URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	154.216.20.232
Firstseen:	2024-08-05 13:47:04 UTC
Total malware sites :	46
Online malware sites :	0 (0%)
Offline Malware sites :	46 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2024-08-05 13:47:04	154.216.20.232		Not listed	AS11404 AS-WAVE-1	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2024-08-07 15:39:33	http://154.216.20.232/t	Offline	mirai	stopransom
2024-08-07 11:32:09	http://154.216.20.232/empsl	Offline	elf gafgyt	NDA0E
2024-08-07 11:32:07	http://154.216.20.232/earm7	Offline	elf mirai	NDA0E
2024-08-07 11:32:07	http://154.216.20.232/earm6	Offline	elf mirai	NDA0E
2024-08-07 11:32:07	http://154.216.20.232/emips	Offline	elf gafgyt	NDA0E
2024-08-07 11:32:07	http://154.216.20.232/eppc	Offline	elf	NDA0E
2024-08-07 11:32:07	http://154.216.20.232/earm5	Offline	elf mirai	NDA0E
2024-08-07 11:32:07	http://154.216.20.232/earm	Offline	elf mirai	NDA0E
2024-08-07 11:32:07	http://154.216.20.232/esh4	Offline	elf	NDA0E
2024-08-05 13:48:05	http://154.216.20.232/bins/arm7	Offline	elf mirai	RacWatchin8872
2024-08-05 13:48:04	http://154.216.20.232/mpsl	Offline	elf gafgyt mirai	RacWatchin8872
2024-08-05 13:48:04	http://154.216.20.232/arm5	Offline	elf mirai	RacWatchin8872
2024-08-05 13:47:08	http://154.216.20.232/bins/mips	Offline	elf gafgyt mirai	RacWatchin8872
2024-08-05 13:47:08	http://154.216.20.232/bins/x86	Offline	elf mirai	RacWatchin8872
2024-08-05 13:47:08	http://154.216.20.232/bins/x86?ddos	Offline	elf mirai	RacWatchin8872
2024-08-05 13:47:07	http://154.216.20.232/mips	Offline	elf gafgyt mirai	RacWatchin8872
2024-08-05 13:47:07	http://154.216.20.232/bins/arm	Offline	elf mirai	RacWatchin8872
2024-08-05 13:47:07	http://154.216.20.232/bins/arm6	Offline	elf mirai	RacWatchin8872
2024-08-05 13:47:07	http://154.216.20.232/bins/arm5	Offline	elf mirai	RacWatchin8872
2024-08-05 13:47:07	http://154.216.20.232/arm7	Offline	elf mirai	RacWatchin8872
2024-08-05 13:47:07	http://154.216.20.232/arm	Offline	elf mirai	RacWatchin8872
2024-08-05 13:47:07	http://154.216.20.232/arm6	Offline	elf mirai	RacWatchin8872
2024-08-05 13:47:06	http://154.216.20.232/bins/mpsl	Offline	elf gafgyt mirai	RacWatchin8872
2024-08-05 13:47:06	http://154.216.20.232/bins/wget.sh	Offline	bash mirai sh	RacWatchin8872
2024-08-05 13:47:06	http://154.216.20.232/dlr.sh4	Offline	ascii mirai	RacWatchin8872
2024-08-05 13:47:06	http://154.216.20.232/bins/tftp.sh	Offline	bash mirai sh	RacWatchin8872
2024-08-05 13:47:06	http://154.216.20.232/bins/sh4	Offline	elf gafgyt mirai	RacWatchin8872
2024-08-05 13:47:06	http://154.216.20.232/ppc	Offline	elf mirai	RacWatchin8872
2024-08-05 13:47:05	http://154.216.20.232/tftp.sh	Offline	bash mirai sh	RacWatchin8872
2024-08-05 13:47:05	http://154.216.20.232/dlr.arm	Offline	ascii mirai	RacWatchin8872
2024-08-05 13:47:05	http://154.216.20.232/bins/weed	Offline	bash mirai sh	RacWatchin8872
2024-08-05 13:47:05	http://154.216.20.232/dlr.arm7	Offline	ascii mirai	RacWatchin8872
2024-08-05 13:47:05	http://154.216.20.232/bins/dlr.arm7	Offline	ascii mirai	RacWatchin8872
2024-08-05 13:47:05	http://154.216.20.232/dlr.ppc	Offline	ascii mirai	RacWatchin8872
2024-08-05 13:47:05	http://154.216.20.232/dlr.mips	Offline	elf mirai	RacWatchin8872
2024-08-05 13:47:05	http://154.216.20.232/bins/dlr.sh4	Offline	ascii mirai	RacWatchin8872
2024-08-05 13:47:05	http://154.216.20.232/wget.sh	Offline	bash mirai sh	RacWatchin8872
2024-08-05 13:47:05	http://154.216.20.232/weed	Offline	bash mirai sh	RacWatchin8872
2024-08-05 13:47:05	http://154.216.20.232/sh4	Offline	elf gafgyt mirai	RacWatchin8872
2024-08-05 13:47:04	http://154.216.20.232/bins/ftpget.sh	Offline	bash mirai sh	RacWatchin8872
