URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	151.243.109.71
Firstseen:	2026-01-09 23:10:04 UTC
Total malware sites :	16
Online malware sites :	0 (0%)
Offline Malware sites :	16 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2026-01-09 23:10:06	151.243.109.71		Not listed	AS209274 Kraken-Network-ISP	NL	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2026-01-09 23:17:16	http://151.243.109.71/chernobyl.sh	Offline	gafgyt sh ua-wget	NDA0E
2026-01-09 23:11:19	http://151.243.109.71/chernobyl.mipsel	Offline	elf gafgyt ua-wget	NDA0E
2026-01-09 23:11:19	http://151.243.109.71/chernobyl.arm7	Offline	elf gafgyt ua-wget	NDA0E
2026-01-09 23:11:19	http://151.243.109.71/chernobyl.arm5	Offline	elf gafgyt ua-wget	NDA0E
2026-01-09 23:11:19	http://151.243.109.71/chernobyl.i586	Offline	elf gafgyt ua-wget	NDA0E
2026-01-09 23:11:19	http://151.243.109.71/chernobyl.m68k	Offline	elf gafgyt ua-wget	NDA0E
2026-01-09 23:11:19	http://151.243.109.71/chernobyl.x86	Offline	elf gafgyt ua-wget	NDA0E
2026-01-09 23:11:19	http://151.243.109.71/chernobyl.ppc	Offline	elf gafgyt ua-wget	NDA0E
2026-01-09 23:11:19	http://151.243.109.71/chernobyl.sparc	Offline	elf gafgyt ua-wget	NDA0E
2026-01-09 23:11:16	http://151.243.109.71/chernobyl.i486	Offline	elf ua-wget	NDA0E
2026-01-09 23:11:11	http://151.243.109.71/chernobyl.arm6	Offline	elf gafgyt ua-wget	NDA0E
2026-01-09 23:11:11	http://151.243.109.71/chernobyl.arm4	Offline	elf gafgyt ua-wget	NDA0E
2026-01-09 23:11:11	http://151.243.109.71/chernobyl.i686	Offline	elf gafgyt ua-wget	NDA0E
2026-01-09 23:11:11	http://151.243.109.71/chernobyl.mips	Offline	elf gafgyt ua-wget	NDA0E
2026-01-09 23:11:11	http://151.243.109.71/chernobyl.sh4	Offline	elf gafgyt ua-wget	NDA0E
2026-01-09 23:10:06	http://151.243.109.71/cache	Offline	gafgyt sh ua-wget	NDA0E

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2026-01-09 23:17:15	6736023d87e29e0e39ff508e27559bbcd42e83302d8de12c4ed2819a18f574ab	sh	Gafgyt
2026-01-09 23:11:19	e87555fdbe81c866fffd83dbd1f8ef715c39c9f6f5199dd492f34d00758e870d	elf	Gafgyt
2026-01-09 23:11:19	c5f66511b433251e11e10e8c96de228124fe8ca2b42da9ea4ea020d0ac935edf	elf	Gafgyt
2026-01-09 23:11:19	6e6737a6f981c555ad7561993da55b2652223f0570daa9670ee04b3773e95f12	elf	Gafgyt
2026-01-09 23:11:19	6b8920b3643b3259df7407e128c29d6b75ac6192f21ced887bd822c62d138596	elf	Gafgyt
2026-01-09 23:11:19	502286be2b114959fecd3e9fd30a1e135e68a5eeeff56d5cd483eb78f0fb80b0	elf	Gafgyt
2026-01-09 23:11:19	c65bff0cc381e498ec8929fe62a9153c18459cfffa5fd7363c1ba8398e4c80e6	elf	Gafgyt
2026-01-09 23:11:19	e799d99fc07cf69e3257c6c9e7d98f42ec7c5d3f39751d302b6793e80fc0d51c	elf	Gafgyt
2026-01-09 23:11:19	365885c2d2783dd1f09f1cdfc8c5206e406ebac53b1575acaa1c85aaf86a2f76	elf	Gafgyt
2026-01-09 23:11:11	bebc03675faaddf5036cb55842b4dad8cd63bd271fd827e17da4e50b6965b843	elf	Gafgyt
2026-01-09 23:11:11	5aa10ad8ddf32cf939a6ed86b129b96c70c5c85d428692edf2817020b7588326	elf	Gafgyt
2026-01-09 23:11:11	30ce7e02ad64d594078d91d50bc6658c3fe31573176161b6b0b7014908cf6348	elf	Gafgyt
2026-01-09 23:11:11	78ec72382489fb24c85aaf7febe87c99e8447ccff87df0f03ca3477a0a1af301	elf	Gafgyt
2026-01-09 23:11:11	1e65db5565160a6cf54239c6459a1c1ba6dc79b415fca206bee9ebafdd65ab70	elf	Gafgyt
2026-01-09 23:10:06	6736023d87e29e0e39ff508e27559bbcd42e83302d8de12c4ed2819a18f574ab	sh	Gafgyt