URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: officials.ink
Domain registrar:Namecheap -
Domain registration date:2026-03-05 23:08:46 UTC
Spamhaus DBL :Malware domain
SURBL :Blocked
Quad9 :Blocked
AdGuard :Blocked
Cloudflare :Blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2026-04-17 18:46:04 UTC
Total malware sites :1
A record(s) observed :1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2026-04-17 18:46:07 68.65.123.163server398-3.web-hosting.comNot listedAS22612 NAMECHEAP-NET- USyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2026-04-17 18:46:07https://officials.ink/image.pngOnlinePhantomStealer abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2026-04-22 16:49:18dfeae96a7611608dd06eaf7f41e4371bbc90eb7663faf7306ad952e4e7140770unknown  
2026-04-22 10:42:59cea7dcaa432beb6783c2a428f4d2d14a9b224c0e142ca5be19dec2cd3d232bb4unknown  
2026-04-22 05:21:19c972722789f4a8968dec3654c855ae8a6efd2b08ff0ad748dccb48e5cb0769c8unknown  
2026-04-21 11:25:527615d9ac4b347bdf957c2666d195f48a308cf1a55ae734521a3bf379d4d0134funknown  
2026-04-20 10:39:29cec0a8e55b95b4ddb21889c4a5370767124a35e689c2a52d68423580e80743acunknown  
2026-04-17 18:46:06c7998c0452f26ef7e81d906851bc8816e5bca717ee23db975af373eadf603003unknown