URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	www.51-159-29-96.cprapid.com
Domain registrar:	Tucows
Domain registration date:	2019-05-16 21:16:20 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2024-09-16 17:01:06 UTC
Total malware sites :	5
Online malware sites :	0 (0%)
Offline Malware sites :	5 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2024-09-16 17:01:31	51.159.29.96	51-159-29-96.rev.poneytelecom.eu	Not listed	AS12876 AS12876	FR	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2024-09-16 17:01:39	http://www.51-159-29-96.cprapid.com/ssl/soon.exe	Offline	Socks5Systemz	abus3reports
2024-09-16 17:01:39	http://www.51-159-29-96.cprapid.com/ssl/job.exe	Offline	Socks5Systemz	abus3reports
2024-09-16 17:01:39	http://www.51-159-29-96.cprapid.com/ssl/online.exe	Offline	Socks5Systemz	abus3reports
2024-09-16 17:01:38	http://www.51-159-29-96.cprapid.com/ssl/crt.exe	Offline	Socks5Systemz	abus3reports
2024-09-16 17:01:31	http://www.51-159-29-96.cprapid.com/ssl/off.exe	Offline	Socks5Systemz	abus3reports

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2024-09-17 06:21:34	95d0d6577a03fae5fe0dbf14d291e2bac81b5261e411dc8f02cc98b4fefe8c3c	exe		Socks5Systemz
2024-09-17 05:58:32	d5cd9f0cc1ae08c701f55a8d865bccb581a1a0ac2287636fde2875d3293c8ae6	exe		Socks5Systemz
2024-09-17 05:56:29	40ebbc3d987f29d50750d7036c64fe83a687fdcb2016db394494dba41e027e85	exe		Socks5Systemz
2024-09-17 05:21:01	da8ccd10a7e94f0ee8b0ddc00d2e2ddd9748ea811ea572c9ac5fb6126e372c41	exe		Socks5Systemz
2024-09-17 02:52:38	c3832360cf0e265a05ac93f97a526ea60c2aca7f142fb214a52df77e58fbfa0e	exe		Socks5Systemz
2024-09-17 02:11:56	c3832360cf0e265a05ac93f97a526ea60c2aca7f142fb214a52df77e58fbfa0e	exe		Socks5Systemz
2024-09-17 01:44:33	8872fd7ee88335e2304847f2d036a0b3db14f1fc6f4f9cc6b8886ea16027388f	exe		Socks5Systemz
2024-09-17 00:14:38	ff6da84f75c2fb82bc4e51829e046dc4d24c4e578c406272bf39401668c1dad7	exe		Socks5Systemz
2024-09-16 22:38:57	fc57a119f7c177505c6daef89eaa87a00c222e7d6088af49f3ee3ddfea1d4718	exe		Socks5Systemz
2024-09-16 22:22:43	9cf065b7a31efaea26086ea21228c4d5f48ff31804c04c49b15acec9c1e5c0b8	exe		Socks5Systemz
2024-09-16 21:59:51	897749f4a6a4ed218f2837bdfd8992fd86a290578609a4d15dc516533beeb6e8	exe		Socks5Systemz
2024-09-16 20:04:35	5d702d85714478fb139601bbe45cbba01f65ced1e3fdbb9a88e156728c0ff13c	exe		Socks5Systemz
2024-09-16 19:20:46	16a360a185a4821633231e553888714530a368157d75024e8e54bb5be6d8ee35	exe		Socks5Systemz
2024-09-16 19:19:05	4936051baa4b55c3430f7f79873b904daf24672b69bbffecad6e248744cf1b23	exe		Socks5Systemz
2024-09-16 17:01:39	89a8a732170648b1483a76ca2f198187822ada8bd41ee9ead0befb6fa9a87025	exe		Socks5Systemz
2024-09-16 17:01:39	ba9aa6dffbda1d7dca62d8df94b5240a504df1f54fc7f4f5c027a745ecf24453	exe		Socks5Systemz
2024-09-16 17:01:39	e5e757a3389143c54aa241eb003a92c6817b7b49fe421138791eadfe4ae8b433	exe		Socks5Systemz
2024-09-16 17:01:37	e5e757a3389143c54aa241eb003a92c6817b7b49fe421138791eadfe4ae8b433	exe		Socks5Systemz
2024-09-16 17:01:29	1bb62d5b5dae6d83dc677ad6fe1c24ac9d399579ced7213ef144c7adce15dfc2	exe		Socks5Systemz