URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2022-06-20 22:06:43 | 52.15.56.78 | ec2-52-15-56-78.us-east-2.compute.amazonaws.com | Not listed | AS16509 AMAZON-02 |  US | no |
| 2022-06-20 22:06:43 | 3.21.0.145 | ec2-3-21-0-145.us-east-2.compute.amazonaws.com | Not listed | AS16509 AMAZON-02 | US | no |
| 2022-06-20 22:06:43 | 3.134.143.128 | ec2-3-134-143-128.us-east-2.compute.amazonaws.com | Not listed | AS16509 AMAZON-02 | US | no |
| 2022-06-11 14:44:11 | 18.190.101.130 | ec2-18-190-101-130.us-east-2.compute.amazonaws.com | Not listed | AS16509 AMAZON-02 | US | no |
| 2022-06-10 08:03:07 | 3.136.195.119 | ec2-3-136-195-119.us-east-2.compute.amazonaws.com | Not listed | AS16509 AMAZON-02 | US | no |
| 2022-06-10 08:03:07 | 3.133.215.23 | ec2-3-133-215-23.us-east-2.compute.amazonaws.com | Not listed | AS16509 AMAZON-02 | US | no |
| 2021-06-23 16:36:09 | 172.67.164.129 | Not listed | AS13335 CLOUDFLARENET | n/a | no | |
| 2021-06-23 16:36:08 | 104.21.15.216 | Not listed | AS13335 CLOUDFLARENET | n/a | no | |
| 2022-05-05 21:03:50 | 188.114.97.6 | Not listed | AS13335 CLOUDFLARENET | n/a | no | |
| 2022-05-05 21:03:50 | 188.114.96.6 | Not listed | AS13335 CLOUDFLARENET | n/a | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2021-06-23 16:36:09 | http://grisando.info/app.exe | Offline | exe glupteba  |  abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2021-06-23 20:47:26 | e718a8778287f4e364f7351a0c40b8342f98da515601921d1844b3efa5ced16e | exe | Glupteba | |
| 2021-06-23 19:03:00 | cc989c2ce0009387572c60ac3e0c4554162fdd6713520e9aaf1bf20e039e154d | exe | Glupteba | |
| 2021-06-23 17:35:33 | b40d3f5493f03dd8fa6efc0d3f02c7f67d3ca76daa45dbec75887cb6eb013461 | exe | Glupteba | |
| 2021-06-23 16:36:08 | 3ed60a60c3aeb99f383ef97de1581827c535d082cf9f33c5fe6ef572fc186a94 | exe | Glupteba |