URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2021-05-10 08:15:44	162.248.247.67		Not listed	AS31863 DACEN-2	US	no
2021-05-03 08:39:06	172.245.45.28	172-245-45-28-host.colocrossing.com	Not listed	AS36352 AS-COLOCROSSING	US	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-05-10 06:35:07	http://myhostisstillgood11.zapto.org/dashboard/...	Offline	exe Formbook opendir	abuse_ch
2021-05-10 06:35:06	http://myhostisstillgood11.zapto.org/dashboard/...	Offline	exe NanoCore opendir	abuse_ch
2021-05-10 06:35:06	http://myhostisstillgood11.zapto.org/dashboard/...	Offline	Formbook opendir xls	abuse_ch
2021-05-03 08:42:05	http://myhostisstillgood11.zapto.org/dashboard/...	Offline	exe Loki NanoCore opendir RedLineStealer	abuse_ch
2021-05-03 08:39:06	http://myhostisstillgood11.zapto.org/dashboard/...	Offline	exe Loki NanoCore opendir rat RedLineStealer	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2021-05-18 12:14:50	ea1c37ae8af92e40411a34953cd8371bfc1d5fc6db7840f0c44b0f53debfbd98	exe		RedLineStealer
2021-05-18 04:01:10	ea1c37ae8af92e40411a34953cd8371bfc1d5fc6db7840f0c44b0f53debfbd98	exe		RedLineStealer
2021-05-17 09:10:20	a67f95d74d349c8aed6a7f8598fb60dc9081d7054f2e3ef32fd0bf54b576c194	exe		NanoCore
2021-05-17 08:51:03	a67f95d74d349c8aed6a7f8598fb60dc9081d7054f2e3ef32fd0bf54b576c194	exe		NanoCore
2021-05-16 22:40:03	188ba3b71c5198f978272d8d45b008261590c8d47fab5aebad1cb1af9ffce426	exe		NanoCore
2021-05-16 22:38:36	188ba3b71c5198f978272d8d45b008261590c8d47fab5aebad1cb1af9ffce426	exe		NanoCore
2021-05-13 06:48:07	40dec11b0991a0d325f416beee3c6f97528b4be6823be9978352706b617a1651	exe		NanoCore
2021-05-13 06:36:24	40dec11b0991a0d325f416beee3c6f97528b4be6823be9978352706b617a1651	exe		NanoCore
2021-05-12 11:59:59	12279e26650d5826758ae344bc6ffef54a438d4782a42f0d369403ae41f3914b	exe		NanoCore
2021-05-12 11:49:50	12279e26650d5826758ae344bc6ffef54a438d4782a42f0d369403ae41f3914b	exe		NanoCore
2021-05-12 08:13:25	eec100fdef88c4bcd7fe30040ccd0476cac543ab8edda576c5e5a799606c585e	exe		NanoCore
2021-05-12 08:07:38	eec100fdef88c4bcd7fe30040ccd0476cac543ab8edda576c5e5a799606c585e	exe		NanoCore
2021-05-12 01:55:39	eadbbb8b375ad2b983ed4e9653d7cbbe980cadca775be3b597cfd0524743676e	exe		NanoCore
2021-05-12 01:47:04	eadbbb8b375ad2b983ed4e9653d7cbbe980cadca775be3b597cfd0524743676e	exe		NanoCore
2021-05-11 22:47:37	982275f602e1cfae76b1b7e1b6bc2683c1a62e4173625fc6041e1c83f2e811ce	exe		Loki
2021-05-11 21:47:21	982275f602e1cfae76b1b7e1b6bc2683c1a62e4173625fc6041e1c83f2e811ce	exe		Loki
2021-05-10 14:12:41	08d9411339dad2fe13ff3f4214d8a8d4a54dd3c9cfc9722c9c57d057826efcff	exe		NanoCore
2021-05-10 14:03:09	08d9411339dad2fe13ff3f4214d8a8d4a54dd3c9cfc9722c9c57d057826efcff	exe		NanoCore
