URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: wow.fishoaks.net
Domain registrar:NICENIC -
Domain registration date:2024-03-18 17:03:58 UTC
Abuse complaint sent to registrar: Yes (2024-03-18 18:06:01 UTC to support{at}nicenic[dot]net)
Domain registry:VeriSign Global Registry Services -
Abuse complaint sent to registry: Yes (2024-03-18 18:06:02 UTC to info{at}verisign-grs[dot]com)
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2024-03-18 18:01:06 UTC
Total malware sites :1
A record(s) observed :4

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2024-03-19 20:23:16 188.114.96.9Not listedAS13335 CLOUDFLARENETn/ano
2024-03-19 20:23:16 188.114.97.9Not listedAS13335 CLOUDFLARENETn/ano
2024-03-18 18:01:10 188.114.96.3Not listedAS13335 CLOUDFLARENETn/ano
2024-03-18 18:01:10 188.114.97.3Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2024-03-18 18:01:10http://wow.fishoaks.net/data/pdf/may.exeOfflinedropped-by-SmokeLoader Socks5Systemz ext spamhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2024-04-02 04:03:552c4333ad378130ce6b6d913fe5c4bda5193d1ce2452ccbb7e4d400f2cc11dc71exe Socks5Systemz
2024-04-01 15:50:54f025fa889fa251c1d01500501f163cd040370300e0d18beead8cfe8c6f7d6280exe Socks5Systemz
2024-04-01 11:06:00c500eaabed2081a82bdec77994c89f880095ae86f567131b4a1625697e58e6f3exe Socks5Systemz
2024-04-01 04:06:1459e38baced1ceeec150003731ce54518d16e553e5d13b1d8ab94583d9721370eexe Socks5Systemz
2024-03-31 16:08:00fba7416c83d12d2ef12cee5ee6bc7df31bab01a08e2e2fcb2cab95c7edbda2e9exe Socks5Systemz
2024-03-31 14:44:55fad1b03613714de6babf54c7ef1b87a5134ed19699d8eb0844e3d7249056ce8cexe Socks5Systemz
2024-03-31 10:13:02a123f73e0271b4ea42116484644bed4d2e4c5f7b678c3bc2848693766d496017exe Socks5Systemz
2024-03-31 04:57:431e923e1a2c8ce0b65c27c7eb4486cce24f376300d98e5aa2ef5f60ce306a39dcexe Socks5Systemz
2024-03-30 18:04:42a728bcca77efc440c041a33ce16d6553fd619ca126c25a456dd737cb55b91cf4exe Socks5Systemz
2024-03-30 10:31:5975ad777a8aa1b275cb97f049310b34b2de79179247245a88ed06354c6f9b2bf1exe Socks5Systemz
2024-03-30 04:06:25bbbc237332d6bbf294c2496aa0de0c9bd21b54d1e8812fc79c1d3a1cbcd4e4e8exe Socks5Systemz
2024-03-29 19:00:5327288ccfb8c84523230667f90c88a4dc9882dd42a504e177adf946455264b038exe Socks5Systemz
2024-03-29 11:47:568d0746d26b6c86aa01a8a96830dbefcbbb602be976302696a7dbeba502621303exe Socks5Systemz
2024-03-29 04:18:031a6ba416686633749d6685accb0af4d41e4a6355dc14a23e3438ec9c21863c9bexe Socks5Systemz
2024-03-28 19:33:01be09afad256ee9f32f0bc4d06fd9326ae69f2bcb8e8dbe7139877393d0659054exe Socks5Systemz
2024-03-28 12:15:00af401a1670921abc86462eb838aca919e7854e64fdc33013312b22c118e6d076exe Socks5Systemz
