URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | normanhoffman.top |
|---|---|
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Status unknown |
| AdGuard : | Not blocked |
| Cloudflare : | Blocked |
| ProtonDNS : | Status unknown |
| OpenBLD : | Blocked |
| DNS4EU : | Blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2023-03-27 11:45:11 UTC |
| Total malware sites : | 3 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 3 (100%) |
| A record(s) observed : | 1 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2023-03-27 11:45:14 | 176.124.193.99 | Not listed | AS212165 kvmka |  RU | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2023-03-27 11:45:14 | http://normanhoffman.top/nerino.exe | Offline | Stealc stealer |  crep1x |
| 2023-03-27 11:45:14 | http://normanhoffman.top/notepadp.exe | Offline | Stealc stealer | crep1x |
| 2023-03-27 11:45:14 | http://normanhoffman.top/c043bcd0ba06ae1d/sqlit... | Offline | Stealc stealer | crep1x |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2023-03-27 18:19:44 | a4a85fc67937a18ac993a4af48e0b41645920ec94b2311c77e5114fc1a371bde | exe | Stealc | |
| 2023-03-27 18:04:56 | 1688b543929861d48134065efe31a9c8e99ef0e308e8e7139e255d58d415a3a9 | exe | Stealc | |
| 2023-03-27 17:37:57 | 1c735794e6ab948b4953cb318b386ba5a843a76e75e6959e324716b04d8df038 | exe | Stealc | |
| 2023-03-27 16:42:09 | e737650f16b5c456b22395f3a3a5f6b00705a8961a8f31abba2840d9c05b5e6e | exe | Stealc | |
| 2023-03-27 14:58:20 | 0520e25e237ad24243860a4b6a3543889b89ef516c1a7ce292507cfe34e419ae | exe | Stealc | |
| 2023-03-27 14:49:00 | 37946e22617819fa679702c7a256414d8a3e8324fae490453447db59ca497224 | exe | Stealc | |
| 2023-03-27 11:45:14 | d25cffb62ca775b060887e2943ddfafe2b183f038e2e416b637fe51853185ddd | exe | Stealc | |
| 2023-03-27 11:45:14 | a2c431113c533e61cc8ca4460a5852d0794ec21c98d0325e95fe62f6e50068ee | exe | Stealc | |
| 2023-03-27 11:45:14 | 4841020c8bd06b08fde6e44cbe2e2ab33439e1c8368e936ec5b00dc0584f7260 | dll |