URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: voucher-01-static.com
Domain registrar:NICENIC -
Domain registration date:2024-05-14 16:22:39 UTC
Spamhaus DBL :Not blocked
SURBL :Blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Not blocked
OpenBLD :Blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2024-07-08 07:11:07 UTC
Total malware sites :73
Online malware sites :0 (0%)
Offline Malware sites :73 (100%)
A record(s) observed :7

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-06-24 06:05:11 80.66.76.29Not listedAS213010 GENING-AS- DEyes
2024-07-15 09:57:31 104.21.81.44Not listedAS13335 CLOUDFLARENETn/ano
2024-07-15 09:57:30 172.67.138.28Not listedAS13335 CLOUDFLARENETn/ano
2024-07-08 07:11:14 91.92.243.32SBL686267AS214943 RAILNET- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2024-07-09 19:01:07http://voucher-01-static.com/kvro/venture241.pngOffline abus3reports
2024-07-09 19:00:22http://voucher-01-static.com/kvro/Dadmut.exeOfflinePureLogStealer abus3reports
2024-07-09 19:00:17http://voucher-01-static.com/kvro/venture221.pngOffline abus3reports
2024-07-09 19:00:17http://voucher-01-static.com/kvro/Dlbzqv.exeOfflinePureLogStealer abus3reports
2024-07-09 19:00:17http://voucher-01-static.com/kvro/venture17.pngOffline abus3reports
2024-07-09 19:00:16http://voucher-01-static.com/kvro/venture24.pngOffline abus3reports
2024-07-09 19:00:16http://voucher-01-static.com/kvro/venture220.pngOffline abus3reports
2024-07-09 19:00:16http://voucher-01-static.com/kvro/venture120.pngOffline abus3reports
2024-07-09 19:00:16http://voucher-01-static.com/kvro/venture07.pngOffline abus3reports
2024-07-09 19:00:16http://voucher-01-static.com/kvro/venture57.pngOffline abus3reports
2024-07-09 19:00:16http://voucher-01-static.com/kvro/venture170.pngOffline abus3reports
2024-07-09 19:00:16http://voucher-01-static.com/kvro/venture03.pngOffline abus3reports
2024-07-09 19:00:16http://voucher-01-static.com/kvro/venture26.pngOffline abus3reports
2024-07-09 19:00:16http://voucher-01-static.com/kvro/venture169.pngOffline abus3reports
2024-07-09 19:00:16http://voucher-01-static.com/kvro/venture43.pngOffline abus3reports
2024-07-09 19:00:16http://voucher-01-static.com/kvro/venture19.pngOffline abus3reports
2024-07-09 19:00:16http://voucher-01-static.com/kvro/venture240.pngOffline abus3reports
2024-07-09 19:00:15http://voucher-01-static.com/kvro/venture76.pngOffline abus3reports
2024-07-09 19:00:15http://voucher-01-static.com/kvro/venture243.pngOffline abus3reports
2024-07-09 19:00:15http://voucher-01-static.com/kvro/Stien.exeOfflinePureLogStealer abus3reports
2024-07-09 19:00:14http://voucher-01-static.com/kvro/venture20.pngOffline abus3reports
2024-07-09 19:00:14http://voucher-01-static.com/kvro/skmvlcamz.pngOffline abus3reports
2024-07-09 19:00:14http://voucher-01-static.com/kvro/venture01.pngOffline abus3reports
2024-07-09 19:00:14http://voucher-01-static.com/kvro/venture261.pngOffline abus3reports
2024-07-09 19:00:14http://voucher-01-static.com/kvro/impalsvaju.pngOffline abus3reports
2024-07-09 19:00:14http://voucher-01-static.com/kvro/venture36.pngOffline abus3reports
2024-07-09 19:00:14http://voucher-01-static.com/kvro/venture251.pngOffline abus3reports
2024-07-09 19:00:14http://voucher-01-static.com/kvro/venture18.pngOffline abus3reports
2024-07-09 19:00:14http://voucher-01-static.com/kvro/venture37.pngOffline abus3reports
