URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	176.65.143.172
Firstseen:	2025-03-29 15:48:03 UTC
Total malware sites :	24
Online malware sites :	0 (0%)
Offline Malware sites :	24 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-04-05 14:08:05	http://176.65.143.172/i-5.8-6.Sakura	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-04-05 14:08:05	http://176.65.143.172/a-r.m-7.Sakura	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-04-05 14:08:05	http://176.65.143.172/a-r.m-6.Sakura	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-04-05 14:08:04	http://176.65.143.172/s-h.4-.Sakura	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-04-05 14:07:05	http://176.65.143.172/a-r.m-5.Sakura	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-04-05 14:07:05	http://176.65.143.172/x-3.2-.Sakura	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-04-05 14:07:05	http://176.65.143.172/p-p.c-.Sakura	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-04-05 14:07:05	http://176.65.143.172/m-i.p-s.Sakura	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-04-05 14:07:05	http://176.65.143.172/m-p.s-l.Sakura	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-04-05 14:07:05	http://176.65.143.172/m-6.8-k.Sakura	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-04-05 14:07:05	http://176.65.143.172/x-8.6-.Sakura	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-03-29 15:48:04	http://176.65.143.172/ISIS.sh	Offline	censys gafgyt sh	NDA0E
2025-03-29 15:48:03	http://176.65.143.172/a-r.m-6.ISIS	Offline	censys elf gafgyt	NDA0E
2025-03-29 15:48:03	http://176.65.143.172/a-r.m-7.ISIS	Offline	censys elf gafgyt	NDA0E
2025-03-29 15:48:03	http://176.65.143.172/m-6.8-k.ISIS	Offline	censys elf gafgyt	NDA0E
2025-03-29 15:48:03	http://176.65.143.172/a-r.m-4.ISIS	Offline	censys elf gafgyt	NDA0E
2025-03-29 15:48:03	http://176.65.143.172/i-5.8-6.ISIS	Offline	censys elf gafgyt	NDA0E
2025-03-29 15:48:03	http://176.65.143.172/p-p.c-.ISIS	Offline	censys elf gafgyt	NDA0E
2025-03-29 15:48:03	http://176.65.143.172/s-h.4-.ISIS	Offline	censys elf gafgyt	NDA0E
2025-03-29 15:48:03	http://176.65.143.172/x-8.6-.ISIS	Offline	censys elf gafgyt	NDA0E
2025-03-29 15:48:03	http://176.65.143.172/m-p.s-l.ISIS	Offline	censys elf gafgyt	NDA0E
2025-03-29 15:48:03	http://176.65.143.172/m-i.p-s.ISIS	Offline	censys elf gafgyt	NDA0E
2025-03-29 15:48:03	http://176.65.143.172/a-r.m-5.ISIS	Offline	censys elf gafgyt	NDA0E
2025-03-29 15:48:03	http://176.65.143.172/x-3.2-.ISIS	Offline	censys elf gafgyt	NDA0E

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-04-10 09:03:34	65c425de48067e59a8050a7c661c58b094c0e113ae57df01bc743f6833e2be00	elf	Gafgyt
2025-04-10 08:57:02	ea64b76a0290db2e306762b3ab6ee7af51009328f17d5f35fe5b7a42042c4a6a	elf	Gafgyt
2025-04-10 08:55:53	585af71cafd52836796d3285345090c5f9e806983070b033292816626fb843b7	elf	Gafgyt
2025-04-10 08:52:17	c040c79ae778f6d24c0a3b0d46d3bdc5bf36ef599976843054080df72423426a	elf	Gafgyt
2025-04-10 08:49:52	65c425de48067e59a8050a7c661c58b094c0e113ae57df01bc743f6833e2be00	elf	Gafgyt
2025-04-10 08:45:59	c2cd5138a78d2aa5d481400bab9e0e7cf1145bdd2a86b32079b8fb38cc38af20	elf	Gafgyt
2025-04-10 08:38:19	8ce8b1f6fd318f03410cd945991afcddb20fa093a316d607bbea0ccba455988d	sh	Gafgyt
