07-13 12:04:12	http://fox-news-checker.cc/TPB-G/link.txt	Offline	185.99.135.162 ascii link opendir	NDA0E

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-06-18 17:14:01	66b6fc4a116af7fc4749b6e135206895770cd20344f66b0e1a15a7064041bf0a	exe	LummaStealer
2025-06-18 16:57:59	66b6fc4a116af7fc4749b6e135206895770cd20344f66b0e1a15a7064041bf0a	exe	LummaStealer
2025-06-18 12:34:56	66b6fc4a116af7fc4749b6e135206895770cd20344f66b0e1a15a7064041bf0a	exe	LummaStealer
2025-06-11 03:32:33	ff8f729eb7a69bee300d0fbf2b5e1a584b4377fe63ab8df1ee92b4b336eb5059	exe
2025-06-11 02:16:56	ff8f729eb7a69bee300d0fbf2b5e1a584b4377fe63ab8df1ee92b4b336eb5059	exe
2025-06-10 21:43:50	ff8f729eb7a69bee300d0fbf2b5e1a584b4377fe63ab8df1ee92b4b336eb5059	exe
2025-05-18 21:46:30	796ce3e06bc10916427b847a1b6c2f1eaa9904f95db66e35c28cebec34efc9c5	exe	LummaStealer
2025-05-18 21:45:43	796ce3e06bc10916427b847a1b6c2f1eaa9904f95db66e35c28cebec34efc9c5	exe	LummaStealer
2025-05-18 21:40:28	796ce3e06bc10916427b847a1b6c2f1eaa9904f95db66e35c28cebec34efc9c5	exe	LummaStealer
2025-04-12 15:03:24	4ef46582ae95f961c0a0af8262de20681d9fc34ab18ead54a634448c077fd82d	exe	LummaStealer
2025-04-12 14:06:18	4ef46582ae95f961c0a0af8262de20681d9fc34ab18ead54a634448c077fd82d	exe	LummaStealer
2025-04-12 13:44:44	4ef46582ae95f961c0a0af8262de20681d9fc34ab18ead54a634448c077fd82d	exe	LummaStealer
2025-03-24 05:11:07	d5e0fb6b41173a366bc30b939beb474f52793303515c0706a961796bc3ac65c6	exe
2025-03-24 00:36:24	8c0b11ccc08ca9295f15cc23733ce76f88ccb51f06435f29c32ebd200775118b	exe	LummaStealer
2025-03-23 22:13:11	8c0b11ccc08ca9295f15cc23733ce76f88ccb51f06435f29c32ebd200775118b	exe	LummaStealer
2025-03-23 21:19:06	8c0b11ccc08ca9295f15cc23733ce76f88ccb51f06435f29c32ebd200775118b	exe	LummaStealer
2025-03-18 17:43:50	064b927ffd14d4042c8be2aefdc7b97134a4a464587e72ce449c40c66ecaf159	exe
2025-03-18 12:03:08	b80b32ff1d730cfc947db68a4fc546576195bf302d1a05eee31b988fd53ea132	exe	LummaStealer
2025-03-18 12:03:08	b80b32ff1d730cfc947db68a4fc546576195bf302d1a05eee31b988fd53ea132	exe	LummaStealer
2025-03-03 10:45:42	b80b32ff1d730cfc947db68a4fc546576195bf302d1a05eee31b988fd53ea132	exe	LummaStealer
2025-02-17 18:16:26	12b096048be2cca3f61e8fe031efa942faf8f4c31cbafe76953b744537275ace	exe	LummaStealer
2025-02-14 14:53:05	8bc4c1e92cfffe6d52dd7f5c65263e24dbc7bc470dbf631e782afd5e90ef5ee3	exe	LummaStealer