URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: retracker.host
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2021-06-12 00:13:02 UTC
Total malware sites :4
Online malware sites :0 (0%)
Offline Malware sites :4 (100%)
A record(s) observed :15

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2022-05-25 01:35:17 194.67.71.125Not listedAS197695 AS-REGRU- RUno
2022-03-17 05:10:12 162.159.137.85Not listedAS13335 CLOUDFLARENETn/ano
2022-03-17 05:10:12 162.159.138.85Not listedAS13335 CLOUDFLARENETn/ano
2022-01-10 22:20:01 104.21.6.127Not listedAS13335 CLOUDFLARENETn/ano
2022-01-10 22:20:01 172.67.134.220Not listedAS13335 CLOUDFLARENETn/ano
2022-01-21 02:05:55 188.114.96.3Not listedAS13335 CLOUDFLARENETn/ano
2022-01-21 02:05:55 188.114.97.3Not listedAS13335 CLOUDFLARENETn/ano
2022-02-03 08:28:16 188.114.96.12SBL687667AS13335 CLOUDFLARENETn/ano
2022-02-03 08:28:16 188.114.97.12SBL687666AS13335 CLOUDFLARENETn/ano
2022-01-27 15:45:21 188.114.96.19Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-09-02 01:58:03http://retracker.host/rvn.exeOfflineCoinMiner exe zbetcheckin
2021-09-02 01:41:05http://retracker.host/eth.exeOfflineCoinMiner exe zbetcheckin
2021-06-12 00:13:04http://retracker.host/x.exeOfflineCoinMiner.XMRig exe zbetcheckin
2021-06-12 00:13:04http://retracker.host/e.exeOfflineexe zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-01-10 21:44:34da7e905708586e76fa467923e8427a08b75027c5f7e2d7b7bec5d3e275b62489exe  
2022-01-09 15:20:2285c893e564c961433f2c37609bff04390de3cddcb11d3e3e58cb7640711be7fcexe  
2021-12-15 19:56:55ed8e07379458a04bf8a65da9cb4d3fa7de2db16469f821795316bdb08b4dd71dexe  
2021-12-14 02:05:54df621fdd28d1857350102547b4fa0fdb6bc47d04c37b8d69968c0b41b45d8c34exe  
2021-12-06 17:44:1712673fbfd6944349b6728438af2e0f091ee9641cf74c728cc6041707d32d2da2exe  
2021-11-10 23:40:511b675f560912f81f703d2037fa6d20360ed66db71f66865bae66ec8099a45eb6exe  
2021-11-10 23:28:347ed79e9b7c60152c2f0e4f8a0989a7f0c62ec88e0116175d4b6b36a709bf6490exe  
2021-11-10 22:59:26d1b8de764f5d4717a1effc094ff3cb040f31eb0cfadac82c327077d9bd7d35e8exe  
2021-11-10 22:25:14b82a9c29a8dad7cd674e7edf3282a0d85960fbd42a587bfcb21c728e35d263b4exe  
2021-11-10 22:21:12a879674b8162a1bfd7da661db3fc23accbd003e328409b47df518f8bc44de030exe  
2021-11-10 00:41:32ae7dd486d3dd656f3d4c8060a35209b895067aa2f8edb211bbd06d82e3306596exe  
2021-11-09 21:06:52ae7dd486d3dd656f3d4c8060a35209b895067aa2f8edb211bbd06d82e3306596exe  
2021-09-02 01:58:0399a4483312a49933b40f2ce227cdc2a820a595eb465bc488a97e5e59fd94843eexeCoinMiner
2021-09-02 01:41:05bdbf24537950b4bb8ca32e92dc5934fd651792db3452c748d7893da61aca1710exeCoinMiner
2021-06-15 16:02:583933587938feadb514ece19c10024b3a3af29e35f5b97f97e21c135fc8546530exe  
2021-06-12 00:13:0465f76564fa007c2d3eeae10ed5ee9512903bc62d745850cc8faef6b50c53b21aexeCoinMiner.XMRig
2021-06-12 00:13:04618a4a59208309b790170e316ba06ae5e876fffd47854a4fdc2ff0bf7078631aexe