URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2022-09-21 05:58:26 | 91.195.240.117 | Not listed | AS47846 SEDO-AS |  DE | no | |
| 2021-12-12 13:15:04 | 209.99.40.16 | 209-99-40-16.fwd.datafoundry.com | Not listed | AS23005 SWITCH-LTD |  US | no |
| 2020-10-26 08:47:05 | 50.31.119.64 | server14680.securedserverspace.com | Not listed | AS32748 STEADFAST | US | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2021-12-12 13:15:04 | https://simplesolutionsdivorcemediation.com/2_W... | Offline | encrypted GuLoader  |  abuse_ch |
| 2020-10-30 06:28:07 | https://simplesolutionsdivorcemediation.com/2_N... | Offline | encrypted GuLoader | abuse_ch |
| 2020-10-28 06:23:04 | https://simplesolutionsdivorcemediation.com/2_K... | Offline | encrypted GuLoader | abuse_ch |
| 2020-10-26 08:47:05 | https://simplesolutionsdivorcemediation.com/2_n... | Offline | encrypted GuLoader | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2020-10-30 06:28:07 | 7ea1d79afc397c304cd2c4f102b2cd3c2c8acfbdd41520dbcadb093d93ca2356 | unknown | ||
| 2020-10-28 06:23:03 | ad5bfea1c6f73d0f7042e0c3c3ae3f77ae2fbbbc45efdaa5e3d4c02db4ca870b | unknown | ||
| 2020-10-26 08:47:04 | 247e0c2ef777f2c25bfd3ce002e03e5012748bf159774eb93424e584eded2137 | unknown |