URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	pinchpunch.co
Domain registrar:	GoDaddy
Domain registration date:	2019-02-12 14:13:18 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2022-05-06 15:54:03 UTC
Total malware sites :	3
Online malware sites :	0 (0%)
Offline Malware sites :	3 (100%)
A record(s) observed :	28

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-04-17 15:28:30	34.198.131.107	ec2-34-198-131-107.compute-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2023-04-20 08:36:08	3.212.55.158	ec2-3-212-55-158.compute-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2023-04-21 14:31:37	54.87.16.156	ec2-54-87-16-156.compute-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2023-04-21 14:31:43	54.164.247.175	ec2-54-164-247-175.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2023-04-17 15:28:30	3.86.150.158	ec2-3-86-150-158.compute-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2023-04-20 08:36:02	52.1.74.80	ec2-52-1-74-80.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2023-04-09 14:23:32	54.161.174.16	ec2-54-161-174-16.compute-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2023-04-09 14:23:26	34.228.122.88	ec2-34-228-122-88.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2023-04-08 18:58:46	3.234.186.5	ec2-3-234-186-5.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no
2023-04-08 18:58:51	3.94.138.91	ec2-3-94-138-91.compute-1.amazonaws.com	Not listed	AS14618 AMAZON-AES	US	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-05-06 15:55:05	http://pinchpunch.co/3/Protected%20Client.vbs	Offline	ascii rat vbs	abuse_ch
2022-05-06 15:54:05	http://pinchpunch.co/1/Encrypted%20Client%20OG.jpg	Offline	ascii opendir powershell ps rat	abuse_ch
2022-05-06 15:54:04	http://pinchpunch.co/2/attack.txt	Offline	ascii opendir powershell ps rat	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2022-05-06 15:55:05	2acefe6ca88fcec1b40f5a80fe06cd8f6164153f234c38cb9d89d099d1c3d5d7	unknown