URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	transfer.adttemp.com.br
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2023-08-24 14:38:04 UTC
Total malware sites :	65
Online malware sites :	0 (0%)
Offline Malware sites :	65 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2023-08-24 14:38:07	104.196.109.209	209.109.196.104.bc.googleusercontent.com	Not listed	AS396982 GOOGLE-CLOUD-PLATFORM	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2024-11-06 07:58:11	https://transfer.adttemp.com.br/1IErJ/foreignnn...	Offline	base64-loader Encoded Formbook	abus3reports
2024-11-06 07:23:09	https://transfer.adttemp.com.br/103sK0/donnnnnl...	Offline	ascii base64-loader Encoded Formbook	abuse_ch
2024-11-06 07:23:06	https://transfer.adttemp.com.br/r2p2Q/freaky.txt	Offline	ascii base64-loader Encoded Formbook ua-wget	abuse_ch
2024-11-06 07:19:10	https://transfer.adttemp.com.br/Rb8Qh/freaky.txt	Offline	ascii base64-loader Encoded Formbook ua-wget	abuse_ch
2024-11-06 07:19:08	https://transfer.adttemp.com.br/pfM5V/fore.txt	Offline	ascii base64-loader Encoded Formbook ua-wget	abuse_ch
2024-11-06 07:17:06	https://transfer.adttemp.com.br/XLdNU/freaky.txt	Offline	ascii base64-loader Encoded Formbook	abuse_ch
2024-11-06 07:16:07	https://transfer.adttemp.com.br/127bH9/fore.txt	Offline	ascii base64-loader Encoded Formbook ua-wget	abuse_ch
2024-11-05 07:31:14	https://transfer.adttemp.com.br/10Bfx5/fore.txt	Offline	ascii base64-loader Encoded Formbook	abuse_ch
2024-11-05 07:31:14	https://transfer.adttemp.com.br/24ukU/freaky.txt	Offline	ascii base64-loader Encoded Formbook	abuse_ch
2024-11-04 15:34:10	https://transfer.adttemp.com.br/Nzcxs/freakyy22...	Offline	ascii base64-loader Encoded Formbook ua-wget	abuse_ch
2024-11-04 15:33:12	https://transfer.adttemp.com.br/DbaM5/sdeexloa.txt	Offline	ascii base64-loader Encoded Formbook ua-wget	abuse_ch
2024-10-14 09:30:12	https://transfer.adttemp.com.br/qcExh/99gram.txt	Offline	ascii Encoded rat RemcosRAT	abuse_ch
2024-10-11 07:59:07	https://transfer.adttemp.com.br/hUkry/sirdeeeee...	Offline	ascii Formbook	abuse_ch
2024-10-10 11:56:06	https://transfer.adttemp.com.br/12LBqL/vallllll...	Offline		Anonymous
2024-10-03 07:29:07	https://transfer.adttemp.com.br/2alBy/sirdeeeee...	Offline	ascii Encoded Formbook	abuse_ch
2024-08-27 15:28:06	https://transfer.adttemp.com.br/UhsSQ/devlokiii...	Offline	ascii Loki ua-wget	abuse_ch
2024-08-18 21:52:06	https://transfer.adttemp.com.br/get/4cK2c/crypt...	Offline	exe RedLineStealer	Bitsight
2024-08-11 12:50:08	https://transfer.adttemp.com.br/get/yLwCe/crypt...	Offline	exe RedLineStealer	Bitsight
2024-05-29 05:53:07	https://transfer.adttemp.com.br/get/hkyW6/cry.exe	Offline	32 exe RedLineStealer	zbetcheckin
2024-05-28 19:01:09	https://transfer.adttemp.com.br/DLcCD/cccc.exe	Offline	dropped-by-SmokeLoader RedLineStealer	spamhaus
2024-05-27 19:01:14	https://transfer.adttemp.com.br/get/S7Sh/build.exe	Offline	dropped-by-SmokeLoader PythonStealer	spamhaus
