URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: loeghaiofiehfihf.to
Spamhaus DBL :Botnet C&C domain
SURBL :Not blocked
Quad9 :Blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2024-07-15 14:33:09 UTC
Total malware sites :33
Online malware sites :0 (0%)
Offline Malware sites :33 (100%)
A record(s) observed :5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-10-29 08:11:46 13.248.169.48a904c694c05102f30.awsglobalaccelerator.comNot listedAS16509 AMAZON-02- USyes
2025-10-29 08:11:46 76.223.54.146a904c694c05102f30.awsglobalaccelerator.comNot listedAS16509 AMAZON-02- USyes
2025-08-23 20:47:26 91.195.240.19Not listedAS47846 SEDO-AS- DEno
2025-02-10 15:02:53 199.59.243.228Not listedAS16509 AMAZON-02- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2024-07-26 12:08:17http://loeghaiofiehfihf.to/twizt/2Offlineencrypted NDA0E
2024-07-26 12:08:17http://loeghaiofiehfihf.to/ccOfflineencrypted NDA0E
2024-07-26 12:08:16http://loeghaiofiehfihf.to/aaOfflineencrypted NDA0E
2024-07-26 12:08:16http://loeghaiofiehfihf.to/cccOfflineencrypted NDA0E
2024-07-26 12:08:15http://loeghaiofiehfihf.to/bbbOfflineencrypted NDA0E
2024-07-26 12:08:12http://loeghaiofiehfihf.to/aOfflineencrypted NDA0E
2024-07-26 12:08:09http://loeghaiofiehfihf.to/bOfflineencrypted NDA0E
2024-07-26 12:08:09http://loeghaiofiehfihf.to/cOfflineencrypted NDA0E
2024-07-26 12:08:08http://loeghaiofiehfihf.to/delta_Offlineencrypted NDA0E
2024-07-26 12:08:07http://loeghaiofiehfihf.to/bbOfflineencrypted NDA0E
2024-07-26 12:08:07http://loeghaiofiehfihf.to/twizt/3Offlineencrypted NDA0E
2024-07-26 12:07:29http://loeghaiofiehfihf.to/1.exeOfflineexe phorpiex ext NDA0E
2024-07-26 12:07:28http://loeghaiofiehfihf.to/t2.exeOfflineexe phorpiex ext NDA0E
2024-07-26 12:07:26http://loeghaiofiehfihf.to/a.exeOfflineexe phorpiex ext NDA0E
2024-07-26 12:07:26http://loeghaiofiehfihf.to/twztl.exeOfflineexe phorpiex ext NDA0E
2024-07-26 12:07:25http://loeghaiofiehfihf.to/pi.exeOfflineexe phorpiex ext NDA0E
2024-07-26 12:07:22http://loeghaiofiehfihf.to/o.exeOfflineexe phorpiex ext NDA0E
2024-07-26 12:07:20http://loeghaiofiehfihf.to/peinf.exeOfflineexe phorpiex ext NDA0E
2024-07-26 12:07:19http://loeghaiofiehfihf.to/r.exeOfflineexe phorpiex ext NDA0E
2024-07-26 12:07:19http://loeghaiofiehfihf.to/11.exeOfflineexe phorpiex ext NDA0E
2024-07-26 12:07:19http://loeghaiofiehfihf.to/pp.exeOfflineexe phorpiex ext NDA0E
2024-07-26 12:07:19http://loeghaiofiehfihf.to/t1.exeOfflineexe phorpiex ext NDA0E
2024-07-26 12:07:18http://loeghaiofiehfihf.to/m.exeOfflineexe phorpiex ext NDA0E
