URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name). This page shows all malware URLs that are associated with the host www.oktoberfestoutfit.com.

Database Entry


Host:www.oktoberfestoutfit.com
Spamhaus DBL:Not listed
SURBL:Not listed
Firstseen:2019-02-05 16:51:00

IP addresses


The table below shows all IP address obsered for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones).

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2019-02-05 16:51:1623.229.219.97ip-23-229-219-97.ip.secureserver.netNot listedAS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC- USyes

Malware URLs


The table below shows all malware URLs that are associated with this particulare host.

Dateadded (UTC)URLStatusTagsGSBReporter
2019-02-28 08:49:03http://www.oktoberfestoutfit.com/PO2019.docOfflineagrent tesla doc downloader Clean@dvk01uk
2019-02-28 06:52:31http://www.oktoberfestoutfit.com/PaymentReceipt.htaOfflineexe Clean@zbetcheckin
2019-02-28 06:13:17http://www.oktoberfestoutfit.com/PO2019.pngOfflineAgent Tesla AgentTesla keylogger Clean@dvk01uk
2019-02-10 09:16:05http://www.oktoberfestoutfit.com/NZGPa0yLiazk9Q7.pngOfflineAgentTesla exe payload stage2 Clean@shotgunner101
2019-02-10 09:14:08http://www.oktoberfestoutfit.com/fkjtected.pngOfflineexe payload stage2 Clean@shotgunner101
2019-02-10 07:18:08http://www.oktoberfestoutfit.com/fkj_Protected.pngOfflineexe payload stage2 Clean@shotgunner101
2019-02-06 09:58:06http://www.oktoberfestoutfit.com/JAVE20_Protected.PNGOfflineexe Clean@abuse_ch
2019-02-05 20:37:05http://www.oktoberfestoutfit.com/Protected.exeOfflineexe Clean@zbetcheckin
2019-02-05 16:51:16http://www.oktoberfestoutfit.com/2mut_Protected.pngOfflineexe Clean@de_aviation