2025-04-10 08:34:47	5ab7d0747d7abb86b1b3642e6aeb7b6518981615158bc4e0c0473a96b1b76e2d	elf	Gafgyt
2025-04-10 08:34:22	1c6410cee2f745fa52cdfb349adbd801650a1fa1dd1a08ed60adeed491c9df81	elf	Gafgyt
2025-04-10 08:34:08	84f198dba0d95044db735cabd182ce7a633a22f1add39dccda481f9a9d607712	elf	Gafgyt
2025-04-10 08:32:11	deba9d554691fac161260399758e6c04ac8e9be64d8adbc0d1d5f87d11a9411c	elf	Gafgyt
2025-04-10 08:29:33	c9aa871ebf966c38b24b140853a18c66b023de4b803cd214e166a92db11a7ec8	elf	Gafgyt
2025-04-10 08:28:15	2bf9715f2071b8504588a7e001b843c7b2bb0dbd8cced6406f0e10dd32850add	elf	Gafgyt
2025-04-10 02:12:27	cd4e6180e020341cebc37f06fd33b9ab26984956b3f835e3e92f25129449cb80	elf	Gafgyt
2025-04-10 01:55:42	caeeb89d86c41917e89af2a3ba5ffac7a5c758041d47dfa22e8079f52438c7e5	elf	Gafgyt
2025-04-10 01:50:15	6ea95278d9a4b61a6b32bb5bca72893319c198a4d3608896cb8eba07cc4d4ce1	elf	Gafgyt
2025-04-10 01:44:50	afe225af0f53016f936302844b777bd7525f5d14f3ff191a610e3eee04f16120	elf	Gafgyt
2025-04-10 01:37:43	24625dd7724646688061d9cc4af9f6706ca33de589a89897d7cf81dfc5ced808	elf	Gafgyt
2025-04-10 01:34:02	3dc765bd2cf39ce4462b6d753ac9ff57e9fac40d2a931b52184184a0186f867c	elf	Gafgyt
2025-04-10 01:24:01	0b20c38643f932823b42b4f2ac60def86ef6b4e33c92b7f27e556cce21070ea0	elf	Gafgyt
2025-04-10 01:17:19	64b1edbe4c8b25b5780ce213a28133a7841447b7afbfcab2e288ec0814c29f74	elf	Gafgyt
2025-04-10 01:08:32	651493d85dd7df04b0f4e9a0ff8e64db91f2137bd38165fb3d74d4a99d748e90	elf	Gafgyt
2025-04-10 00:52:34	24625dd7724646688061d9cc4af9f6706ca33de589a89897d7cf81dfc5ced808	elf	Gafgyt
2025-04-10 00:08:44	5b1136585bbad140e0464835a1b3422fa62d5884b4caec5fb6884418fd3eefe7	elf	Gafgyt
2025-04-10 00:06:04	973ea7b64d0260394ec4c03fe8e7b30f3b29e0f240dc7cc884dc9fb3d0863083	elf	Gafgyt
2025-04-09 23:52:25	01c48a883b0b7520ae59f37a35d65d96a9bbeec4d473b90fb2ec2bf6b918af87	elf	Gafgyt
2025-04-09 23:35:32	b0e09abb957778f2f24e44bd2635f7b222e800f72d0d71661cee37cba4f2ffc1	elf	Gafgyt
2025-04-09 23:27:02	75e78c307909080e3122089e55e47f2f5a13fa68ef6dbdd3262331bc0979aeb9	elf	Gafgyt
2025-04-09 23:04:00	35d09a404cf802f70b75761ddfa77b0f572cd77e3ae44ff91f2cf6fc4090eaa4	elf	Gafgyt
2025-04-05 14:08:05	1b441c30a6ed16dd4f06b3e76ed0554b7fb2883d7983e44940f7d98a58533dc5	elf	Gafgyt
2025-04-05 14:08:05	5a5e14c6ed7ca7854b21b1bc192bb5461596ef0a83faac403a7666b547d5cf17	elf	Gafgyt
2025-04-05 14:08:04	2b0a7ea88cdb935858b511b5ef16fa9d20cf155bccb874dacf1ca6ad3158d14f	elf	Gafgyt
2025-04-05 14:08:04	15be2df7806bd22fb54d384f933cca600e7c1e4201feb0605f211f25107de6e2	elf	Gafgyt
2025-04-05 14:07:05	b42d51a9a664eab4d24d9c271ff7c356af41685a27f0697aa1dbf3733f698259	elf	Gafgyt
2025-04-05 14:07:05	de487f4cd4f1c3dd586a6226eb6a97ab96ae9d3523a2b0ecc5958ffb0af9cade	elf	Gafgyt
2025-04-05 14:07:05	ebc3fc4a2ddef6f05df0469c98d2e7656d49955daffadb5ce3e3129ec4fc4bba	elf	Gafgyt
2025-04-05 14:07:05	d5697f2baea2498685a32a09c62f1c029adcb89e86640b50cfbe2959cabd500c	elf	Gafgyt
2025-04-05 14:07:05	55d5c803f33331b27ac9c1faf8b2271dff6d7b4063284cf6e8fb73df503a0556	elf	Gafgyt
2025-04-05 14:07:05	5d458eec4ca82aa5635ea6aa6018fefbfce9ae1dba244a74810dda5c1cfe6d40	elf	Gafgyt
2025-04-05 14:07:05	5707aa4a13afdb3070ca1d0dd0d2d1e04afedeee03c08fa2b291f46012edb592	elf	Gafgyt
2025-03-29 15:48:04	665618db858c303cc4d0085e31db15fcc2bdf10a66e12b14c3ee1fbee962ba5f	sh