URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	malayska.ug
Abuse complaint sent?:	Yes (2024-06-28 05:25:03 UTC to cmusisi{at}uol[dot]co[dot]ug,ksemat{at}eahd[dot]or[dot]ug)
Spamhaus DBL :	Not blocked
SURBL :	Blocked
Quad9 :	Not blocked
AdGuard :	Blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-04-11 10:01:03 UTC
Total malware sites :	18
Online malware sites :	0 (0%)
Offline Malware sites :	18 (100%)
A record(s) observed :	7

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-06-17 19:28:28	34.41.139.193	193.139.41.34.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	US	yes
2025-06-17 19:28:28	34.159.223.43	43.223.159.34.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	DE	no
2025-04-27 11:09:32	34.132.102.6	6.102.132.34.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	US	no
2025-04-27 11:09:32	34.136.111.81	81.111.136.34.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	US	no
2024-06-28 05:24:06	91.215.85.223		SBL615768	AS200593 PROSPERO-AS	RU	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2024-07-06 05:42:24	http://malayska.ug/telly.ps1	Offline	opendir ps1	NDA0E
2024-07-06 05:42:13	http://malayska.ug/qwertyj1.ps1	Offline	opendir ps1	NDA0E
2024-07-06 05:39:19	http://malayska.ug/mkv.ps1	Offline	opendir ps1	NDA0E
2024-07-06 05:38:45	http://malayska.ug/zxcv.ps1	Offline	opendir ps1	NDA0E
2024-07-06 05:38:44	http://malayska.ug/asdf.ps1	Offline	opendir ps1	NDA0E
2024-07-06 05:38:21	http://malayska.ug/ppx.ps1	Offline	opendir ps1	NDA0E
2024-07-06 05:36:40	http://malayska.ug/ali.ps1	Offline	opendir ps1	NDA0E
2024-07-06 05:27:37	http://malayska.ug/qwerty.ps1	Offline	opendir ps1	NDA0E
2024-07-06 05:21:12	http://malayska.ug/zxcvb.exe	Offline	exe opendir Rhadamanthys	NDA0E
2024-07-06 05:14:26	http://malayska.ug/zxcvb.ps1	Offline	opendir ps1	NDA0E
2024-07-06 05:14:13	http://malayska.ug/payload.ps1	Offline	opendir ps1	NDA0E
2024-07-06 05:13:39	http://malayska.ug/pps.ps1	Offline	opendir ps1	NDA0E
2024-06-28 05:24:06	http://malayska.ug/asdfg.exe	Offline	32 exe Rhadamanthys	zbetcheckin
2024-06-28 05:24:06	http://malayska.ug/net.exe	Offline	32 exe Rhadamanthys	zbetcheckin
2024-06-28 05:24:06	http://malayska.ug/ghjkl.exe	Offline	32 exe Rhadamanthys	zbetcheckin
2024-06-28 05:24:06	http://malayska.ug/native.exe	Offline	32 exe Rhadamanthys	zbetcheckin
2024-06-28 05:24:06	http://malayska.ug/asdf.EXE	Offline	32 exe Rhadamanthys	zbetcheckin
2022-04-11 10:01:06	http://malayska.ug/ghjk.exe	Offline	AZORult exe RedLineStealer	vxvault

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2024-07-08 13:57:01	33682e861b76b0ae22b7361f5b59bb7e69b95e69480156714f01e7044408b546	exe	Rhadamanthys
2024-07-08 11:05:47	33682e861b76b0ae22b7361f5b59bb7e69b95e69480156714f01e7044408b546	exe	Rhadamanthys
2024-07-08 10:24:39	33682e861b76b0ae22b7361f5b59bb7e69b95e69480156714f01e7044408b546	exe	Rhadamanthys
2024-07-08 09:45:12	33682e861b76b0ae22b7361f5b59bb7e69b95e69480156714f01e7044408b546	exe	Rhadamanthys
2024-07-08 09:36:53	33682e861b76b0ae22b7361f5b59bb7e69b95e69480156714f01e7044408b546	exe	Rhadamanthys
2024-07-08 09:32:34	33682e861b76b0ae22b7361f5b59bb7e69b95e69480156714f01e7044408b546	exe	Rhadamanthys
2024-07-06 05:21:11	7ccfae8644c3bc7439b88f2dc0de06bb5082de09b0bf5e143de17487ff252224	exe	Rhadamanthys
2024-07-04 21:28:08	7ccfae8644c3bc7439b88f2dc0de06bb5082de09b0bf5e143de17487ff252224	exe	Rhadamanthys
2024-07-04 19:48:18	7ccfae8644c3bc7439b88f2dc0de06bb5082de09b0bf5e143de17487ff252224	exe	Rhadamanthys
