URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | specnaznachenie.ru |
|---|---|
| Domain registrar: | REG.RU  |
| Domain registration date: | 2023-09-13 09:53:01 UTC |
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Status unknown |
| AdGuard : | Not blocked |
| Cloudflare : | Blocked |
| ProtonDNS : | Status unknown |
| OpenBLD : | Not blocked |
| DNS4EU : | Blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2023-10-05 08:58:04 UTC |
| Total malware sites : | 1 |
| A record(s) observed : | 4 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2023-10-25 21:26:59 | 212.193.48.80 | 212-193-48-80.simplecloud.ru | Not listed | AS201848 TRADERSOFT | RU | no |
| 2023-10-10 15:36:29 | 193.106.174.128 | Not listed | AS50465 IQHost | RU | no | |
| 2023-10-10 14:37:35 | 45.132.1.174 | Not listed | AS199785 CHSN-AS |  DE | no | |
| 2023-10-05 08:58:07 | 85.143.172.45 | 85-143-172-45.simplecloud.ru | Not listed | AS201848 TRADERSOFT | RU | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2023-10-05 08:58:07 | http://specnaznachenie.ru/download/mstsc.exe | Offline | exe opendir Smoke Loader  |  abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2023-11-01 05:03:03 | 4d311d7c8d8233168a120ce059b0e6376033ef73a2f5504f00f5a288d09df133 | exe | Smoke Loader | |
| 2023-10-31 05:22:49 | 5d72dd3ea91f2f0c953a68078201bc75ef4bc71756e83261cd03177f60dab70f | exe | Smoke Loader | |
| 2023-10-31 03:01:58 | 9461d527794959513d16803740d0ea4f8e47af9bd6667e101f469076eb848473 | exe | ||
| 2023-10-10 07:08:38 | d3bff8ee2566c13a391cec24be134d3d04ee65b87529e1c98caf93b5b559fce4 | exe | Smoke Loader | |
| 2023-10-10 04:44:26 | efd2a3ddbf2b7e68a8f3359865dfcd6fd1403fb7d1dc945aa7aa4ccb50284ee7 | exe | Smoke Loader | |
| 2023-10-06 06:28:20 | ebbf474d69519b7ded60c1dab807dab492c33d9caf76e6495c2ee92be573011e | exe | Smoke Loader | |
| 2023-10-05 08:58:06 | 9a528b2b31d9d59018878fdf3b9d8db235df606500c67a4b8be3075701b014fc | exe | Smoke Loader |