URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: triathlethe.ug
Abuse complaint sent?: Yes (2024-07-06 05:05:03 UTC to cmusisi{at}uol[dot]co[dot]ug,ksemat{at}eahd[dot]or[dot]ug)
Spamhaus DBL :Not blocked
SURBL :Blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2020-05-22 10:33:18 UTC
Total malware sites :18
Online malware sites :0 (0%)
Offline Malware sites :18 (100%)
A record(s) observed :12

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2024-07-06 05:04:23 91.215.85.223SBL615768AS200593 PROSPERO-AS- RUno
2020-07-31 09:44:09 217.8.117.77Not listedAS49505 SELECTEL- TMno
2020-05-29 23:31:37 217.8.117.45Not listedAS49505 SELECTEL- TMno
2020-05-28 09:35:09 162.62.54.227Not listedAS132203 TENCENT-NET-AP-CN- DEno
2020-05-27 13:38:04 49.51.134.20Not listedAS132203 TENCENT-NET-AP-CN- DEno
2020-05-27 03:37:04 62.113.118.219host-62-113-118-219.hosted-by-vdsina.ruNot listedAS48282 VDSINA-AS- RUno
2020-05-25 22:37:44 162.62.53.243Not listedAS132203 TENCENT-NET-AP-CN- DEno
2020-05-25 11:39:01 101.32.5.54Not listedAS132203 TENCENT-NET-AP-CN- HKno
2020-05-23 05:42:01 195.140.146.65default.clo.ruNot listedAS29182 RU-JSCIOT- RUno
2020-05-22 10:33:19 5.101.50.99do2yvfj24mi7p2jp.comNot listedAS49505 SELECTEL- RUno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2024-07-06 05:40:57http://triathlethe.ug/pps.ps1Offlineopendir ps1 NDA0E
2024-07-06 05:39:44http://triathlethe.ug/telly.ps1Offlineopendir ps1 NDA0E
2024-07-06 05:39:34http://triathlethe.ug/ali.ps1Offlineopendir ps1 NDA0E
2024-07-06 05:35:07http://triathlethe.ug/payload.ps1Offlineopendir ps1 NDA0E
2024-07-06 05:32:54http://triathlethe.ug/ghjkl.exeOfflineexe opendir Rhadamanthys NDA0E
2024-07-06 05:31:32http://triathlethe.ug/mkv.ps1Offlineopendir ps1 NDA0E
2024-07-06 05:31:26http://triathlethe.ug/asdf.ps1Offlineopendir ps1 NDA0E
2024-07-06 05:24:00http://triathlethe.ug/qwertyj1.ps1Offlineopendir ps1 NDA0E
2024-07-06 05:21:37http://triathlethe.ug/qwerty.ps1Offlineopendir ps1 NDA0E
2024-07-06 05:18:27http://triathlethe.ug/asdfg.exeOfflineexe opendir Rhadamanthys NDA0E
2024-07-06 05:13:31http://triathlethe.ug/net.exeOfflineexe opendir Rhadamanthys NDA0E
2024-07-06 05:10:09http://triathlethe.ug/ghjk.exeOfflineexe opendir Rhadamanthys NDA0E
2024-07-06 05:09:33http://triathlethe.ug/zxcv.ps1Offlineopendir ps1 NDA0E
2024-07-06 05:08:07http://triathlethe.ug/zxcvb.ps1Offlineopendir ps1 NDA0E
2024-07-06 05:04:35http://triathlethe.ug/native.exeOfflineexe opendir Rhadamanthys NDA0E
2024-07-06 05:04:23http://triathlethe.ug/ppx.ps1Offlineopendir ps1 NDA0E
2020-07-31 09:44:09http://triathlethe.ug/zxcvb.exeOfflineexe RaccoonStealer ext zbetcheckin
2020-05-22 10:33:19http://triathlethe.ug/zxcv.exeOffline vxvault