2024-07-04 16:59:53	7ccfae8644c3bc7439b88f2dc0de06bb5082de09b0bf5e143de17487ff252224	exe	Rhadamanthys
2024-07-04 16:52:07	7ccfae8644c3bc7439b88f2dc0de06bb5082de09b0bf5e143de17487ff252224	exe	Rhadamanthys
2024-07-04 15:19:13	7ccfae8644c3bc7439b88f2dc0de06bb5082de09b0bf5e143de17487ff252224	exe	Rhadamanthys
2024-06-29 11:03:03	1be72df03d119533254240c7553b6fc6af0b28c58182ac937684ea0fe8a41b4e	exe
2024-06-29 10:01:28	f567eb23dd95fe66f925bce074253f46263b0916de62d8850dd8c3ac35efc72e	exe
2024-06-29 00:45:20	f567eb23dd95fe66f925bce074253f46263b0916de62d8850dd8c3ac35efc72e	exe
2024-06-28 22:04:25	a2e4f1eead7d430cf08d33e04c48adb2af23b71ec4c633bc6b88d870c1d61a56	exe
2024-06-28 21:16:27	4a69a64d652063b65cfe7f7ad5e54491b06547c783d74147c79cb9145536cf26	exe
2024-06-28 20:35:14	8491781afed15ad4fa80b176c3516cd3b44e7880a559ab22899b216be74cec48	exe
2024-06-28 19:20:13	8491781afed15ad4fa80b176c3516cd3b44e7880a559ab22899b216be74cec48	exe
2024-06-28 18:42:45	8491781afed15ad4fa80b176c3516cd3b44e7880a559ab22899b216be74cec48	exe
2024-06-28 17:58:42	24f6c1b06912c2d8d46c6ac10737fd8efaaf7d18b227279f9dae584a5625c0c6	exe
2024-06-28 17:48:55	f567eb23dd95fe66f925bce074253f46263b0916de62d8850dd8c3ac35efc72e	exe
2024-06-28 17:13:36	24f6c1b06912c2d8d46c6ac10737fd8efaaf7d18b227279f9dae584a5625c0c6	exe
2024-06-28 15:48:12	a2e4f1eead7d430cf08d33e04c48adb2af23b71ec4c633bc6b88d870c1d61a56	exe
2024-06-28 15:21:22	24f6c1b06912c2d8d46c6ac10737fd8efaaf7d18b227279f9dae584a5625c0c6	exe
2024-06-28 15:03:29	f567eb23dd95fe66f925bce074253f46263b0916de62d8850dd8c3ac35efc72e	exe
2024-06-28 14:15:35	a2e4f1eead7d430cf08d33e04c48adb2af23b71ec4c633bc6b88d870c1d61a56	exe
2024-06-28 14:12:17	f567eb23dd95fe66f925bce074253f46263b0916de62d8850dd8c3ac35efc72e	exe
2024-06-28 13:49:34	24f6c1b06912c2d8d46c6ac10737fd8efaaf7d18b227279f9dae584a5625c0c6	exe
2024-06-28 09:08:24	8c13fdcfeb87abd390f487e9d51d7edcdd6073951a5f96e5c0b1f7d899874932	exe
2024-06-28 08:46:10	8c13fdcfeb87abd390f487e9d51d7edcdd6073951a5f96e5c0b1f7d899874932	exe
2024-06-28 08:38:22	47a817f85453e16e52d201810fd5a719a1fcb01c49dfd350a2fc36fef42ac442	exe
2024-06-28 07:48:32	47a817f85453e16e52d201810fd5a719a1fcb01c49dfd350a2fc36fef42ac442	exe
2024-06-28 06:42:08	8c13fdcfeb87abd390f487e9d51d7edcdd6073951a5f96e5c0b1f7d899874932	exe
2024-06-28 06:34:43	a2e4f1eead7d430cf08d33e04c48adb2af23b71ec4c633bc6b88d870c1d61a56	exe
2024-06-28 05:51:00	8c13fdcfeb87abd390f487e9d51d7edcdd6073951a5f96e5c0b1f7d899874932	exe
2024-06-28 05:40:33	47a817f85453e16e52d201810fd5a719a1fcb01c49dfd350a2fc36fef42ac442	exe
2024-06-28 05:29:09	47a817f85453e16e52d201810fd5a719a1fcb01c49dfd350a2fc36fef42ac442	exe
2024-06-28 05:24:06	a2e4f1eead7d430cf08d33e04c48adb2af23b71ec4c633bc6b88d870c1d61a56	exe
2024-06-28 05:24:06	8c13fdcfeb87abd390f487e9d51d7edcdd6073951a5f96e5c0b1f7d899874932	exe
2024-06-28 05:24:06	24f6c1b06912c2d8d46c6ac10737fd8efaaf7d18b227279f9dae584a5625c0c6	exe
2024-06-28 05:24:06	47a817f85453e16e52d201810fd5a719a1fcb01c49dfd350a2fc36fef42ac442	exe
2024-06-28 05:24:06	8491781afed15ad4fa80b176c3516cd3b44e7880a559ab22899b216be74cec48	exe
2022-05-28 14:09:26	672fea64c92edc4d937d3132577b65813738bfddeab6a6b3ef35e6fa4b987009	exe	AZORult
2022-04-15 13:50:33	df4876573295b4e7beb618db31a015ea617f61b811978bb168d432c4052f7731	exe	AZORult
2022-04-13 09:26:59	061e909af36cb01231742d642ca8cb8af320cbdd2d87db271921f99e2ce41a52	exe
2022-04-12 06:58:31	fb368927d9051a0ed52610ad43849d1b0cdf2acee3bb1bf88c63e3fce54a4f0f	exe	AZORult
2022-04-11 10:01:05	0f63b4b4659449eee766610af817b786e9cd7622743851cf7b71430613d7521b	exe	RedLineStealer