URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	165.154.224.116
Firstseen:	2025-02-05 08:29:03 UTC
Total malware sites :	36
Online malware sites :	0 (0%)
Offline Malware sites :	36 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-02-05 08:29:04	165.154.224.116		SBL636305	AS142002 SCLOUDPTELTD-AS	HK	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-03-02 17:49:05	http://165.154.224.116/jackmymipsel	Offline	elf gafgyt	NDA0E
2025-03-02 17:49:05	http://165.154.224.116/jackmyi586	Offline	elf gafgyt	NDA0E
2025-03-02 17:49:05	http://165.154.224.116/jackmyi686	Offline	elf gafgyt	NDA0E
2025-03-02 17:48:06	http://165.154.224.116/jackmyarmv4	Offline	elf gafgyt	NDA0E
2025-03-02 17:48:06	http://165.154.224.116/jackmym86k	Offline	elf gafgyt	NDA0E
2025-03-02 17:48:06	http://165.154.224.116/jackmysparc	Offline	elf gafgyt	NDA0E
2025-03-02 17:48:06	http://165.154.224.116/jackmymips	Offline	elf gafgyt	NDA0E
2025-03-02 17:48:06	http://165.154.224.116/jackmypowerpc	Offline	elf gafgyt	NDA0E
2025-03-02 17:48:06	http://165.154.224.116/jackmysh4	Offline	elf gafgyt	NDA0E
2025-03-02 17:48:06	http://165.154.224.116/jackmyx86	Offline	elf gafgyt	NDA0E
2025-03-02 17:48:06	http://165.154.224.116/jackmyarmv6	Offline	elf gafgyt	NDA0E
2025-03-02 17:48:06	http://165.154.224.116/jackmyarmv5	Offline	elf gafgyt	NDA0E
2025-02-21 09:16:19	http://165.154.224.116/skid.arm4	Offline	elf mirai ua-wget	DaveLikesMalwre
2025-02-21 09:16:19	http://165.154.224.116/skid.mpsl	Offline	elf mirai ua-wget	DaveLikesMalwre
2025-02-21 09:16:18	http://165.154.224.116/skid.mips	Offline	elf mirai ua-wget	DaveLikesMalwre
2025-02-21 09:16:15	http://165.154.224.116/skid.ppc	Offline	elf gafgyt mirai ua-wget	DaveLikesMalwre
2025-02-21 09:16:12	http://165.154.224.116/skid.arm5	Offline	elf gafgyt mirai ua-wget	DaveLikesMalwre
2025-02-21 09:16:11	http://165.154.224.116/skid.x86	Offline	elf gafgyt mirai ua-wget	DaveLikesMalwre
2025-02-21 09:16:10	http://165.154.224.116/skid.sparc	Offline	elf gafgyt mirai ua-wget	DaveLikesMalwre
2025-02-21 09:16:06	http://165.154.224.116/skid.arm6	Offline	elf mirai ua-wget	DaveLikesMalwre
2025-02-21 07:02:06	http://165.154.224.116/skid.sh	Offline	script	geenensp
2025-02-16 15:49:33	http://165.154.224.116/bins/Owari.arm6	Offline	censys elf mirai opendir	NDA0E
2025-02-16 15:49:23	http://165.154.224.116/bins/Owari.spc	Offline	censys elf mirai opendir	NDA0E
2025-02-16 15:49:23	http://165.154.224.116/bins/Owari.arm	Offline	censys elf mirai opendir	NDA0E
2025-02-16 15:49:23	http://165.154.224.116/bins/Owari.ppc	Offline	censys elf mirai opendir	NDA0E
2025-02-16 15:49:23	http://165.154.224.116/bins/Owari.mpsl	Offline	censys elf mirai opendir	NDA0E
2025-02-16 15:49:20	http://165.154.224.116/bins/Owari.arm7	Offline	censys elf mirai opendir	NDA0E
2025-02-16 15:49:19	http://165.154.224.116/bins/Owari.m68k	Offline	censys elf mirai opendir	NDA0E
2025-02-16 15:49:17	http://165.154.224.116/bins/Owari.arm5	Offline	censys elf mirai opendir	NDA0E
2025-02-16 15:49:16	http://165.154.224.116/bins/Owari.mips	Offline	censys elf mirai opendir	NDA0E
2025-02-16 15:49:16	http://165.154.224.116/bins/Owari.x86	Offline	censys elf mirai opendir	NDA0E
2025-02-16 15:49:16	http://165.154.224.116/bins/Owari.sh4	Offline	censys elf mirai opendir	NDA0E
2025-02-16 15:48:04	http://165.154.224.116/sensi.sh	Offline	censys opendir sh	NDA0E
2025-02-09 12:45:09	http://165.154.224.116/Jackmyass.zip	Offline	elf mirai opendir zip	DaveLikesMalwre
2025-02-09 12:42:04	http://165.154.224.116/bins.sh	Offline	gafgyt mirai opendir sh	DaveLikesMalwre
