URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: zmailserv19fd.world
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Blocked
Cloudflare :Blocked
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2019-10-04 15:17:02 UTC
Total malware sites :18
Online malware sites :0 (0%)
Offline Malware sites :18 (100%)
A record(s) observed :3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2019-10-05 17:37:14 162.255.119.121Not listedAS22612 NAMECHEAP-NET- USno
2019-10-05 05:53:04 185.62.58.147s41517.hosted-by-snel.comNot listedAS62370 Snel- NLno
2019-10-04 15:17:12 45.147.228.215SBL517021AS30823 AUROLOGIC- DEno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2019-10-05 07:21:02http://zmailserv19fd.world/atx555mx.exeOfflineexe abuse_ch
2019-10-05 07:20:05http://zmailserv19fd.world/dmx777amx.exeOfflineexe abuse_ch
2019-10-05 07:20:03http://zmailserv19fd.world/pred777amx.exeOfflineexe PredatorStealer ext abuse_ch
2019-10-05 05:54:22http://zmailserv19fd.world/evi999.exeOfflineArkeiStealer ext JayTHL
2019-10-05 05:53:19http://zmailserv19fd.world/tap.exeOfflineGozi ext JayTHL
2019-10-05 05:53:17http://zmailserv19fd.world/skd.exeOffline JayTHL
2019-10-05 05:53:14http://zmailserv19fd.world/pak.exeOffline JayTHL
2019-10-05 05:53:12http://zmailserv19fd.world/hrd777.exeOffline JayTHL
2019-10-05 05:53:08http://zmailserv19fd.world/kam.exeOffline JayTHL
2019-10-05 05:53:04http://zmailserv19fd.world/guc.exeOfflinedarkrat JayTHL
2019-10-04 17:32:04http://zmailserv19fd.world/evi111.exeOffline JayTHL
2019-10-04 17:23:03http://zmailserv19fd.world/bro111.exeOfflineAZORult ext JayTHL
2019-10-04 16:45:16http://zmailserv19fd.world/dan777.exeOfflineDanaBot ext JayTHL
2019-10-04 16:41:02http://zmailserv19fd.world/hit777.exeOfflineKPOTStealer ext JayTHL
2019-10-04 15:17:35http://zmailserv19fd.world/crot777amx.exeOfflineexe QuasarRAT ext abuse_ch
2019-10-04 15:17:28http://zmailserv19fd.world/isb777amx.exeOfflineexe Gozi ext abuse_ch
2019-10-04 15:17:16http://zmailserv19fd.world/socks777amx.exeOfflineexe Gozi ext MedusaHTTP ext PredatorStealer ext QuasarRAT ext abuse_ch
2019-10-04 15:17:12http://zmailserv19fd.world/gab.exeOfflineexe Gozi ext abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2019-10-05 17:05:3040377351580346622b9d5cab4e3b78fb523c6e6c31c5407fff62bdb66bfaee17exe QuasarRAT
2019-10-05 17:05:2932dccd3db8431480e2f5a2dc683a1e409000d2685e2bf599d69943849ffad796exe Gozi
2019-10-05 17:05:28e14cc1f5ed18efe5f247d4c0585aca63ad128314fbe3817711deff52ec986ab9exe QuasarRAT
2019-10-05 17:05:20ec7b9d3822d6912ddab1c691d6830b2b6bc5e844db867a39b4ce7a9cbb826856exe  