2024-05-27 19:01:08	https://transfer.adttemp.com.br/get/XtFVA/12345...	Offline	dropped-by-SmokeLoader RedLineStealer	spamhaus
2024-05-27 11:01:12	https://transfer.adttemp.com.br/get/wCwF8/kurey...	Offline	dropped-by-SmokeLoader exe farfli Gh0stRAT PurpleFox	spamhaus
2024-05-26 18:02:09	https://transfer.adttemp.com.br/XzXEL/zxcv.exe	Offline	dropped-by-SmokeLoader PureLogStealer	spamhaus
2024-05-25 11:01:08	https://transfer.adttemp.com.br/get/CPX74/crypt...	Offline	dropped-by-SmokeLoader RedLineStealer	spamhaus
2024-05-25 11:01:05	https://transfer.adttemp.com.br/MnyU0/aaaaaaaa.exe	Offline	dropped-by-SmokeLoader PureLogStealer	spamhaus
2024-05-25 07:01:11	https://transfer.adttemp.com.br/get/t3QDe/serve...	Offline	dropped-by-SmokeLoader Gh0stRAT	spamhaus
2024-05-24 07:01:10	https://transfer.adttemp.com.br/2Tdvj/asdf.exe	Offline	dropped-by-SmokeLoader PureLogStealer	spamhaus
2024-05-23 05:02:08	https://transfer.adttemp.com.br/9Y3j3/xxxz.exe	Offline	dropped-by-SmokeLoader PureLogStealer	spamhaus
2024-05-22 10:01:09	https://transfer.adttemp.com.br/get/KzcPo/crypt...	Offline	dropped-by-SmokeLoader RedLineStealer	spamhaus
2024-05-22 09:01:17	https://transfer.adttemp.com.br/IzfV7/xin.exe	Offline	dropped-by-SmokeLoader RedLineStealer	spamhaus
2024-05-19 08:01:08	https://transfer.adttemp.com.br/74t6Z/1234.exe	Offline	dropped-by-SmokeLoader PureLogStealer	spamhaus
2024-05-16 10:01:16	https://transfer.adttemp.com.br/get/ZOY4j/build...	Offline	dropped-by-SmokeLoader PythonStealer	spamhaus
2024-05-15 12:01:09	https://transfer.adttemp.com.br/FpqMk/crypted.exe	Offline	dropped-by-SmokeLoader PureLogStealer	spamhaus
2024-05-15 11:01:15	https://transfer.adttemp.com.br/get/tW7yv/build...	Offline	dropped-by-SmokeLoader PythonStealer	spamhaus
2024-05-12 05:10:11	https://transfer.adttemp.com.br/get/THgt0/build...	Offline	32 exe RedLineStealer	zbetcheckin
2024-05-11 12:01:08	https://transfer.adttemp.com.br/get/13zkDc/cryp...	Offline	dropped-by-SmokeLoader RedLineStealer	spamhaus
2024-05-11 12:01:08	https://transfer.adttemp.com.br/get/Tm5dZ/6699.exe	Offline	dropped-by-SmokeLoader Stealc	spamhaus
2024-05-11 09:01:10	https://transfer.adttemp.com.br/D4JYz/pafpaf.exe	Offline	dropped-by-SmokeLoader PureLogStealer	spamhaus
2024-05-09 17:01:10	https://transfer.adttemp.com.br/get/15ZSJM/buil...	Offline	dropped-by-SmokeLoader RedLineStealer	spamhaus
2024-05-09 07:59:08	https://transfer.adttemp.com.br/get/Dztc3/3edag...	Offline	dropped-by-SmokeLoader	Casperinous
2024-05-02 17:02:07	https://transfer.adttemp.com.br/get/eF2iC/build...	Offline	dropped-by-SmokeLoader RedLineStealer	spamhaus
2024-04-30 15:01:16	https://transfer.adttemp.com.br/get/10FgrM/real...	Offline	dropped-by-SmokeLoader PureLogStealer	spamhaus
2024-04-23 23:01:12	https://transfer.adttemp.com.br/yBRta/ads.exe	Offline	dropped-by-SmokeLoader PureLogStealer	spamhaus
2024-04-19 19:01:08	https://transfer.adttemp.com.br/get/qQ6aH/build...	Offline	dropped-by-SmokeLoader exe XehookStealer	spamhaus