2024-07-26 12:07:18http://loeghaiofiehfihf.to/tt.exeOfflineexe phorpiex ext NDA0E
2024-07-26 12:07:13http://loeghaiofiehfihf.to/newtpp.exeOfflineexe phorpiex ext NDA0E
2024-07-26 12:07:12http://loeghaiofiehfihf.to/t.exeOfflineexe phorpiex ext NDA0E
2024-07-26 12:07:11http://loeghaiofiehfihf.to/s.exeOfflineexe phorpiex ext NDA0E
2024-07-26 12:07:10http://loeghaiofiehfihf.to/aaa.exeOfflineexe phorpiex ext NDA0E
2024-07-15 14:33:36http://loeghaiofiehfihf.to/nxmr.exeOfflineCoinMiner exe NDA0E
2024-07-15 14:33:35http://loeghaiofiehfihf.to/tpeinf.exeOfflineCoinMiner exe phorpiex ext NDA0E
2024-07-15 14:33:33http://loeghaiofiehfihf.to/tdrpload.exeOfflineexe phorpiex ext NDA0E
2024-07-15 14:33:28http://loeghaiofiehfihf.to/npp.exeOfflineexe phorpiex ext NDA0E
2024-07-15 14:33:12http://loeghaiofiehfihf.to/pei.exeOfflineexe phorpiex ext NDA0E

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-01-29 13:21:532d78a339565ba075db8ed7b4b9963b1788487372e0bd3e5611ee32064f0fa8c5exe  
2025-01-17 13:28:267eb1218558704574453ee3266acdb04fa2ba1ef14bd62ce41a36b966d87505aaexe Phorpiex
2025-01-16 09:38:4333e836096cc526313f4a727543dda9313d9cd7231b63ae9a2c525a5fc2ecb26dexe  
2025-01-15 11:08:28d98797c801420d121d0c433ec0c0756660b390c18af9e6c92e79ebe3beefd7f2exe  
2025-01-11 10:01:310c00211734ff1e06b09192dec6b83048047e487eac730e959c4521d82f0f7b7eexe  
2025-01-10 09:28:17d921fc993574c8be76553bcf4296d2851e48ee39b958205e69bdfd7cf661d2b1exe Phorpiex
2025-01-08 17:09:08ff3bac5567508004e07d5a5697bd4dd583d81eb8a2ec4983acfa4451f13f68e8exe CoinMiner
2024-12-28 15:43:279d11a12abb9e687ce706b5fc7875385a28f3a4c1f45fdd3e4514856f81efd5d8exe  
2024-12-27 20:09:45c25fb57a8d2e0c6dbed90077d45f3428194ecbb43b0188cab3c687c62e09d4e8exePhorpiex
2024-12-25 21:41:11f65d628ba3957335300a2d68668ba82f8af231e103ee991a5775cf50b45598a8exePhorpiex
2024-12-25 06:29:05de8812a7df877cec32ffc9e8467d523af409499ad421b388994b3c5fed768905exe Phorpiex
2024-11-25 08:22:053d33e8778ea8194d486d42784411e8528c602594abdf3e32cdcee521a10f3ce7exe  
2024-11-24 22:51:55fc16c0bf09002c93723b8ab13595db5845a50a1b6a133237ac2d148b0bb41700exe Phorpiex
2024-11-24 18:36:37751f9fc1bca7401fdb4cb403fc3d2c8fb114cb70d3e610ba9624191ae62c6b2aexe Phorpiex
2024-11-24 17:18:06fc16c0bf09002c93723b8ab13595db5845a50a1b6a133237ac2d148b0bb41700exe Phorpiex
2024-11-24 17:04:29fc16c0bf09002c93723b8ab13595db5845a50a1b6a133237ac2d148b0bb41700exe Phorpiex
2024-11-24 16:57:20fc16c0bf09002c93723b8ab13595db5845a50a1b6a133237ac2d148b0bb41700exe Phorpiex
2024-11-23 16:02:3763eef8c5f6f413655960d5ed84409441840ab669501e5e6d36f97341467a24c5exe Phorpiex
