URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name). This page shows all malware URLs that are associated with the host kmu-kaluga.ru.

Database Entry

Spamhaus DBL:Abused domain (malware)
Firstseen:2019-02-11 13:15:03

IP addresses

The table below shows all IP address obsered for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones).

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2019-02-11 13:15:11109.120.162.27Not listedAS30968 INFOBOX-AS Infobox.ru Autonomous System- RUyes

Malware URLs

The table below shows all malware URLs that are associated with this particulare host.

Dateadded (UTC)URLStatusTagsGSBReporter
2019-02-12 17:09:05http://kmu-kaluga.ru/assets/images/cnt/benefits/emy8.exeOnlineAgentTesla exe Clean@zbetcheckin
2019-02-11 13:17:09http://kmu-kaluga.ru/assets/images/cnt/benefits/jiz8.exeOnlineexe megalodon payload stage2 Clean@shotgunner101
2019-02-11 13:15:11http://kmu-kaluga.ru/assets/images/cnt/benefits/frn8.exeOnlineAgentTesla exe megalodon payload stage2 Clean@shotgunner101