URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: landing.yetiapp.ec
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2021-03-01 13:16:04 UTC
Total malware sites :35
Online malware sites :0 (0%)
Offline Malware sites :35 (100%)
A record(s) observed :1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-03-01 13:16:06 34.69.62.139139.62.69.34.bc.googleusercontent.comNot listedAS396982 GOOGLE-CLOUD-PLATFORM- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-04-28 14:25:03http://landing.yetiapp.ec/IDx6/FLP_5012_306_171...OfflineArkeiStealer ext exe abuse_ch
2021-04-23 05:34:03http://landing.yetiapp.ec/IDx6/FSL_456021054.pdfOfflineexe SnakeKeylogger ext abuse_ch
2021-04-22 06:04:06http://landing.yetiapp.ec/IDx6/IMG_045_00_37_32...Offlineexe OskiStealer ext abuse_ch
2021-04-22 05:51:04http://landing.yetiapp.ec/IDx6/IMG_105400785200...Offlineexe SnakeKeylogger ext abuse_ch
2021-03-22 14:00:04http://landing.yetiapp.ec/ID3/IMG_1024_363_17.pdfOfflineexe SnakeKeylogger ext abuse_ch
2021-03-22 13:59:04http://landing.yetiapp.ec/ID3/IMG_501_76_1775.pdfOfflineexe Loki ext abuse_ch
2021-03-22 13:59:04http://landing.yetiapp.ec/ID3/IMG_50_70_66301.pdfOfflineAgentTesla ext exe abuse_ch
2021-03-22 13:59:03http://landing.yetiapp.ec/ID3/IMG_251_45_013.pdfOfflineexe SnakeKeylogger ext abuse_ch
2021-03-22 07:03:04http://landing.yetiapp.ec/ID3/IMG_0564_65_13.pdfOfflineexe SnakeKeylogger ext abuse_ch
2021-03-20 07:56:04http://landing.yetiapp.ec/ID3/PO_107658_200.pdfOfflineexe SnakeKeylogger ext abuse_ch
2021-03-19 14:38:04http://landing.yetiapp.ec/ID3/IMG_724_Scanned_6...Offlineexe opendir SnakeKeylogger ext abuse_ch
2021-03-18 19:04:05http://landing.yetiapp.ec/ID4/IMG_150-76-13.pdfOfflineexe opendir SnakeKeylogger ext abuse_ch
2021-03-15 10:02:12http://landing.yetiapp.ec/ID4/IMG_53_070_Scanne...Offlineexe opendir SnakeKeylogger ext abuse_ch
2021-03-15 10:02:11http://landing.yetiapp.ec/ID4/IMG_013_64_10.pdfOfflineexe opendir SnakeKeylogger ext abuse_ch
2021-03-15 10:02:10http://landing.yetiapp.ec/ID4/IMG_607_36_78.pdfOfflineAgentTesla ext exe opendir abuse_ch
2021-03-15 10:02:10http://landing.yetiapp.ec/ID4/IMG_70_36_361.pdfOfflineAgentTesla ext exe opendir abuse_ch
2021-03-15 10:02:10http://landing.yetiapp.ec/ID4/IMG_601_Scanned_7...Offlineexe opendir SnakeKeylogger ext abuse_ch
2021-03-15 10:02:09http://landing.yetiapp.ec/ID4/IMG_20_Scanned_78...Offlineexe opendir SnakeKeylogger ext abuse_ch
2021-03-15 10:01:04http://landing.yetiapp.ec/ID4/izu4.pdfOfflineAgentTesla ext exe opendir abuse_ch