2024-11-23 15:55:58d921fc993574c8be76553bcf4296d2851e48ee39b958205e69bdfd7cf661d2b1exe Phorpiex
2024-11-23 15:36:30d921fc993574c8be76553bcf4296d2851e48ee39b958205e69bdfd7cf661d2b1exe Phorpiex
2024-11-23 14:59:32d921fc993574c8be76553bcf4296d2851e48ee39b958205e69bdfd7cf661d2b1exe Phorpiex
2024-11-23 14:38:57d921fc993574c8be76553bcf4296d2851e48ee39b958205e69bdfd7cf661d2b1exe Phorpiex
2024-11-23 14:38:25d921fc993574c8be76553bcf4296d2851e48ee39b958205e69bdfd7cf661d2b1exe Phorpiex
2024-11-23 13:45:06d921fc993574c8be76553bcf4296d2851e48ee39b958205e69bdfd7cf661d2b1exe Phorpiex
2024-11-23 13:19:08d921fc993574c8be76553bcf4296d2851e48ee39b958205e69bdfd7cf661d2b1exe Phorpiex
2024-11-21 07:22:48feb4c3ae4566f0acbb9e0f55417b61fefd89dc50a4e684df780813fb01d61278exe Phorpiex
2024-11-21 05:48:16d921fc993574c8be76553bcf4296d2851e48ee39b958205e69bdfd7cf661d2b1exe Phorpiex
2024-11-21 02:53:45d921fc993574c8be76553bcf4296d2851e48ee39b958205e69bdfd7cf661d2b1exe Phorpiex
2024-11-12 22:41:35d921fc993574c8be76553bcf4296d2851e48ee39b958205e69bdfd7cf661d2b1exe Phorpiex
2024-10-25 17:19:279eaaadf3857e4a3e83f4f78d96ab185213b6528c8e470807f9d16035daadf33dexe Phorpiex
2024-10-20 15:35:219eaaadf3857e4a3e83f4f78d96ab185213b6528c8e470807f9d16035daadf33dexe Phorpiex
2024-10-20 14:49:599eaaadf3857e4a3e83f4f78d96ab185213b6528c8e470807f9d16035daadf33dexe Phorpiex
2024-10-14 15:58:569eaaadf3857e4a3e83f4f78d96ab185213b6528c8e470807f9d16035daadf33dexe Phorpiex
2024-10-11 12:35:190d649d950b49ddce3997b0d5b66a24fbe27d7d249bbb85c4b9ce5fb6bfbd0e0aunknown  
2024-10-10 10:04:212ebc4a92f4fdc27d4ab56e57058575a8b18adb076cbd30feea2ecdc8b7fcd41funknown  
2024-10-10 09:37:392ebc4a92f4fdc27d4ab56e57058575a8b18adb076cbd30feea2ecdc8b7fcd41funknown  
2024-10-10 09:10:249eaaadf3857e4a3e83f4f78d96ab185213b6528c8e470807f9d16035daadf33dexe Phorpiex
2024-10-10 08:17:479eaaadf3857e4a3e83f4f78d96ab185213b6528c8e470807f9d16035daadf33dexe Phorpiex
2024-10-10 07:21:48d9cb527841e98bb1a50de5cf1c5433a05f14572a3af3be4c10d3a4708d2419e0exePhorpiex
2024-10-10 07:21:262ebc4a92f4fdc27d4ab56e57058575a8b18adb076cbd30feea2ecdc8b7fcd41funknown  
2024-10-08 14:43:561f2e9724dfb091059ae16c305601e21d64b5308df76ddef6b394573e576ef1ffexe Phorpiex
2024-10-08 13:14:371f2e9724dfb091059ae16c305601e21d64b5308df76ddef6b394573e576ef1ffexe Phorpiex
2024-10-08 12:36:201f2e9724dfb091059ae16c305601e21d64b5308df76ddef6b394573e576ef1ffexe Phorpiex
2024-10-08 12:01:531f2e9724dfb091059ae16c305601e21d64b5308df76ddef6b394573e576ef1ffexe Phorpiex
2024-10-08 10:18:451f2e9724dfb091059ae16c305601e21d64b5308df76ddef6b394573e576ef1ffexe Phorpiex
