URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	milkhost.ru
Domain registrar:	R01
Domain registration date:	2014-08-15 10:34:30 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-10-07 08:09:03 UTC
Total malware sites :	6
Online malware sites :	0 (0%)
Offline Malware sites :	6 (100%)
A record(s) observed :	5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 13:29:09	185.64.76.202	free.serv-tech.ru	Not listed	AS208626 serv-tech	RU	yes
2022-02-12 17:43:42	185.64.76.70	cpanel14.coopertino.ru	Not listed	AS208626 serv-tech	RU	no
2022-08-16 10:33:45	31.177.76.144	expired.r01.ru	Not listed	AS48287 RU-CENTER	RU	no
2022-08-16 10:33:45	31.177.80.144	expired.r01.ru	Not listed	AS48287 RU-CENTER	RU	no
2021-10-07 08:09:05	95.216.94.72	static.72.94.216.95.clients.your-server.de	Not listed	AS24940 HETZNER-AS	FI	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-11-12 09:35:10	http://milkhost.ru/kulplombin/gurompz.exe	Offline	AgentTesla exe	abuse_ch
2021-11-04 05:58:06	http://milkhost.ru/gobubin/DSGSGDSDSDLKJSDJK.exe	Offline	AgentTesla exe opendir	abuse_ch
2021-10-14 09:11:04	http://milkhost.ru/trasper/goshcj.exe	Offline	AgentTesla exe opendir	abuse_ch
2021-10-13 09:03:16	http://milkhost.ru/dostbin/Purchase_order_21518...	Offline	AgentTesla exe opendir	abuse_ch
2021-10-12 07:21:05	http://milkhost.ru/shadoms/doitgood.exe	Offline	AgentTesla exe opendir	abuse_ch
2021-10-07 08:09:05	http://milkhost.ru/donconten/trachgo.exe	Offline	AgentTesla exe opendir	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2021-11-12 09:35:10	ace3f5b5717874e7d34762f96161e387d6c69e0653c64bd16cde0b9acf2e608e	exe		AgentTesla
2021-11-04 05:58:06	01259c7c38061e9d99dcf47f626934566a9b202d49c6d76018cfaedaab2c2733	exe		AgentTesla
2021-10-14 09:11:04	1fac59451f582122cb2e5787e3a936a3001081de3469e168207da1a357df691d	exe		AgentTesla
2021-10-13 09:03:16	3f54fc44f821171553f3265f875a2276ba37d050544ff674bab137d03a8f4ef6	exe		AgentTesla
2021-10-12 07:21:04	8fe90d228e24e6c4218378cfd42007dfd69a83542544151f102bf804470ab6c2	exe		AgentTesla
2021-10-07 08:09:04	472c7b2777174e1cd967e4d38e6ab3bf9b4f9a43227140d415057b1e4c2d462a	exe		AgentTesla