URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	hgoz.12v.si
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-07-08 09:49:03 UTC
Total malware sites :	5
Online malware sites :	0 (0%)
Offline Malware sites :	5 (100%)
A record(s) observed :	8

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2021-07-27 10:12:47	203.159.80.40	203-159-80-040.static.neep.com.br	Not listed	AS268624 Gamers_Club_Ltda	BR	no
2021-07-21 17:59:27	37.0.11.43		Not listed	AS3758 SINGNET	SG	no
2021-07-21 12:49:04	54.149.128.99	ec2-54-149-128-99.us-west-2.compute.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2021-07-21 01:11:15	139.59.118.78	soicau666.net	Not listed	AS14061 DIGITALOCEAN-ASN	SG	no
2021-07-19 04:51:17	37.0.8.157		Not listed	AS48628 CoreISP	GB	no
2021-07-08 09:49:05	37.0.11.114		Not listed	AS3758 SINGNET	SG	no
2021-07-21 09:42:53	37.0.8.228		Not listed	AS48628 CoreISP	GB	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-07-13 03:15:04	http://hgoz.12v.si/rem.exe	Offline	32 exe RemcosRAT	zbetcheckin
2021-07-12 08:44:04	http://hgoz.12v.si/server.exe	Offline	exe Xpertrat	abuse_ch
2021-07-10 06:24:06	http://hgoz.12v.si/tasksmgr.exe	Offline	AgentTesla AveMariaRAT exe NanoCore rat RemcosRAT Xpertrat	abuse_ch
2021-07-08 09:49:15	http://hgoz.12v.si/conhosts.exe	Offline	AveMariaRAT exe rat	abuse_ch
2021-07-08 09:49:05	http://hgoz.12v.si/EXCEL.exe	Offline	AveMariaRAT exe RemcosRAT SnakeKeylogger	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2021-07-26 03:43:11	be98f101070d1ef350f5d1768e640f5f23b047f890fde74495e49b9f6fa4d00b	exe	AgentTesla
2021-07-21 20:26:25	548f6a3cc2e79d94f8735680af5a91b4d8dc1a003e578d9027dca782939c9755	exe	AveMariaRAT
2021-07-21 18:11:02	548f6a3cc2e79d94f8735680af5a91b4d8dc1a003e578d9027dca782939c9755	exe	AveMariaRAT
2021-07-21 17:59:26	d3b8e9e564a71513336d3d04d9bc752bc61baacc51df486287127b2b1f5a32e3	exe	AgentTesla
2021-07-20 14:05:51	3eeb2e2ce79a4ef273dd4abf33b96be6131d0bc519bcd96b9fe5aafbd504bc59	exe	AveMariaRAT
2021-07-19 22:35:34	cceb66dfe8d4e74b4f6ea988cb978e0438f29ffdb0923d7cb0590583fd31c46f	exe	AgentTesla
2021-07-19 14:10:39	2d1e7b0b691c806b94f685f348dbe5bb4857edf0408f363314fe97535f4723a1	exe	AveMariaRAT
2021-07-16 07:00:09	03fc8394ec7be9b1bddbe9702f6b9379a84d1ffb9f03ef9b364995bb4228f39b	exe	AgentTesla
2021-07-15 17:40:55	f00d4d611b870507196fbb63c63f661a93db66a02df654a1c3881efaf7975c21	exe	AgentTesla
2021-07-15 09:46:31	d966b0be571e5da5143ec930b1cf99c053412ecfdb76d46b16ba811c16e9eb8b	exe	AveMariaRAT
2021-07-15 07:23:46	691c75376ade3956492197d79853cab8eb38dca6dc2a7c2be3d4f28f445a3d2b	exe	AveMariaRAT
2021-07-14 02:28:48	6be01e50e16e3b04ecc12d5c95265fedd7ed3e2c8b5125aa1eaef1d2ded5aef9	exe	NanoCore
2021-07-14 02:22:44	20abe25c4f02f73cdda3e8e74187202fbdbf5fa2fd7fe92b2d1ab328b66c1950	exe	AveMariaRAT
2021-07-13 17:34:40	bfd78e2e17970e07df2c1a566480c5e1cc7bdc64176915b62fda6f5ee2a1f70f	exe	NanoCore
2021-07-13 11:43:52	dd5107d7cc5b86ef5a650ea6e01b662066c34072859272fa886379e304e7df43	exe	RemcosRAT
2021-07-13 11:42:06	d7f2fddb43eb63f9246f0a4535dfcca6da2817592455d7eceaacde666cf1aaae	exe	XpertRAT
2021-07-13 08:51:14	59d18f1afca7fa22d68455d412c29949993c21edfb3658091bdad62093e0f818	exe	XpertRAT
2021-07-13 08:03:41	04cde0c2284cc4dc8f8a5aeadafca6819ab9d11dfb76fb7f3a2fbbf91d3c0e5d	exe	AveMariaRAT
2021-07-13 06:52:13	538b973f12e7eb9390b9b64cb36818b73b139bee73af7d5c7b8c5d72a0dc037a	exe	AveMariaRAT
2021-07-13 06:43:40	37a9969f1c0394c3899ffcd2fcebf9c9393bc712da4c80d4cdb2b19adec5334f	exe	RemcosRAT
2021-07-13 03:15:04	ed3a96630761ee25131c40b747f50fc55aa85d5e8f631f71bbfc901dd96bac13	exe	RemcosRAT
2021-07-12 08:44:04	5c1fec4300276bd8bd042cf24f256de87350ad32a456578da4eb364de9f3fbfc	exe	XpertRAT
2021-07-12 05:34:26	8c366ee263db756db2648d00eb615b16fc8b92262f8bdf7d3269267eb1382cb0	exe	SnakeKeylogger
2021-07-11 15:10:03	394b84714c723fe917d65356700c36483a29610251eb06b93fb4a2b0922a68a4	exe	AveMariaRAT
2021-07-11 13:38:08	e4ebcaef6d330f0a6eed54fd991ec6fcf996f210570da002c949c4400bd91e74	exe	SnakeKeylogger
2021-07-10 20:49:35	2c2ce93844f1742c83a36255e95c4eaa3ce0fb3162891968b22ee3dd46abee2a	exe	SnakeKeylogger
2021-07-10 06:24:05	c877097a2a3852b34c2ee4b0c7b2f5c7a3dc5313570e0680e04adea7e44201ef	exe	AveMariaRAT
2021-07-09 17:41:40	c877097a2a3852b34c2ee4b0c7b2f5c7a3dc5313570e0680e04adea7e44201ef	exe	AveMariaRAT
2021-07-09 17:36:49	4802b87ba7e4f7c1815d0c027aab96c0fcd74099ea8fdd236a9909e0ca00faf6	exe	SnakeKeylogger
2021-07-09 02:53:56	a47e72e6ebf467b28c35258a18733081d03e4701937d05d74b10a4bcc0029cb5	exe	AveMariaRAT
2021-07-09 02:53:23	f99002091475b0c5f423e2d9efe182de66019616c5fda6205efc3d9bd2f5ff45	exe	SnakeKeylogger
2021-07-08 09:49:14	1aae387dce8782d2f58887aa73dd970e51656c72ada983fb040989656a6dc47e	exe	AveMariaRAT
2021-07-08 09:49:04	d5bf73c697fe079c68e107fa41cc97a328c6190507a8514a26376ef554659d9d	exe	SnakeKeylogger