URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	gadem.ug
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-06-25 00:50:44 UTC
Total malware sites :	6
Online malware sites :	0 (0%)
Offline Malware sites :	6 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-06-25 00:50:50	217.8.117.45		Not listed	AS49505 SELECTEL	TM	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-06-25 05:18:08	http://gadem.ug/az2.exe	Offline	exe NetWire	zbetcheckin
2020-06-25 00:51:08	http://gadem.ug/rac2.exe	Offline	exe RaccoonStealer	p5yb34m
2020-06-25 00:51:03	http://gadem.ug/ds2.exe	Offline	exe	p5yb34m
2020-06-25 00:51:00	http://gadem.ug/ds1.exe	Offline	exe	p5yb34m
2020-06-25 00:50:55	http://gadem.ug/ac.exe	Offline	AsyncRAT exe	p5yb34m
2020-06-25 00:50:50	http://gadem.ug/nw.exe	Offline	exe NetWire	p5yb34m

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-06-30 07:33:58	7b9a1aa88be62eb638af26146fce0a1b71aec646d2495fb350dd6d56997e7582	exe	NetWire
2020-06-30 07:33:56	c33d8976bdb827d5bc0b6fe2752c586ff1fe7bee2a8f1dd785ec341655a6c93c	exe	AsyncRAT
2020-06-29 12:29:04	560544396e9f24f5af777466f988dc76f26cbbb2e27fc9f7557b50fd2688638b	exe	NetWire
2020-06-29 12:28:49	599cd6f1436c0191685f2137ee646106b978ae05c7ba5b67c0786a7ca8661b94	exe	AsyncRAT
2020-06-28 12:21:29	eae16da5fc100629cd521676985ff89e2db4ab02d915c2ff837dc320c7678b28	exe	AsyncRAT
2020-06-28 12:14:26	443fa7351fe53986de931e5ef2b42b0402ed9b418668bcf0bf9b027e8cf5b925	exe
2020-06-28 12:14:06	8504f0e3b8db639eaeacca5ccbe9f53cc405d7df7b8b4f456aa9d89bee92c6c6	exe
2020-06-28 12:12:58	e267d47151de54c28895c9ca5318108152eebdf76c25939b8f1a9eb3fd4ffd04	exe
2020-06-28 12:12:40	df2688f6f88ea0e66b46d856e514adf25f8456cb4e45c849233799e17b1171e3	exe	RaccoonStealer
2020-06-28 12:12:30	934609a4e6bbf6eda68c1a09fbd0d5e331229f974148c21aa99add9f94171ec1	exe	NetWire
2020-06-27 14:09:57	7855a5a1003074d5aa61fd3fcc2e562d73e15b53e2ecaec1222cdf58004feb06	exe
2020-06-27 14:09:38	f98d1d8e2516bacea4fb8cac084d562db3d881a0d8e65c684a237ead8d787b5f	exe	AsyncRAT
2020-06-27 14:09:38	4209cd3d55591cfa36cbbde09cf283d67786175bb6130d1f3a95c1d46a7ea81d	exe
2020-06-27 14:09:37	49e2ee6da58159e52fe8df97f04b60907d1211a0b357207c5cbe0773fe52db8b	exe
2020-06-25 20:46:09	f53faac8d340d58a2e4916652372ccc1ec9be6a34da5332ee31072ed9c75c37a	exe	NetWire
2020-06-25 20:45:50	7df1cf23e6129f8567a70233fd5c24a7673193891c6bb63773b9e2821bc9918f	exe	AsyncRAT
2020-06-25 05:18:06	528564ec89a2600b4934f6f115014783276e05df63fe5959f1c4787648c6beba	exe	NetWire
2020-06-25 00:51:08	717afc02c675a4f82bb64f67d303854f6fbd4e7400f3f894f849c4e238abd1a4	exe	RaccoonStealer
2020-06-25 00:51:03	631c75bc5054e1edf9dc0527d87452b3af73e35c9c55a2c38367f53350d72c51	exe
2020-06-25 00:51:00	bd3ae11ff6f6237d412fb63691f9f996cadfff01f4cc8fc794667cac32e4591b	exe
2020-06-25 00:50:55	12859bb50366c248e9488a8852c0923bcb4135f8fcedcbac19228fe329ff39a7	exe	AsyncRAT
2020-06-25 00:50:47	566dfcc4ee6de9b9963de7d92276a5db51e6e40e4040ceb5fc25872673fec234	exe	NetWire