2021-05-10 10:50:39	b7f622992848e96745a6afdd8feaffce161b7e2d73d3b8d179d8e3a683026220	exe		NanoCore
2021-05-10 10:46:16	b7f622992848e96745a6afdd8feaffce161b7e2d73d3b8d179d8e3a683026220	exe		NanoCore
2021-05-10 08:22:23	abed7721d1f3d825fc8b9250500ccfc74adad1db2f5b8fdcb842ee8ee4c607bb	exe		NanoCore
2021-05-10 08:20:52	abed7721d1f3d825fc8b9250500ccfc74adad1db2f5b8fdcb842ee8ee4c607bb	exe		NanoCore
2021-05-10 06:35:07	3c94599cada17b9fae62316e54a1d69db7c475223721a5a57abe8774a2b5da74	exe		Formbook
2021-05-10 06:35:06	ceea9c47644de7de819c08704e4ddd4a122ffe22691dcc48ee479614170406ac	exe		NanoCore
2021-05-10 06:35:06	8dbf5672166ca668a505b52c355f0281257f657d7adb71ff3a12d6389cec2f3c	unknown		Formbook
2021-05-10 02:47:06	ceea9c47644de7de819c08704e4ddd4a122ffe22691dcc48ee479614170406ac	exe		NanoCore
2021-05-09 23:12:21	39ea098dc37c12477cdfde92cb07cf2840d907c262c582a2320ade782e01bbcf	exe		NanoCore
2021-05-09 22:17:55	30f55e6b4f6320b18c0f57328be0a9b6b527a20be5bdb9ba8190029cee41783b	exe		NanoCore
2021-05-09 22:06:16	30f55e6b4f6320b18c0f57328be0a9b6b527a20be5bdb9ba8190029cee41783b	exe		NanoCore
2021-05-06 08:58:43	8f94fe68e4decbed1a460bbb09116e1f41fc6987bce37ebb6fd09230d3f89d61	exe		NanoCore
2021-05-06 08:51:09	8f94fe68e4decbed1a460bbb09116e1f41fc6987bce37ebb6fd09230d3f89d61	exe		NanoCore
2021-05-06 05:15:28	5c53bb5c2d8a2d54637df1f9076b4647518a9609a80ad3b4c1bacde15c154e5e	exe		NanoCore
2021-05-06 05:11:55	5c53bb5c2d8a2d54637df1f9076b4647518a9609a80ad3b4c1bacde15c154e5e	exe		NanoCore
2021-05-05 13:47:10	fb76211a9ecc92a59ae103505d5c126e8106907814b0bb8ed6e0580f2aca98fe	exe		NanoCore
2021-05-05 13:36:00	fb76211a9ecc92a59ae103505d5c126e8106907814b0bb8ed6e0580f2aca98fe	exe		NanoCore
2021-05-05 13:03:07	ca7b06be1bfcfd7689710a2b92d80d16fcd00cc3a0f16d353dfd50c4252f0b76	exe		NanoCore
2021-05-05 12:54:23	ca7b06be1bfcfd7689710a2b92d80d16fcd00cc3a0f16d353dfd50c4252f0b76	exe		NanoCore
2021-05-05 07:28:37	f49ae8e59f9a7a9b39534eb42a7b5e5ded93ad8e59d5c9ae88fe2c69c2149ba2	exe		NanoCore
2021-05-05 07:24:39	f49ae8e59f9a7a9b39534eb42a7b5e5ded93ad8e59d5c9ae88fe2c69c2149ba2	exe		NanoCore
2021-05-04 23:45:10	704c8cbba29816992cf47c9d5ae71eb251814e4df4ee3e55ea77cd48644f3dbe	exe		NanoCore
2021-05-04 23:40:55	704c8cbba29816992cf47c9d5ae71eb251814e4df4ee3e55ea77cd48644f3dbe	exe		NanoCore
2021-05-04 08:37:24	6902a2d27d435231224ae6f94b310600501d039190d1a4908653681bcf136095	exe
2021-05-04 08:31:17	6902a2d27d435231224ae6f94b310600501d039190d1a4908653681bcf136095	exe
2021-05-03 12:43:55	5b6d4e4e80dd9a93f40ecfc45c2874d0c504ecf3680858be3ed8e05381cf1188	exe		NanoCore
2021-05-03 08:42:05	b55552391ee123f26e577b412c0df78bd0a59644ec510d1e7e708feff12a2abb	exe		NanoCore
2021-05-03 08:39:06	3383218b916baf1a46989c4f253b29eb81e97ac763ab71615c81d85a18495f34	exe		NanoCore