2024-07-09 19:00:14http://voucher-01-static.com/kvro/venture293.pngOffline abus3reports
2024-07-09 19:00:14http://voucher-01-static.com/kvro/venture28.pngOffline abus3reports
2024-07-09 19:00:11http://voucher-01-static.com/kvro/venture61.pngOffline abus3reports
2024-07-09 19:00:11http://voucher-01-static.com/kvro/venture246.pngOffline abus3reports
2024-07-09 19:00:11http://voucher-01-static.com/kvro/svkdmal.pngOffline abus3reports
2024-07-09 19:00:11http://voucher-01-static.com/kvro/venture31.pngOffline abus3reports
2024-07-09 19:00:10http://voucher-01-static.com/kvro/semplaint.pngOffline abus3reports
2024-07-09 19:00:10http://voucher-01-static.com/kvro/venture75.pngOffline abus3reports
2024-07-09 19:00:10http://voucher-01-static.com/kvro/venture50.pngOffline abus3reports
2024-07-09 18:56:12http://voucher-01-static.com/rkei/Xwemz.exeOfflinePureLogStealer abus3reports
2024-07-09 18:56:12http://voucher-01-static.com/kvro/venture70.pngOffline abus3reports
2024-07-09 18:56:12http://voucher-01-static.com/kvro/venture23.pngOffline abus3reports
2024-07-09 18:56:12http://voucher-01-static.com/kvro/kdosmaul.htaOffline abus3reports
2024-07-09 18:56:12http://voucher-01-static.com/kvro/venture39.pngOffline abus3reports
2024-07-09 18:56:11http://voucher-01-static.com/kvro/djfaumon.htaOffline abus3reports
2024-07-09 18:56:11http://voucher-01-static.com/rkei/Layout.exeOffline abus3reports
2024-07-09 18:56:11http://voucher-01-static.com/kvro/venture32.pngOffline abus3reports
2024-07-09 18:56:11http://voucher-01-static.com/kvro/venture77.pngOffline abus3reports
2024-07-09 18:56:11http://voucher-01-static.com/kvro/venture08.pngOffline abus3reports
2024-07-09 18:56:11http://voucher-01-static.com/kvro/venture176.pngOffline abus3reports
2024-07-09 18:56:11http://voucher-01-static.com/kvro/Fmzsa.exeOfflinePureLogStealer abus3reports
2024-07-09 18:56:11http://voucher-01-static.com/rkei/Stien.exeOfflinePureLogStealer abus3reports
2024-07-09 18:56:11http://voucher-01-static.com/kvro/venture222.pngOffline abus3reports
2024-07-09 18:56:10http://voucher-01-static.com/rkei/Erlnb.exeOffline abus3reports
2024-07-09 18:56:10http://voucher-01-static.com/kvro/venture33.pngOffline abus3reports
2024-07-09 18:56:10http://voucher-01-static.com/kvro/Layout.exeOffline abus3reports
2024-07-09 18:56:10http://voucher-01-static.com/kvro/venture53.pngOffline abus3reports
2024-07-09 18:56:10http://voucher-01-static.com/rkei/vorthauay.htaOffline abus3reports
2024-07-09 18:56:10http://voucher-01-static.com/kvro/venture60.pngOffline abus3reports
2024-07-09 18:56:06http://voucher-01-static.com/kvro/venture49.pngOffline abus3reports
2024-07-09 18:56:05http://voucher-01-static.com/rkei/1337x.txtOffline abus3reports
2024-07-09 10:55:15http://voucher-01-static.com/rkei/223-8.txtOffline abuse_ch
2024-07-09 10:55:09http://voucher-01-static.com/kvro/1337x.txtOffline abuse_ch
2024-07-08 07:27:11http://voucher-01-static.com/rkei/1068.txtOfflineascii NDA0E
2024-07-08 07:27:10http://voucher-01-static.com/rkei/1085.txtOfflineascii NDA0E
2024-07-08 07:27:10http://voucher-01-static.com/kvro/venture45.pngOfflinePureLogStealer zip NDA0E
2024-07-08 07:27:10http://voucher-01-static.com/kvro/xplayd.htaOfflineCobaltStrike ext hta NDA0E
2024-07-08 07:27:10http://voucher-01-static.com/kvro/Erlnb.exeOfflineclipbanker exe NDA0E
2024-07-08 07:27:10http://voucher-01-static.com/rkei/Uialn.exeOfflineexe PureLogStealer NDA0E
