URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	ukronet.ru
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2020-05-11 03:06:03 UTC
Total malware sites :	2
Online malware sites :	0 (0%)
Offline Malware sites :	2 (100%)
A record(s) observed :	27

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-05-29 14:11:27	15.197.130.221	aeaff23b87fbce26d.awsglobalaccelerator.com	Not listed	AS16509 AMAZON-02	US	no
2025-04-29 21:47:24	188.40.141.211	static.211.141.40.188.clients.your-server.de	Not listed	AS24940 HETZNER-AS	DE	no
2020-10-09 10:02:35	94.140.114.197		SBL635993	AS43513 NANO-AS	LV	no
2020-10-08 09:09:18	46.30.45.120	vm556114.eurodir.ru	Not listed	AS216139 IRONHOST	NL	no
2020-07-23 07:03:28	193.187.173.206		Not listed	AS50340 SELECTEL-MSK	RU	no
2020-08-04 11:34:44	194.87.109.104		Not listed	AS215346 BIGDATAHOST-AS	CH	no
2020-06-08 18:09:48	194.87.190.97		Not listed	AS9123 TimeWeb-AS	CZ	no
2020-06-03 06:51:37	188.68.221.196	mta4.directcrm.ru	Not listed	AS49505 SELECTEL	RU	no
2020-06-03 04:12:17	31.184.254.240	cloud82508.megaproduto4.com.br	Not listed	AS49505 SELECTEL	RU	no
2020-05-31 02:43:50	31.184.253.249	cloud18226.zaa.pacotecompletosp.art	Not listed	AS49505 SELECTEL	RU	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-10-08 15:19:04	http://ukronet.ru/managaburitos7kfdd0a/managert...	Offline	exe Gozi	zbetcheckin
2020-05-11 03:06:07	http://ukronet.ru/image/cabinet.exe	Offline	exe Quakbot Smoke Loader	zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2020-10-08 18:18:17	b573efb3314fc674683285ed910820088ff977c6c9e9981df878ec46a291f6c3	exe	Gozi
2020-10-07 17:30:45	466f0beab5744a1cebd4cb3de457d3c0821d972e27e25ca1969677716c6b8c6c	exe	Smoke Loader
2020-10-06 06:33:26	f85b4fcd61a36635fe0e40af704b607ab33afdc97131c14fd958f6ae101ad1da	exe	Smoke Loader
2020-10-06 04:34:12	237097d56dbe6e685d11f86815a8fa3a5e51b1f48e80a9f7e51d1cfabe0ae4aa	exe	Smoke Loader
2020-10-05 04:41:29	027a5c147d06ff721e440bfb43c733c9fa878e50e5f4637c36dece0a7571b547	exe	Smoke Loader
2020-09-15 04:24:11	d555ce44fb36cf92eff841e4881f33be598c1231c52c23868cf6eddf5196be8d	exe	Smoke Loader
2020-09-14 04:53:10	ca75b5a05f030b2b20f3d98c293d5240f96d000b57505526bf52e4f82458ab2d	exe	Smoke Loader
2020-08-13 04:08:25	f4b2d23503a5d980706f78ba90ce4dbce3b3a27ff04b725179771cacbf90c971	exe
2020-08-13 03:10:52	49fed409e6b1be5f64b258e12021edbdb0054bbdaa78f429b71c2fe886ac41e7	exe
2020-08-04 07:35:37	14cb1ca3afa76a2caf99cf9f4691f7c72ad961f685528d3476f64676beee5f80	exe
2020-08-04 03:59:36	955faebd6262a77420d0bacc23f0f8623630bfb48adb9023f4e30926aac45321	exe
