URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: salesforce-ibmcloud.kozow.com
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-07-20 10:55:34 UTC
Total malware sites :7
Online malware sites :0 (0%)
Offline Malware sites :7 (100%)
A record(s) observed :3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2020-07-30 12:23:53 89.208.228.123123.mcs.mail.ruNot listedAS47764 VK-AS- RUno
2020-07-21 14:50:47 185.241.195.199199.mcs.mail.ruNot listedAS47764 VK-AS- RUno
2020-07-20 10:55:38 185.241.194.126126.mcs.mail.ruNot listedAS47764 VK-AS- RUno

Malware URLs

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2020-07-22 10:01:177e5f94868785df0e045c67a336a7add1207eccd4aef5a851f6b41b3c0579b71cexeAgentTesla
2020-07-22 10:01:14ce6d9349eae6bfcb21b07478651ff00a03f33f244a129a10baa938d6083d8dccexe  
2020-07-22 10:01:149eab1a27ade5d39abeb2773cfb9cefd68009d7754ffcf573be84166a49a06b8eexe  
2020-07-22 10:01:135009fa6f9637ff97ab0d2cfdedfc18adbd01ebbc398a7367f735c26216f97effexeAgentTesla
2020-07-22 08:59:338969c43b9a620f08efca63187be703ec6655dfaa6168956a428ce2821ff67654exeFormBook
2020-07-22 08:59:33a56da187f9a2b3f09800dac49d36dbba8723c02ea31cb59a020db2bcf423689bexe ModiLoader
2020-07-22 08:59:33adb27b9f7fc30e54c432f12ba8022f1da88dc97722d70f540afb98f844f9e14bexe ModiLoader
2020-07-21 11:12:01246ad5fa3bb663f38615964b6345c03992031b2d8547c53e606a961f5fcbb9e4exe  
2020-07-21 11:12:01be6807d1f9ef7cd98113488f9819f7f8e035218fcdfc267a9be8f553599c8241exe  
2020-07-21 07:56:566315e2cf0a586f93b423af7d9dd1c79aa3017ad2c09c6e468108e327ee237e8fexe  
2020-07-21 07:56:567720da8dd623a00812870efdb75c2f2571417599ebfabcff48d2bd95cd029ea2exeRemcosRAT
2020-07-21 07:56:553ceb6064faccd6e14f29b29580731e0239928c13f5ee8d942fa743530b2ed73bexeFormBook
2020-07-21 07:56:1331dc16674c6b666170ac081624f35c770a970f6107b9b8a350b828e64b4200f3exe  
2020-07-21 07:56:133992c46359956ab1468382d57f8919506d3c979b399d3a5ee262245b7dc2d733exeAgentTesla
2020-07-21 07:56:12917972ed5cef89fbb65c9ec5f4b8a3163cbb7bb964e5ecce0bace64b4019f16dexe  
2020-07-21 07:55:587c5776b505518980f41fa5246b70a2d0149042bf4a752f5eac46af518fe95c27exe AgentTesla
2020-07-20 10:59:49fea6f08b556f260f2bd43a60d7ba1af4ee7fd0982304bd7db97749c72e9d6e80exeAgentTesla
2020-07-20 10:59:16e2a5f032f531b0dba4379de8da36ad1e5617d4b5630bfeeb1db7ca75cf976dccexe 
2020-07-20 10:58:422d0e112a742f88579d78f0a2feab230d56bc2d4e5c8b07ec4fa5ef45f482b11aexe 
2020-07-20 10:58:09d90b402cd6b75e1d16c0dac41122d4bb09edb03f5b8097552f2b1f11dd839233exeAgentTesla
2020-07-20 10:57:35bf9e953c433f1108878018fba685844d8cd89171a40b9387386e4dc89c1ca981exeRemcosRAT
2020-07-20 10:56:14a53876f3a36c594ee0139070684b6ae55f7f1c21b3888cdaa30ae88f9e313958exeLoki
2020-07-20 10:55:38e98e20e7f6ca6411a6da4193276bd5e1a58602f761f2d3b33281e88dd411d9c7exeFormbook