2024-07-08 07:27:10http://voucher-01-static.com/kvro/997.txtOfflineascii NDA0E
2024-07-08 07:27:10http://voucher-01-static.com/kvro/589.txtOfflineascii NDA0E
2024-07-08 07:27:09http://voucher-01-static.com/kvro/Alingme.exeOfflineexe PureLogStealer NDA0E
2024-07-08 07:11:16http://voucher-01-static.com/kvro/1284.txtOfflineascii NDA0E
2024-07-08 07:11:14http://voucher-01-static.com/kvro/Atte.exeOfflineandromeda exe NDA0E

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2024-07-15 19:04:13c5e7a645401cdf9877d2e761423d4d5e6c7143efe88c3edc7cca38cc0a9c098dzip  
2024-07-12 19:04:422fdee3b063ef591980c5cfcda40f87eaccb96110bf3b86b30b4b6051afe6c93azip  
2024-07-12 16:36:280e76445d05b7d468da05a5cf97f4e81892a221bffa6f20dfc7b812236ea85e75zip  
2024-07-12 15:35:50eede3d0f95fce728298ca27e5e56eb737968851c13f06c510c9c33545d5282c8zip  
2024-07-12 15:34:071284c18129b3272c9e552ea117c2971aeb04b5d6d3ebf19c5afe933b102a761bzip  
2024-07-12 14:55:5924812c5358e797b841851a53254d07a231964138ee9e05698177e538da824e8bzip  
2024-07-09 19:15:04c58318c2affce2ac641df20a1df9922a0e9781ff9ef9797230278d4d92413cf0zip  
2024-07-09 19:01:074491db76893a685c6ae5035f95a3075313d439e64fb6284eb48c881ae980d89bzip  
2024-07-09 19:00:221702d2196b87c01e039ae71e17bced2113a2f99a72fb6d8dcee219dfc598adfcexePureLogStealer
2024-07-09 19:00:1791124a5060101b1db3265c848317014f7c02005ce944c3d0d6c6bd50d3398737zip  
2024-07-09 19:00:1737d645383ac6c20846f2342aec1bd6e2e6a5a871c0b47a71e1c6d1f893c90543exePureLogStealer
2024-07-09 19:00:16e5c08eb6bdd6384500063b03c285fe9a9e47c99d188366dcdc6e4962085d5da9zip  
2024-07-09 19:00:16a23a7811bd27236e626631e187973cf0e6db2336452fa7a008147962aeca51c9zip  
2024-07-09 19:00:163ce804b20fe2619ad5f6262f479103660c12a7fed0bfb47d3c1c5a84bdb32272zip  
2024-07-09 19:00:16a638981bac812e031831e470fde96dbf3c53aa0f748867d07dbd3ab07be81686zip  
2024-07-09 19:00:16370d45d400e340a567f2f97572b759637895bb75b8a52cd37c6478dd067e454azip  
2024-07-09 19:00:1692171b6e09968b8085c14da14d83185189eaa79dd94cf3b9cf6e1fd8c1ae942fzip  
2024-07-09 19:00:163bba49172f912b1ac1072f0cb251cf78e5cae737345d0392be7ebefa863cb4a9zip  
2024-07-09 19:00:167c3779546108272fe3256b05170dc8604ebdac279d50b6a1ff281ed9a9d11603zip  
2024-07-09 19:00:16cbb67c822920db1f5ae3cdc6f99b1148c307b56390ec8aa36222dd4b9e8116e3zip  
2024-07-09 19:00:169148283a3acef843bf50f4f92e07bf4fb9ae7777a1fe063c3c5f6b8307a8bb10zip  
2024-07-09 19:00:160ed7e7bf29af65c7041cf1a85ded5b959ea63b3ff7ce09abbb5906a37dddaad2zip  
2024-07-09 19:00:161405d349d5d4028eb774adde9cfaaf4435ffcfd371c4a15e0c3d935c1869ad80zip  
2024-07-09 19:00:164bab5b6801a245456e0b6970d37823f8de6a949934551f79ce58ade2f8b2802czip  
2024-07-09 19:00:1545c3e9417d9ba9c65023e3bd45a866f06df2e6b8ef1eb62e93811400b0b2d8ddzip  
2024-07-09 19:00:15ce8f36cb260a5e3d03fab13624208d531551b5dc82e2097b9dd38707c32852deexePureLogStealer
2024-07-09 19:00:157da89b9c2432fa30c7248f939262e07d07dd4651029a5e080c768230bbefc38fzip  
2024-07-09 19:00:147d787575c0f7db761bc96bc46f0736fec8eefc2981db5dfd8d9f6ae229f3b9e0zip  
2024-07-09 19:00:14dd1c03f1b9a87616a69586b7a5c9997e92a97b7372043d8725aa13074d786fb9zip  
2024-07-09 19:00:1465ee8d7771b52b27877312e1f9ac2ef1e99b5ec3ba4cd0d5ebf5100c66c92546zip  
2024-07-09 19:00:1439d2d624acb381ab2f1d0a63031c5d7d412c721f55081fa81eed932e59275a31zip  
2024-07-09 19:00:1411f785b53a8509d7937a7b723b5518d6c3eb6780f570de6ce0bfeece61171136zip  
2024-07-09 19:00:1405681c4f3689771bea5bb4a875d5bb6e89ab8fb958ee8ebc4c8f9014cc785a67zip  