2024-08-05 13:47:04	http://154.216.20.232/curl.sh	Offline	bash mirai sh	RacWatchin8872
2024-08-05 13:47:04	http://154.216.20.232/dlr.mpsl	Offline	elf mirai	RacWatchin8872
2024-08-05 13:47:04	http://154.216.20.232/tftp2.sh	Offline	bash mirai sh	RacWatchin8872
2024-08-05 13:47:04	http://154.216.20.232/ftpget.sh	Offline	bash mirai sh	RacWatchin8872
2024-08-05 13:47:04	http://154.216.20.232/bins/dlr.mpsl	Offline	ascii mirai	RacWatchin8872
2024-08-05 13:47:04	http://154.216.20.232/bins/dlr.mips	Offline	ascii mirai	RacWatchin8872

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2024-08-08 03:29:56	fad1b833149894d19f99ec914464af02016334e4ea2a62a80d50522a33333726	elf	Mirai
2024-08-08 03:25:16	4183ba9b3c0717d0ea4d737143c337f23e037509a604313ac20247f667628c0c	elf	Gafgyt
2024-08-08 03:23:43	b7c7a4dee6bed6c4d3c8be8d7cccc6af7f5e33a8eca1ab4a30fe07362ce45793	elf	Gafgyt
2024-08-08 03:14:38	42ed4015f32590ae326bf730bc3bf3bb2f7ab7dab82770bf13c19a364b259703	elf	Mirai
2024-08-08 02:23:28	4cc9e209a0b690434b0f9623c2b6b41cac3b166eea0bd474366fb3d9390c6c61	elf	Gafgyt
2024-08-08 02:09:07	ec59972f15c08de1507dc053a46c0dae7565b709af839af5d2b69d2f6d9cb3e0	elf	Mirai
2024-08-08 02:02:40	fee4dbe6f0d6b8ea1f8bec922f733161a133b5baaea2f6dd49d9b484eecbf7e1	elf	Mirai
2024-08-07 11:32:09	0331985724dc711d88b447dd2d352a1b8a9951b045dff4afb2e48895b85c73a7	elf	Gafgyt
2024-08-07 11:32:07	1500cbdcf6c0c50472336ad9dc3a1d5d00f062b89cc25a758350c4820363455a	elf	Mirai
2024-08-07 11:32:07	27c5412cc2036dd7b38f646f090f8b72843aaab3c2ecd70ca8d86665f3d4f1ea	elf	Mirai
2024-08-07 11:32:07	d76ad9131500635ddcc945b097160bd38259bf9b77e5d57ee9f408b22f5edf65	elf
2024-08-07 11:32:07	9dc05db309ba17fa337d56d57b9f5e769f387e654cd69ee54f7771fa0051cf68	elf
2024-08-07 11:32:07	79794a133e5820788924f137136348593c481966288a28273df696950c6d543a	elf	Gafgyt
2024-08-07 11:32:07	2d3482fc6ea845ffe8918e9d186fc8454091b4348feee07006ef7df8752dd6e5	elf	Mirai
2024-08-07 11:32:07	efaf599ac65b6960a2888be4b91fdb831ec7bc374d8904794ea837a47af2cd66	elf	Mirai
2024-08-05 13:48:05	81b68c0c3656652296c076c4299e2f6adc5f028b8356199b871b6180ba0a4efa	elf	Mirai
2024-08-05 13:48:04	b7c7a4dee6bed6c4d3c8be8d7cccc6af7f5e33a8eca1ab4a30fe07362ce45793	elf	Gafgyt
2024-08-05 13:48:04	ec59972f15c08de1507dc053a46c0dae7565b709af839af5d2b69d2f6d9cb3e0	elf	Mirai
2024-08-05 13:47:08	bf4fb9f0ef0237da5ec130910c69f2c5aeff9a498c11d9b9943639aabaa15b12	elf	Mirai
2024-08-05 13:47:08	f52b7e39cfbb72286bc87fb65eebfcc6a07f2630b6ad51887e0c4753dafdbf24	elf	Gafgyt
2024-08-05 13:47:08	bf4fb9f0ef0237da5ec130910c69f2c5aeff9a498c11d9b9943639aabaa15b12	elf	Mirai
2024-08-05 13:47:07	4cc9e209a0b690434b0f9623c2b6b41cac3b166eea0bd474366fb3d9390c6c61	elf	Gafgyt
2024-08-05 13:47:07	8789153e2848877bf52d6291cc34490dfac43e86ed75de312d0c7712bc8eea48	elf	Mirai
2024-08-05 13:47:07	1efa24755fa81752df032a1344032ce4a04922d9320afda5e7bdfbf9239811e4	elf	Mirai
2024-08-05 13:47:07	07b2d537b42c9a4e10acc47b8912426c0c6a770102c6a418df6f0dba1768dd05	elf	Mirai
2024-08-05 13:47:07	fee4dbe6f0d6b8ea1f8bec922f733161a133b5baaea2f6dd49d9b484eecbf7e1	elf	Mirai
2024-08-05 13:47:07	42ed4015f32590ae326bf730bc3bf3bb2f7ab7dab82770bf13c19a364b259703	elf	Mirai
2024-08-05 13:47:06	fad1b833149894d19f99ec914464af02016334e4ea2a62a80d50522a33333726	elf	Mirai
2024-08-05 13:47:06	ebdbd4b16d1c62a538be0491bd67c636ac463d47dc7159c813560be384970931	elf	Gafgyt
2024-08-05 13:47:06	e1501dd27b84c3c57238b38b1a547e21b85228335d84c3b68c9e9a4e942e6baf	elf	Gafgyt
2024-08-05 13:47:06	b43bef47d26a11bb8b75c0a12813de846f86db8e5502d65481b18680bad74de2	elf	Mirai
2024-08-05 13:47:05	4183ba9b3c0717d0ea4d737143c337f23e037509a604313ac20247f667628c0c	elf	Gafgyt