URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	lastmorgoth.com
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-04-30 11:44:10 UTC
Total malware sites :	9
Online malware sites :	0 (0%)
Offline Malware sites :	9 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-04-30 11:44:11	167.250.49.155		Not listed	AS263767 CORPORACIN_GALA_IT_C.A.	VE	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-05-01 03:24:33	http://lastmorgoth.com/bin/billi_4fa79931167d46...	Offline	exe meterpreter	zbetcheckin
2020-05-01 03:20:34	http://lastmorgoth.com/bin/billi_72b9a7c5071b4b...	Offline	exe	zbetcheckin
2020-05-01 03:17:05	http://lastmorgoth.com/bin/billi_4fa79931167d46...	Offline	exe	zbetcheckin
2020-05-01 03:16:32	http://lastmorgoth.com/bin/billi_72b9a7c5071b4b...	Offline	exe meterpreter	zbetcheckin
2020-05-01 03:11:10	http://lastmorgoth.com/bin/billi_4fa79931167d46...	Offline	exe meterpreter	zbetcheckin
2020-05-01 03:11:06	http://lastmorgoth.com/bin/billi_72b9a7c5071b4b...	Offline	exe meterpreter	zbetcheckin
2020-05-01 03:08:05	http://lastmorgoth.com/bin/billi_4fa79931167d46...	Offline	exe meterpreter	zbetcheckin
2020-05-01 02:56:04	http://lastmorgoth.com/bin/billi_72b9a7c5071b4b...	Offline	exe meterpreter	zbetcheckin
2020-04-30 11:44:11	http://lastmorgoth.com/bin/bg_c95a978d83014bb6a...	Offline	exe meterpreter	Anonymous

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-05-01 03:24:33	b1cb41ea440ba8abb3c3ae6488afb3d4719cbaed88a79e83540b45b507bda902	exe	Meterpreter
2020-05-01 03:20:34	f8f4fb208488f24b8fc7354e3f6ec0099486a800a713bb55fedca0a9e21e8879	exe
2020-05-01 03:17:05	77b1cd46f83eb3436f08f00229f915ddbf6f1ced3642d188efff8f7598f9153c	exe
2020-05-01 03:16:32	33dc2a56054609c9bb24ab4fe94be024687c54a0945a4107862e853891704165	exe	Meterpreter
2020-05-01 03:11:09	55306cc15ee985f639e3da4d9756209c2c2a1af901c688c702e8839fe9f780d2	exe	Meterpreter
2020-05-01 03:11:05	178d3e63fc2fb340a67ee66c735fc8c99529f2daf8355c5bb02a7e47ae9eb6cd	exe	Meterpreter
2020-05-01 03:08:05	923fa884978a7daeaa886a5f36e048f836ceaff2ee81e21502a66b834e486771	exe	Meterpreter
2020-05-01 02:56:04	b4e054c97110a4890af6ad61369dd79f8f776bfcb9b6ba2a31936da7bac830af	exe	Meterpreter
2020-04-30 11:44:11	35d2b195ce74a90bb53ed59623e6df9a5dcfea3fad926d9d6b6c025f7f6f0906	exe	Meterpreter