URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	161.97.74.69
Firstseen:	2025-08-20 21:02:03 UTC
Total malware sites :	17
Online malware sites :	0 (0%)
Offline Malware sites :	17 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-08-20 21:02:16	161.97.74.69	vmi2702901.contaboserver.net	Not listed	AS51167 CONTABO	FR	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-08-21 12:06:17	http://161.97.74.69/systemcl/arc	Offline	elf ua-wget	abuse_ch
2025-08-21 07:51:17	http://161.97.74.69/systemcl/sh4	Offline	elf mirai ua-wget	BlinkzSec
2025-08-21 07:48:26	http://161.97.74.69/systemcl/spc	Offline	elf mirai ua-wget	BlinkzSec
2025-08-21 07:48:25	http://161.97.74.69/c.sh	Offline	mirai sh ua-wget	BlinkzSec
2025-08-21 07:48:25	http://161.97.74.69/w.sh	Offline	mirai sh ua-wget	BlinkzSec
2025-08-21 07:48:24	http://161.97.74.69/test.sh	Offline	sh ua-wget	BlinkzSec
2025-08-21 07:48:24	http://161.97.74.69/systemcl/arm5	Offline	elf mirai ua-wget	BlinkzSec
2025-08-21 07:48:24	http://161.97.74.69/systemcl/x86_64	Offline	elf mirai ua-wget	BlinkzSec
2025-08-21 07:48:13	http://161.97.74.69/wget.sh	Offline	mirai sh ua-wget	BlinkzSec
2025-08-21 07:48:12	http://161.97.74.69/systemcl/ppc	Offline	elf mirai ua-wget	BlinkzSec
2025-08-21 07:48:12	http://161.97.74.69/systemcl/arm7	Offline	elf mirai ua-wget	BlinkzSec
2025-08-21 07:48:12	http://161.97.74.69/systemcl/m68k	Offline	elf mirai ua-wget	BlinkzSec
2025-08-21 07:48:12	http://161.97.74.69/systemcl/mpsl	Offline	elf mirai ua-wget	BlinkzSec
2025-08-21 07:48:10	http://161.97.74.69/systemcl/arm6	Offline	elf mirai ua-wget	BlinkzSec
2025-08-20 21:02:17	http://161.97.74.69/systemcl/arm	Offline	32-bit elf mirai Mozi	threatquery
2025-08-20 21:02:16	http://161.97.74.69/systemcl/x86	Offline	32-bit elf mirai Mozi	threatquery
2025-08-20 21:02:16	http://161.97.74.69/systemcl/mips	Offline	32-bit elf mirai Mozi	threatquery

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-08-21 07:51:17	b5d5a320320766751e9a1e31bc6ff850196e0c3f0b5baee15eee600b8a3cdae2	elf	Mirai
2025-08-21 07:48:26	2b4e44a8a37c63ce0a2c007bb22d903ae9d13b643b6b556f4d15199926cdd54c	elf	Mirai
2025-08-21 07:48:25	770ae0b3092fd00fed8231d5d72c203305f580a0610a3bb27f3ff6192092c5ae	sh	Mirai
2025-08-21 07:48:24	47a0fa2b9aa3ebdb48324d5ad43903187a528176193716db81991191b3d3b230	elf	Mirai
2025-08-21 07:48:24	467ca3ecdb388a31f9687f3f93134ae992fbfbe2936cfbd700c3d198b3b65ecb	elf	Mirai
2025-08-21 07:48:24	5cea6237f2e47265f9bd38c0c907adeab2a5e4000e4770f6ad1c757955a95059	sh
2025-08-21 07:48:24	27ae9a46d723531b26452f5ec169ef2a90074d5b206ec617f08bb0a9e8405c15	sh	Mirai
2025-08-21 07:48:12	19abfca0200531ee5ddc2dd7bc4454af84d9ffe0ef2e12cd2a54fc828ebdc659	elf	Mirai
2025-08-21 07:48:12	1745a1dc09e108e719186017f4d6f10e1835aa4ba3f74b50b8394e3268c66524	elf	Mirai
2025-08-21 07:48:12	abfd19ac36a02a8d3552a65a6e023b7499af427f7ea558cbc5064b8475bd955e	elf	Mirai
2025-08-21 07:48:12	163a2c04fa5a1a8607a3aa00791c044bf68f7b20d610d555f9991aca861028ac	sh	Mirai
2025-08-21 07:48:11	7365564e3fc5bc60caa91eb8b6b87a6d8da423389be87134899fcd0caaeb3242	elf	Mirai
2025-08-21 07:48:10	7a4627901da5e02ceacaf688cc103b4944a3cf75b4f1f4316ee638893eaa4104	elf	Mirai
2025-08-20 21:02:17	a2812bf91c1836b0749615f8c92f49b055ed1152a0cfcb03cffb4473388ae1f9	elf	Mirai
2025-08-20 21:02:16	2e9b4bb064c078485eab38389da45cfecd1f865d77cd5c199ae3c2fe195daf72	elf	Mirai
2025-08-20 21:02:16	ad42066092b60784e1579fb3742cf3a41450dacc13b254e9c3a0c5b84aaf0db4	elf	Mirai