URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	preusz.com
Domain registrar:	Porkbun
Domain registration date:	2007-11-07 17:40:41 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-12-20 13:54:22 UTC
Total malware sites :	21
Online malware sites :	0 (0%)
Offline Malware sites :	21 (100%)
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-04-27 09:14:12	145.223.106.128		Not listed	AS47583 AS-HOSTINGER	US	yes
2021-12-20 14:11:05	192.96.216.228		Not listed	AS12129 123NET	US	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-12-20 22:02:11	https://preusz.com/MR60/GYgxaGqkkkklgbtq.bin	Offline	Dridex	Cryptolaemus1
2021-12-20 16:16:10	https://preusz.com/1U9/HaDQhqsyljvaginapussy.bin	Offline	32 Dridex exe	zbetcheckin
2021-12-20 16:15:05	https://preusz.com/U11H06/uSEKrFKkrmtNDvaginapu...	Offline	32 Dridex exe	zbetcheckin
2021-12-20 16:02:51	https://preusz.com/MJGBN/bvLaffskWuNkkklgbtq.bin	Offline	dll Dridex	Cryptolaemus1
2021-12-20 16:02:51	https://preusz.com/1SWK5/SKCwHOhkkklgbtq.bin	Offline	dll Dridex	Cryptolaemus1
2021-12-20 16:02:50	https://preusz.com/AHZQA/WLnKDkjaRWxkkklgbtq.bin	Offline	dll Dridex	Cryptolaemus1
2021-12-20 16:02:50	https://preusz.com/Z3D/ugmQjOxWPpkkklgbtq.bin	Offline	dll Dridex	Cryptolaemus1
2021-12-20 16:02:42	https://preusz.com/POX9/xdmJvLmXWkkklgbtq.bin	Offline	dll Dridex	Cryptolaemus1
2021-12-20 16:02:38	https://preusz.com/1UOWI/SOghBJYwBIkkklgbtq.bin	Offline	dll Dridex	Cryptolaemus1
2021-12-20 16:02:38	https://preusz.com/2S0TH4/LzFICzdSIzchskkklgbtq...	Offline	dll Dridex	Cryptolaemus1
2021-12-20 16:02:37	https://preusz.com/SKGGZ/yPftrkkklgbtq.bin	Offline	dll Dridex	Cryptolaemus1
2021-12-20 16:02:28	https://preusz.com/8SRZ/RkKKcEAAkkklgbtq.bin	Offline	dll Dridex	Cryptolaemus1
2021-12-20 16:02:27	https://preusz.com/TAVPP/wWhrmDvBNjSqkkklgbtq.bin	Offline	dll Dridex	Cryptolaemus1
2021-12-20 16:02:23	https://preusz.com/N05/AiDdvUXfcLakkklgbtq.bin	Offline	dll Dridex	Cryptolaemus1
2021-12-20 16:02:20	https://preusz.com/ZECCXL/XsjhBjOkmtkkklgbtq.bin	Offline	dll Dridex	Cryptolaemus1
2021-12-20 16:02:20	https://preusz.com/Y8L/nuzKWnIDaLMOkkklgbtq.bin	Offline	dll Dridex	Cryptolaemus1
2021-12-20 16:02:19	https://preusz.com/0SM8NM/rZYWzGckkklgbtq.bin	Offline	dll Dridex	Cryptolaemus1
2021-12-20 16:02:19	https://preusz.com/I5U8T/FBAuWkkklgbtq.bin	Offline	dll Dridex	Cryptolaemus1
2021-12-20 16:02:18	https://preusz.com/8S41RZ/RkKKcEAAkkklgbtq.bin	Offline	dll Dridex	Cryptolaemus1
2021-12-20 16:02:10	https://preusz.com/MR	Offline	dll Dridex	Cryptolaemus1
2021-12-20 14:11:05	https://preusz.com/Y6E/lAEJRQoZtqYkkklgbtq.bin	Offline	22203 bin dll Dridex log4j	Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2021-12-20 22:02:11	7d27378b178f3ed92b2f7d4bf9c49e424f875a220fe762d25efb3c4d3879101f	dll		Dridex
2021-12-20 16:16:10	700f64d6c6b4d2a60caabece3666e93a74a2b47ad9de6ef0e414359a2f898657	dll		Dridex
2021-12-20 16:15:05	6d7edfb3152bfcb50f74e698b22af80b169be133a6af174892cf9bf55544c602	dll		Dridex
2021-12-20 16:02:51	d4113779f72a34edf416e5863a701ee096ba3186c03185cf849b94f27133ec6d	dll		Dridex
2021-12-20 16:02:51	ae2248da12ec324ad0cb0c97cc01813416ceca76feeb5987e6284907882b661f	dll		Dridex
2021-12-20 16:02:50	ec06ef0c5901082335a299b321f16582e6f6639c2299beefa1981eb777b34896	dll		Dridex
2021-12-20 16:02:50	ae2669203764ff3bf46e5b3bd9b5582af63b9544f80114624331e07a3b03b80a	dll		Dridex
2021-12-20 16:02:42	058f651f84f6c0de11e988aeab5179d426d79c345e5fb972c752d70bccddee5c	dll		Dridex
2021-12-20 16:02:37	7ecb1737599717d4a91772432ef9235771f725fbce2c8f0ae0c361c6966c475e	dll		Dridex
2021-12-20 16:02:37	62a4e3d63b7df158f649060adc4a96145f4235b8258d72bb4f39241fd089e772	dll		Dridex
2021-12-20 16:02:36	8187ea4c01f4820600fbfeb8c73d01550c8d87b9203ba76825911851ab68259a	dll		Dridex
2021-12-20 16:02:26	e308e2a2e14fda8199468628a3b5ba983f4703edfaf060eab6ceb88564acfe9b	dll		Dridex
2021-12-20 16:02:23	4f9dfeddf30b5048bcd3747af2fe6029b0ca1eb1b8cfe2b91abf58641336abe9	dll		Dridex
2021-12-20 16:02:20	4e41e0a0750125693aeadde94e11f23f9b29a81b26b41463117bd39d19374f84	dll		Dridex
2021-12-20 16:02:18	03031415064b651e65b8a83d06eca4e6a83a23854b9b504c011a02feac993dd0	dll		Dridex
2021-12-20 16:02:18	529c9b5c88f66076ffdc00eaacc1cf1f775cae07888c80e249d33cf85c81b1e4	dll		Dridex
2021-12-20 16:02:17	a88a99b1942bc792d14711ebd755deb0a47cc3e295ac75937478db03b784b5df	dll		Dridex
2021-12-20 16:02:17	201a9f314f99986e881fd18233bc6c7deee7c8a92df33f27bdc8aab461934d1b	dll		Dridex
2021-12-20 14:11:04	2ed4c30203ad5091fac0cb694f5dca3af5a591e0de6a56a0dfb51f20ba82fbc9	dll		Dridex