URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: silentlegion.duckdns.org
Domain registrar:Gandi -
Domain registration date:2013-04-12 19:58:56 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Blocked
AdGuard :Blocked
Cloudflare :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2021-08-17 01:21:03 UTC
Total malware sites :3
Online malware sites :0 (0%)
Offline Malware sites :3 (100%)
A record(s) observed :12

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-09-24 07:22:17 45.150.34.73Not listedAS215826 Partner-Hosting-LTD- NLyes
2025-06-30 06:30:03 5.252.153.204hosted-by.yeezyhost.netNot listedAS215826 Partner-Hosting-LTD- PAno
2025-04-27 12:42:34 45.150.34.32Not listedAS215826 Partner-Hosting-LTD- NLno
2023-05-07 10:55:22 185.87.192.140hosted-by.IHC.ruNot listedAS210079 EUROBYTE- RUno
2022-06-28 20:12:16 3.131.99.219ec2-3-131-99-219.us-east-2.compute.amazonaws.comNot listedAS16509 AMAZON-02- USno
2022-01-31 19:11:53 45.147.197.220s24.server-panel.netNot listedAS204601 PODAON- NLno
2022-01-24 04:20:44 185.233.81.88iteration.vpnNot listedAS200740 FIRST-SERVER-EU-AS- DEno
2022-01-12 19:22:03 94.142.143.107free.ihor-hosting.ruNot listedAS215115 Optics-Kuban-AS- RUno
2021-11-29 16:12:00 185.193.143.104Not listedAS43830 DIGITALENERGY-AS- RUno
2021-09-12 18:55:00 194.36.178.69free.dsNot listedAS200740 FIRST-SERVER-EU-AS- SGno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-10-08 16:10:12http://silentlegion.duckdns.org/e.exeOffline32 exe RedLineStealer ext zbetcheckin
2021-08-17 01:35:04http://silentlegion.duckdns.org/uni.exeOfflineexe zbetcheckin
2021-08-17 01:21:06http://silentlegion.duckdns.org/b.exeOffline32 CoinMiner exe RedLineStealer ext Smoke Loader ext zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-01-25 12:05:53499d13fc208546f11aca808ba0fbf365e9a4fa55285065254c2ae06e62352c90exe SupremeLogger
2022-01-15 03:58:4375702b829cbd3d94bcb644dc82bc64eb92e186dcf5ff2cc54f46ab66c77b1f90exe  
2021-12-16 16:37:38e99befe316df1d1ed8ed92c083403bff09821b6a3895d4f78ff462c376306df7exe  
2021-12-14 14:55:53003dc8f5904702f422550f3031ac5a45fb2d478682b73563eab3530f05de3aa8exe RedLineStealer
2021-12-14 14:37:46aaae3c6270dd40dea9bb17e13036ddb13f820c4e3ca44a9304a5d04237fa9bbbexe 
2021-12-14 14:24:26432f0ca0d93c7de0cd0791b1800f9643e10f3bdac32122a6994a9f498b8b1d51exe Smoke Loader
2021-12-11 18:30:275df26cbf5b6fbcd3e59b1ee1e3d12d0f372d4298e402ea62df847a33fa217cfdexe  
2021-12-11 13:35:553d143f4f1b99fe3792e132cc602c3e811b493a4ac6f6d0a78a9a3e4fff873137exe  
2021-12-10 18:08:16b57de1f6f0c41976b28cd20b30b19c0c49d56ae896878b38b1298213056b9b3bexe  
2021-12-10 10:09:501d57032ae8d8dce2472a891a726b779808e5298de9dae4a36a5f671e7490f7deexe CoinMiner
2021-12-09 20:13:151cd0078be97de95fd1f6feaf704dadf22035b8c5013723528551c88209fe89dcexe  
2021-11-30 07:11:0612e7b07a91914876396a4900e9d0fcf2f6b06bda5c77defd0293f05d2a0a52dfexe  
2021-11-19 17:37:16b3042205f2f1061ab5996356625f4f8c07dc5756385bd259b75fa5e27efb16b7exe CoinMiner
2021-11-16 06:56:51b271595aefd83bd28098ec572dc20b4af90ce336dd229f1f863660ac09e7448cexe  
2021-10-30 17:49:22aa80d4033a5c3a17dca903bdcf87c078ef6be9663c6e21a278d5d4cb9fdc6415exe CoinMiner
2021-10-30 16:49:050ab9d425abb0393e3507195c4187a8391a93a9f4c5c7e6083a63c3c8b68de630exe CoinMiner
2021-10-30 15:31:364494eef0783e136a383222e68dee735e1a3bbea6b0655de41700f7f50657502fexe CoinMiner
2021-10-30 14:55:555033549a5ea2065dcfa7aaf5b3ebe6d0d188b4a61b5351ec1130c461a75c3f36exe CoinMiner
2021-10-30 12:32:35653405e15bba73133c10e0af602447cca5c735f1b3ba64038eff7fa03990153aexe  
2021-10-30 09:57:48b1b91ecbab1b26511cf0716f54772bb9efd5e0a2d91a895425c39b1e3bc1a532exe CoinMiner
2021-10-30 09:25:13073c2dc001c4ba9d53c734d9f8babeee3ac9f6646c94f7b6d8c1526835c485ccexe CoinMiner
2021-10-30 04:00:23089f35e15f856eb0c536828e9dd92781299345c01a7dbd7c64cdc35bf859b140exe  
2021-10-30 00:01:280a2c9a187279a6ade795278928d4f1ec19c42bc302ffc6aa8c32ab175fffa28cexe  
2021-10-13 12:41:53b643d5ee1be492fcbfbfb4c9b9bf3da8460b74ab2097b96e6545318c92f2ee26exe 
2021-10-08 16:10:12260dbb4e6556f73e71926d8df1258cb902e00963a1cd199d4a00771d2058e7d7exeRedLineStealer
2021-09-17 13:04:00715e1eb5414e749e16fb3999dda7bcf8405e6fb4e14e66ddcbdf20a2e1af89c3exeCoinMiner
2021-09-13 19:59:101a012590604643a5ad7fc60a8fd3c82a787a53a49ba7d3cba0b63e02e6ea70c6exe  
2021-08-30 19:41:594f9d6b736fbd00a1b8790ab77d6bde5b573b2177b7606724d2b6406839ceae3dexe 
2021-08-30 15:28:576997b092bad4debd075be5e71976075f262e0e21f47e34db16ba1985d51d8017exe 
2021-08-26 21:40:4690e693c2ee07550354cd8ebf87756c33db4fe52cd72437aeefbdeb3161891b03exe  
2021-08-23 15:55:124773c37d69708d7e8a6716bb6043323857b7b9e117d56d9487d5852a14dc0e9dexe 
2021-08-17 01:35:031ce97055a36b68819da35897b9230cdf3df6ec1b40d784e40be323972f55b2faexe 
2021-08-17 01:21:06b8ac779bad0064cb5e6371e1b1e745bbf9a7751f95d77729c2f461c5a2fc185eexeSupremeBot