URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	noahhausner.icu
Domain registrar:	NICENIC
Domain registration date:	2023-11-17 06:00:14 UTC
Abuse complaint sent to registrar:	Yes (2023-11-24 20:16:02 UTC to support{at}nicenic[dot]net)
Domain registry:	Shortdot
Abuse complaint sent to registry:	Yes (2023-11-24 20:16:02 UTC to abuse{at}nic[dot]icu)
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-11-24 20:11:05 UTC
Total malware sites :	1
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-11-25 06:42:33	212.193.56.133	325171.simplecloud.ru	Not listed	AS201848 TRADERSOFT	RU	no
2023-11-24 20:11:07	185.185.69.247		Not listed	AS35278 SPRINTHOST	RU	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-11-24 20:11:07	http://noahhausner.icu/timeSync.exe	Offline	dropped-by-PrivateLoader MarsStealer Stealc	andretavare5

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2023-11-26 12:23:45	9d4b3b956471d7e851215b47b39e378f9ef22365de1ff9a12e4376994a4cbcc6	exe		Stealc
2023-11-26 09:21:56	39e0d9c8beb12b8fa99310db9c8474d7ebcfd75d9c592f7f6fb97cc469b5e5e0	exe		Stealc
2023-11-26 08:05:07	0aa234562ce0bf67d4e737f8624d36246595aaada2600636f95edece48fe141d	exe		Stealc
2023-11-26 07:20:57	9dafcb04e5b1bbbeb3a56ace34abd41892bf5e422f2b4bfe57800aa825967e7c	exe
2023-11-25 22:55:15	abdff7348eeb504f388224f2d33849eb2b8e661176a3e7c83d00a7aefe8a4cae	exe		Stealc
2023-11-25 22:25:09	2d4d0d71a305d067656e93ab37ffb9793d025beebc1c8f21d37777e7b0471180	exe		Stealc
2023-11-25 20:03:27	07cfe98212136c2530608c2ef759f9a6ca5573027896f9a53c5b9c70c7d475a7	exe		Stealc
2023-11-25 18:04:01	dd447ea1ac60721efa84d80d3101e7f79eb2d86785df2358cddbe04809a283c7	exe		MarsStealer
2023-11-25 15:23:09	dfd763607915c16c88b819170639b828a72f02196be6e123318cc70633ce17fb	exe		Stealc
2023-11-25 12:46:40	3b13f1afc77c4d537fb4b1488846b042cbdf604345954541af429fd21418e9b6	exe		Stealc
2023-11-25 09:48:25	9498399e00f48252d440863a0192975037222a1e30cbcf24b49f16480aa1ece7	exe		MarsStealer
2023-11-25 07:57:43	509da045b3985f51bd0e3646d66f3d5a5efc2964d53afe1b737427a2aba6e914	exe		Stealc
2023-11-25 01:39:24	2bd90ebb9e56d79b4f68f92a47c8d78c97a0d4290966325c0c49744bc21b491f	exe		Stealc
2023-11-25 00:36:32	772ec57ae0bf39c7e670ffcd35667deebf39e5cad531bf6f114393ec92b901f6	exe		Stealc
2023-11-24 22:28:46	d381efbc2ea684b34bd852804284d9a9a27ce458be61ee375268d76681bec748	exe		Stealc
2023-11-24 21:47:08	1ecf32c1650e2c9b0a47cdf39b0c22e8f92e95a115bdbc89988da52ab755139d	exe		MarsStealer
2023-11-24 21:09:29	5a08016b7110cf63c4e5fca8976b9afc9d6da94650ffb9e14129b30364e939a2	exe		Stealc
2023-11-24 20:40:58	3d664fa0cec81f33f5d79de5e3a3cb060f54c442a90ba84c712fea2d9861410a	exe		MarsStealer
2023-11-24 20:11:07	ce8e42ad172f788ff8f4e9b434320fe9db4a5b549b56759e3d992f5e770d0d24	exe		MarsStealer