URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	umctech.duckdns.org
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2019-05-22 11:50:02 UTC
Total malware sites :	4
Online malware sites :	0 (0%)
Offline Malware sites :	4 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2019-05-22 11:50:17	23.249.165.221		Not listed	AS398880 INVESTCLOUD	US	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2019-06-10 19:52:07	http://umctech.duckdns.org/i/opr2.exe	Offline	AgentTesla exe	zbetcheckin
2019-06-04 09:16:05	http://umctech.duckdns.org/zdx/opr2.exe	Offline	AgentTesla exe	zbetcheckin
2019-05-22 15:30:26	http://umctech.duckdns.org/um/opr2.exe	Offline	AgentTesla exe	zbetcheckin
2019-05-22 11:50:17	http://umctech.duckdns.org/vn/opr2.exe	Offline	AgentTesla	James_inthe_box

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2019-06-12 12:19:08	b61bc1310be0c2efc2f70a3635d8bfb105d3b7aaa4e83cb3b7e92830d161c76c	exe	AgentTesla
2019-06-12 12:19:06	33a08f99c8d6116772a6e159e9421bf6d2ecbd545dff9ac7f18314700299b526	exe	AgentTesla
2019-06-12 12:18:16	e48072b797f7387f2f587891fe29a0ff191799cc785563ead361b71d835c5605	exe	AgentTesla
2019-06-11 20:51:57	5cbd05d6ebd28522a64906857d5f4e9ce4e53a306b1585dd7dc9369aa18e398a	exe	AgentTesla
2019-06-11 20:51:54	409a0b879802e69824678e134899e693cfa18a96c517916c229b3fbe6483866c	exe	AgentTesla
2019-06-11 20:51:12	c3c0d33763e69b8b165892b192a17772abbb662b618fc2a0496ab072856fff0d	exe	AgentTesla
2019-06-10 21:58:06	6825d33a7e722191381310cbadc8afa48b513745569722b16b350761ada36ecf	exe	AgentTesla
2019-06-10 21:58:05	f9fa8ca6b9fe292a762744d30631824465b919087fbbfee5333e19140facd191	exe	AgentTesla
2019-06-10 21:57:17	795f8719be5320da38d5a3cc3ca419acffb0a09eb129bee0e6ed4221ea35be33	exe	AgentTesla
2019-06-10 19:52:06	b8e6ccb21ed1d66b670b749a00aaae797d1bf64f5cd74a8ea575714c5a2ac1c2	exe	AgentTesla
2019-06-10 07:33:26	e3108307ae4045f871941eb3b7a9813446da562a9c8a8986bd8d4d00bcbba648	exe	AgentTesla
2019-06-09 21:41:16	1299f6668b12c5a8534d934581b6b4f564047585e487bf12598f55e57d62cbd6	exe
2019-06-09 21:41:11	7c2c22a738e4eacfedfd984af161dc23cb8dfa509aeddac986d2fa2a5644b7c9	exe	AgentTesla
2019-06-09 21:40:24	0993eee8eef5efee387f7940d2682ded81d883e59a529a531985812e50e43d3b	exe
2019-06-04 09:16:05	58e7d68cc4c70631a9163fbeaf17240af562c711be600ceb2be5b3ff2fb6ee7d	exe	AgentTesla
2019-06-02 23:27:00	0993eee8eef5efee387f7940d2682ded81d883e59a529a531985812e50e43d3b	exe
2019-05-22 15:30:26	4cf926c479ff0789b42884d9282d92926e7e24670eb36a5ce454aa73d751b286	exe	AgentTesla
2019-05-22 11:50:17	094147c7a5c1bf73ddf954e9556cd84629653884aef42f3aee20ab889c6833bb	exe	AgentTesla