URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: web.johnmccrea.com
Domain registrar: n/a
Domain registration date:2003-12-08 21:32:22 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2024-10-12 03:59:04 UTC
Total malware sites :24
Online malware sites :0 (0%)
Offline Malware sites :24 (100%)
A record(s) observed :1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2024-10-12 03:59:08 147.45.47.185SBL647085AS200195 VERASEL- RUno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2024-10-19 21:04:53http://web.johnmccrea.com/dist/6_Setup.exeOfflineexe LummaStealer abus3reports
2024-10-19 21:04:28http://web.johnmccrea.com/dist/670b835ed9f67_SV...Offlineexe LummaStealer abus3reports
2024-10-19 21:04:19http://web.johnmccrea.com/downloads/67065227a06...OfflineCoinMiner exe abus3reports
2024-10-19 21:03:45http://web.johnmccrea.com/dist/67081de6be937_Pa...Offlineexe abus3reports
2024-10-19 21:03:32http://web.johnmccrea.com/player/2_xnfile.exeOfflineexe abus3reports
2024-10-19 21:02:34http://web.johnmccrea.com/css/7f3c2473d1e6.exeOfflineexe Vidar ext abus3reports
2024-10-19 21:02:33http://web.johnmccrea.com/player/67069bbc38ee7_...Offlineexe abus3reports
2024-10-19 21:02:32http://web.johnmccrea.com/css/1_FilesSearcher.exeOfflineexe abus3reports
2024-10-19 21:02:30http://web.johnmccrea.com/css/0a839761915d.exeOfflineexe LummaStealer abus3reports
2024-10-19 21:02:26http://web.johnmccrea.com/js/5_uyostimeless.exeOfflineexe abus3reports
2024-10-19 21:02:19http://web.johnmccrea.com/player/670a8ccf0c6f9_...Offlineexe LummaStealer abus3reports
2024-10-19 13:59:28http://web.johnmccrea.com/js/670937d1a5503_CSEa...Offlineexe MarsStealer abus3reports
2024-10-19 13:59:13http://web.johnmccrea.com/css/d74f5005fa82.exeOfflineexe LummaStealer abus3reports
2024-10-19 13:59:12http://web.johnmccrea.com/player/6709664c4db50_...Offlineexe Stealc abus3reports
2024-10-19 13:59:08http://web.johnmccrea.com/css/7d26acda3d7c.exeOfflineexe Vidar ext abus3reports
2024-10-19 13:59:07http://web.johnmccrea.com/css/f2e7fcb20146.exeOfflineexe abus3reports
2024-10-19 13:59:07http://web.johnmccrea.com/css/67065a0933c9e_UUE...Offlineexe abus3reports
2024-10-19 13:59:05http://web.johnmccrea.com/web/67079aecc452b_xin...Offlineexe abus3reports
2024-10-19 13:59:04http://web.johnmccrea.com/player/9_ChromeUpdate...Offlineexe abus3reports
2024-10-19 13:59:04http://web.johnmccrea.com/js/9_idata.exeOfflineexe abus3reports
2024-10-19 13:59:04http://web.johnmccrea.com/player/9_AssumingUpco...Offlineexe LummaStealer abus3reports
2024-10-16 02:28:05http://web.johnmccrea.com/css/63e909b3647d.exeOffline32 exe LummaStealer zbetcheckin
2024-10-12 04:49:09http://web.johnmccrea.com/player/670937a58778f_...Offline32 exe LummaStealer zbetcheckin
2024-10-12 03:59:08http://web.johnmccrea.com/css/67065b4c84713_Jav...Offline32 exe zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2024-10-24 20:25:57fbe84e71f16cee666afa09b1cef248d0f0965803a39364c0b7aca944dd13d694exe  