2021-03-09 11:55:08http://landing.yetiapp.ec/ID4/blacknetca.jpgOfflineexe zbetcheckin
2021-03-09 10:28:07http://landing.yetiapp.ec/ID4/UBNM9XBrYXcGPCA.jpgOfflineAgentTesla ext exe opendir RemcosRAT ext abuse_ch
2021-03-04 07:32:11http://landing.yetiapp.ec/ID4/Filess.pdfOfflineAgentTesla ext exe opendir abuse_ch
2021-03-04 07:32:11http://landing.yetiapp.ec/ID4/PI_1037_Scanned_0...Offlineexe opendir SnakeKeylogger ext abuse_ch
2021-03-04 07:32:11http://landing.yetiapp.ec/ID4/PO_2287_Scanned.pdfOfflineexe Loki ext opendir abuse_ch
2021-03-04 07:32:04http://landing.yetiapp.ec/ID4/huaa.pdfOfflineexe opendir abuse_ch
2021-03-02 18:14:05http://landing.yetiapp.ec/ID3/PI_613_Scanned_20...Offlineexe Formbook ext zbetcheckin
2021-03-02 15:43:08http://landing.yetiapp.ec/ID3/SPE_010_317_041.pdfOfflineexe SnakeKeylogger ext abuse_ch
2021-03-01 13:17:09http://landing.yetiapp.ec/ID3/F6RTDU8mL5raqwH.pdfOfflineexe opendir RemcosRAT ext abuse_ch
2021-03-01 13:17:06http://landing.yetiapp.ec/ID3/RPI_Scanned_701.pdfOfflineexe opendir SnakeKeylogger ext abuse_ch
2021-03-01 13:17:06http://landing.yetiapp.ec/ID3/Specification_IMG...Offlineexe opendir SnakeKeylogger ext abuse_ch
2021-03-01 13:17:06http://landing.yetiapp.ec/ID3/bbuid.jpgOfflineexe Loki ext opendir abuse_ch
2021-03-01 13:17:05http://landing.yetiapp.ec/ID3/RPI_Scan2073.pdfOfflineexe opendir SnakeKeylogger ext abuse_ch
2021-03-01 13:16:09http://landing.yetiapp.ec/ID3/RPI_Scanned_910.pdfOfflineAgentTesla ext exe opendir abuse_ch
2021-03-01 13:16:09http://landing.yetiapp.ec/ID3/RPI_Scanned_30957...Offlineexe Formbook ext opendir abuse_ch
2021-03-01 13:16:06http://landing.yetiapp.ec/ID3/RPI_Scanned_01507...Offlineexe opendir SnakeKeylogger ext abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2021-04-23 05:34:0351d1a8079caf3d7ae5f76e5f221dab382ab769e9af3219b6f3cc7b45d73621c9exeSnakeKeylogger
2021-04-22 06:04:0662813fdde3ed6965c5747e9ae4d207b29a7be134104ebb5a6334fb53914ab29dexeOskiStealer
2021-04-22 05:51:0421da795f10f09a3b3efac01c2ec33f70f0b427e883469ca4566d385b7bdb6a57exe SnakeKeylogger
2021-03-22 14:00:045033628aeaf43dcbe69bf7cf837a5ca98c30ba04cf1e892f38eb2268b25cb836exeSnakeKeylogger
2021-03-22 13:59:0421d8eda5f3881cc14705786cadb5d6f0b15cfb42ef3f98532633a30a60c68a29exe  
2021-03-22 13:59:03da8eb12e5fcf6d9b6ac303c5a70d29ccdf236afcc88ca935c1f8198e6ec28e6bexe AgentTesla
2021-03-22 13:59:03654c66f3e97f1f9f1164c6cc3c481273077ed1e2ab193cb2c76cc4a7b6048325exeSnakeKeylogger
2021-03-22 07:03:0400f3810a4b6c7f552e0bff91fe48694b7a4a7bf750fb03ea846aa3de97a41ba7exeSnakeKeylogger