2019-10-05 17:05:19ae9e2a344dcc9cc7aae1db93731afebb3a53ab7a5d4d98e23ba54c7a19565358exe  
2019-10-05 17:05:18f9ba57ea5d0d8d4456798a8bd240caf64ca67f0d865aed35bf8e7302e96f235fexe  
2019-10-05 16:02:3320242728d563212711dcd851642fd050df345108bf493d7a4604968ef718d8a1exe Gozi
2019-10-05 15:30:19b63bb5e3ead0e38ca777a4caafadc10ae57d11f512295ed1de45eb08ba417ecfexe  
2019-10-05 14:49:31cf77392dca0c71ce4d28f55dad3da2a4c72a6af20cb8a5b01d3de7c0f3947637exe QuasarRAT
2019-10-05 14:49:2530fcbedeed62d22dd7c7053a1aee5454ba3d14229b4447e05c597b19755a7342exe  
2019-10-05 14:49:17a8f9fd35572d7ad56496e6804f68af825e01a0ee3fa6512821abac175169b974exe  
2019-10-05 13:54:33bfa22eb481e7c0a5e879d9642287e8932ca17ea44d5fbd84439546980e50cbd5exe Gozi
2019-10-05 12:34:295f01a4866431a17095c1b4b0eb6b6cd4ad221d4ff12bb2466280347abe3b13c4exe Gozi
2019-10-05 12:34:2709d1b142f78a4c29688a8d51113e9083aa4f93472caea6ee2f6f523a12c4ce5bexe QuasarRAT
2019-10-05 12:34:234b50886c6ea3f44e4870448d1e0fe1b167c2c620add7167e0b7e086d07da3f06exe MedusaHTTP
2019-10-05 12:34:17a86c35ff34063f2efa30445c5f909a500b5637efeae42e471486d752145645edexe  
2019-10-05 12:34:154c5ad4bc2265c918b8aeeff9c255a37fe0c321eb6e727756e73079e7dadfb44bexe  
2019-10-05 12:34:14d42b70f5dafd78c0ba9ca1ede4e5d8add0a5046640cb165bf907f5bd66f246edexe  
2019-10-05 12:10:25494a88cd4ac4a973e7814b1fc77f132d97d305f228d9049ffbdd25f293af83efexe QuasarRAT
2019-10-05 11:48:16076d4ffbc3e790fddcbb4a1101bc259d63bb3a7c664e3ac31e6a2b29c7707ef7exe MedusaHTTP
2019-10-05 10:06:25a95d850eebb01693dd276791170f97e13cf75fd4eefc07315ad35f2151defdcdexe QuasarRAT
2019-10-05 10:06:241a4e065eed31548e1f3bea5f0f9576a752e5c7eb93d87feb65a9178b61358569exe Gozi
2019-10-05 10:06:15926e85b4aa79a07561f261681f430448693164991ca9768871ec5055bf131639exe  
2019-10-05 10:06:13f56fa880811545f1b95555a1782e0280da7cacaa7d322d56c5fa54150df28238exe  
2019-10-05 10:06:1111206e2ee0f9c61451c4ddd1707f91cd7ec6679afd6fd26d77a52bf3cae62355exe PredatorStealer
2019-10-05 09:41:21c490e3fd77dc3a435e2c3321a21f9602042881f7f131c86e694fa9a21f3fadd0exe  
2019-10-05 09:41:06b4abd3050158349fe78ddd6bd96e302e8ee11f2718961d0bcd561e2ca6e6c46eexe  
2019-10-05 09:11:17a66fb3137f5a82a0f4bab5e73d336be299f0d13221bb8c3d7121f7061ec8ffc8exe PredatorStealer
2019-10-05 08:37:16dbf76a454d5b441370ef64485c1206809ead5a7b2495e5bf248655d183f55f92exe Gozi
2019-10-05 08:23:5841a3ff3633cf76f9510d19698b8125ac652d856ad1874d1dd412a7e69a064b29exe Gozi
2019-10-05 08:23:58879c6220e651efb85813dcb850d432a2dc9d82a5e1581b107d56743f95190f70exe  
2019-10-05 08:23:571f93eca321004bcf2aa33833b1cc4713a5d1ef64c4c027d5d25446b220b9ee26exe QuasarRAT
2019-10-05 08:23:44751660c10b048586a98b23641066e20807229397ce078377a1a542cc5f85ff93exe  
