URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	utorrent-server-api.cc
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Blocked
Firstseen:	2023-02-26 06:36:09 UTC
Total malware sites :	11
Online malware sites :	0 (0%)
Offline Malware sites :	11 (100%)
A record(s) observed :	6

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	SBL	ASN	Country	Active?
2025-06-20 22:53:17	209.196.146.115	Not listed	AS394456 EPIK-LLC	US	no
2025-03-13 03:04:38	87.121.84.254	SBL683025	AS215925 VPSVAULTHOST	US	no
2025-02-14 14:53:05	91.202.233.151	SBL677411	AS200593 PROSPERO-AS	TM	no
2023-06-27 10:19:25	85.217.144.194	Not listed	AS16276 OVH	GB	no
2023-03-01 17:55:14	85.217.144.162	Not listed	AS16276 OVH	GB	no
2023-02-26 06:36:11	84.32.190.45	Not listed	AS59642 CHERRYSERVERS2-AS	NL	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-03-18 12:03:08	http://utorrent-server-api.cc/TPBActivetor/TPB-...	Offline	exe LummaStealer opendir	NDA0E
2025-03-18 12:03:08	http://utorrent-server-api.cc/update/TPB-1.exe	Offline	exe LummaStealer opendir	NDA0E
2025-02-14 14:53:05	http://utorrent-server-api.cc/1337/TORRENTOLD-1...	Offline	Lumma LummaStealer	Riordz
2023-02-26 06:36:12	http://utorrent-server-api.cc/FreeApps/link3.txt	Offline		abuse_ch
2023-02-26 06:36:12	http://utorrent-server-api.cc/limetor/link4.txt	Offline		abuse_ch
2023-02-26 06:36:12	http://utorrent-server-api.cc/limetor/link3.txt	Offline		abuse_ch
2023-02-26 06:36:11	http://utorrent-server-api.cc/FreeApps/link.txt	Offline		abuse_ch
2023-02-26 06:36:11	http://utorrent-server-api.cc/limetor/link.txt	Offline		abuse_ch
2023-02-26 06:36:11	http://utorrent-server-api.cc/FreeApps/link2.txt	Offline		abuse_ch
2023-02-26 06:36:11	http://utorrent-server-api.cc/FreeApps/link4.txt	Offline		abuse_ch
2023-02-26 06:36:11	http://utorrent-server-api.cc/limetor/link2.txt	Offline		abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-06-18 17:17:49	66b6fc4a116af7fc4749b6e135206895770cd20344f66b0e1a15a7064041bf0a	exe	LummaStealer
2025-06-18 17:01:06	66b6fc4a116af7fc4749b6e135206895770cd20344f66b0e1a15a7064041bf0a	exe	LummaStealer
2025-06-18 12:03:42	66b6fc4a116af7fc4749b6e135206895770cd20344f66b0e1a15a7064041bf0a	exe	LummaStealer
2025-06-11 03:42:09	ff8f729eb7a69bee300d0fbf2b5e1a584b4377fe63ab8df1ee92b4b336eb5059	exe
2025-06-11 01:55:56	ff8f729eb7a69bee300d0fbf2b5e1a584b4377fe63ab8df1ee92b4b336eb5059	exe
2025-06-10 21:34:38	ff8f729eb7a69bee300d0fbf2b5e1a584b4377fe63ab8df1ee92b4b336eb5059	exe
2025-05-18 21:26:32	796ce3e06bc10916427b847a1b6c2f1eaa9904f95db66e35c28cebec34efc9c5	exe	LummaStealer
2025-05-18 21:13:14	796ce3e06bc10916427b847a1b6c2f1eaa9904f95db66e35c28cebec34efc9c5	exe	LummaStealer
2025-05-18 21:08:50	796ce3e06bc10916427b847a1b6c2f1eaa9904f95db66e35c28cebec34efc9c5	exe	LummaStealer
2025-04-21 17:18:16	6f4d7ea56afebf58bad06224c451abb940024964eda927eb1431a451051d7229	exe
2025-04-19 00:35:29	1ea0aee1d1d90e3f79f998774f51f6daaed9b90df878abe1fd699b61ed4d3003	exe
2025-04-17 19:15:10	d3fd1b9c5e60f103948c8c6e2c5bbf5b857100d95271f54a8cd4f6c694b854a5	exe
2025-04-12 14:08:31	4ef46582ae95f961c0a0af8262de20681d9fc34ab18ead54a634448c077fd82d	exe	LummaStealer
2025-04-12 13:56:26	4ef46582ae95f961c0a0af8262de20681d9fc34ab18ead54a634448c077fd82d	exe	LummaStealer
2025-04-12 13:54:38	4ef46582ae95f961c0a0af8262de20681d9fc34ab18ead54a634448c077fd82d	exe	LummaStealer
2025-03-24 00:44:11	8c0b11ccc08ca9295f15cc23733ce76f88ccb51f06435f29c32ebd200775118b	exe	LummaStealer
2025-03-23 21:40:11	8c0b11ccc08ca9295f15cc23733ce76f88ccb51f06435f29c32ebd200775118b	exe	LummaStealer
2025-03-23 21:12:51	8c0b11ccc08ca9295f15cc23733ce76f88ccb51f06435f29c32ebd200775118b	exe	LummaStealer
2025-03-18 12:03:07	b80b32ff1d730cfc947db68a4fc546576195bf302d1a05eee31b988fd53ea132	exe	LummaStealer
2025-03-18 12:03:07	b80b32ff1d730cfc947db68a4fc546576195bf302d1a05eee31b988fd53ea132	exe	LummaStealer
2025-03-03 10:12:55	b80b32ff1d730cfc947db68a4fc546576195bf302d1a05eee31b988fd53ea132	exe	LummaStealer
2025-02-17 17:46:01	12b096048be2cca3f61e8fe031efa942faf8f4c31cbafe76953b744537275ace	exe	LummaStealer
2025-02-14 14:53:05	8bc4c1e92cfffe6d52dd7f5c65263e24dbc7bc470dbf631e782afd5e90ef5ee3	exe	LummaStealer