URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	www.machelp.cloud
Domain registrar:	Hostinger
Domain registration date:	2025-05-16 00:24:39 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2025-07-07 08:31:05 UTC
Total malware sites :	7
Online malware sites :	0 (0%)
Offline Malware sites :	7 (100%)
A record(s) observed :	7

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	SBL	ASN	Country	Active?
2025-07-07 08:31:08	104.21.112.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-07-07 08:31:08	104.21.16.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-07-07 08:31:07	104.21.32.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-07-07 08:31:08	104.21.48.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-07-07 08:31:08	104.21.64.1	Not listed	AS13335 CLOUDFLARENET	n/a	no
2025-07-07 08:31:07	104.21.80.1	SBL681411	AS13335 CLOUDFLARENET	n/a	no
2025-07-07 08:31:07	104.21.96.1	Not listed	AS13335 CLOUDFLARENET	n/a	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-07-07 08:31:39	https://www.machelp.cloud/mac.sh	Offline		JAMESWT_WT
2025-07-07 08:31:23	https://www.machelp.cloud/msinstaller.exe	Offline	connectwise	JAMESWT_WT
2025-07-07 08:31:18	https://www.machelp.cloud/bb.cmd	Offline		JAMESWT_WT
2025-07-07 08:31:18	https://www.machelp.cloud/ac.sh	Offline		JAMESWT_WT
2025-07-07 08:31:12	https://www.machelp.cloud/win10.msi	Offline	connectwise	JAMESWT_WT
2025-07-07 08:31:11	https://www.machelp.cloud/msinstaller.zip	Offline	connectwise	JAMESWT_WT
2025-07-07 08:31:08	https://www.machelp.cloud/win.cmd	Offline		JAMESWT_WT

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-08-14 15:48:20	63dd64dfb01d0db17fb015f2af41f843086a3ced3be44abb99acfcd169e73c8e	txt
2025-07-07 08:31:39	7fc34fb0be360e50fafb4429d2e69942b09d7e5187ee646b04f0054d2cee8e9e	unknown
2025-07-07 08:31:23	df184522bb030724bba49ff0ed8b12a3bdecff31f27db03e756039ab2e8b6251	exe	ConnectWise
2025-07-07 08:31:17	9b21a1c5f6a5f4f485e1b9b3ad90978cc22594df7d71ee1bbb0435db77b8f828	bat
2025-07-07 08:31:17	64bfee7bec29c4fcb71c86dcc96981e5bf493c4a5ec47f75f3c242c597d7582d	sh
2025-07-07 08:31:12	02559d7b5aa2ea2e2a333d7abdf553d079cfd5e32fef9f1e6bcc23d2aabb53cc	msi	ConnectWise
2025-07-07 08:31:11	a6a0ea40a1c29be51978348a3981600e3b3808abd7c4c405df76d39f7a7e4520	zip	ConnectWise