2024-04-18 16:01:05	https://transfer.adttemp.com.br/get/dOl98/short...	Offline	dcrat dropped-by-SmokeLoader	spamhaus
2024-04-15 21:01:08	https://transfer.adttemp.com.br/get/IbrRB/42342...	Offline	dropped-by-SmokeLoader RedLineStealer	spamhaus
2024-04-15 20:02:09	https://transfer.adttemp.com.br/get/fQSbw/build...	Offline	dropped-by-SmokeLoader exe XehookStealer	spamhaus
2024-04-06 09:02:08	https://transfer.adttemp.com.br/oUFmA/razdva.exe	Offline	dropped-by-SmokeLoader RedLineStealer	spamhaus
2024-03-31 10:01:10	https://transfer.adttemp.com.br/qa1ca/crypted.exe	Offline	dropped-by-SmokeLoader zgRAT	spamhaus
2024-03-28 06:29:11	https://transfer.adttemp.com.br/nqIpK/test.exe	Offline	RedLineStealer	Gi7w0rm
2024-03-12 22:01:10	https://transfer.adttemp.com.br/get/OD5KT/audie...	Offline	dropped-by-SmokeLoader Rhadamanthys	spamhaus
2024-02-14 08:45:18	https://transfer.adttemp.com.br/get/T8zkF/build...	Offline	dropped-by-PrivateLoader PythonStealer	Bitsight
2024-02-07 22:31:22	https://transfer.adttemp.com.br/get/9X0vo/build...	Offline	dropped-by-PrivateLoader PythonStealer	Bitsight
2024-02-05 15:24:25	https://transfer.adttemp.com.br/get/un7bO/build...	Offline	dropped-by-PrivateLoader PythonStealer	Bitsight
2024-02-02 20:43:12	https://transfer.adttemp.com.br/get/4x1WQ/build...	Offline	dropped-by-PrivateLoader PythonStealer	Bitsight
2024-01-29 12:01:18	https://transfer.adttemp.com.br/get/xj44a/build...	Offline	dropped-by-SmokeLoader PythonStealer	Casperinous
2024-01-27 05:16:08	https://transfer.adttemp.com.br/get/15vuVX/buil...	Offline	32 exe RedLineStealer	zbetcheckin
2024-01-26 09:01:24	https://transfer.adttemp.com.br/get/101ldo/buil...	Offline	dropped-by-SmokeLoader PythonStealer	Casperinous
2024-01-22 19:53:13	https://transfer.adttemp.com.br/get/YK4Z/build.exe	Offline	dropped-by-PrivateLoader PythonStealer	Bitsight
2024-01-19 16:13:17	https://transfer.adttemp.com.br/get/Pcjv/build.exe	Offline	dropped-by-PrivateLoader PythonStealer	Bitsight
2024-01-10 12:28:11	https://transfer.adttemp.com.br/get/PY7MF/build...	Offline	dropped-by-PrivateLoader PythonStealer	andretavare5
2024-01-05 17:06:11	https://transfer.adttemp.com.br/get/kVqk9/build...	Offline	dropped-by-PrivateLoader PythonStealer	andretavare5
2023-08-24 14:38:07	https://transfer.adttemp.com.br/4XHyV/exe	Offline	dcrat dropped-by-SmokeLoader	Casperinous

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2024-11-06 07:58:11	8565681e31e37ef479bc19f3bc612622695fbfca8acad9c4750c35d1a16911f5	txt	Formbook
2024-11-06 07:23:09	2d9d01dde71f8fd612c0b9c50e1811ccf916ebcc8847507d808b497156e9a522	txt
2024-11-06 07:23:06	b2f4b96636ee21574262f0eb84e3a1aa71e2893e1f262738bfe4e420678b52ac	txt
2024-11-06 07:19:10	b2f4b96636ee21574262f0eb84e3a1aa71e2893e1f262738bfe4e420678b52ac	txt
2024-11-06 07:19:07	8565681e31e37ef479bc19f3bc612622695fbfca8acad9c4750c35d1a16911f5	txt	Formbook
