URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	s3.us-east-1.amazonaws.com
Domain registrar:	MarkMonitor
Domain registration date:	2005-08-18 02:10:45 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-11-29 06:57:03 UTC
Total malware sites :	4
Online malware sites :	0 (0%)
Offline Malware sites :	4 (100%)
A record(s) observed :	8'718

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-11-29 15:50:00	54.231.171.224	s3-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	yes
2023-12-10 15:23:49	52.217.108.46	s3-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	yes
2023-12-16 10:08:17	54.231.196.48	s3-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	yes
2025-05-20 12:44:44	16.15.185.110		Not listed	AS14618 AMAZON-AES	US	yes
2025-09-22 20:02:05	16.15.187.144		Not listed	AS14618 AMAZON-AES	US	yes
2023-11-30 04:00:36	52.216.51.112	s3-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2023-11-30 17:13:37	54.231.136.16	s3-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2023-12-01 01:11:22	52.216.37.24	s3-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2023-12-03 06:03:01	54.231.235.72	s3-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no
2023-12-05 17:24:56	54.231.169.168	s3-1.amazonaws.com	Not listed	AS16509 AMAZON-02	US	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-11-29 06:58:00	https://s3.us-east-1.amazonaws.com/010ad332/Emb...	Offline	CoinMiner GuLoader	Anonymous
2023-11-29 06:57:23	https://s3.us-east-1.amazonaws.com/010ad332/Goo...	Offline	CoinMiner GuLoader	Anonymous
2023-11-29 06:57:14	https://s3.us-east-1.amazonaws.com/010ad332/Bra...	Offline	CoinMiner GuLoader	Anonymous
2023-11-29 06:57:13	https://s3.us-east-1.amazonaws.com/010ad332/Goo...	Offline	CoinMiner GuLoader	Anonymous

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2023-11-29 06:57:58	ee4f4c4d03033e6a3361948b56f83dda91d82f4433a4c744c1b7124e73dab56e	exe		GuLoader
2023-11-29 06:57:22	2d7347d8a4191e61b13372d61fb5fb884a68ebea6469547edb2915d89f976ae1	exe		GuLoader
2023-11-29 06:57:12	25368f648491ac3483fd20c5cbef764cb920e0cab6fa287bb57cda03d70681d5	exe		GuLoader
2023-11-29 06:57:10	2fa34c4fc0ec5810af33c51465647aa5f90654273f3e0756325c8d4817b17a64	exe		CoinMiner