2024-07-09 19:00:14a1c938f6d6f428d06974283011a83e37289783589cdb7cb9a64981c2788d55bfzip  
2024-07-09 19:00:140bf697f9b109d666976c529aee293e107376d79f6a3476e71076330e62afa3edzip  
2024-07-09 19:00:145e29a10f09b4b630af97738ac1a5a147caef96e980a364fb9ce3f81eb6cd1b6ezip  
2024-07-09 19:00:14cb047fd3d8b8ccfeca4b518403d5a72df463ecaee8b176d79db001df1d7f0275zip  
2024-07-09 19:00:14f735036ae4ba69e4cfc25b07c9852d363cf430438d838295bf3dc770c8794250zip  
2024-07-09 18:56:12e96b455245e3e29c30bcbaf2836654435beca58d7e0e740fef3d5449caa6cfcaexePureLogStealer
2024-07-09 18:56:1216f88d94ea702db9504f04d67cae5450d89a4193cd65f901fb04fe5b9af275bazip  
2024-07-09 18:56:12112c24eb56262761731cd65e4cd2dd748b678f3be8c60b8d90b19c1cc55d6febzip  
2024-07-09 18:56:12af207a860fcc61521d571edd630480dd4f96b953ea077c066c0caf3ad735e37fhta  
2024-07-09 18:56:12861383ff25ac651f203eae6a9d1f96a08e03971ddb16d1c6a25c3715ec1f9d65zip  
2024-07-09 18:56:11a473400f21e74c85bb5d1affd85ed31a86ce22509a8774d7f42b244dfe723eb9hta  
2024-07-09 18:56:111f1d58a2b6a318a224786db3cbd9e7ccb69bd80d228ef820fc9cc4d82a67c222zip  
2024-07-09 18:56:11d172b9dfd3b2a753448948993135e3410411f6f319c8680704efe48478aa7824zip  
2024-07-09 18:56:112076e1e11a53f16f5a56139d144714ba03fa3baf134c67ce7fef26318bf9e51bzip  
2024-07-09 18:56:11ffe4a92c8dea3127bc34e0a461e5d644213ed8edfd239bd06178e217087e2ee6zip  
2024-07-09 18:56:11ce8f36cb260a5e3d03fab13624208d531551b5dc82e2097b9dd38707c32852deexePureLogStealer
2024-07-09 18:56:118c9e9a9d1c49f5512cf1c8daad48628acbfbdc417c08c39bcae088b3cc806b7cexePureLogStealer
2024-07-09 18:56:103e3ff369c6f3b7c8b695397878089583295860a00ee71941034fd01bb340cc02exe 
2024-07-09 18:56:10fdd87312bde12c0ea75d902a1d759d506ea621930c552216e62a0a8ba6f860f9zip  
2024-07-09 18:56:103e3ff369c6f3b7c8b695397878089583295860a00ee71941034fd01bb340cc02exe 
2024-07-09 18:56:1070bc0ed509e039bce4f445aea72b7a90d3cce16144d8f5a5301769a016c93ec6zip  
2024-07-09 18:56:100b91154f7907ff59359c2f923b2ea91970b8a2899259c4a7713056cee656453cexe  
2024-07-09 18:56:108d011bd18a12260b21fd2c351d54c79e9c232193b9a4064cc22ff8ad07d7ffdbhta  
2024-07-09 18:56:10732704bea535f94f8a100b13596d00658f3f1faa2d6da53e049e04758cf5545azip  
2024-07-09 18:56:103cc4140aef8a5143b1e9f7347c05b823ce1b5d3e85f30c57d406b85377b3097azip  
2024-07-09 10:55:1575c370b7c9fc0dd8ec25d3b02088f8283bb728faf64f5cc245096d8e501a1d97unknown  
2024-07-08 07:27:11f49b07a1d1def9aeadae4455194930c3023c3cd1d5e875ad92f5eb22e4e60df4unknown  
2024-07-08 07:27:10a5aa4c542f5431e919fa6b9ab93d38e1a4f55a769b4b99818ff5b20faac41df3unknown  
2024-07-08 07:27:1017a93e8178dfa1018e77bd199d2d2e0aa3cd44b02abffb86a2a878b883e4946dzip PureLogStealer
2024-07-08 07:27:10840226ee14837fd6a2033c9696eabf5e488fa14c2149899560d9666bbb39ad4chtaCobaltStrike
2024-07-08 07:27:100b91154f7907ff59359c2f923b2ea91970b8a2899259c4a7713056cee656453cexe  
2024-07-08 07:27:1092931a8f91d661cce0204783604ef536a4134376a9ed2e461720c7b93a129746exe  
2024-07-08 07:27:10cf98fa049491396c083dd19675a8b78c273fb9021e1219b0345dfe9fe596dc1cunknown  
2024-07-08 07:27:107730193f262273293c9e8c4202c148192c047cd31a7cb8b2b60e487c3a3929b8unknown  
2024-07-08 07:27:09cfe265ccda2de2913ed1b8e3bf38df40c5f02e1aaba8d45579298a9302c12b22exe PureLogStealer
2024-07-08 07:11:165017c8798a2a9102c82ab896eae71e4a294dfb1f7a44a341b7c84dab4b12209eunknown  
2024-07-08 07:11:12e53730ae2df93f79892cf600bd43dbc822a2ac600553d9010f4f2021b71f987eexe