URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | jpnnybacj.ug |
|---|---|
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Status unknown |
| AdGuard : | Not blocked |
| Cloudflare : | Blocked |
| ProtonDNS : | Status unknown |
| OpenBLD : | Not blocked |
| DNS4EU : | Not blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2020-05-19 13:54:03 UTC |
| Total malware sites : | 2 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 2 (100%) |
| A record(s) observed : | 13 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2020-05-27 08:17:41 | 49.51.134.20 | Not listed | AS132203 TENCENT-NET-AP-CN |  DE | no | |
| 2020-05-27 02:56:51 | 62.113.118.219 | host-62-113-118-219.hosted-by-vdsina.ru | Not listed | AS48282 VDSINA-AS |  RU | no |
| 2020-05-25 22:44:37 | 162.62.53.243 | Not listed | AS132203 TENCENT-NET-AP-CN | DE | no | |
| 2020-05-27 01:32:06 | 47.241.1.122 | Not listed | AS45102 ALIBABA-CN-NET |  SG | no | |
| 2020-05-25 21:29:38 | 5.53.124.243 | thedacxi.com | Not listed | AS49505 SELECTEL | RU | no |
| 2020-05-25 11:21:21 | 101.32.5.54 | Not listed | AS132203 TENCENT-NET-AP-CN |  HK | no | |
| 2020-05-25 08:45:16 | 80.249.147.104 | drx3xtxi3d9pjp04.com | Not listed | AS49505 SELECTEL | RU | no |
| 2020-05-25 07:32:02 | 8.208.88.203 | Not listed | AS45102 ALIBABA-CN-NET |  GB | no | |
| 2020-05-23 05:36:12 | 195.140.146.65 | default.clo.ru | Not listed | AS29182 RU-JSCIOT | RU | no |
| 2020-05-21 12:27:17 | 5.101.50.99 | do2yvfj24mi7p2jp.com | Not listed | AS49505 SELECTEL | RU | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2020-05-19 13:54:09 | http://jpnnybacj.ug/ac.exe | Offline | AsyncRAT  exe |  abuse_ch |
| 2020-05-19 13:54:05 | http://jpnnybacj.ug/nw.exe | Offline | exe GuLoader NetWire | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2020-05-22 11:37:00 | acd98a15f728cb80792e38ce0ab00b25b12e15f6ba4c36694d1dbcff90dedde2 | exe | AsyncRAT | |
| 2020-05-22 11:36:58 | 9ce39afed2b1b439d074bcda9791a603e32054133fb4928c58f4504af4cda576 | exe | NetWire | |
| 2020-05-20 17:24:30 | 6798fd76097b035821cd40e063cd99bc19e4f4b5a4f34ef4e5d36b8ecd50d05a | exe | AsyncRAT | |
| 2020-05-20 17:24:26 | 85b3b12892570a08fc7c60ad0f4788fb3a4a8d6a9b1cfdf79495b0586cc513d1 | exe | GuLoader | |
| 2020-05-19 13:54:09 | bd4764f2f67aa8962986139b9a08ff7e7c784e7124f64c3efe9001cf07f23e96 | exe | AsyncRAT | |
| 2020-05-19 13:54:04 | 9e6cf2b57d1e96bced0f7742e883a8fdf94847fcf3344ae55f05324b59fde328 | exe | NetWire |