URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	old-tosu-9221.verse.jp
Spamhaus DBL :	Not blocked
SURBL :	Blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-03-23 16:13:04 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-03-23 16:13:05	157.7.107.46	157-7-107-46.virt.lolipop.jp	Not listed	AS7506 MAINT-JPNIC	JP	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-03-23 18:09:05	http://old-tosu-9221.verse.jp/MIY/MLY.exe	Offline	exe GuLoader	zbetcheckin
2020-03-23 16:13:05	http://old-tosu-9221.verse.jp/TT6/L6L.exe	Offline	exe GuLoader	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-03-30 20:27:09	fccdebaea1d99fdbb92837bc7a7628cc7719ab4b35c102ea9adfb2e40b28f131	exe	GuLoader
2020-03-24 23:24:13	2bbb7588a96e089ba8cf7562585424c3e28e81358fa7566bd929b7b87013e7e0	exe	GuLoader
2020-03-24 00:31:35	6f4c08b2cb2901a2d09db5aeec0f7ffc6dd5566a24e6fc41c445a36cc19aa1a4	exe	GuLoader
2020-03-24 00:31:15	c76654971c4af60511d3583a3bd00c673904569aa93973687e14e95b9e80de6f	exe	GuLoader
2020-03-23 18:09:05	1c27f57ddb7c5ccbf08702936e1c53d064e6eb2083ed5fd95b210443a6d7ecbe	exe	GuLoader
2020-03-23 16:13:05	5e7792550edc1085dfffcf3dad7dbc31e164c7149abdce5bbaae0715106a2e1c	exe	GuLoader