URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	highart.top
Domain registrar:	Openprovider
Domain registration date:	2021-12-04 19:26:55 UTC
Abuse complaint sent to registrar:	Yes (2021-12-07 10:59:02 UTC to abuse{at}registrar[dot]eu)
Domain registry:	TOP registry
Abuse complaint sent to registry:	Yes (2021-12-07 10:59:02 UTC to abuse{at}nic[dot]top)
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-12-07 10:54:08 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	6

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-03-07 21:42:59	172.105.162.84	172-105-162-84.ip.linodeusercontent.com	Not listed	AS63949 AKAMAI-LINODE-AP	AU	no
2021-12-07 10:54:10	185.82.219.16	dedic-declpp-982332.hosted-by-itldc.com	Not listed	AS59729 ITL-BG	BG	no
2021-12-08 04:13:49	94.140.115.229		SBL635993	AS43513 NANO-AS	LV	no
2021-12-07 22:36:20	103.70.136.119		Not listed	AS10112 VALUEHOSTED-AS	GB	no
2021-12-08 01:09:11	192.210.222.93		Not listed	AS36352 AS-COLOCROSSING	US	no
2021-12-07 10:54:10	192.210.222.92	sylas.flylocals.com	Not listed	AS36352 AS-COLOCROSSING	US	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-12-07 17:51:09	http://highart.top/foradvertisingwwk.exe	Offline	32 exe	zbetcheckin
2021-12-07 10:54:10	http://highart.top/foradvertisingwwb.exe	Offline	RaccoonStealer RedLineStealer	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2021-12-08 07:26:46	bfcc6a5796b1f8bffa632a0d603fd337fe641240ebe1eca96d369eb58d3bef88	exe
2021-12-08 06:38:57	9f633c4174f5b78a8639b22fdf1ab9f132a6fa37b6c9307dce10365d3b7c273e	exe
2021-12-08 06:29:31	7e4323a6d4b4eef2e2809dab8227f0000df1eef584bddc0697e7c8a4bca6fd03	exe
2021-12-08 05:28:28	4fbb24529ce18e7b5ddd43c1a981af057be28b10edfdac82ace7a11db70c6090	exe
2021-12-08 05:28:06	6887fc5fcfa2da494ce6d616c34bb6c4046e2582031159983d79f5d5c5e055f1	exe
2021-12-08 03:47:46	0e2501b27994b7fa9e16f0252d9ab891bc88227c47dd043a9afcd875e870758c	exe
2021-12-08 02:35:44	221e8aeeb26fdfe574610c29e9634e51135b20986684e44fad5e5fd6856c9baf	exe
2021-12-08 02:28:37	0d7ae3b8915e9aa927750b2dd466a0b38f0a4b925dd0cacf80e913c72a283671	exe
2021-12-08 02:01:39	ecac3b003c545161866d87c5582f6e4ececb2acfea226464576807c69b14469b	exe
2021-12-08 01:42:30	99d40eb6d4657868a901d7b4d11cdfff49849f44b666f1a5af6652db73794022	exe
2021-12-08 00:50:51	e3ad198bfd9548358dcac44f2fd024f4244ea62ca44c49fc4a3a0eb08ff51ac3	exe
2021-12-08 00:47:56	2ea0c7fe10215d63b90ac8fedafb5bc48dea5f682c6358353c78160db1aeb35b	exe
2021-12-08 00:25:56	d6bb1b3cb3fb86b81a2c709a13f7929a6b0acdd0298bb8e1e6cbe163fc425369	exe
2021-12-08 00:09:18	3481b33603018de04e5bb52ac7b71ee6089d34b0cf63b92304789cbde2c6e278	exe
2021-12-08 00:03:21	27965fcbbb6627f9a9b76d654cb8c43e84ebbb96342b22588cc247d71c0b8988	exe
2021-12-07 23:47:19	2460764325625714f59d62b57adb3a8f4344d7e0afc74adf104c9e8917d7cc6d	exe
2021-12-07 23:18:22	c3cb6fb8e053cc983c97bdbf063c32f08be1481ff973194e33db3abfc4eff06f	exe
2021-12-07 22:47:38	baf742833dcda46e45cd23ef1552609f6364d0e6e2bbee545680d5a3263fa829	exe
2021-12-07 22:28:01	65f9200fbae3d500d5c767a8491f012ea6043d61edc2af85c147faa225fab97c	exe
2021-12-07 21:32:40	e6685ccd6cad1e316ed0cf7d5fb570c8442fbfc9a9e799041086287eb8f3e16a	exe
2021-12-07 21:19:06	5f57756402f539c402c27f2799e28ee051e689b2850bbb3411f59b72017df3c9	exe
2021-12-07 20:51:55	7b46d6e42e570137a97a58f36853cd3825fa9e9fa885138f0dcd02a370724175	exe
2021-12-07 20:34:19	56022521112a728683f2ffa7caa393e9a2d9867ea5e19867344c098cae487f90	exe
2021-12-07 20:27:39	b4c533cfbbc57e8f47f808b4a0be0c56bc05d8715dfc24713e9f1ce852e796bf	exe
2021-12-07 20:08:51	3251ef88f38b3812ce5d30003853b86acf06887c723421ed00a60d449239364b	exe
2021-12-07 20:05:26	c80605d5bc40d0db63da315db4d9e50d172881c636747b5d418a0755182612c5	exe
2021-12-07 19:11:14	26c9c532c7a43da19ae979a147706c632f8b1859720959664d2f42b617fc888a	exe
2021-12-07 19:06:28	1c4eb2d76a12f9f28a6c386f90af5be40f9a8d86cc0d5045e640009cbbc8c0f9	exe
2021-12-07 18:41:53	84804321901afa7614079efb3e217e6653948cfec47b8815cf23baa7a18b3e55	exe
2021-12-07 18:18:56	acca848c83f32d8045ab0d1e2c4b5ba4195b4c2e088929977f00a85367165896	exe
2021-12-07 17:03:13	0a80aa8b5483629ac08e6321933c1906d715f36501cb6fe6f03fac55bb5f426a	exe
2021-12-07 16:16:35	928a7f40c2f97604242c3732da8384200984213f832235312b365d6149256839	exe		RedLineStealer
2021-12-07 15:52:52	082ccf45adc44ae42f4e99f9207e56ea867f25b5dce2c30af3ddb7abf72f8f4f	exe		RedLineStealer
2021-12-07 15:17:16	358c7a01868df7d423f3927b34289141148729063cf995afeafdb343752d6d12	exe		RedLineStealer
2021-12-07 14:26:46	86f0e9775e32a892ca86a1b1b351e18b82da43020ebea265abcd1f4eba7c58f7	exe
2021-12-07 13:23:22	cbc599190564686ce0a3b1f77fc2064664fbf2d5df6568975a41a32659216e00	exe		RedLineStealer
2021-12-07 12:36:32	f8daaa065a27508babcd8e898c3f1eda824531105cdcf07ceceee2fda53d5a5f	exe		RedLineStealer
2021-12-07 11:35:36	a1bd10dc14bf9edc3d4563c86d556a051d9a394fdcab91343b071f269aae2912	exe		RaccoonStealer
2021-12-07 11:00:27	5c69bc614c6092798cecfa808358e97cda7c0ea53f30e1e124cb14b54cf9f1b0	exe		RaccoonStealer
2021-12-07 10:54:09	99128019182933db209959ed5a076f3b456512c8507e8a3190ad1863ac61d2d6	exe		RaccoonStealer