2024-11-06 07:17:06	b2f4b96636ee21574262f0eb84e3a1aa71e2893e1f262738bfe4e420678b52ac	txt
2024-11-06 07:16:06	8565681e31e37ef479bc19f3bc612622695fbfca8acad9c4750c35d1a16911f5	txt	Formbook
2024-11-05 07:31:14	8565681e31e37ef479bc19f3bc612622695fbfca8acad9c4750c35d1a16911f5	txt	Formbook
2024-11-05 07:31:14	b2f4b96636ee21574262f0eb84e3a1aa71e2893e1f262738bfe4e420678b52ac	txt
2024-11-04 15:34:10	f8eba67f5aea403b45de8ebdaee82781d5d7dcc4cb41755a7f4a4a5c3fe92f57	txt
2024-11-04 15:33:12	c26a44fc09a1ccd29940c9d43f344b61468809112b82bf9acb396d91e596880d	txt	Formbook
2024-10-14 09:30:12	801d38fc201af9e4023d046716de6dcc7895a27c768391685728eaf43ab5fd1b	txt
2024-10-11 07:59:07	02a842e75743a0ff6e1a625c86dccfed09b286fecf5f68c631adabe8eb3ab7ee	txt
2024-10-10 11:56:06	9bf2a9d9d39971bd89bef2acb2916074c318cc53268775aaba8f728ab8b2e148	txt
2024-10-03 07:29:06	02a842e75743a0ff6e1a625c86dccfed09b286fecf5f68c631adabe8eb3ab7ee	txt
2024-08-27 15:28:06	09d8dddf8de6a08749fc4c7512017c1b7202778cd6de634db7fc428eb49fa3d2	txt
2024-08-18 21:52:06	723c7c5bc5230f61d41202f35f78618656865646cfa7a6f5e50ba02ae9d4f465	exe	RedLineStealer
2024-08-11 12:50:08	0cb6569020b349110e3f2cdd510fe6b0e23d94c6c7a88f2a5a638e1d72b79572	exe	RedLineStealer
2024-05-29 05:53:07	8dde190b1a694f20a9b74fdef55a34d24402fc80ad642ed7eb55e7dfd65c4293	exe	RedLineStealer
2024-05-28 19:01:09	5345e23c7d5146b7d142b2959a50c60c4c75157524a1b84c71861cab20ab1f42	exe	RedLineStealer
2024-05-27 19:01:14	c53e3fa2e42c4d020cd5115b84d535a24625abfb61894c4e24e6f61b30d426ca	exe	PythonStealer
2024-05-27 19:01:08	3963689884ef733735ece09cd19da6a4c78325f5b6a07acc19b211382f51f37f	exe	RedLineStealer
2024-05-27 11:01:12	8b24e43d325a556c6797cc7753f6a555d47b0c7f24bad99b2009baf8a0796065	exe	PurpleFox
2024-05-26 18:02:09	4a20b28e00a124657f66f030260cc744f085b9d5a7181b2cb45d429b7b64e2c7	exe	PureLogStealer
2024-05-25 11:57:36	9b9438e01b7841dad1cda34aae49f7bc60e09f88ab4e6f639b838e72becf20ab	exe	PureLogStealer
2024-05-25 11:01:08	031907cc7c4110bef4f7a36c95c26aa1a8155293e49c1d1c6851b477aff693bf	exe	RedLineStealer
2024-05-25 07:01:11	be7e3c4b322c07b47f6c26929aa2612542fc9b87d65c7865b4b994d18e0bf935	exe	Gh0stRAT
2024-05-24 07:01:10	1e8968d520664b9d794f7b3569794f527cf5095d0556f70edc5ee851465e006a	exe	PureLogStealer
2024-05-23 05:02:08	890fb5416a4320c136a40440a32081b8d31b440250fefc3a8185ccd6005b9700	exe	PureLogStealer
2024-05-22 10:01:09	ed1f4a8961cde79aa59e209eb348d04b4638cb2807ff98f0207308a2d4d77e7f	exe	RedLineStealer
2024-05-22 09:01:17	d12d4da3bab8a93ef31a5b25384c5e700299bada572d822f561e35138d15ae91	exe	RedLineStealer
2024-05-19 08:01:08	4fa79b91e9531c1610de64e35fd96d459cb52451d75bb400ebd0aa5ed1e38110	exe	PureLogStealer
2024-05-16 10:01:16	f75c4968c6d2020b5d027692fdefc58b334a95b5ee948f43d81207e7419e9eba	exe	PythonStealer
2024-05-15 12:01:09	9f38ec0ae60879931f99054695285b54f0d2454990249d4672acfb568905bf91	exe	PureLogStealer
2024-05-15 11:01:15	614ca907b16795bc293bf411af21b955c0ea47583dd4a5c659f7e00637d26b3c	exe	PythonStealer
