URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	knightmaresolutions.net
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-05-17 13:47:15 UTC
Total malware sites :	23
Online malware sites :	0 (0%)
Offline Malware sites :	23 (100%)
A record(s) observed :	6

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-10-17 11:04:02	34.98.99.30	30.99.98.34.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	US	no
2021-05-31 11:55:34	45.60.22.24		Not listed	AS19551 INCAPSULA	US	no
2021-05-31 11:55:34	45.60.98.24		Not listed	AS19551 INCAPSULA	US	no
2021-05-17 13:47:19	192.254.232.38	192-254-232-38.unifiedlayer.com	Not listed	AS46606 UNIFIEDLAYER-AS-1	US	no
2021-05-27 07:52:42	107.154.146.183	107.154.146.183.ip.incapdns.net	Not listed	AS19551 INCAPSULA	US	no
2021-05-27 07:52:41	45.60.96.183		Not listed	AS19551 INCAPSULA	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-09-30 06:20:10	http://knightmaresolutions.net/10/data64_1.exe	Offline		abuse_ch
2022-09-30 06:20:06	http://knightmaresolutions.net/webArg10.txt	Offline		abuse_ch
2022-09-30 06:20:05	http://knightmaresolutions.net/webArg16.txt	Offline		abuse_ch
2022-09-30 06:20:05	http://knightmaresolutions.net/16/data64_2.exe	Offline		abuse_ch
2022-09-30 06:20:05	http://knightmaresolutions.net/10/data64_2.exe	Offline		abuse_ch
2022-09-30 06:20:05	http://knightmaresolutions.net/16/data64_1.exe	Offline		abuse_ch
2022-09-30 06:20:05	http://knightmaresolutions.net/10/data64_6.exe	Offline		abuse_ch
2022-09-27 05:50:05	http://knightmaresolutions.net/10/data64_3.exe	Offline	ArkeiStealer exe	abuse_ch
2022-09-27 04:53:06	http://knightmaresolutions.net/17/data64_6.exe	Offline	32 cryptbot CryptOne exe	zbetcheckin
2022-09-27 04:38:05	http://knightmaresolutions.net/12/data64_5.exe	Offline	32 exe	zbetcheckin
2022-09-27 04:37:07	http://knightmaresolutions.net/10/data64_5.exe	Offline	32 exe	zbetcheckin
2022-09-26 08:18:15	http://knightmaresolutions.net/12/data64_4.exe	Offline	exe RedLineStealer	abuse_ch
2022-09-26 04:12:14	http://knightmaresolutions.net/12/data64_3.exe	Offline	32 ArkeiStealer exe	zbetcheckin
2022-09-26 04:12:13	http://knightmaresolutions.net/17/data64_4.exe	Offline	32 exe RedLineStealer	zbetcheckin
2022-09-26 04:11:10	http://knightmaresolutions.net/17/data64_5.exe	Offline	32 exe	zbetcheckin
2022-09-26 04:11:09	http://knightmaresolutions.net/17/data64_3.exe	Offline	32 ArkeiStealer exe	zbetcheckin
2022-09-26 04:11:05	http://knightmaresolutions.net/12/data64_6.exe	Offline	32 CryptOne exe	zbetcheckin
2022-09-25 07:29:07	http://knightmaresolutions.net/16/data64_6.exe	Offline	cryptbot CryptOne exe	abuse_ch
2022-09-25 07:09:13	http://knightmaresolutions.net/16/data64_4.exe	Offline	exe RedLineStealer	abuse_ch
2022-09-25 07:08:09	http://knightmaresolutions.net/16/data64_5.exe	Offline	exe	abuse_ch
2022-09-25 07:07:08	http://knightmaresolutions.net/16/data64_3.exe	Offline	ArkeiStealer exe	abuse_ch
2022-09-25 06:59:11	http://knightmaresolutions.net/10/data64_4.exe	Offline	exe RedLineStealer	abuse_ch
2021-05-17 13:47:20	https://knightmaresolutions.net/ewq/Noah.Willia...	Offline	b-TDS html Qakbot qbot SilentBuilder TR zip	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-09-30 06:20:10	500835cd9506b907dce807fef2fe2ab7f382a7d252a8b09052b6dafe8b615762	exe
2022-09-28 20:40:52	e4af63a51847d2b9b538862d20d14a15a879e886820c5419940bbfefe25cbf67	exe
2022-09-28 20:21:17	b2c1e70f30e4d975f591d4e91bc6ba75983a0febff66dcb8a046f0a20776e11b	exe	RedLineStealer
2022-09-28 19:49:27	9569918b93b9b82de4b92ade819b2b20fe09ed0c7767538fe3709133b8c8fff1	exe	RedLineStealer
2022-09-28 19:10:21	e4af63a51847d2b9b538862d20d14a15a879e886820c5419940bbfefe25cbf67	exe
2022-09-28 19:04:54	8c57bc7023c1b437b8bb49c9d9f1e41f63805b441a4365dd2ff33d5252078a83	exe	CryptBot