2024-03-28 04:31:0434b1a236621d866ed70d144ae5253af2bf82411d8a21b94478e7a7d10592254cexe Socks5Systemz
2024-03-27 18:56:421b4cf15e74f68fd7b1ddc8af1c412ce46beb609984cc1d017d3611186aba5d8bexe Socks5Systemz
2024-03-27 13:19:30b9bd8140d5461be468f61907082f172f43c5a5e7b1fe0d40dd565e484a77da78exe Socks5Systemz
2024-03-27 06:31:507d30ded9b7353b45c5a14a27d7a97f2ea3834cb51224b2b438576e846dd245d8exe Socks5Systemz
2024-03-27 04:15:37a92c6ebc260eb69517a9b5028431c144e62b6e64860791de10ef5c6aaf284c60exe Socks5Systemz
2024-03-27 03:55:493429206550abb56afaf702d444e4926c654fb903c1d51730c46fe8c7107be092exe Socks5Systemz
2024-03-26 17:14:58030ad16498982a046f69d2726b869b89cf38a0ecc89fc26560c6dca534593631exe Socks5Systemz
2024-03-26 02:08:03cd57cbb1db2f5a3925e6f8049f173d6c4777a6d9c8863c2c7a01d7812f7e7b35exe Socks5Systemz
2024-03-25 18:22:47f9458bf92893c8b391dfde0b63b6058d36bd91c4417a0c4da9f728bcac0d6cdfexe Socks5Systemz
2024-03-25 11:01:233cbc1807a621504766206bd75763b777d2f6bd6cdc82924546b3548d55c90b1eexe Socks5Systemz
2024-03-25 04:08:096eabdbd222e964173ddc429e45ae93648157c00d1cf6f038c2f02d4af0c3f0bbexe Socks5Systemz
2024-03-24 14:49:1129f50a3dc9731730314cf4ca73b54ae941f8f4c54b301167e91ace21c7f2ed07exe Socks5Systemz
2024-03-24 04:06:234b9bf98619005e04692a0b056f348da51972f5fea76b3cee19c44e2aeecafe44exe Socks5Systemz
2024-03-23 17:52:5176836cbb9920f7b6f427b5dfce569df588b2344e85c4c2e7b55c791451b6b6a1exeSocks5Systemz
2024-03-23 11:39:462dd2b2faee53b4a06c9e2e491abd4d4c30f7f56016388ea6411166aad9fe61f2exe Socks5Systemz
2024-03-23 04:42:10572bc11bdfc00fadcb0cb4dcb65e0fb1e5e0d905c3af25e57cdd747a8c90af02exeSocks5Systemz
2024-03-22 15:10:5087a283e07b61328d53f93923ec1a6a6579108c0bda7fa0eb7bb8ba145d27278dexe Socks5Systemz
2024-03-22 05:18:3893778e3f31e180bd75d620d866d199feecda37d9bc00ce37c20bd271c755f07aexe Socks5Systemz
2024-03-22 04:15:308cf020795db68c3f1e5652ce5846b23f5035a3c4d816db27fdb5f9e0e7e746bcexe Socks5Systemz
2024-03-21 04:01:07fd7905843a09cc0b37c22e8068cb64409035bcd34ae210b0374d7fa73424e6fdexe Socks5Systemz
2024-03-20 18:22:243d82bdc6fcf5529d67cba3eb5b380f3bc2ce1d5bcfd39d03cbe801aa8374a499exe Socks5Systemz
2024-03-20 13:15:391142e281ac830f9c7862f74ebe1d432e47b8f28cef03cedaffdd56181a370e31exe Socks5Systemz
2024-03-20 06:02:0477ae530787ffb1c3483747c29f555e6fd1b9e0a262955bbb84904c1698dfdb0aexeSocks5Systemz
2024-03-19 11:43:15cc530d544a2196bd99a6f1d4a1650149e48e0868cbb3f269e3472a9e40fa94eaexe Socks5Systemz
2024-03-19 04:03:169b7901a0bdb1ba9be055534827bce56d6b23ff371fb8308e8f95f5675cd44bc3exe Socks5Systemz
2024-03-18 19:34:474e191ea8446ef12c37b957920c127c27d3e2d2874d0a6a06315bdb9f870ec260exe Socks5Systemz
2024-03-18 18:01:1030c20c68369acf6e0977ae90a4238b3a2908025f08075fc04ffa5f23325029abexeSocks5Systemz