URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	swanseacitydc.com
Domain registrar:	NICENIC
Domain registration date:	2021-10-26 16:09:44 UTC
Abuse complaint sent to registrar:	Yes (2021-11-01 03:56:02 UTC to support{at}nicenic[dot]net)
Domain registry:	VeriSign Global Registry Services
Abuse complaint sent to registry:	Yes (2021-11-01 03:56:02 UTC to info{at}verisign-grs[dot]com)
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-11-01 03:53:04 UTC
Total malware sites :	1
A record(s) observed :	4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-10-28 11:16:38	58.64.137.69		SBL676527	AS17444 HKBNESL-AS-AP	HK	no
2021-11-01 16:46:06	213.183.53.159	vm628516.melbi.space	Not listed	AS56630 MELBICOM-EU-AS	RU	no
2021-11-01 03:53:05	185.186.142.46		Not listed	AS204490 ASKONTEL	RU	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-11-01 03:53:05	http://swanseacitydc.com/pub3.exe	Offline	32 exe RedLineStealer Smoke Loader	zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2021-11-01 17:06:06	c2eaf11049d03566247876e50a57458e4e7fb03e87d179bdf6391c0d2ea8e976	exe		Smoke Loader
2021-11-01 16:46:05	c647d84db2e09d3eda8c871379fbc8984e85374a99f61c4838b1f1ad41350b6c	exe		Smoke Loader
2021-11-01 15:25:24	31d0902ae8b19d065f369c22e01da11f2c28b6bacc8a93dad49a041b1cb09609	exe		Smoke Loader
2021-11-01 13:47:49	aa14435b035ec42a88d4f0572a065a43ad7c31e82973b2c8e186aa8d95f8f271	exe		Smoke Loader
2021-11-01 13:08:44	74a49eff08a11e6b1d15f6dc3579300a3173f175dd1f3ceb970d181e0891e067	exe		Smoke Loader
2021-11-01 12:38:40	5431474e1d771c9114d9b9aa55eba69cae19ad680e4b3474f8022a0e22cd46d7	exe		Smoke Loader
2021-11-01 12:04:54	b089d104a071a1ca2534e19cdcc6082eb39ac584d641625995d94fc5b937fa52	exe		Smoke Loader
2021-11-01 11:15:17	63d31d420a19459522b41338a1b03c23249b685a14be050971a7d6d09bf20e73	exe		RedLineStealer
2021-11-01 10:42:32	d7456498be3e05ab24db7321ba4950cfabe3793f009e435f05a41cf3d77e0c73	exe		RedLineStealer
2021-11-01 10:28:03	db4745c80adc712c8fcfec058370c5aca7805b4ec525edbf34e8c00acad2efdd	exe		Smoke Loader
2021-11-01 09:54:37	e4e3acdf9ccd2922988cc969aeb9d2dde5bbe8aec5fba6264a45be1d581dbaa5	exe		Smoke Loader
2021-11-01 09:49:44	6b329a6c8796f39a8f0fe9eb06c8cff2b0558805b2729d2e9d3ec2ce53e72170	exe		Smoke Loader
2021-11-01 08:37:45	de91e456d436a843b1dd01aabaeddfbc51284987b569cb20ea793db6ccf212cb	exe		RedLineStealer
2021-11-01 07:40:26	8d4597e4476949f659a54cc2c5bf56723808759b39832c73a0a40314d7a50703	exe		Smoke Loader
2021-11-01 06:54:40	e5c4aea991beccf26b59afd2f00e6e02e41cca77a2bc17a84c23d390a04c3f43	exe		Smoke Loader
2021-11-01 06:28:15	4d528f022475f9df71855bf5204d7a00341677f98b22bb776f8d517eb377a201	exe		Smoke Loader
2021-11-01 06:08:33	33e0a31e5876927fb5b5447f5b866c8742b74757cd59861b840054b529059786	exe		Smoke Loader
2021-11-01 05:18:27	3cfe067ce8dd1d38f03327bdc55882dd0552aa970caa559913fa4381d5e87081	exe		RedLineStealer
2021-11-01 04:17:57	de52a5d8a6a1f1689bfe110b5466c1850c96460a64aaba1d9bd30a71d5a77ab0	exe		Smoke Loader
2021-11-01 03:53:05	82312caab81ecc9a62fdf58470b41fcdb324616a6bc99747895eac045e46fd23	exe		Smoke Loader