2021-03-20 07:56:04621c08e8f0b10550a1a20f440f0c9f14d6d108a6df9968a78146140faa88f426exeSnakeKeylogger
2021-03-19 14:38:047a9db6042869b4a1f8e6a9d147c2abc763ba2ff35821ac572949307bb9857c18exeSnakeKeylogger
2021-03-18 19:04:0520b93e3de91160a3f68fc1843b92e489799242b4b013035d0157cd474db5bfebexeSnakeKeylogger
2021-03-15 10:02:120ba3f0dc85d5abe2cf046202f589b45820731552cd0e966e9b4e51e706e15ef1exeSnakeKeylogger
2021-03-15 10:02:11934f206f11e636c874065f41c6833755016314404fa9d8eaadcce648eb6b4761exeSnakeKeylogger
2021-03-15 10:02:07a8dba39ad00064bad947851725eb20e863581975d75d02e5e74ba6773918c7b1exeAgentTesla
2021-03-15 10:02:0788452c1c250adeb17561ab1a1128e526db7aa7f9b7a0d04c283ca7f7e15bc79bexeAgentTesla
2021-03-15 10:02:0798756eb378125ca0840fced87224a307a873bb21ba92df5b6126703eca32fd49exeSnakeKeylogger
2021-03-15 10:02:07ceea824b8eabfc87b70bb95c1e88c668820d0d4317f056df125c547756620adcexeSnakeKeylogger
2021-03-15 10:01:04af72dea6102f0d8aecc1f2b5963749e739606c200e6af52a7cecd6b1a8e7f29cexeAgentTesla
2021-03-09 14:37:46ba208d5b3e036ff62119909a29b32c8938d03736e199732ffd8da4a9636e1afbexeRemcosRAT
2021-03-09 11:55:074f5a1f4b9e455ab7f9ca41af17f4fef53c5dbe28e6767ca069ff3d1931847fa6exe 
2021-03-09 10:28:07a3cc80048c1f95c663ef838ccfa3effa8043b16ca227b4bda377d0da91144619exeAgentTesla
2021-03-04 07:32:07fc1738af68b4fe9b5a5219319b606785b373191b6e805f77fc3c7aa29d40686bexeAgentTesla
2021-03-04 07:32:06cfa2a92908f847cecdc4485e2ecc75d095c1ccbfb6dc64f9cda00a8b208c1f1fexeSnakeKeylogger
2021-03-04 07:32:06de30003e6ddb359c6ff472c95be691529ca67a4b2d32d12bcd89dfe9432235caexeLoki
2021-03-04 07:32:041dd08a3cafbf0894d63a6c7a77bd0d6910e7f33ff80a5955442858db0f86737fexe 
2021-03-02 18:14:051cf498cbda7bee39a265c2e160f729dde3ff8d2758e0ba64765d99c29e49c26bexeFormbook
2021-03-02 15:43:08a59bf955de8e99287e0cfc6fccb5347b468416c24e6133aeb3805a6d5c1b4ba2exeSnakeKeylogger
2021-03-01 13:17:096dbd1645df8b68bc344303b54597ce49511156e57d9a20a3de7eba6a090a5bd5exeRemcosRAT
2021-03-01 13:17:06458ce8baba657ecf583185b25bc8b912ce6d10a96668ba07806bd26577659dcaexeSnakeKeylogger
2021-03-01 13:17:06599563b1681f3195169ac82076f4ec7ff8b7e389c04e26ee28426a1ae84651e0exeSnakeKeylogger
2021-03-01 13:17:064c6180b194f10ab55f060037b3eaa1b13c01651d04f3d522ab8f3a39df13309fexeLoki
2021-03-01 13:17:0565a449b27f72bb536822cad7aef0b5f2917a20181a963238b793e10f56c8f665exeSnakeKeylogger
2021-03-01 13:16:0937f22896418a536af60606ebf92de824efdd29bb3e54b87c36acb448907b2be4exe AgentTesla
2021-03-01 13:16:0964a93f2d4cb3e5b9203d0961882e8fddd0486480c377f514cd69e69615d0a6d6exe  
2021-03-01 13:16:06907e556250d7ab73ef299df60bf8d164f4edf0a4e193c02f84113f66afa58df8exe