2025-02-05 08:29:04	http://165.154.224.116/wget.sh	Offline	mirai	lontze7

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-03-02 17:49:05	1af158829c1eaab13fd4f10719306e635e2f1bd391cf09129f2a786ae94cf124	elf	Gafgyt
2025-03-02 17:49:05	f419e1c3058d8eb73c33ed7506430774255e85e4c3766bc10cd7e4c308d93d1a	elf	Gafgyt
2025-03-02 17:49:05	8beb1d3622421d2c846b56b18de9b0f9911afdd1478a22a0a76f05601b692bf2	elf	Gafgyt
2025-03-02 17:48:06	40284b65ec9515750764e5204c683dd0177c0ee763224798ad7664f06f464fc1	elf	Gafgyt
2025-03-02 17:48:06	810c86165b9b97b45fe988a23542c9b054aae36ad81f1509e63f099aebb600bf	elf	Gafgyt
2025-03-02 17:48:06	6a0a99ff300be41c905234593ed3abb69b8bb5c9c48449612187036d33c367a0	elf	Gafgyt
2025-03-02 17:48:06	352e1c3b2ebfa0d1c3140fbd957d698f71b89200ba6898123a72728c2e481336	elf	Gafgyt
2025-03-02 17:48:06	0637b641eeb53e69c022b8c24890098b28755b6fa251919a25aa74f82ae4bd17	elf	Gafgyt
2025-03-02 17:48:06	94cab9304474a7cb096a2dc91744d562bed82433a4c82be0536bcb46c256cf40	elf	Gafgyt
2025-03-02 17:48:06	3190f29d355a28b7edee22e65f44bcfba988b9f54771ba34b2d13515164a927d	elf	Gafgyt
2025-03-02 17:48:06	6706d418fc5d93bb87007fc500775335691064abcd69c1dad48cc9e1afd7548c	elf	Gafgyt
2025-03-02 17:48:06	01fa8871a3c3d8098439db84559377f66898b1d530082d3605e25daa18fdc96c	elf	Gafgyt
2025-02-27 00:18:18	0340ac49b3ffa9b62521f5d0ab751b8b1196e816d644317e7ae7a6166b08eb08	sh	Gafgyt
2025-02-26 11:54:35	c9cc6bf5a454305d19186e093f1acc4d96ad18580ccc7b7f8c45b53270631068	sh
2025-02-21 09:16:19	419e4be21ad59d1e9ce6da2fba63ffb58b20b2d6ffdc2fbff0da5fd2c7df6231	elf	Mirai
2025-02-21 09:16:19	989c3cb9bfcbaca0fb1bd52156c201689585e8ddd0e5faafadef66a3d663baa9	elf	Mirai
2025-02-21 09:16:18	499c7673bad0592c6204d04eb65ace35d4495681f565b9c9b2af71c3995d70fc	elf	Mirai
2025-02-21 09:16:15	545dad63e74a82d2326dc60cf8967f81361432cb7af52758dc649fb28ea357a6	elf	Gafgyt
2025-02-21 09:16:12	a4d09679395bfa4cea5ec85160873b636c082d81c13fba19b3888ba341da61a5	elf	Gafgyt
2025-02-21 09:16:11	32656786e92d881fa66d660f13e0d43b28ec5c789c65569b2b6053007617256b	elf	Gafgyt
2025-02-21 09:16:10	76c2be36f26cb0008ac8732c24bf2975d3f96d685cf9128bc899dfba8e9fd30b	elf	Gafgyt
2025-02-21 09:16:06	0fc4ee58bb0d24f0d01d173a669b4e5a9822ef6aca4247d86473e86e63cbddac	elf	Mirai
2025-02-21 07:02:05	cdd30d23c1ec48ab87f7e187e107a102926951fce15f555c196921bf94f6875c	sh
2025-02-16 15:50:29	6ece3ff2c410193782e1673288e57be5209e82f95b6f48116e4731cf4c3314dd	elf	Mirai
2025-02-16 15:49:23	1f415e998ff8387b9763695a8b6ba34d7cab09905abc1b17fce68aaec35bbe26	elf	Mirai
2025-02-16 15:49:23	036887384c4ccc99be5ecd93f4bfbdff7ae89e2befe8a6e0da4002f4b6b4daa0	elf	Mirai
2025-02-16 15:49:23	a1f2873a9c82219a84dc51930a7db8f2f119d84097f7035885eb7d84cb3ff56d	elf	Mirai
2025-02-16 15:49:23	9e513a071372e653297deaa0814430f3c92b713c28aa668d2e8144d7f0f7949b	elf	Mirai
2025-02-16 15:49:20	9cf181521c21f943284aa1d942839da09bd3354fbc651aa2e4d639f82b12dc33	elf	Mirai
2025-02-16 15:49:19	f6be0f2195ee96a5899bc2934980c1925354dbe7cb672d703a982548bd064999	elf	Mirai
2025-02-16 15:49:17	534c115b2e19fe425cf5ede924464055ab174cf70a53df204c885075e2f029c5	elf	Mirai
2025-02-16 15:49:16	4b06a477e6e42b9d1901a55f446f7808048d0d7bb4ea5e5208db91e90a134a0b	elf	Mirai
2025-02-16 15:49:16	0c2b16594a7bd23d9e47decd61a495f0f1ee897d04337fe34d4d7ab630040101	elf	Mirai
2025-02-16 15:49:16	6e1f0e9f4180def4d3734e5760f4fc9fb5a1230315fbbd72d8a361903f9b8d98	elf	Mirai
2025-02-09 12:45:09	e364e875d53565ab11e549e8c37ab7ae17c2d3327a56a6b94465a0c9606731be	zip
2025-02-09 12:42:04	27a3f1fe57a508b7cf3dfde7f35725744529b7c29a38e1128682a11c04c69aad	sh	Gafgyt