2024-05-12 05:10:11	ab58fa9b11e94f2f09997258e17db4b3c3a2b33606679f00a22a89ee437ca844	exe	RedLineStealer
2024-05-11 12:01:08	63211b9c4a6b331834b5fae7091f8cc38477d5cdb64d95027b3dc33e84e07d14	exe	RedLineStealer
2024-05-11 12:01:08	b927e42b91a9d16139e8e8dc56b6550590d55a0a0a7ea7614a77ec800f5cb435	exe	Stealc
2024-05-11 09:01:10	9fe178097506372bcaa09964bf9c25604db59eac8331226b165ce3d309640538	exe	PureLogStealer
2024-05-09 17:01:10	ab58fa9b11e94f2f09997258e17db4b3c3a2b33606679f00a22a89ee437ca844	exe	RedLineStealer
2024-05-02 17:02:07	87c06023a062f0ae515fb03014748a0b51d5e8011f573073224728c6c942b89e	exe	RedLineStealer
2024-04-30 15:01:16	c100029f3f8b3fcfe462bfe3bf13d42884d80d63c7b7ddbb4bbf5694d33e238b	exe	PureLogStealer
2024-04-28 07:03:56	0ffc49177634db25f67f32dc88fd6279fe84b9e6d82593e59bc1ce2e6b8d4cfe	exe
2024-04-23 23:01:12	5b88fdc4c1564305f8883e5ec48cadea105d082a5a1bae6a17c57c81c01069a7	exe	PureLogStealer
2024-04-19 19:01:08	05bfbb0886bf381e6a4b2875e928aedf6abe197884d9a64ad7137f6016ed5c9f	exe	XehookStealer
2024-04-18 16:38:19	6b67056d00eba4d6b69f1f07ebd8defa0f20f701cf24c98dfb1e45354c2498e7	exe	DCRat
2024-04-15 21:01:08	cfcb07d0c4e18c98cde36caa2ea5ee4f1617d05026b0845f87c6226d3a49c61c	exe	RedLineStealer
2024-04-15 20:02:09	2bfbdcbfb1f1fc1c0d0dddd6bd6cf0d9182ea6993b34e9438af0a10162ecee6c	exe	XehookStealer
2024-04-06 09:02:08	88f9eb586f66f57f77ebc7164594547ce881999f525878161c49e205476a04b1	exe	RedLineStealer
2024-03-31 10:01:10	5e3842498e7cc018d2514c547c11c7912b486ad19fa543477a95fed900a85b8b	exe	zgRAT
2024-03-28 06:29:11	560540e3e5f5bd294423ad372af1735a67205508a9434045677cc80ea1830fe8	exe	RedLineStealer
2024-03-12 22:01:09	d75697e57eee3f6f63114075c15995fef359eeb7a3f554e40d55dee19bead4fd	exe	Rhadamanthys
2024-02-14 08:45:18	dd4316b94787416397a1cc5d3be35cc85ca9e78ec05569b7539e4e5f18074fba	exe	PythonStealer
2024-02-07 22:31:22	a4ffd596dcb461d4fe2020b2d41e2dd7e210cc832afdba56e72f433a8296e466	exe	PythonStealer
2024-02-05 15:24:25	89a7841adbf26185cef3e1f694a61257d2d45f08851c38ec429e767b45b32413	exe	PythonStealer
2024-02-02 20:43:12	90c757f5291c89a9f86ac63c59868538f3dea52b0d8555ec1445f63e50e219a3	exe	PythonStealer
2024-01-29 12:01:18	2c0f3446ad21f75151101c09c2c0a136705e34aa70601d983f58cde68a16d5ee	exe	PythonStealer
2024-01-27 05:16:08	8f77873bce69f4dfa664af8aa6204f9b5a54bbedbb00665fc60e29791d4f3539	exe	RedLineStealer
2024-01-26 09:01:24	f0b789e7ac0c5eee6f264daeb13620aaf4baaa09a3e519a1c136822b63241c3e	exe	PythonStealer
2024-01-22 19:53:12	626d8f4358194ddba886b240b5c7a63cd851dbf2b9bea1917d61c98fa0e68893	exe	PythonStealer
2024-01-19 16:13:17	a93b7f6d19ecbe8db8dcc31247ea5acc51add8d04b59289a66c14678885167f5	exe	PythonStealer
2024-01-10 12:28:11	60f351b0db70f792c111229211107802f70ca8e9ce8d6cf8c8d4cb397981d965	exe	PythonStealer
2024-01-05 17:06:11	90c757f5291c89a9f86ac63c59868538f3dea52b0d8555ec1445f63e50e219a3	exe	PythonStealer
2023-08-24 14:38:06	8a895e7a52d62a7efc7ba64d8dd81603d2e6a47b603a9584bcdf789593deef77	exe	DCRat