URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: kiff.store
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2021-07-30 21:20:09 UTC
Total malware sites :3
Online malware sites :0 (0%)
Offline Malware sites :3 (100%)
A record(s) observed :5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-04-27 17:14:46 103.224.182.219lb-182-219.above.comNot listedAS133618 TRELLIAN-AS-AP- USyes
2025-09-11 22:11:33 103.224.212.108lb-212-108.above.comNot listedAS133618 TRELLIAN-AS-AP- AUno
2022-07-20 00:56:48 3.64.163.50ec2-3-64-163-50.eu-central-1.compute.amazonaws.comNot listedAS16509 AMAZON-02- DEno
2021-09-09 10:21:55 195.123.221.77Not listedAS21100 ITLDC-EU- NLno
2021-07-30 21:20:12 185.14.31.245Not listedAS21100 ITLDC-EU- NLno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-07-30 22:10:08https://kiff.store/builds/KiffApp1.exeOffline32 exe RedLineStealer ext zbetcheckin
2021-07-30 22:06:05https://kiff.store/builds/KiffApp2.exeOffline32 exe RedLineStealer ext zbetcheckin
2021-07-30 21:20:12https://kiff.store/links/uploads/PlsWnEU2.exeOffline32 exe RedLineStealer ext zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2021-10-07 12:20:262553df4a9377b9130be7ac754e3a562e12ed518958574fcfe2cf979925e3a4c4exe RedLineStealer
2021-10-05 21:04:554e3aa3a3bc4a924d39440b7c7db4da2b2896d925e3114781532abb366e488819exe RedLineStealer
2021-10-04 18:25:189a636d4ed2ff7b4e0c54ebc9e395b825512a5734744ac3c556cee74295cf692fexe RedLineStealer
2021-10-02 21:52:550b67e5f12c073b9fcd46323a98226372df0b6c2b5d85d76deb5f6986192ccd94exe RedLineStealer
2021-10-01 09:36:23ebdf4584996176cff09f646ee75bb3abfb21ec6b08d56a3bbe2166c162c30801exe RedLineStealer
2021-09-29 13:08:117e23f8ef88c8dcbf3836e97659798d9874ff0ab852366547ddd88369351645d9exe RedLineStealer
2021-09-27 12:17:05da1eee55cafa2885d83fe8f3b78e184a869e67976e344c81d4f5eb3d675371e1exe RedLineStealer
2021-09-27 09:17:225327f332ce8fb1393180d26229a2166c1182a3e1b3d3b29c5f8b753f26fa5a07exeRedLineStealer
2021-09-25 12:13:5278efd6901608ccf794a8fca6f33147aafd874fcab46a23aa09becb2dbf159fd2exe RedLineStealer
2021-09-21 15:03:5699f6d5723f93ac9689ea1f428b9a090b55f068ecdebcfdff854bef0dbd26db6dexeRedLineStealer
2021-09-15 18:39:188501ecc1e81ea29bd1be1dde7523c712c1a5ce63479346bdd1750a7aa52838a0exe  
2021-09-14 12:04:536a7fe1fbf54901dcdad6368d5ba172c225a23101bfe7725c2e5a40cc3a66d5f0exe RedLineStealer
2021-09-13 10:49:169e4f1265989f3ef1ea4ea6ece2e0d45bf22e8d13d14c41f184eee9dc66f10cd2exe RedLineStealer
2021-09-12 20:34:46154608f407e2e4dbf358167360b83b6ec98774e4684628781ce1f5af5e825fb0exe RedLineStealer
2021-09-11 23:14:30dcf02bc210374bf568da665cfa4ba4699365274bfe3cab05764bf5ed0704cd63exe RedLineStealer
2021-09-10 15:44:06b612f7e8119f6fdf15fc92a4cd62ec6eca06b27cbbcd609bdae0c1a5ddd6d436exe RedLineStealer
2021-09-10 04:45:335dbea37bc85ae4e19f2ac5dff110664e2a4383c9a483d9478a2dd5ffda06c802exe RedLineStealer
2021-07-30 22:10:07071a2916bfc5cc49bd2af982841523dd0cebd9623797377f8fd50dcb740438e1exeRedLineStealer
2021-07-30 22:06:055551014543bed9e2f9337ed423533fff41d4223a294efbd0fde6bd95296adc71exeRedLineStealer
2021-07-30 21:20:11035746e04151155cd17968d895bc7ec8d03f2b50c26e569102999d39bd1dd179exeRedLineStealer