URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: goldrush.ug
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2022-07-05 13:42:03 UTC
Total malware sites :2
Online malware sites :0 (0%)
Offline Malware sites :2 (100%)
A record(s) observed :8

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-05-27 10:53:57 94.142.138.213SBL655622AS211522 HYPERCORELTD- FIno
2023-05-03 14:10:00 91.215.85.135SBL615768AS200593 PROSPERO-AS- RUno
2023-04-14 15:14:16 94.142.138.104SBL655622AS211522 HYPERCORELTD- FIno
2023-03-16 16:28:48 91.215.85.173SBL615768AS200593 PROSPERO-AS- RUno
2022-12-19 13:15:11 91.215.85.158SBL615768AS200593 PROSPERO-AS- RUno
2022-07-05 13:42:05 45.143.201.4free.ntup.netSBL625748AS200195 VERASEL- RUno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-07-05 13:43:04http://goldrush.ug/zxcv.EXEOfflineAZORult ext CoinMiner exe ModiLoader ext RecordBreaker ext RemcosRAT ext Rhadamanthys zgRAT vxvault
2022-07-05 13:42:05http://goldrush.ug/zxcvb.exeOfflineAZORult ext CoinMiner exe RecordBreaker ext RemcosRAT ext Rhadamanthys Vidar ext zgRAT vxvault

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-08-07 14:43:2029f5a8629986da0b4a353e5423fb39c505cba7c06e7aa4b5a4029c5a1669ae95exeRhadamanthys
2023-08-07 14:35:3829f5a8629986da0b4a353e5423fb39c505cba7c06e7aa4b5a4029c5a1669ae95exeRhadamanthys
2023-07-31 19:02:28f8e32cb5e526179391a15edf9525670dc8280b40dade1b8765d5d33ce125ca94exe 
2023-07-21 11:02:447a1e196589eb94a44f8713879604ebe1f17c9445265b6b2bc476d95cbcf4248bexe  
2023-07-19 13:09:50bcf3266e8996bcdb7acb686034f264b07c228ce37f1212b663b636cc0317ee1aexe AZORult
2023-07-19 12:49:40bcf3266e8996bcdb7acb686034f264b07c228ce37f1212b663b636cc0317ee1aexe AZORult
2023-06-25 03:12:33fc6ddb1f7644597b84d14e3efa4cd1a1d1ad0083141b3fa2a613cd3c092f6505exeRhadamanthys
2023-06-25 03:10:07fc6ddb1f7644597b84d14e3efa4cd1a1d1ad0083141b3fa2a613cd3c092f6505exeRhadamanthys
2023-06-22 01:24:042ee1551e35334357950130d706f43dec0712413a26419ce31f241a1635e741b6exe 
2023-06-21 10:42:222094bf8727d294ad281ac797e871bc389964702dd5775fc795996d81d7caab3aexe 
2023-06-20 13:05:28cffd427f69fb9fc96891e8d2623c20310fc9e09675f36a7cf0916afe18c665d8exe  
2023-06-18 06:24:537f82b7ccf94e69a5b9c83e20a7ffdf956de569159857afafd1a327ae31ad1e68exe  
2023-06-11 16:31:2933199dd299583e61dbf8e2ae502d5bb443a35253a37914e2faad8a2f53862ab6exe  
2023-06-10 11:35:31630daffa4c5a180be013f3a298d92655d0d42e08888cd573a92bb339c2584825exe  
2023-06-04 14:05:18341a3b6d8cda2beaee6acff1c20e4f4ccd75cc472786b4c2c943a2046a8fca83exe  
2023-05-29 09:45:3063317d5328f9a50bb21ce246b7f1ccae616c2fe61477935a664494b5907fbe31exe 