2024-10-24 20:25:21248f3a165b957a0c9b341e9424c5141932f963ce048a4394eaa4c157b2663e6eexe  
2024-10-24 19:39:376e5a5a047af5a773f3fce703b4701bdecedf5e58c3408481947a1d504d28a262exe Vidar
2024-10-24 18:32:176b313bdf1e1170369587fe49f0d3c7a43b08528b094ed03bb3f79cb7a4e153fdexe  
2024-10-24 18:08:39cb18474f67368d63474d10c7fe7aa2713cf59a65b310e1556c003bfe8464833bexe  
2024-10-24 17:23:50ac7c4daf9e7ef05aeb1b594d5b7b372485812d3c01c2c33a887d4d48e915be42exe  
2024-10-24 16:46:21d318e7ec8e9adc6abf4714d09aacfcb0985c90e12713ad76c0cef0bec19b85a3exe  
2024-10-24 16:28:1955f14acb045dc03f7e0e473570a994ecd0cb7723b0c840183272e93d358e116eexe  
2024-10-24 15:24:09693920e0eef8a27eeccac680d2dffb990787e8504fdb4e116d23e53d3b34b305exe  
2024-10-24 15:14:0913d09f7f39ca04c4b0c92da15618e331378b3275068a8e138af429af61afa57cexe  
2024-10-24 15:01:03d7497e2dfc21c2c25804fe1f30e0f3cdbe6aef05616c4e043a0c9470f235433dexe  
2024-10-24 14:59:48b350afc75b575c772420f6af1e73d1e567a0a3fac5995c9d6be9628d9636d00fexe  
2024-10-24 14:58:30dabb40726b9959a266825e1f46db4f5aaf50e41f43ce78166a9298c0961c9548exe  
2024-10-24 12:26:0122463e82d17ca2ff03f5d9535a0504b2d217f4cc09f12df79873696c5b7594b3exe Vidar
2024-10-24 12:25:453f0077e4e0eb1c00f8f44cf012f9723a970d0dfa10f1fc078045d1d9626a4dbdexe LummaStealer
2024-10-24 11:48:1437ae49bd3ffd39616a3a0fc09bb4e766e4a69114f3a579ae11446cd01281f2a1exe  
2024-10-24 11:36:513ad49316b4555f6075048ce6ec8478087497e42609c5f7261dfe81b1ce71a341exe  
2024-10-24 11:31:280e2fc0e8b5fcb5c9653870d35a0db286d35652f2e749f03c70da0bf93cd09e9bexe  
2024-10-24 11:14:027c0ad18434a44cc073b95a2565cedf88d87d6cd6e037cb0d038fc0a0013fbfa0exe LummaStealer
2024-10-24 10:36:598936f3699f4dd0d94ed783c07b095a10fae826c7ecfe231ef1fb38a4d44829dbexe  
2024-10-24 09:48:1553bf7b3263cf421b56810a62d07fc10d1d262c4af7de654973e5454d3c02ea82exe LummaStealer
2024-10-24 09:16:422418b484ef578a8f64521e035326dbb30b5adb954331dd8a729f1908f51ce41fexe  
2024-10-24 08:47:582c939606debf6b471ac9d87b66edc496b2090764b0cdb3240e4a681a226f1ea8exe  
2024-10-24 08:43:33538ac2738480ed8b5e1b170194cc5dcc0ec05279130298e82d3174f361d9dd6aexe  
2024-10-24 08:20:09e482732ccc6e400225929263d41b05e6135fe57ba88563a81c4644dc867956c8exe LummaStealer
2024-10-24 08:10:33be3d2ca6dcb623d417b590528c7119723076041fb1ce0517ac5f9b49e2868f26exe LummaStealer
2024-10-24 08:10:30296ba0db313031edfffba65b07823c245fa77bc152be0b20a4c47cc8cda60e12exe  
2024-10-24 07:45:271542759bb743a35f522eef48c43144f1524a23ea2a43f4b6ef1ac98edc06a789exe  
2024-10-24 07:25:30e3f8545144021cbef7f8a8452d1b55f89a1b672742a7fcea74c8692ea0a62106exe  
2024-10-24 06:50:40c037debdd8b8afc30a7b9d1412341d4896ecf79b02f8b7cd2eb8259800bae965exe  
2024-10-24 06:50:30cddd702906331884e9980f91eadc4aee0c023201ca4facfe75ac476366282a56exe  
2024-10-24 05:43:36a79e51d99209f421de1a99db82bb06613b89a1cd5ce2d6b8e56c68648c7dd420exe  
2024-10-24 04:23:01fa507fe25d680f6b6ba0fbe66a346e898bcf03e287caeeec0c5aa1c9bb454d59exe  
2024-10-24 04:02:5944956b79a1fe4bdaf9538adfd707dd5890e33c9a20fb4a690891e05d7521b967exe  
