URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	guseyn.best
Domain registrar:	Namecheap
Domain registration date:	2021-03-26 22:33:16 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-02-05 17:19:03 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-02-05 17:19:06	178.208.86.62	hosted-by.majordomo.ru	Not listed	AS216139 IRONHOST	RU	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-02-05 17:19:06	http://guseyn.best/MediaPlayer.exe	Offline	ArkeiStealer exe RedLineStealer	benkow_

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2022-02-06 18:46:47	3702b5512d3d37bce8f288b800d11743b6f3a280df0d40aa57cd5080dffb1839	exe		ArkeiStealer
2022-02-06 17:41:12	c68b545f5d61152690f274c81e12ce294a4e64a6595a820540ff7ed3bdde2750	exe		ArkeiStealer
2022-02-06 16:45:14	8cbd131b98c4ee25e152907ad770f7cdfd982700b9d711733f0c828aa3d0ad3b	exe		ArkeiStealer
2022-02-06 16:02:14	e68f2cdb540fd95af998f10798ff5a6c3a2fdca0d3c3783a7c333ad7907e09c7	exe		ArkeiStealer
2022-02-06 14:01:06	55e2d64987ebc94f1ad0a9b0368a36064d63397f8c1143a8d2411e140bc5a1d6	exe		ArkeiStealer
2022-02-06 12:12:16	16c97e9b4cf2b609db8f80345aff4dc3062ff2c6e1a60bc4a8ebeba18ffdd8c7	exe		ArkeiStealer
2022-02-06 10:04:09	47ac985c17912f7de1cedc6662ebb4241595bfa1f54b08a81360521033edd987	exe		ArkeiStealer
2022-02-06 08:00:55	ebc9e5a3cda11d0c8a43155a2647f0c4647127d323d053f30f791e9331f2241d	exe		ArkeiStealer
2022-02-06 06:02:09	80cd0d21b194dfe51e804ae9cc8c310c9dad7f7a7c29158bfc1b06cb5598918d	exe		ArkeiStealer
2022-02-06 05:11:01	83c6bfec5a612c2dbbbeef8375e75ba1faea51434a094eb321a73cf87575cde9	exe		ArkeiStealer
2022-02-06 03:24:08	63f1a21311fb0aacb94bbc908180355feda19788c656f2f258a38e3daca00131	exe		ArkeiStealer
2022-02-06 02:29:44	513edb7b52fdc6175372da6c8c0e77686e3eeb0031069b7f1be66ff28bb171fe	exe		ArkeiStealer
2022-02-06 00:28:35	82594b278ca2d7266ab93e81bbe06b2f95e3f46922b5f9d074c7d5a60310a222	exe
2022-02-05 22:54:37	5c5d9711ea8ddb520646c0ac33e540c3860b795914749ee377040d8626ecc93b	exe		ArkeiStealer
2022-02-05 21:18:17	7c2744fc926928de15df923b58294b6c1318fb7b01a96399e661f328220d005b	exe		RedLineStealer
2022-02-05 19:36:06	0ba7dc012a6d64f8759b1d30629f56daa130bcec36e42c318cada88a2ad1d351	exe		RedLineStealer
2022-02-05 18:18:15	9f157ceaee5858d2f77f1f828d9dc8417c7c99a65b4412896ac0231416336393	exe		RedLineStealer
2022-02-05 17:19:06	ba195a9f090cb803df55df40d839f95e335234a13d3207f65efa46c3d0f837d0	exe		RedLineStealer