2022-09-28 19:02:44	8c57bc7023c1b437b8bb49c9d9f1e41f63805b441a4365dd2ff33d5252078a83	exe	CryptBot
2022-09-28 18:50:31	b9c150aa535b058b690f81cb9966da3d982a710a18ef4344fc978d463022bba8	exe	RedLineStealer
2022-09-28 18:49:52	e4af63a51847d2b9b538862d20d14a15a879e886820c5419940bbfefe25cbf67	exe
2022-09-28 18:42:53	2582fab2adc3e880f3baa8fe8076ee9e97ff16cb65c099c70cca57fd629aa3c2	exe	ArkeiStealer
2022-09-28 18:36:57	35c4f0759d7ea5dde09144afcdefbecbe3ec46438a0146bbf78d4c8b2e6589be	exe	ArkeiStealer
2022-09-27 11:24:16	14d4fc388f672efad43e9b49ce9c4ceab030ac212603610a48bb30a8eb6f6ce4	exe
2022-09-27 11:04:58	14d4fc388f672efad43e9b49ce9c4ceab030ac212603610a48bb30a8eb6f6ce4	exe
2022-09-27 11:04:52	14d4fc388f672efad43e9b49ce9c4ceab030ac212603610a48bb30a8eb6f6ce4	exe
2022-09-27 05:50:05	78fd273090d2697ec2d7bf6b2d300413dc92d6f25c05443e80e7d3f0f9d8867c	exe	ArkeiStealer
2022-09-27 04:53:06	3a0597925d2b7686d2386591f60a7abe686c0e10e2e164405270cc0d83e4b128	exe	CryptOne
2022-09-27 04:38:05	621138685d13638a0ec064ca8b1858198116c6699c02eff23fd1d0a841917e4a	exe
2022-09-27 04:37:07	621138685d13638a0ec064ca8b1858198116c6699c02eff23fd1d0a841917e4a	exe
2022-09-26 12:05:57	9824cbd1f17ca98049d3e69bbd9b0e137d7eb13beb51e333bcb737e45d0a5d0e	exe	ArkeiStealer
2022-09-26 12:05:41	1beaef74306bbdd4be8b54bc51cc89df09ab313ce0a2c1a60342b109ab850912	exe	ArkeiStealer
2022-09-26 12:02:35	d7f6081b69a74878ff57b139586232e559408cd5bfdc82c5af023c21c8a8fcfc	exe	RedLineStealer
2022-09-26 11:56:43	5040da9e81f49ff64c1ca595e6649c8b6f3288835c70cc67364f3f1ca979d047	exe	ArkeiStealer
2022-09-26 11:56:29	621138685d13638a0ec064ca8b1858198116c6699c02eff23fd1d0a841917e4a	exe
2022-09-26 11:55:42	3a0597925d2b7686d2386591f60a7abe686c0e10e2e164405270cc0d83e4b128	exe	CryptOne
2022-09-26 11:53:45	b1c40ded5b798303fc9ee12e12f58ed66288f87b952812aff63b9c0cf0e07811	exe	RedLineStealer
2022-09-26 11:52:48	3a0597925d2b7686d2386591f60a7abe686c0e10e2e164405270cc0d83e4b128	exe	CryptOne
2022-09-26 11:51:08	3a7814a744bff6a580e2ca6ddecb8513bd567f5df09e7b6d223ecd8f45eb875a	exe	RedLineStealer
2022-09-26 11:47:21	621138685d13638a0ec064ca8b1858198116c6699c02eff23fd1d0a841917e4a	exe
2022-09-26 11:45:34	a066952253a135051c8e916db0f3335c0c66ca840489e945066d8ca2fe2e12e0	exe	RedLineStealer
2022-09-26 08:18:13	3f3a8afe1462b065ea7ff3a60f64108b109f17664b8628077eba1bf2856122cf	exe	RedLineStealer
2022-09-26 04:12:14	7a2a40b536d4cc69886636cfee52eda36c84b8ef3aacef5d45ac599610a81dab	exe	ArkeiStealer
2022-09-26 04:12:13	78c6c77ec2b36ad4a40bee8eea816e57606427aedc3efe44c966203b440b07e7	exe	RedLineStealer
2022-09-26 04:11:10	d3061098277ac0e6dbc8f21e232e8b8514dca48b8b6b95cc583a6049d36eaf1f	exe
2022-09-26 04:11:09	536a39f5ff898717ba9b02b146e0cc11bab0ae6d2cb7e7c6926a92171daadb98	exe	ArkeiStealer
2022-09-26 04:11:05	31fe316bc8265764d41ee84f7a651857c78b64ef35254f7418de8dbe97bc4f04	exe
2022-09-25 18:44:37	31fe316bc8265764d41ee84f7a651857c78b64ef35254f7418de8dbe97bc4f04	exe
2022-09-25 13:22:37	3652771cd23a8ed349b513ca9654980f18038cb778afb653a736fa319907dd1d	exe
2022-09-25 08:06:20	5547cb13b66711f96fa79989d901c0c3d1f3dc32185425e02218dd3b3b02cff9	exe
2022-09-25 07:29:07	2dc3a07e0250d68897ce410535111862be783922356b9a687a349235e8b484d1	exe	CryptOne
2022-09-25 07:09:13	2dbbf8e073f27ff97d582ad9b84a66c9692074bcfd0ea574b59a540661955d6b	exe	RedLineStealer
2022-09-25 07:08:09	d3061098277ac0e6dbc8f21e232e8b8514dca48b8b6b95cc583a6049d36eaf1f	exe
2022-09-25 07:07:08	acd478880086402aaaeea0f106d0f37790ee6775ff6d3e398fb4fcdf26f622b4	exe	ArkeiStealer
2022-09-25 06:59:11	45fa9fe3c81b24b904617aad27ab836e99b3e45252d0ffc684e901a24442aa25	exe	RedLineStealer
2021-05-17 13:47:18	d28f90c0acda1182103978d5b4086c34df292548564982858d31a9dadd97ba2b	html