2024-10-24 03:52:4435bdef0b9645227741e379596b6e89bfe41448b84123006de745a788a1d25772exe  
2024-10-24 03:33:4462ca465cc3c78d034436ba6ea9f40b7dcf9a0c4f1f778db2e7396286a4006752exe  
2024-10-24 02:43:156bda6f9f74f1c87b595eb3601a8532743a1f05d91815a852a3b9363a1481340aexe LummaStealer
2024-10-24 02:28:37ef6e07c68c27e4696732f49ea4c678cfdd249b6f52ed6e65c651cc5df63aa95bexe  
2024-10-24 02:13:455c6b8576587beb5f79113bebaeaa12fb18d53ee29758b77cfc1dd47386d1a3f4exe Vidar
2024-10-24 01:46:0035cf6ebe680624fa16bb935e5e791e6d823bfed887f81ac855ab2856375372e6exe  
2024-10-24 01:33:4979f0a3bb379c7f71d6603f9019a1d0dc963d5a8d50a88e13dfaca1924d35466fexe Vidar
2024-10-24 01:24:585e4743442e4ab60affc738e7b8aaec642fcfdbad308eba21c15e318670638721exe  
2024-10-24 00:59:38263cf6a6aa7f9bb760532aacb4a500d0db934d7ecfbd9b099d3f0cde967f4d94exe  
2024-10-24 00:23:3751cd546f9de6ecfff86fdd2bd5beac76085830e85c31fe27c649851baac0a266exe  
2024-10-23 23:25:46ee0d39c3c61098a41ae9e32d6254091cefeab9656fcd0627d5522aed2b506fd9exe  
2024-10-23 23:08:53a95690672dc0d8e76d1cc878bf24f2b85dc1c5f88f1d9dad9ed5e841247f9a52exe  
2024-10-23 22:35:31e52e0a01bbc5aa59c4a6867fad01a074ec8b8263fbd255566aa6c47c91aa4973exe LummaStealer
2024-10-23 22:29:28f51aa55849f985249403c68d044c02a99ffc9179d0553f8e9e6a97de08a92cf0exe  
2024-10-23 21:57:25f1f475b788240a2dbb226691fb1e6345e422745aa9fae6602eeff2e43b5eba24exe  
2024-10-23 21:40:08299dd8f3bf7ff7d757c4749a735d5b1c4a57ea6237e320688a62be8f5d74f6d0exe  
2024-10-23 21:30:0064baf1848c0878ff022cfb65b60d7d2448b45748a49f549d04c0d35510f205abexe  
2024-10-23 21:12:17803abb32e7f639cfe8b4e91f9b00046ccd13212bbe816a9f5ee84f204f478006exe  
2024-10-23 20:38:26eecd0b24b2314a5ab44898c20e0badd69b13637530bb02caaa228fa54f0da671exe LummaStealer
2024-10-23 19:57:12ce0aaa4bafc142afb2a74cc8616af7661eb12ddb90a13a5f6e6bbf29f0746701exe  
2024-10-23 19:53:126f3c3db99b2fa78f5d5ab40a7c2e7605c20701783fe7b5edbc6d0918a76ebcc6exe  
2024-10-23 18:53:1683700ffbfb7518196215226955b652f1be21959a6c56807a960f759ff14e1ad4exe  
2024-10-23 18:03:176be50ae9db0ef546b66ca2f30848c6b28dd50997e773a6ca506167a6c7fefe14exe LummaStealer
2024-10-23 17:12:3992c1316ee83bc71798983767a2206cd928dc8ccf531d0cc22219cab2ee96710bexe  
2024-10-23 17:11:416c418ec2c188c65936c8f3f97492a6711e7f49b1ec64fed8a3a1b46adbd603d0exe  
2024-10-23 16:47:4407f4f8b20dd85e2fe2fac885e6b0e79138084552ba89c057b7a6c8d6c4ebe17dexe  
2024-10-23 16:36:0658dfbfd7eccf329257ae15971614c6215acf65301b393c36107b7068bdcad30cexe LummaStealer
2024-10-23 14:56:4698e8ba3b452d8129af718b319f411b158ff2ded39428d979311c82dd4b1aae82exe  
2024-10-23 14:50:189f8ed4294deddd928d1e8abea46253e39ab258839f1042fb7093ceed588342f1exe  
2024-10-23 14:29:095c600304e47c57a73c8a2ba7f2f1dd00c25611d8aaea36ca9e9bdc489da3c94aexe  
2024-10-23 14:02:2826bb3470a5245da7a62f602e1f17477699f5b5e00979d02ff040162830261c1fexe  
2024-10-23 13:08:38f88afd696072c39701b6fe176dc9b3333c485252cdedcdce7198f90c0fa0777dexe  
2024-10-23 13:07:21de47c9c81c99a35b7da77fcf28a35629948c4d7179e47137f9f51df9af24952aexe Vidar