2024-10-08 10:15:451f2e9724dfb091059ae16c305601e21d64b5308df76ddef6b394573e576ef1ffexe Phorpiex
2024-10-05 06:33:511f2e9724dfb091059ae16c305601e21d64b5308df76ddef6b394573e576ef1ffexe Phorpiex
2024-10-05 04:22:511f2e9724dfb091059ae16c305601e21d64b5308df76ddef6b394573e576ef1ffexe Phorpiex
2024-09-27 21:23:181753ad35ece25ab9a19048c70062e9170f495e313d7355ebbba59c38f5d90256exe CoinMiner
2024-09-25 09:43:35d4bbc125a9e94de44f4deea9d6b10adc87a1ec1aedd753b39d26bb15817fdadbexe Phorpiex
2024-09-25 09:35:51d4bbc125a9e94de44f4deea9d6b10adc87a1ec1aedd753b39d26bb15817fdadbexe Phorpiex
2024-09-25 09:26:4084652bb8c63ca4fd7eb7a2d6ef44029801f3057aa2961867245a3a765928dd02unknown  
2024-09-25 09:24:1084652bb8c63ca4fd7eb7a2d6ef44029801f3057aa2961867245a3a765928dd02unknown  
2024-09-25 09:11:47d4bbc125a9e94de44f4deea9d6b10adc87a1ec1aedd753b39d26bb15817fdadbexe Phorpiex
2024-09-25 09:02:28d4bbc125a9e94de44f4deea9d6b10adc87a1ec1aedd753b39d26bb15817fdadbexe Phorpiex
2024-09-25 08:36:3984652bb8c63ca4fd7eb7a2d6ef44029801f3057aa2961867245a3a765928dd02unknown  
2024-09-25 08:27:05d4bbc125a9e94de44f4deea9d6b10adc87a1ec1aedd753b39d26bb15817fdadbexe Phorpiex
2024-09-25 08:06:07d4bbc125a9e94de44f4deea9d6b10adc87a1ec1aedd753b39d26bb15817fdadbexe Phorpiex
2024-09-24 12:45:42794ba0b949b2144057a1b68752d8fa324f1a211afc2231328be82d17f9308979exePhorpiex
2024-09-24 08:50:26794ba0b949b2144057a1b68752d8fa324f1a211afc2231328be82d17f9308979exePhorpiex
2024-09-24 07:23:30794ba0b949b2144057a1b68752d8fa324f1a211afc2231328be82d17f9308979exePhorpiex
2024-09-24 06:59:34794ba0b949b2144057a1b68752d8fa324f1a211afc2231328be82d17f9308979exePhorpiex
2024-09-24 06:24:37794ba0b949b2144057a1b68752d8fa324f1a211afc2231328be82d17f9308979exePhorpiex
2024-09-24 06:08:15794ba0b949b2144057a1b68752d8fa324f1a211afc2231328be82d17f9308979exePhorpiex
2024-09-24 06:05:38794ba0b949b2144057a1b68752d8fa324f1a211afc2231328be82d17f9308979exePhorpiex
2024-09-24 05:51:29794ba0b949b2144057a1b68752d8fa324f1a211afc2231328be82d17f9308979exePhorpiex
2024-09-24 04:34:51794ba0b949b2144057a1b68752d8fa324f1a211afc2231328be82d17f9308979exePhorpiex
2024-09-24 04:11:35794ba0b949b2144057a1b68752d8fa324f1a211afc2231328be82d17f9308979exePhorpiex
2024-09-21 21:20:13794ba0b949b2144057a1b68752d8fa324f1a211afc2231328be82d17f9308979exePhorpiex
2024-09-21 20:06:2321c8541305df3547412460b8240e39688759c9c2abdaffb733d496b91ce24914exe Phorpiex
2024-09-19 01:53:097c60a0bab1d7581bbba576b709837ef75a5c0833acb584bca3f7c780e70f6c14unknown  
2024-09-18 20:59:0993237a51bb710bd488b0e5bfa8288751445eafcc795364df7652535f3c210431exe Phorpiex
2024-09-18 20:40:287c60a0bab1d7581bbba576b709837ef75a5c0833acb584bca3f7c780e70f6c14unknown  