2023-05-28 15:39:235d2e841645576d0eefcc6bcc6c0d480c0c6874f05a56e92441319a5c41b38979exe AZORult
2023-05-28 12:37:37af1394552461f6c94a0b9bd234e52eb78327bff5279d91c6c6b6d361707efc7dexe  
2023-05-28 11:21:525d2e841645576d0eefcc6bcc6c0d480c0c6874f05a56e92441319a5c41b38979exe AZORult
2023-05-12 05:32:44bf1d731a91e424fd67778f176ac652fa5ca39f2ab188ef740184e4b2808c7b3cexeAZORult
2023-05-12 05:30:51bf1d731a91e424fd67778f176ac652fa5ca39f2ab188ef740184e4b2808c7b3cexeAZORult
2023-05-11 13:14:1279a7c9d15971c14d78baccbf211b3ca1e9adcb0befc6d3d1c5d92902d70678e2exeAZORult
2023-05-11 12:54:1979a7c9d15971c14d78baccbf211b3ca1e9adcb0befc6d3d1c5d92902d70678e2exeAZORult
2023-05-08 19:58:2184c18f78f11b9bc3fd3e96925d2a7b76ab5ecfb927c377ad27456e191815b24aexeCoinMiner
2023-05-08 15:13:2984c18f78f11b9bc3fd3e96925d2a7b76ab5ecfb927c377ad27456e191815b24aexeCoinMiner
2023-05-03 11:39:2083263fa7b8c560ae026a24d6ea9e6eafb16aa207cc5557c65c7f71f703f3a593exe  
2023-05-03 11:04:1583263fa7b8c560ae026a24d6ea9e6eafb16aa207cc5557c65c7f71f703f3a593exe  
2023-05-01 17:06:12e99f79618b991de5d1052096950590a4fe833b885871a96bb1202e3d6dd876a0exe  
2023-05-01 16:23:31e99f79618b991de5d1052096950590a4fe833b885871a96bb1202e3d6dd876a0exe  
2023-04-30 15:55:44ff277e11345c79a60de0ba45011460629487e82e8b0b58a8ddfdfeca2d7623f5exe  
2023-04-30 15:34:56ff277e11345c79a60de0ba45011460629487e82e8b0b58a8ddfdfeca2d7623f5exe  
2023-04-22 13:35:190127ebf8628f963a453520b0149fc11fc5d0a56536ce2a41c9dfdd3c597a0746exe zgRAT
2023-04-22 13:14:370127ebf8628f963a453520b0149fc11fc5d0a56536ce2a41c9dfdd3c597a0746exe zgRAT
2023-04-18 11:59:42d9b498faf01b9eb598761915a6fc2fb4f1ab2317d354348baca6794730fd15d3exeVidar
2023-04-18 10:41:58b415a5cc8d0c1c960e7bc16bcb9351943b2c998f9430b1a1425b715754cc1e11exe ModiLoader
2023-04-14 16:06:300cff8404e73906f3a4932e145bf57fae7a0e66a7d7952416161a5d9bb9752fd8exe Vidar
2023-04-14 15:14:16c90193af8ffe050ad79402dfceb9274be08b300bc02ecb1e6394917ee50934e4exe ModiLoader
2023-04-14 11:35:588640513174c01a908d4c70e564be07f465835ffbacbe2347e416819d25d3f2d5exe  
2023-04-13 09:12:047c4ec4f3ee953c6c2664ddae17fe4bceab33e23361da0b2bbfd2cee47d9dc6a9exe  
2023-04-08 14:41:431be1d6e7bb900303af0bc8308152d5092c245f11747007e69b93f3a581f9c6dcexe 
2023-04-07 18:00:184130ce135fbfab00618f261a0397e88479d2f61e1ed0d09ebcde525439774f3eexe AZORult
2023-04-07 14:57:414130ce135fbfab00618f261a0397e88479d2f61e1ed0d09ebcde525439774f3eexe AZORult
2023-04-05 22:13:54a6b9b269e1625c007d9b11582e202e17bed4da1d10e1a86e0609272408492714exe 
