URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2019-02-26 21:04:50	157.7.144.5	www.gmoserver.jp	Not listed	AS7506 MAINT-JPNIC	JP	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2019-03-01 07:28:31	http://okuru.e-hon.info/wp/wp-admin/css/colors/...	Offline	js Ransomware RUS Troldesh zip	Anonymous
2019-02-26 21:04:50	http://okuru.e-hon.info/wp/wp-admin/css/colors/...	Offline	exe Ransomware Troldesh	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2019-03-02 07:53:07	998c23b389da7808d14ff33af8a4456f82decae0a2640c0495870dbbe4385058	zip
2019-03-02 04:14:10	24394f7e40f4dded1f202a622f1091cbec485e11452b5396287ea71df881809d	zip
2019-03-02 03:43:10	06475610670034a5d7c5b8d649ad255bcc3278046556dd9fcd6bef554b430027	zip
2019-03-02 03:28:16	b7f228679d44ecfbe18c5de56378a601747b3dda2a52c8518b8bf3fe7f10e692	zip
2019-03-02 01:13:12	47ea2fc23519aebd887e1bac2d6303f0419d623d554fb72b8656b193e244e06e	zip
2019-03-02 00:11:07	625851c8b774e01f23b6d938419c3aaca0635c9c204b39dd710f4f3ab53098a3	zip
2019-03-01 22:37:13	0f0ef84654a2f3fab1224ddd24e0ae6e8345adba0e0a041cca27b7db288d6e7c	zip
2019-03-01 20:40:09	9b0e08a069c0ac4bab18db2708f793921e9a4ed814891ad8f8c34bd880ba5f63	zip
2019-03-01 20:21:07	0be96a3638dfa7885990e9010eebf1e41f9bf513d7153dae9b7e2c9b4b84f256	zip
2019-03-01 18:01:08	0a41adf21d900e5cf43e1781e730c2e90a01dc5237faf5b908091e22f810214a	zip
2019-03-01 17:37:12	098d6877325b4dbc1606a49a194c24edf7ae274c32b184b33c1dfe38f181d3e1	zip
2019-03-01 16:53:09	ddd2f120aef08d92dad8c592f55260db3536bdff97f3ffb1bbbf1eae2883202b	zip
2019-03-01 16:22:06	6ab9bbdb864733fda9199014f662d93d9161d99c382aea19065c04a99fa43cd2	zip
2019-03-01 15:50:09	3bf0f1465e6e32b26b7edfdbcbc81770d345faf9798ccc5feec17773bd2862d8	zip
2019-03-01 15:19:07	ee8913429a5c8a3b889e3b0ab6368bd94cef600af7caa1fcbfde37705d5be822	zip
2019-03-01 14:51:08	ab795279ed9624d275797195800edb409bf606c3985b842809c7cff389817e8e	zip
2019-03-01 14:20:09	ed7f2ab4789498035b84e36584da2d20bed4dfc0e05df5118c85dbe1159da92c	zip
2019-03-01 13:48:09	0bd9c6ba43fa0c28ebbaaf51ce3cee719ae40dcb12203f43b40465fc06168ed3	zip
2019-03-01 13:16:08	66e04592e74f279f20a054d6be54f85f66ec33f97afac34e3a2e052b6d689c80	zip
2019-03-01 12:17:05	d2b90fdeebcc208af321fe478b42320ba6da2e91297aa9f3ea2bdc2d92568a71	zip
2019-03-01 11:45:10	5121a20ed3a19b0173a808f51edbb01af52b8823cfc7a7c814f0709cdd33a114	zip
2019-03-01 10:42:09	289ef18f212e84dc484b6406d5c3ab008d2a337270061c5651a5dbae8c12e669	zip
2019-03-01 09:12:06	0085ba999ad0eba3f42048cf2f986b321ede46a63f781a93f516cfa29796446e	zip
2019-03-01 08:43:08	b4a43dcd53b6a74bd8bce67c0d2b7e49cec2f4fa074a24ee046da9d3d0a3e51b	zip
2019-03-01 08:12:56	391a3defc2f9ec2de3e163e6f5655e5580d8390bcc156075b6fbc7caefe131e0	exe		Ransomware.Troldesh
2019-03-01 08:12:05	7aeb59fe1fe335ae55dade5f4b04378a137bc065deb9501690fd36cf6be54fbb	zip
2019-03-01 07:48:08	304985d0eb356a45922beac9bdd91ed98ed51bfdb3933e782a5a35b1891a239e	zip
2019-03-01 07:28:31	d375dcefc68278cb0cdb0d616d9cf814632dfd747f0e6f7a5a35525f7d3b8d3e	zip
2019-03-01 00:39:43	80febde88e93687893fee2cc8f25b95873a6c7ea673f2cd13fa0bbbab5f7d4df	exe		Ransomware.Troldesh
2019-02-27 10:03:48	b67574f198a0f55a6b3acc883bb10351fdf5b3c51cd932232be773b00c2ea16c	exe
2019-02-26 21:04:49	73c904d658efa66370dfe8ec83a39c3038343b03e5509fa3280c85bd76790b32	exe		Ransomware.Troldesh