URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: www.supercf.co.ke
Domain registrar: n/a
Domain registration date:2008-05-29 21:00:00 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2025-08-22 15:30:07 UTC
Total malware sites :19
Online malware sites :0 (0%)
Offline Malware sites :19 (100%)
A record(s) observed :1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-08-22 15:30:10 78.142.63.228wild.vivawebhost.comNot listedAS57344 TELEHOUSE-AS- BGyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2025-08-22 15:32:12http://www.supercf.co.ke/a/cryptedddd.zipOfflineopendir abuse_ch
2025-08-22 15:32:08http://www.supercf.co.ke/a/CRYPTEDDD.zipOfflineopendir abuse_ch
2025-08-22 15:32:07http://www.supercf.co.ke/a/BRAINNN.zipOfflineopendir abuse_ch
2025-08-22 15:32:07http://www.supercf.co.ke/a/w.ps1Offlineascii opendir powershell ps1 abuse_ch
2025-08-22 15:32:07http://www.supercf.co.ke/a/yyyy.ps1Offlineascii opendir powershell ps1 abuse_ch
2025-08-22 15:32:07http://www.supercf.co.ke/a/zz.ps1Offlineascii opendir powershell ps1 abuse_ch
2025-08-22 15:32:07http://www.supercf.co.ke/a/Server.ps1Offlineascii opendir powershell ps1 abuse_ch
2025-08-22 15:31:22http://www.supercf.co.ke/a/EASYPROTON.exeOfflineAgentTesla ext exe opendir abuse_ch
2025-08-22 15:31:18http://www.supercf.co.ke/a/NWLEE.exeOfflineDarkCloud exe opendir abuse_ch
2025-08-22 15:31:15http://www.supercf.co.ke/a/asyaugusth5858.exeOfflineAsyncRAT ext exe opendir abuse_ch
2025-08-22 15:31:12http://www.supercf.co.ke/a/raman.exeOfflineexe opendir RemcosRAT ext abuse_ch
2025-08-22 15:31:11http://www.supercf.co.ke/a/26-10-2021.exeOfflineexe opendir abuse_ch
2025-08-22 15:31:11http://www.supercf.co.ke/a/HorusClient.exeOfflineexe opendir abuse_ch
2025-08-22 15:31:11http://www.supercf.co.ke/a/limeeee.txtOfflineexe opendir abuse_ch
2025-08-22 15:31:10http://www.supercf.co.ke/a/BIN.exeOfflineAgentTesla ext exe opendir abuse_ch
2025-08-22 15:31:10http://www.supercf.co.ke/a/emmajay.exeOfflineAgentTesla ext exe opendir abuse_ch
2025-08-22 15:31:10http://www.supercf.co.ke/a/easy.exeOfflineAgentTesla ext exe opendir abuse_ch
2025-08-22 15:31:10http://www.supercf.co.ke/a/k2.exeOfflineAgentTesla ext exe opendir abuse_ch
2025-08-22 15:30:10http://www.supercf.co.ke/a/euro.exeOfflineAsyncRAT ext exe opendir xworm abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-08-22 15:32:125706dcbf381530a25d21ded47bf394f2a3e0bae8399366d0930679c7fb65dae8zip  
2025-08-22 15:32:080240b3f5efed9f5fb9d030b0a4cf7929c107772c3fcdef861c490f66fb037c2bzip  
2025-08-22 15:32:075fe62169f1fa22ca34387e87a77722b525bd271ea061e162f5a9792c27a9bd8bzip  
2025-08-22 15:31:2263c81072af9b6315f6cbbbdbdf24ae137194d966d0a3200abb3191d335fd3178exe AgentTesla
2025-08-22 15:31:1855cbfb728759c71445193e6d4f9725a30da905d38d7f7550bdb10e1c55f1908cexe DarkCloud
2025-08-22 15:31:155d191e25a65ce0242d541df186e4639357cce32441b9341a7cd0a8007930598bexe AsyncRAT
2025-08-22 15:31:117b3f4f3e37c705996df3e3e9de5967fb9c3edd0003aa15684fa551c171a61996txt  
2025-08-22 15:31:11f2e30774993cbd7676205bf505346b818040898614cce13c82bfdc4a16c4a673exe  
2025-08-22 15:31:1103e9d2fdf7abacf2aab5d76fd7a0f42e0cda206598f87b63dd462c9fbe8ceb05exe 
2025-08-22 15:31:11e28b5775b96e3369f78ade44fd5306ac4fde8510c900c8aa902dcfc744818a92exe RemcosRAT
2025-08-22 15:31:10bbb51e68a3b0c66e67e19e237b0c3f5f0093b09c985abe1aa2283bf78caeaa64exe AgentTesla
2025-08-22 15:31:10b4de0e5e443afb443f6b43d8e54dbc59406ff49fb87baa0cdfcd0ee7289c342dexe AgentTesla
2025-08-22 15:31:103d51746e68ada804676b5ea51addb8bfac9c2b34bdb9b1a9943e1b5dcd7b9249exe AgentTesla
2025-08-22 15:31:09104f902f7e9235da881a81101670a871552cd62030f27cf9e51d3ada9d61ec75exe AgentTesla
2025-08-22 15:30:105483e4c36c913b378a9993a251dbfbc17e083f8fc6cce3d67b8b777a64bdd802exe AsyncRAT