2023-03-23 11:29:1160289bfd6a3a67726074cccced70f113419fea3b76c00855fb7dc5fa332d3f7aexeRhadamanthys
2023-03-23 11:01:396ad4c22533cf835aaafd24303e155aa431d3aa38c1746dc8fccf2924e0be4b63exe Rhadamanthys
2023-03-16 16:30:09a54493e71a7f28fe61e607ba4c089ada71e13ff9e1df6cef5619a4163e2b0a1fexeAZORult
2023-03-16 16:28:47a54493e71a7f28fe61e607ba4c089ada71e13ff9e1df6cef5619a4163e2b0a1fexeAZORult
2023-02-05 09:35:544908e51e65bf67fdc3a559be7c47c3df1354a4a864b931cb176d282048f8d9c2exeAZORult
2023-02-05 09:15:344908e51e65bf67fdc3a559be7c47c3df1354a4a864b931cb176d282048f8d9c2exeAZORult
2023-01-13 06:23:418c5df030de0c79f2155a60e0d5f41889ec8d07d441279d406996dca4639f8539exeRecordBreaker
2023-01-13 05:23:128c5df030de0c79f2155a60e0d5f41889ec8d07d441279d406996dca4639f8539exeRecordBreaker
2022-12-19 17:59:23aa4185102f68d05e1dc41d46e7b65cfb4a12e1f8694b7300264a6044a51f6931exeRecordBreaker
2022-12-19 13:15:10746669c6be1807fdafbc7ee3f1e958e1b584fa31688742bcc044d269af94b0d8exeRecordBreaker
2022-11-26 16:39:352fc0f46e2ceded0b284d4f41759de65e73532900202260b98769ebfaf3244951exe RecordBreaker
2022-11-26 16:34:209063dd7d69236cca3007587ccc04334b4289ec456f6983673f3d9f749092a29cexeRecordBreaker
2022-11-08 11:48:41fe7a6a9b4aef81f88d2462b2b44b6659564e5885eba47aea4a196f759e6c86b8exe  
2022-10-06 01:20:11d4227ec9dd2159223342099e0ed7d55c0691fe677ab2fc513c149a137e50ced8exeAZORult
2022-10-06 00:37:49599fa7fc07b1b8265ea936ce641733fcec03eb0fe8cc4822e5a752b6629e216eexeRecordBreaker
2022-10-01 16:01:508e2d87f5f34b7764e66644f831467e469dcc18a30a17d02252880851f560783dexe  
2022-10-01 15:43:189a81a9c84d36a49be8286458ce7c919538647711b28fedae9b5521762ff76030exe  
2022-09-16 10:04:36e553b05dd2afafadb6ad38d3463056e50cfa31ba3ac5489a7a114ec35ef10194exeRecordBreaker
2022-09-16 09:57:3960e6da1143cb32a41ecc76952d3b4ae8a8910b790973473e61fc2eb147704af7exeRecordBreaker
2022-08-19 09:44:1004fb5a1f6082a09a55bec26e0748918da0d1007e2a43c70723dc79cc7c413079exeAZORult
2022-08-18 17:43:0965020d58d04109f2e8f46d12e43aeee9e98ec182db4bd4a2b2c336978e696c06exeAZORult
2022-08-14 05:25:25ea34b776b896df9512f0aab37e3b0d56ff012a0906910a957db335f9e7dcf2d4exe RecordBreaker
2022-08-14 05:18:20d81620ec69feb5e745b23dacc25b874cef4db7b0daeaefbdb739300838f4d343exe RecordBreaker
2022-07-10 12:55:3428455b1a0b29240e95877cff96528b3a196f0cf3a63d9980dc70349cdc0e1e74exe RemcosRAT
2022-07-10 12:54:18d75d7b0534ff648f16f5751be79a2c23158b6412a780180aec78c77c7e95071dexeAZORult
2022-07-05 13:43:0479103532395036c14b755d90f9cacfdec6b588f1b031a7cba936c1b9d2ef3b51exeRecordBreaker
2022-07-05 13:42:056887d3d4d5baa135418c2305915c56b448960d03c427f6c63c430465ddaa6547exe RemcosRAT