2020-08-04 03:15:17	44a7ee63c968c09fc7e98f4e8f0009844c6e035ea76b5b0a793449454ef1788a	exe
2020-08-04 03:12:51	44a7ee63c968c09fc7e98f4e8f0009844c6e035ea76b5b0a793449454ef1788a	exe
2020-07-27 05:33:45	163345fe9260161a0d1e708bdf93442e5faf293463338a78b3d19203d0514e08	exe
2020-07-27 04:12:17	43b075a214f2002ee0993413d2b6cb24e4230dec5ab4e1452f9e7cb1b1c75e27	exe
2020-07-17 04:13:21	2565bf4a2a39535edd14420e44614dac5912b1a1d89fe2c524ad33bc81ec8b73	exe
2020-07-16 04:51:04	fcb121046042b8b3c2386a9e8c3513fc1455f18d0493e1be0c97e675620d0bd4	exe
2020-07-14 03:44:32	ea1b3c17d3d6f443f1b70b9ce37afb5ed8558cde46c1d9f96748c14aa2b141b4	exe	Smoke Loader
2020-07-07 05:50:48	0049fac8f1f3572447b1ea754889882948808401417406302dfc3ab6a968628b	exe
2020-07-07 04:40:51	291ca29cf9eedade9a06602b37af222c75e998457f385a54a28d365c8ec97796	exe	Smoke Loader
2020-07-07 03:44:12	70c7de31d50ae608d6bfbf5910c09a6d6df81405243e099732cbf52721c6b7d7	exe
2020-07-03 04:42:40	a3125938890efd53950314277c17c6f7e950acb93ef285dfa24e24ddba76cb33	exe
2020-07-02 04:47:39	066d34fcf335b483302e41c77a5e8454acc3e84a4bca3df7e4013bf16c745884	exe
2020-07-01 05:23:16	421f6fada8834507f1c12ed61aab8be878b1692535e19041d97c5c31eb86b9a9	exe
2020-07-01 04:58:07	fbb085b3dfc5ecd3d58f3e57ff900498643d611a911399679bce44112cca567c	exe
2020-06-23 05:46:45	bd3541e8333dd604a580fcfadf2f1fbc8fd94ef501578669e045598b68a07d7c	exe
2020-06-23 05:00:53	f7cbdc6a67ac7e4861e16af2946eaac4d2d1c5c1e975c8bbe6e25f64f7e36fa0	exe
2020-06-22 01:10:12	f6c96250359377ca85340b8c2c7253dd4f8fb5b1b8bf87d9fbce45ae40fe5417	exe
2020-05-27 06:23:18	d87d470c2057041c3557a57eb7c5b00e979a7af48e7ebfa0675690bf6eb9c514	exe	Smoke Loader
2020-05-27 04:31:30	6df0c5e8223170acf789bf9b431f8c8c792dadc8194c1ab0da7e1926df128f89	exe	Smoke Loader
2020-05-26 04:17:15	6993fc3f80b6d4956881d5697a4b0973b331fcf766ab0688efc61f9585d385f8	exe
2020-05-25 06:04:43	7efaa3dcbc30a426701209b6cdfed0ec98762d80ce88f8bd34d320efccc51c41	exe	Smoke Loader
2020-05-25 04:12:12	f4b6b555b6435152ae44464d20feca809564e0f8c1d9164f53504dc5e0c6c7ad	exe	Smoke Loader
2020-05-18 04:22:25	17c3fc72feb76d44708cdd1cf1aadf0371af6611edb9bdb5090bdad11470a8bd	exe
2020-05-18 03:38:32	b48c128e2687ddac5ea151865817fc45e1c51175175d6250f16f33b6082b4462	exe
2020-05-17 23:48:43	736330aaa3a4683d3cc866153510763351a60062a236d22b12f4fe0f10853582	exe	Quakbot
2020-05-12 04:07:22	fa9876002de0344fd39ea9ca72565d53b8b9da2bacbe527f09c2e15c4999c306	exe	Smoke Loader
2020-05-11 03:06:06	ee4a192729f039c2b5829259f58443b9f6564f2d4973e315cc9437bfd166f536	exe	Smoke Loader