URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: gfmodd1.webselffiles01.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2021-03-08 14:25:09 UTC
Total malware sites :5
Online malware sites :0 (0%)
Offline Malware sites :5 (100%)
A record(s) observed :61

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-04-23 04:31:42 54.77.211.92ec2-54-77-211-92.eu-west-1.compute.amazonaws.comNot listedAS16509 AMAZON-02- IEno
2023-04-06 12:32:32 54.76.196.162ec2-54-76-196-162.eu-west-1.compute.amazonaws.comNot listedAS16509 AMAZON-02- IEno
2023-04-06 12:32:26 54.154.153.69ec2-54-154-153-69.eu-west-1.compute.amazonaws.comNot listedAS16509 AMAZON-02- IEno
2023-03-19 17:23:07 63.34.15.133ec2-63-34-15-133.eu-west-1.compute.amazonaws.comNot listedAS16509 AMAZON-02- IEno
2023-03-18 19:23:17 54.73.183.57ec2-54-73-183-57.eu-west-1.compute.amazonaws.comNot listedAS16509 AMAZON-02- IEno
2023-01-23 02:04:14 52.49.229.116ec2-52-49-229-116.eu-west-1.compute.amazonaws.comNot listedAS16509 AMAZON-02- IEno
2023-01-23 02:04:14 52.51.112.88ec2-52-51-112-88.eu-west-1.compute.amazonaws.comNot listedAS16509 AMAZON-02- IEno
2022-12-15 01:45:00 52.211.184.94ec2-52-211-184-94.eu-west-1.compute.amazonaws.comNot listedAS16509 AMAZON-02- IEno
2022-12-15 01:44:54 34.253.71.153ec2-34-253-71-153.eu-west-1.compute.amazonaws.comNot listedAS16509 AMAZON-02- IEno
2022-10-08 15:21:15 52.16.119.250ec2-52-16-119-250.eu-west-1.compute.amazonaws.comNot listedAS16509 AMAZON-02- IEno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-04-19 14:26:04http://gfmodd1.webselffiles01.com/download/lisa...Offlinecybergate exe zbetcheckin
2021-04-19 14:26:04http://gfmodd1.webselffiles01.com/download/4100...Offlineexe zbetcheckin
2021-04-19 14:26:04http://gfmodd1.webselffiles01.com/download/%D8%...Offlineexe zbetcheckin
2021-03-08 14:29:06http://gfmodd1.webselffiles01.com/download/%D8%...Offlineexe zbetcheckin
2021-03-08 14:25:15http://gfmodd1.webselffiles01.com/download/idma...Offlineexe sality zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2021-09-10 06:53:126725a074a268c9fc08c18edb6f7150c2f204f0f0131e7f26c3fcb990d0a027e4exe  
2021-09-06 17:57:006ed0b0ec8c7c24f71c7cece54c5e0f75c733b55d6a118773e77087e215e82392exe Sality
2021-08-29 08:12:40edcc709bf7baf9d6cb4e6381dae1c0af0c21185f4d8f9360bdc64b5192ca75caexe Sality
2021-08-27 06:50:58181b0e1b3a6af1da57cb489edae533edacaed7a862881d2db051c0e263fa0a12exe Sality
2021-08-24 22:02:28ab032d1f3bb23b098c539a718879ea1f1f4fe4da842ea9c5d73b389d0c89b123exe Sality
2021-08-20 19:54:159cc2e0b93208f466de29ae81940be988cb4a87406986f6d19343421c47454db4exe Sality
2021-08-14 20:28:52537b10cf8e13513c59002c768458b911fb39b95a9d5d7cf28455577b26f86af3exeSality
2021-08-13 15:27:021a01e198f114dda369db7002b3ab6689c015405ed3837b458eb914eb48b0be45exeSality
2021-08-12 12:26:1480f3701558105ee8574e8583b1f43ead2f00570493a888e7e3e75c07ee8cb80dexe Sality
2021-08-08 16:32:22d4a178ccf949185f1d6f206c7c18ebfbcbb4493dcbdd6b0e80a537ad6fa052a7exe Sality
2021-08-08 09:33:25a1b91ef3db3a98cfe9d8e4f016a2f010dde0f64fc34909f85ad4b1a8b0a5efd9exe  
2021-08-07 08:18:03f9eb63edb10136fb61280dcc0bb0fb5e740d2f9831431e9c899438dfdfee2a2dexe Sality
2021-08-06 13:31:353a1914e8383da5af10f2e323db2f8047fb21260bc2f4d820d7eb28f26634e9adexe Sality
2021-08-06 07:35:457d7fd027832e9cec19854297565bca6787b4b13c6e3274b86d93cce548306ff2exe Sality
2021-08-06 03:40:39fdf52a7cc01290786d000aa051c66251cb252d9b9ef881d1a8d85cbd53755744exe Sality