2024-10-23 13:04:5056609cbb057409553dfe510cf8ae587b2bcdeff983a366df41bac7f904b90ed6exe  
2024-10-23 12:58:56bd18600c799c7b01d856a54014c1692ce041b6ccbe2a844ded9c6cd546715246exe  
2024-10-23 12:55:4387ab4b9630a604ed10de84126cf53ffdc55d371f4d1960fc732848fcaaef2caeexe  
2024-10-23 11:40:03e676ecc262ce86ef5e9b3d0197fb63f296c37d1b39b3a3b821a36c46cd0450eeexe  
2024-10-23 11:12:44c74cca6d77f26d7570f9e546047cd8115c30c2d5fe6da85e18041c84f4213c3dexe Vidar
2024-10-23 11:10:56daa0501fcc6350a6b206ec66b14d117c8efb1d80984a1a337ae099777ab9c744exe  
2024-10-23 10:56:08c37bc7da663ead407b917155746009554da6bb928a0f62573a2018a79882dc3cexe LummaStealer
2024-10-23 10:19:35662c6952d14ca867b2df7baa88e5df59101c5c2ba05dfbb31d2960b2699db1adexe  
2024-10-23 10:04:48a680c408642aa1c4d7e00b1ffd8d2c3eb1a457bf03f296db49b8230de1d6deb8exe  
2024-10-23 09:28:09a954616134dd58f29ca53c19c5f7c2e6dd1eff1e6908c708c6104cdf4d684069exe  
2024-10-23 09:05:154d32352981db2bac26680ab0e5983b6dd8a978e8a9e8c6f20eaa827c5e377107exe  
2024-10-23 09:00:208233036ac8e7ac1959d5616c1649adcc2d5d76847b50caeee9a39ca3f471ce24exe  
2024-10-23 08:15:34d86e3f92d0311246bef55bcf4d3279082088f61e47715370d4dda9b4c719b01bexe  
2024-10-23 07:45:498072340e96ffeabbd520e5d44f8d076f9f0047b054ad9ffd44c470900426de38exe  
2024-10-23 07:37:4609baf57bf8838b15fa64ca10e7c0d606f42d2308ae5ba63301f4eff163908e0cexe  
2024-10-23 07:28:44a84a95d31034eff450ec1b4679c73af94f6a191bc532637e629a3164ce97a47eexe  
2024-10-23 06:09:51c12d5fdde5df278ca49f9ae283bc93c3340d7f0f992155d48f1b9ca12b61beddexe LummaStealer
2024-10-23 05:36:397e2755eb9b42ebdedd895af2d24aa1badc2315705e713d47fce10d26396b08b5exe  
2024-10-23 05:28:052e7726a350661eb8b62b2ae73360a745291dfde72becab87d512aededdceb566exe  
2024-10-23 05:05:20c0b804ad766f8d0835d494371286bd66a6bb0ce92ce6d26515c0544877141a01exe  
2024-10-23 04:35:5792adf90e6110c431b59706bd57a7e9a4b597e9ddaf71579c08d0c1e6f1577c6eexe  
2024-10-23 04:21:49e00f347650338db284812cac22039114e34512b5f4cffff24358c56cf6f58837exe  
2024-10-23 04:05:117a844586b2a18f5c143420aa4cd4584e6c933c80038ac0ebe2e8df4eacba2c55exe  
2024-10-23 03:43:323d9feee128138909add5b7663c5a9cde1dfdbb3c40f90a8c0b1d2ae3a19daf29exe  
2024-10-23 01:33:587080cad6fa9362bf68774727e3b9c46d895bc210baccbc9993ee57a1d0c3321eexe  
2024-10-23 01:11:47aad0e48e147223d04a6996046533e0bac60eefc8ddb371dd789d48e630691e1eexe  
2024-10-23 01:08:231fcf89c3c8855ef6bd2ed8ba012edafa4bac621989bf99807c192ae361826510exe  
2024-10-23 00:29:0890da6533211abb578cb245da809a55313ac7e44101763eb13e475214c35a3c12exe LummaStealer
2024-10-23 00:16:0426c0005ebd9eb3de22a3d578f2cf06958cc3cce498f063fd6d40d92cbba227c2exe  
2024-10-22 23:52:195cd2c157769d4715d5aad1845cac1d51207f4385bc7bbb1f1c3e6f664e8aae59exe LummaStealer
2024-10-22 23:36:08b7a9cb9e93b3785c27038157d725466162343bcd5d4968b4d3d384ac4218f1a9exe  
2024-10-22 22:20:34609cc16d03b89f7e38f9f45f1c9ffef651170e9b2d104e4cabc245b1f6e9f772exe  
2024-10-22 22:20:25329311c4173883a0d0e5392d11e1992e9df58d246be795aa61d205ef00f18759exe