2019-10-05 07:21:023f2e2c8457337992953917467e648b1df4a527c11dbb3fb386626e886d610d24exe  
2019-10-05 07:20:05394e354bab7f96753e6cab3292e3d6350067ae295d4938025d502d7be5d39aa2exe  
2019-10-05 07:20:039295af35683493c8846f5672ed99baa882572d5dc1fbf041c0cd679467373f50exe  
2019-10-05 05:54:227aeade7ad5ca8d662e3dbb9e9669835546f68a875778625f104384b8bdd2ad1cexe ArkeiStealer
2019-10-05 05:53:197c35ac9b94a6e3cbcadf70b8c6d42c0a8385bb6b58953db4adec28e8eee8d120exe Gozi
2019-10-05 05:53:17b230e191857ee2dcb34b7fb163bcfbda42a31d0c0be5f1c93f4b0057a2bf2c3eexe  
2019-10-05 05:53:14144f8c182177eead9b05dac7efdeda5fb423b1bb0e7ec211bb8623d072929c05exe  
2019-10-05 05:53:12504ac8bba3e7d8921e67031c45953f00f36ed9569834b557170c55732a457027exe  
2019-10-05 05:53:08f695f5b135b5254122d1c4613b5f470f5f021853d7e03dd82b52be19586d1e2fexe Adware.Generic
2019-10-05 05:53:04785162637380f917a4f3a187ab532a1f0d408ff892324af32c6d962ecf2d67dbexe DarkRAT
2019-10-04 20:07:2680f7014f1c9039779e3955a65c1aa7068902b44c12c644efe0a76cd3b1908420exe  
2019-10-04 20:07:1773d72f3f846957303bf01ee2bb7bbcbf1b13d905ccaa1105dd4b97f2969fd9f7exe Gozi
2019-10-04 19:53:13412d34edc46ff85da7e23daa97e0634b3c78cc86ad7d5a7197ca47946aaa687eexe  
2019-10-04 19:53:12605d585f9bf3af300ca48c65618931f8a6405b211287ad6ebc7a0148bc9be1ddexe  
2019-10-04 19:53:1296bd3f04b49f2c03343cc1a54daa72a90f6b775a73f969440f6d566c94ed4158exe QuasarRAT
2019-10-04 19:04:24d446d61dfab6b468318d1cc48e1f318ac16f0069368e7106699a03c701367d6eexe QuasarRAT
2019-10-04 18:47:1346080ba74a2e1db84dabc3a9fdf91b969f2c01b530522e4314f5a26f97d15d05exe  
2019-10-04 18:35:11754d3e47a00cec654ee99dbd41a40410e90669c404f0be2f6223cec68392aabeexe Gozi
2019-10-04 17:32:0411e12e20e3688dfd70b7a29b38a2e58f964b891b5fb89c6896c8c0a73c40021dexe  
2019-10-04 17:30:118b9808d4581cb503b566725b43f26dcc158b9aab4415d70b0cddfde58b8f546eexe QuasarRAT
2019-10-04 17:23:031b50e39aed376d55fdf5a2e3e1a72beb5f2f9e6429e753acf6d35e895b479b0bexe AZORult
2019-10-04 16:45:16de146c4ebb0ba2850b93cb358f78b671f50724c9710127d6755c1c2f2f23d698exeDanaBot
2019-10-04 16:43:08025218d2de11ac9c02cb6a1195f1b9cd49bbafc1a001fdfe7d129b64414b1904exe Gozi
2019-10-04 16:41:025a8089cb7519c8667b31517b57432905472c262bd9277b05593e55a2b6517e64exe KPOTStealer
2019-10-04 15:17:35bf108d79474a67688a250d466c9a2301b114941fb534de971ffea1d3cabcdc78exe  
2019-10-04 15:17:282aba7530b4cfdad5bd36d94ff32a0bd93dbf8b9599e0fb00701d58a29922c75fexe Gozi
2019-10-04 15:17:16086d73e9d5850fb831169c9473edbad9f1c989ed66373479eb565fedee5059e6exe MedusaHTTP
2019-10-04 15:17:11142716208fa4d7b05a3c763f5ce714f1e24086eafedd1b3537f5037c0f5d4ce2exe Gozi