2021-08-04 18:59:23205db731aaa6b3910bd82a2e80d206b88ae5d0c49f291a3f4afecd9395290550exe Sality
2021-08-03 17:18:2974c7518dfaa90b2b97b7b11ca6f96dcfe5673a31a1a1cd1232e6e4148b37d22cexe Sality
2021-08-03 16:17:395c2325b4dd7d8fefbea28b35594558793e19c4ab02e83a78397d7bef2af4287eexe Sality
2021-08-01 13:15:28a57987a79deb7485ac71061ed7c870d52e7cfb71a02e780154d083a30927e21bexe Sality
2021-08-01 11:16:55c0d6dff2cacc663f7e60a6638728d8600ebdba6caeb18e28acfbbcd4e5445a39exe Sality
2021-07-30 23:07:246cb8f418e58fde301ff334fe24fb79b1c8169ccef26cf95b78b4da59413d5ee4exe Sality
2021-07-30 02:13:51fc689c492d2013ed8d900802263858d17f6988a8533290b012f3843539ff212fexe Sality
2021-07-29 22:09:47907ef4360e3116d96a666f7f450a67cf8690f2ff00f643f527d841f1a8ce6947exe Sality
2021-07-29 05:22:5244157bec798ce454263c5b5e7cd9f34c18d65ae47b1e3d17544d4f154d3a687dexe Sality
2021-07-29 00:29:1556707688d509b1863fae986a887507669955481889559a583075a6c402dd263dexe Sality
2021-07-28 01:55:02ea45a730c2137b085cedc3ea7b25eb1395d2b9b522123c31a92ab946f071d9abexe Sality
2021-07-28 00:58:4239a77ef363317beea8cad0c8dfe80791ee12647f61396cbfa0128b73113bab8dexeSality
2021-07-26 03:06:05c794579426ff2b6e316cdd434491f34a34b98d1fae347a7caf70d7a58964160fexe Sality
2021-07-25 20:32:595b2d64e8461ac20b302f1bb674295c65119ca3a21dd7bba74893754cd6421265exe Sality
2021-07-24 23:52:49fc5370b0b9bbacce3c0e79794759ca43f2345eb6e15d2be4034fc2f2ac3879a6exe Sality
2021-07-24 11:30:41c2ca0f41fd550e9ca250f9b7f52ed09ba525b311d99adca119b2c4c6c82cac7bexe Sality
2021-07-24 04:55:01f3dda8f48606c448d22a7b407f61757605acc028d3deddd0ad8c1e2742efcf86exeSality
2021-07-22 20:44:084ee41060b8f1c5679b10bebb8378f353ea62eb38ab27f041e3727dd8cb06b19dexeSality
2021-04-19 14:26:0427ff908d2ba78341d069891ee70ce7f253bf301ed6cb835d606b6753b6f90ad9exe  
2021-04-19 14:26:042945a5f4e05f94793eccbed669ca0fd333e86b39f2131ffdcfe398768ca82751exe CyberGate
2021-04-19 14:26:04bc85f899553e25d866cbfd48cdd5aaaa578f0f33ba18e890efd411310bacc5a1exe  
2021-04-06 16:31:44f9c3c38f6837a5d82de6828c487bafe2f750e465390ed782e2ed6bd68b56b7f7exe Sality
2021-04-05 12:09:5353c2d7c52b1f070184837cccf05b5c03029dfaf7efe2d93f7036f407eff9371bexe Sality
2021-04-05 04:14:14ffa7e83fec734f54bf50807426c9096de0eb2659fbaad13c2f36d147fc4af80aexe Sality
2021-04-02 15:22:122c919da93a9768fcdba3f82c7ba2bd73093878b4a8d5b9601f4b1ea5fc17ed23exe Sality
2021-04-01 05:04:07c7e4827930c014c024211f1da350aeae17e6c062e253453a5185e609ca1bbf47exe Sality
2021-03-31 23:55:46d4ee24d07bcf6e9ca1aa0d774b56b672ca178ba130924e13a061aa14be4cd925exe  
2021-03-18 00:44:44bdb1b6c2151038f1023b551d26ef4eab2d5321066d3352d5357b8bee301b67b0exeSality
2021-03-13 01:20:128fcae9789671c1a8d3c5badff355e36ab708330df8a14ce7ad6af486a625d38bexe  
2021-03-12 00:55:327bfba52e66cc0890bca919536e659607b0430cff83fc70185c1e468dffc997fdexe  
2021-03-11 22:13:07a9d5890d01e78976930240912d1b44a65cdd32565808f8140ada2f218d54beaaexe  
2021-03-11 05:39:1968aede6e1d6fd2267742e9ce3f1f2e50d472be18e55eeb251263e7398ecf711cexe Sality
2021-03-11 04:19:381c9fb73a9ea17d973e9873f695a5706c0da22c47091f22eb280c964f4cf41518exe Sality
2021-03-09 16:50:520e7906a400e153960b156d1d61e5f08890d2887935a5d73f3fc36a025f6a8f87exe Sality
2021-03-09 03:27:566d8d32f33ba7a5ab87262020c39b67bf149de9ab97607f35cbea25483fe3579eexe  
2021-03-08 14:29:0527ff908d2ba78341d069891ee70ce7f253bf301ed6cb835d606b6753b6f90ad9exe  
2021-03-08 14:25:157d0c6a122569bd9c1d9e7ce1027e46a8ccedf0a99d429bb2756e35b64c9274fdexe Sality