URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | prime.topendpower.top |
|---|---|
| Domain registrar: | NameSilo  |
| Domain registration date: | 2023-08-22 07:51:52 UTC |
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Status unknown |
| AdGuard : | Not blocked |
| Cloudflare : | Blocked |
| ProtonDNS : | Status unknown |
| OpenBLD : | Blocked |
| DNS4EU : | Not blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2024-01-08 18:47:06 UTC |
| Total malware sites : | 4 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 4 (100%) |
| A record(s) observed : | 2 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2024-01-08 18:47:17 | 104.21.8.130 | Not listed | AS13335 CLOUDFLARENET | n/a | no | |
| 2024-01-08 18:47:17 | 172.67.157.94 | Not listed | AS13335 CLOUDFLARENET | n/a | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2024-01-12 14:05:28 | https://prime.topendpower.top/_errorpages/plugm... | Offline | AgentTesla  |  e24111111111111 |
| 2024-01-12 14:05:27 | http://prime.topendpower.top/_errorpages/plugma... | Offline | AgentTesla | e24111111111111 |
| 2024-01-10 16:33:07 | http://prime.topendpower.top/_errorpages/softbi... | Offline | AgentTesla exe Formbook |  abuse_ch |
| 2024-01-08 18:47:17 | http://prime.topendpower.top/_errorpages/ugopou... | Offline | AgentTesla exe Formbook | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2024-01-13 11:12:31 | e7e1b3f91e0942e876c828840b1b36d0417867b82c5f53a8158240f39ab7c963 | exe | AgentTesla | |
| 2024-01-12 22:29:00 | e7e1b3f91e0942e876c828840b1b36d0417867b82c5f53a8158240f39ab7c963 | exe | AgentTesla | |
| 2024-01-12 14:05:28 | 1c6d1ba8637609ef14bb12400b0f2a705d27f71907603349385a63327345e8fa | exe | AgentTesla | |
| 2024-01-12 14:05:27 | 1c6d1ba8637609ef14bb12400b0f2a705d27f71907603349385a63327345e8fa | exe | AgentTesla | |
| 2024-01-10 16:33:07 | 10b71b9870e8b389acdf0874c2d49d392a9d9d227fd37e9f12c290b217f95fc0 | exe | AgentTesla | |
| 2024-01-09 11:15:49 | 627515b63bc7b2eafff1a45e9d6ec4f9f2ad2c78ed07aa044d0fe836ed4894a4 | exe | Formbook | |
| 2024-01-09 06:25:38 | 94a65cca7423e32a923dcc0aad65712c9048d5c79d51162237ebd24a8d99f961 | exe | Formbook | |
| 2024-01-09 00:19:29 | 5e2e2b3309ec8c4305d437cd8d545841e15679f664c62f8c1be1fe8733d5d292 | exe | Formbook | |
| 2024-01-08 18:47:17 | b19de61d027c066c42afa7cfa6b81c26792d310d07bfb38481deb842796de3dc | exe | AgentTesla |