URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	103.130.214.198
Firstseen:	2025-01-30 06:43:02 UTC
Total malware sites :	14
Online malware sites :	0 (0%)
Offline Malware sites :	14 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-01-30 06:43:09	103.130.214.198		Not listed	AS135953 BKHOST-AS-VN	VN	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-02-03 09:43:07	http://103.130.214.198/jackmyarmv5	Offline	elf gafgyt	abuse_ch
2025-02-03 09:43:07	http://103.130.214.198/jackmysparc	Offline	elf gafgyt	abuse_ch
2025-02-03 09:43:07	http://103.130.214.198/jackmypowerpc	Offline	elf gafgyt	abuse_ch
2025-02-03 09:43:06	http://103.130.214.198/jackmyi686	Offline	elf gafgyt	abuse_ch
2025-02-03 09:43:06	http://103.130.214.198/jackmymips	Offline	elf gafgyt mirai	abuse_ch
2025-02-03 09:43:06	http://103.130.214.198/jackmym86k	Offline	elf gafgyt	abuse_ch
2025-02-03 09:43:06	http://103.130.214.198/jackmysh4	Offline	elf gafgyt mirai	abuse_ch
2025-02-03 09:43:06	http://103.130.214.198/jackmyarmv4	Offline	elf gafgyt	abuse_ch
2025-02-03 09:43:06	http://103.130.214.198/jackmyarmv6	Offline	elf gafgyt	abuse_ch
2025-02-03 09:43:06	http://103.130.214.198/jackmyx86	Offline	elf gafgyt mirai	abuse_ch
2025-02-03 09:43:06	http://103.130.214.198/jackmymipsel	Offline	elf gafgyt	abuse_ch
2025-02-03 09:43:06	http://103.130.214.198/jackmyi586	Offline	elf gafgyt mirai	abuse_ch
2025-02-03 09:43:03	http://103.130.214.198/jackmypowerpc440	Offline	elf	abuse_ch
2025-01-30 06:43:10	http://103.130.214.198/bins.sh	Offline	gafgyt script	geenensp

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-02-07 22:46:39	27a3f1fe57a508b7cf3dfde7f35725744529b7c29a38e1128682a11c04c69aad	sh	Gafgyt
2025-02-07 16:03:54	1d270c64fc23a0c44fcdd08acd254c380a319299dc92b7759965baa37e0b0015	elf	Gafgyt
2025-02-07 14:36:28	841ca3173f0eee4920d42cb45cdc5787e0973af886b7f840fce566b7fea97f8f	elf	Gafgyt
2025-02-07 14:11:59	69647111ada35fe7ecbcf98db0bb9c247a2ed15f7d327d76509c987b7625d5dc	elf	Gafgyt
2025-02-07 13:48:20	8877ce055688f8cf77a1ef610b4eae5dc7ec7bb42fc7fb4f87514570039c18e1	elf	Mirai
2025-02-07 12:32:10	1758603f388c3abe285bcc9ead3cc010377816be2878752aa85378d86648c7a8	elf	Mirai
2025-02-07 11:45:04	4e98f8fd7fedc972051659151f75f255c97cfaad3083045728c6343c44770807	elf	Mirai
2025-02-07 11:12:53	e88b9e4bf263da826ab1092a2ca78c8c44443daa77ba60f3665843196dd75b31	elf	Mirai
2025-02-07 09:21:36	0d20db4935b078b06b8b941df541a7e9c0449d2ce65f39fbdaa268acd2be5bef	elf	Gafgyt
2025-02-07 06:39:48	9488e4ad23ca77a15fd81177de1dcf2f7669394ec05abfcf4eabf15b3bb62c14	elf	Mirai