2024-09-18 20:09:307c60a0bab1d7581bbba576b709837ef75a5c0833acb584bca3f7c780e70f6c14unknown  
2024-09-16 10:01:28b3ae3b2422adecb9e7bc7e43a1ecbc616b62ff10a3c51b4eeb7ac6fab5eeee02exe Phorpiex
2024-09-14 21:41:0893237a51bb710bd488b0e5bfa8288751445eafcc795364df7652535f3c210431exe Phorpiex
2024-09-14 20:46:5593237a51bb710bd488b0e5bfa8288751445eafcc795364df7652535f3c210431exe Phorpiex
2024-09-14 20:28:2193237a51bb710bd488b0e5bfa8288751445eafcc795364df7652535f3c210431exe Phorpiex
2024-09-12 13:57:486d691b37fab13224b2b1755308787bbc485f7c38ce2e576c2b98ba2f2b821200exe Phorpiex
2024-09-07 13:11:06dcc51ea4252198d176b3249339675d2ea54759d1fb9aab487bc69f56f7ba2ac1exe Phorpiex
2024-09-01 07:09:52dc69f2b947673cdb4775a4ae081e009f6a713a35000e43e5fa86d5eabe99a7e4exe Phorpiex
2024-08-01 06:08:52d281e0a0f1e1073f2d290a7eb1f77bed4c210dbf83a0f4f4e22073f50faa843fexe Phorpiex
2024-07-31 06:15:034cb590dfafb7653379326e840d9b904a3cf05451999c4f9eb66c6e7116b68875exe Phorpiex
2024-07-27 20:21:22772ad3ca0bc4c88bd4042562e8fefb34fe52a1f709622d819f806770e582541bexePhorpiex
2024-07-26 12:08:17985da56fb594bf65d8bb993e8e37cd6e78535da6c834945068040faf67e91e7dunknown  
2024-07-26 12:08:16985da56fb594bf65d8bb993e8e37cd6e78535da6c834945068040faf67e91e7dunknown  
2024-07-26 12:08:163c692532b72c68c1cd92374fc28b54afd0b27db1eabd7785c6a0e5b1e92b59c9unknown  
2024-07-26 12:08:152ebc4a92f4fdc27d4ab56e57058575a8b18adb076cbd30feea2ecdc8b7fcd41funknown  
2024-07-26 12:08:153c692532b72c68c1cd92374fc28b54afd0b27db1eabd7785c6a0e5b1e92b59c9unknown  
2024-07-26 12:08:11985da56fb594bf65d8bb993e8e37cd6e78535da6c834945068040faf67e91e7dunknown  
2024-07-26 12:08:093c692532b72c68c1cd92374fc28b54afd0b27db1eabd7785c6a0e5b1e92b59c9unknown  
2024-07-26 12:08:09985da56fb594bf65d8bb993e8e37cd6e78535da6c834945068040faf67e91e7dunknown  
2024-07-26 12:08:072ebc4a92f4fdc27d4ab56e57058575a8b18adb076cbd30feea2ecdc8b7fcd41funknown  
2024-07-26 12:08:072ebc4a92f4fdc27d4ab56e57058575a8b18adb076cbd30feea2ecdc8b7fcd41funknown  
2024-07-26 12:08:07a02ad04b0b74f37c8a9f0d87a7d2e8111a4fae7a19ae4e8c80af9632b7e81bbcunknown  
2024-07-26 12:07:29d8b83f78ed905a7948e2e1e371f0f905bcaaabbb314c692fee408a454f8338a3exePhorpiex
2024-07-26 12:07:28a992920e64a64763f3dd8c2a431a0f5e56e5b3782a1496de92bc80ee71cca5baexe Phorpiex
2024-07-26 12:07:26a992920e64a64763f3dd8c2a431a0f5e56e5b3782a1496de92bc80ee71cca5baexe Phorpiex
2024-07-26 12:07:253f16f4550826076b2c8cd7b392ee649aeb06740328658a2d30c3d2002c6b7879exe Phorpiex
2024-07-26 12:07:25a992920e64a64763f3dd8c2a431a0f5e56e5b3782a1496de92bc80ee71cca5baexe Phorpiex