URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | teslasuit.to |
|---|---|
| Domain registrar: | n/a |
| Domain registration date: | 2025-08-27 11:12:46 UTC |
| Spamhaus DBL : | Abused domain (botnet C&C) |
| SURBL : | Blocked |
| Quad9 : | Blocked |
| AdGuard : | Blocked |
| Cloudflare : | Not blocked |
| ProtonDNS : | Blocked |
| OpenBLD : | Blocked |
| DNS4EU : | Blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2025-12-07 11:52:07 UTC |
| Total malware sites : | 6 |
| Online malware sites : | 5 (83%) |
| Offline Malware sites : | 1 (17%) |
| Newest active malware site : | 2025-12-07 17:21:18 UTC |
| Oldest active malware site : | 2025-12-07 11:52:14 UTC (Age: 2 days, 15 hours, 15 minutes) |
| A record(s) observed : | 1 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-12-07 11:52:14 | 172.93.213.200 | us2.rapidcpanelserver.com | Not listed | AS11721 STYLENTECH |  US | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2025-12-07 17:21:18 | http://teslasuit.to/files//oil.zip | Online | opendir |  abuse_ch |
| 2025-12-07 17:21:14 | http://teslasuit.to/files//rt.bat | Online | opendir | abuse_ch |
| 2025-12-07 17:21:13 | http://teslasuit.to/files//a.txt | Offline | opendir | abuse_ch |
| 2025-12-07 17:21:09 | https://teslasuit.to/files/Comany_Profile_Order... | Online | opendir VioletWorm | abuse_ch |
| 2025-12-07 11:52:28 | http://teslasuit.to/files/oil.zip | Online |  juroots | |
| 2025-12-07 11:52:14 | http://teslasuit.to/files/Comany_Profile_Order%... | Online | VioletWorm | juroots |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2025-12-07 17:21:18 | 79796d2353c695ca0936222634f98890f856db7167dd32c3979cb96c50fde4c5 | zip | ||
| 2025-12-07 17:21:14 | 30a06adece2fa5876271fef3f909639d4c707c1e45d1b5ae94e695a5d5839a12 | bat | ||
| 2025-12-07 17:21:09 | 2812af9310f6c09b92ed4c02bb32bf2eba72a28e4a1a0f7daec5f900c843af49 | zip | VioletWorm | |
| 2025-12-07 11:52:25 | 79796d2353c695ca0936222634f98890f856db7167dd32c3979cb96c50fde4c5 | zip | ||
| 2025-12-07 11:52:13 | 2812af9310f6c09b92ed4c02bb32bf2eba72a28e4a1a0f7daec5f900c843af49 | zip | VioletWorm |