URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	privacytools-trade.com
Domain registrar:	Atak Domain
Domain registration date:	2024-03-21 11:12:11 UTC
Abuse complaint sent to registrar:	Yes (2024-03-22 06:31:02 UTC to domain{at}apiname[dot]com)
Domain registry:	VeriSign Global Registry Services
Abuse complaint sent to registry:	Yes (2024-03-22 06:31:02 UTC to info{at}verisign-grs[dot]com)
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2024-03-22 06:26:05 UTC
Total malware sites :	1
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2024-03-22 06:26:07	81.94.159.197		SBL639846	AS8595 WESTCALL-AS	RU	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2024-03-22 06:26:07	http://privacytools-trade.com/downloads/toolspu...	Offline	glupteba LummaStealer Smoke Loader	Bitsight

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2024-03-24 15:44:58	583d73f0111e0aeed0a34fa4fc4ba85875a11f88ac93f9bacb59359aaf5b94e2	exe		Smoke Loader
2024-03-24 13:14:32	b8fd930c7165a1a03b79bbc5c8bac3596a74271ea38b9bc5293d549852340cd2	exe		Smoke Loader
2024-03-24 09:49:40	b1637a25a2959c9a6da241d94d8ddac92f3e542d86dbebdc47c1a06a4f6190a0	exe		Smoke Loader
2024-03-24 09:18:05	a77a44380cd3ac2b6bf2f8a38e29d76a1eb1bef5563e6e4da5c3a87dfa0bac77	exe		Smoke Loader
2024-03-24 07:15:26	a760a216f01a3e0af9a73410450770d29e76b6f2adb78b930ec78f04e0e7356e	exe		Smoke Loader
2024-03-24 04:37:08	bfc3eb10481a1c32006a4bc7ce7071e3b11a02a1035ac31da73fb01690e556ef	exe		Smoke Loader
2024-03-23 23:08:58	35bca6c779e1f64b6df883fe983ac5af770d6a6b7dac8ab7c982a5f9fa24e16e	exe
2024-03-23 22:27:01	ac1aa03f8763c40289c4fd18ba99cee9e6858263105213ea9f946b81ed8bf154	exe		LummaStealer
2024-03-23 21:50:24	93206d9dbae894c96fe165f6403b1d00e02080de15369a39a25d7533b784fbb7	exe		Smoke Loader
2024-03-23 17:40:16	1300026a497d8562396e99bf474ae6070d49e5a8fef9e6fd59991589d116dca6	exe		Smoke Loader
2024-03-23 17:23:52	cd8972e56ba95b3f33c2f164ea880b6c5d8d95f942a817c5fdc31f8122380813	exe		Smoke Loader
2024-03-22 10:48:25	b0f1d6defb63ca51dce41219e35f97ab8d89ec19c863f5b659fb8b05c1c92248	exe		Smoke Loader
2024-03-22 10:11:20	d299c4b9c082d625fd580f49799ffdd2d6561544ebfc3e66420eb1215b0f47dc	exe		Smoke Loader
2024-03-22 08:25:25	b119f003f9fca28111b386401a9da65eb1b6b36f6824b2145188aed2bacada1c	exe		Glupteba
2024-03-22 08:05:16	20bade08687a1356c343a70a124e7441aa3f2c1824f50b77e552421ee61c3ba3	exe		Smoke Loader
2024-03-22 06:26:07	abc5152266564f883ab915f2a1eec762cd98920e5e315974c926632942e31976	exe		Smoke Loader