URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: inthbc.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2023-01-23 09:40:11 UTC
Total malware sites :17
Online malware sites :0 (0%)
Offline Malware sites :17 (100%)
A record(s) observed :3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-03-30 08:55:11 188.114.96.3Not listedAS13335 CLOUDFLARENETn/ano
2023-03-30 08:55:11 188.114.97.3Not listedAS13335 CLOUDFLARENETn/ano
2023-01-23 09:40:18 202.59.9.216furcop.comNot listedAS55720 GIGABIT-MY- MYno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-03-09 09:24:05https://inthbc.com/scarica/Agenzia_Entrate.zipOfflineagenziaentrate Gozi ext ISFB ext ITA MEF MISE ursnif ext JAMESWT_MHT
2023-03-09 08:01:12https://inthbc.com/scarica/impresa.zipOfflineagenziaentrate Gozi ext ISFB ext ITA MEF MISE ursnif ext JAMESWT_MHT
2023-03-09 08:01:12https://inthbc.com/scarica/contratto.zipOfflineagenziaentrate Gozi ext ISFB ext ITA MEF MISE ursnif ext JAMESWT_MHT
2023-03-09 08:01:11https://inthbc.com/scarica/AgenziaEntrate.zipOfflineagenziaentrate Gozi ext ISFB ext ITA MEF MISE ursnif ext JAMESWT_MHT
2023-03-09 08:01:11https://inthbc.com/scarica/azienda.zipOfflineagenziaentrate Gozi ext ISFB ext ITA MEF MISE ursnif ext JAMESWT_MHT
2023-03-09 08:01:11https://inthbc.com/scarica/Direzione.zipOfflineagenziaentrate Gozi ext ISFB ext ITA MEF MISE ursnif ext JAMESWT_MHT
2023-03-09 08:01:11https://inthbc.com/scarica/cliente.zipOfflineagenziaentrate Gozi ext ISFB ext ITA MEF MISE ursnif ext JAMESWT_MHT
2023-01-23 09:40:18http://inthbc.com/agenzia/azienda/AgenziaEntrat...Offlineagenziaentrate botnet-7707 geo Gozi ext ISFB ext ITA ursnif ext zip abuse_ch
2023-01-23 09:40:18http://inthbc.com/agenzia/azienda/modulo.zipOfflineagenziaentrate botnet-7707 geo Gozi ext ISFB ext ITA ursnif ext zip abuse_ch
2023-01-23 09:40:18http://inthbc.com/agenzia/azienda/Agenzia.zipOfflineagenziaentrate botnet-7707 geo Gozi ext ISFB ext ITA ursnif ext zip abuse_ch
2023-01-23 09:40:18http://inthbc.com/agenzia/azienda/agenzia_delle...Offlineagenziaentrate botnet-7707 geo Gozi ext ISFB ext ITA ursnif ext zip abuse_ch
2023-01-23 09:40:18http://inthbc.com/agenzia/azienda/documento.zipOfflineagenziaentrate botnet-7707 geo Gozi ext ISFB ext ITA ursnif ext zip abuse_ch
2023-01-23 09:40:18http://inthbc.com/agenzia/azienda/Agenzia_Entra...Offlineagenziaentrate botnet-7707 geo Gozi ext ISFB ext ITA ursnif ext zip abuse_ch
2023-01-23 09:40:18http://inthbc.com/agenzia/azienda/verificare.zipOfflineagenziaentrate botnet-7707 geo Gozi ext ISFB ext ITA ursnif ext zip abuse_ch
2023-01-23 09:40:18http://inthbc.com/agenzia/azienda/avviso.zipOfflineagenziaentrate botnet-7707 geo Gozi ext ISFB ext ITA ursnif ext zip abuse_ch
2023-01-23 09:40:18http://inthbc.com/agenzia/azienda/contratto.zipOfflineagenziaentrate botnet-7707 geo Gozi ext ISFB ext ITA ursnif ext zip abuse_ch
2023-01-23 09:40:18http://inthbc.com/agenzia/azienda/contabilita.zipOfflineagenziaentrate botnet-7707 geo Gozi ext ISFB ext ITA ursnif ext zip abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-03-09 08:01:12120b092e8d8212a7c0e796ac320dd10c56c8b801aa8fb234cb577d5f0dabc05czipGozi
2023-03-09 08:01:12b883d0faf8a9f2396a311b6005ab68073ff0e6a09cafbdc7b58a8439d52409a1zipGozi
2023-03-09 08:01:116a11b49472e5ea497098f11ab66bde3fb6fa1a6762b73cf08f1dfa83efae22e6zipGozi
2023-03-09 08:01:1129547f7ced48000841e1ee6e5da03bcfb21722d9e60687356ab2d1e000733f21zipGozi
2023-03-09 08:01:11b57e90f3f5326920735a5ebc884b4ad1b28e97b48bba4615ab6e7092ea386bd2zipGozi
2023-03-09 08:01:110284ebc8b81dd2894fbdb7ca298d1c2c85c41630b9b9ab99aed51aec86073aaezipGozi
2023-01-23 09:40:12deff8a737f36af69b393c17f7dc7d758cd7646d2dfdcc114c1a3ac613a7db43czipGozi
2023-01-23 09:40:1290cdd9a437d7a0c6245c58eef426322e52247694685234b7911d28b9bd93c7b7zipGozi
2023-01-23 09:40:12aaf8dada953bf6b8e815b4f9d312ab86f6c21ddb10c82a274ca1d95ca54d1febzipGozi
2023-01-23 09:40:125a867e1b8a9f61982d85e13d152be9e0ac1bb415850d837194d94636b058c621zipGozi
2023-01-23 09:40:12df8a5ac88c6a185144000e908d8dac0045d92525a84353c9b94c04aec5550daczipGozi
2023-01-23 09:40:126e9f4d4c879eb99c4cd06121a3852ed5b2d1ee98a09095e0544a74c2b906c8bezipGozi
2023-01-23 09:40:125783f0cf870bfecb2a35e73236e2062f169a2d7f5e46e42276c9c30ae614dd4dzipGozi
2023-01-23 09:40:12899b285e89b2d29903bf9f7b391fdaf9a9134b1e41085924fd8cdebc8cd29f8fzipGozi
2023-01-23 09:40:12616eb7d6fca44dff8d1aaf70d673b176cf39bcf287dad8563d4402f664cea263zipGozi
2023-01-23 09:40:1294542f602e8685e21c965db99415d6fe4e475e303cc5a8f98fbc3e4625d3628bzipGozi