2025-02-05 19:46:17	ebff2d3d7e12ee71ad7bf63c2a6790f068dff22755e394c4291d2e12e247bced	elf	Gafgyt
2025-02-05 19:44:31	dd5da8a9c14f9925ba88e8b7d6f07edc14780e38b4778744246fa364995f6c06	elf	Gafgyt
2025-02-05 19:40:13	46e88d623410569a42e4d21f0b52d57de4fbe201b3164fb2f4d73b03ba8fdc6b	sh	Gafgyt
2025-02-05 19:38:12	a73322db71130be3321de46089b5ff02180f81ef74ced56be48dfbdd84beb6d8	elf	Gafgyt
2025-02-05 19:02:15	12ddfbb33d1a468c86d7a040f4138cb76624925c04b58b89abb53062f380b697	elf	Gafgyt
2025-02-05 18:20:19	0d53339f9ae7776c11a333e2c3484eb8d2449227304bca00f5284f842f1fcb83	elf	Gafgyt
2025-02-05 17:40:13	cd2da26c319c9d5ea3a06ad834cd8f0ccfcd03e4b68524e5b9f2716c059c1952	elf	Gafgyt
2025-02-05 17:32:41	000a61bda7deb777f50d33a4157c19af75bf6ba5ef378400f85fdc2c3c5f98c0	elf	Gafgyt
2025-02-05 17:08:21	0e1923199e0e3c3728fe821d6c756947b7fa24ebf90a8f40fea58189ec5d6318	elf	Gafgyt
2025-02-05 16:10:09	a6083fb02112a07f1e808d8a5e2132aab3e2df5030dfd7ce4bf5576cb8d722e5	elf	Gafgyt
2025-02-05 16:07:31	aee015f99b6ef72bdf5760c5df68ea912b210c2ea6b60449053b7f5d07d2ac88	elf	Gafgyt
2025-02-05 16:05:48	95c74e26e3122d94886b43a9e6993a9cdb364a0f026e49f9c46e08131007cbb0	elf	Gafgyt
2025-02-05 16:00:33	a5e78dbc6295f6b33297eabc4a25763198decb88ddc14f6b7c56fd9bf660c0b5	elf	Gafgyt
2025-02-03 09:43:07	ce5da3d0daaa7d8f9ec0ea62ead3fb5a110ec1a6a58cd4229c653883c4d81a84	elf	Gafgyt
2025-02-03 09:43:07	8549c5ef4adf358f75339db4241d2a20a3782d21fcc4e2f6a7d06b8d8e886196	elf	Gafgyt
2025-02-03 09:43:07	47761f435515620e8296b30add528960578ab073a0f52cf1021c9901ceb97d09	elf	Gafgyt
2025-02-03 09:43:06	6e3f0a5bd00e6e610efdb0a784354141b44be5055733c68fd6a036f689f9ab03	elf	Gafgyt
2025-02-03 09:43:06	25be6a0e7a281425036ca5e32f41044d267f9ce9e7734199e07d47d35ff71329	elf	Gafgyt
2025-02-03 09:43:06	e4268bb0b926afb0def833f91ca73145fd6465f38b64215277b9a473c7902c33	elf	Gafgyt
2025-02-03 09:43:06	e28b719b64201c9235e2640bd877d86884c1b6e031a9dc536bcb977ba82a61e7	elf	Gafgyt
2025-02-03 09:43:06	89df86cca67c48fc5a983b1fd52ce51220b43abbd9eec78ae1a72eebd6cf8995	elf	Gafgyt
2025-02-03 09:43:06	a79e47302aaceccefa752bc0311c60faf0585c9b27e14c8d8c927d476faee724	elf	Gafgyt
2025-02-03 09:43:06	b0ec23f3a680be657e03be5bf279c1f99f12ee356f05bbefd2b562cb92c78d3a	elf	Gafgyt
2025-02-03 09:43:06	4e2dc2ac640b9a450cabc34f024b66dd02c28ba4ff7553e92e2da05542c9334f	elf	Gafgyt
2025-02-03 09:43:06	df374e54f910df6ee0a31fe202876fb2eaec5f8e752eb4e2d067f2ea188a56b8	elf	Gafgyt
2025-01-30 06:43:09	7b944bacbb6cd388424b3da85892ae4480149dca14cc186b43ff14047aa7d71a	sh	Gafgyt