URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: nordic-food.ro
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2023-02-02 08:52:08 UTC
Total malware sites :2
Online malware sites :0 (0%)
Offline Malware sites :2 (100%)
A record(s) observed :12

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-09-18 17:40:07 188.114.96.3Not listedAS13335 CLOUDFLARENETn/ayes
2025-09-18 17:40:07 188.114.97.3Not listedAS13335 CLOUDFLARENETn/ayes
2025-09-24 21:03:33 104.21.46.165Not listedAS13335 CLOUDFLARENETn/ano
2025-09-24 21:03:34 172.67.140.182Not listedAS13335 CLOUDFLARENETn/ano
2025-04-28 05:52:07 104.21.112.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-28 05:52:07 104.21.16.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-28 05:52:07 104.21.32.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-28 05:52:07 104.21.48.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-28 05:52:07 104.21.64.1Not listedAS13335 CLOUDFLARENETn/ano
2025-04-28 05:52:07 104.21.80.1SBL681411AS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-02-03 01:49:10https://nordic-food.ro/systems/tmp/ChromeSetup.exeOffline32 exe RedLineStealer ext Smoke Loader ext zbetcheckin
2023-02-02 08:52:15https://nordic-food.ro/systems/ChromeSetup.exeOfflinedrop-by-malware PrivateLoader RedLineStealer ext Rhadamanthys Smoke Loader ext andretavare5

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-02-03 16:44:3731461459b39e9ae563ba52d2fe2bcf6d9ba70b9cefc6a2da410673960c5558efexe Smoke Loader
2023-02-03 15:44:4830c06bafae44cd57f824a3c46aa9e0422e03d0c768b5c3b677b1fffb3eb39c57exeRedLineStealer
2023-02-03 15:27:4330c06bafae44cd57f824a3c46aa9e0422e03d0c768b5c3b677b1fffb3eb39c57exeRedLineStealer
2023-02-03 15:09:41e2145cb74caf435887344832b31954afd855e60d07cfa5fe2a0bcc4a32b8c363exeRedLineStealer
2023-02-03 14:26:33be943cff3ddc8fddaba89b354a54c6097cc4182be24253bf5edfd06565ad5f90exeSmoke Loader
2023-02-03 13:21:44cdc05a9a57bc6d5c7232d415f9c68bdc6d7ce709a0efbe8c9753300273ee955dexe Smoke Loader
2023-02-03 12:55:24cdc05a9a57bc6d5c7232d415f9c68bdc6d7ce709a0efbe8c9753300273ee955dexe Smoke Loader
2023-02-03 12:15:5988354b37427492c5730a4d0d8576c612ae355dcbddc8e3260e1aa5e5f429909cexeSmoke Loader
2023-02-03 11:28:5988354b37427492c5730a4d0d8576c612ae355dcbddc8e3260e1aa5e5f429909cexeSmoke Loader
2023-02-03 10:38:00158004c34b25ef3e94f1664151012731bcb029a905205f16c42c4f3087f129eeexeSmoke Loader
2023-02-03 09:17:482735371bbffec3c5d97b7b5f060485920a152a70629215cba0d66c91142009f0exeSmoke Loader
2023-02-03 09:11:042735371bbffec3c5d97b7b5f060485920a152a70629215cba0d66c91142009f0exeSmoke Loader
2023-02-03 08:13:5290988c815a0d7bca3e0e8cc3ebde74d55e3eda874687ed7b92bb3528c2745d57exeSmoke Loader
2023-02-03 07:39:3090988c815a0d7bca3e0e8cc3ebde74d55e3eda874687ed7b92bb3528c2745d57exeSmoke Loader
2023-02-03 06:43:25dcbd0a559aa1138a8e2330c5590c96f791217bac951a6c7c1ba4ff7419cb525dexeSmoke Loader
2023-02-03 06:17:17084c0aa92e9a0cc7c14f9bf1215cc72f56aabb22d8ec7283abf77d4be03c7c98exeSmoke Loader
2023-02-03 05:46:12084c0aa92e9a0cc7c14f9bf1215cc72f56aabb22d8ec7283abf77d4be03c7c98exeSmoke Loader
2023-02-03 05:31:36323d285f670c92118fa148f0511a13c2d3fb12806a3c50e050946590ebc19881exeSmoke Loader
2023-02-03 05:18:01323d285f670c92118fa148f0511a13c2d3fb12806a3c50e050946590ebc19881exeSmoke Loader
2023-02-03 04:08:409ce9dffd37ec53a9834ca8176c8c8515cb6882fda39afa9dc748f427541b7922exeSmoke Loader
2023-02-03 04:02:099ce9dffd37ec53a9834ca8176c8c8515cb6882fda39afa9dc748f427541b7922exeSmoke Loader
2023-02-03 03:03:409769412727355afacbe12462bf964f8f1f509ef80ed52783f1fbad5b3cfb8983exeSmoke Loader
2023-02-03 02:42:359769412727355afacbe12462bf964f8f1f509ef80ed52783f1fbad5b3cfb8983exeSmoke Loader
2023-02-03 02:06:23d88d2826c07358bf80c09379121d77e21077f7261a6ac7bb3daaea95e7692cb8exeSmoke Loader
2023-02-03 01:49:10d88d2826c07358bf80c09379121d77e21077f7261a6ac7bb3daaea95e7692cb8exeSmoke Loader
2023-02-03 00:46:27437876224ddcbd7bed8ba033396a181bbc60110878f3e7256b8a5229901c7b2eexe Smoke Loader
2023-02-02 23:48:10ebf3d58e41457acc722c1abec57661c7a8bbb580db62177a3d25ba4405f4dafcexeSmoke Loader
2023-02-02 22:15:1251f9775a943c2a60a5a91a735db752920c2a5caad51ba190e4f7e3af3c7d144dexeSmoke Loader
2023-02-02 21:05:5933e4be47dba8a097c9b1174eaed44c1a9825a5ffdfee822587e72383b838b079exe Rhadamanthys
2023-02-02 20:03:239407b94b5ecbf2073ec7f8483b713b853666d62b8b639ffac115e3e89a4ac9deexe Smoke Loader
2023-02-02 18:05:00695c14d27171f9d8606571fad11404b5cbda354b1e17cb014e3e2d95fd77fa36exeRedLineStealer
2023-02-02 16:37:2426ed2ea16e975988d86c5acc23b4dd8024f995f42c5737a709e1824f3fd65c6fexe Smoke Loader
2023-02-02 15:47:4569ee6e56b921740b25218f8b5afc04a87fbdae0fc447bfe2d2af2f034d09ceb1exe Smoke Loader
2023-02-02 08:52:092935b22cf4d1cd82e84031196d4fb50ab47f75bd0a4cf5d652a3a0c7a05630ecexeSmoke Loader