URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-06-11 04:14:09	176.65.148.194	hosted-by.pfcloud.io	SBL679274	AS51396 PFCLOUD	NL	yes

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-07-29 18:10:11	http://176.65.148.194/0010101010100101101010111...	Offline	mirai opendir	DaveLikesMalwre
2025-07-29 18:10:06	http://176.65.148.194/0010101010100101101010111...	Offline	mirai opendir	DaveLikesMalwre
2025-07-29 18:09:14	http://176.65.148.194/0010101010100101101010111...	Offline	mirai opendir	DaveLikesMalwre
2025-07-29 18:09:10	http://176.65.148.194/1.sh	Offline	mirai opendir	DaveLikesMalwre
2025-07-29 18:09:09	http://176.65.148.194/0010101010100101101010111...	Offline	mirai opendir	DaveLikesMalwre
2025-07-29 18:09:09	http://176.65.148.194/0010101010100101101010111...	Offline	mirai opendir	DaveLikesMalwre
2025-07-29 18:09:09	http://176.65.148.194/0010101010100101101010111...	Offline	mirai opendir	DaveLikesMalwre
2025-07-29 18:09:09	http://176.65.148.194/0010101010100101101010111...	Offline	mirai opendir	DaveLikesMalwre
2025-07-29 18:09:09	http://176.65.148.194/0010101010100101101010111...	Offline	mirai opendir	DaveLikesMalwre
2025-07-29 18:09:09	http://176.65.148.194/0010101010100101101010111...	Offline	mirai opendir	DaveLikesMalwre
2025-07-29 18:09:09	http://176.65.148.194/0010101010100101101010111...	Offline	mirai opendir	DaveLikesMalwre
2025-07-29 18:09:09	http://176.65.148.194/0010101010100101101010111...	Offline	mirai opendir	DaveLikesMalwre
2025-07-29 18:09:09	http://176.65.148.194/0010101010100101101010111...	Offline	mirai opendir	DaveLikesMalwre
2025-07-29 18:09:09	http://176.65.148.194/0010101010100101101010111...	Offline	mirai opendir	DaveLikesMalwre
2025-07-29 18:09:09	http://176.65.148.194/0010101010100101101010111...	Offline	mirai opendir	DaveLikesMalwre
2025-07-29 18:09:09	http://176.65.148.194/0010101010100101101010111...	Offline	mirai opendir	DaveLikesMalwre
2025-06-13 18:46:35	http://176.65.148.194/selfrep.sh	Offline	sh ua-wget	NDA0E
2025-06-13 18:45:34	http://176.65.148.194/ppc4fp	Offline	elf ua-wget	NDA0E
2025-06-11 21:11:10	http://176.65.148.194/dvr.sh	Offline	censys gafgyt sh ua-wget	NDA0E
2025-06-11 21:09:09	http://176.65.148.194/powerpc	Offline	censys elf gafgyt ua-wget	NDA0E
2025-06-11 04:14:11	http://176.65.148.194/x86	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-06-11 04:14:11	http://176.65.148.194/mipsel	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-06-11 04:14:11	http://176.65.148.194/mips	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-06-11 04:14:11	http://176.65.148.194/x86_64	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-06-11 04:14:11	http://176.65.148.194/sh4	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-06-11 04:14:11	http://176.65.148.194/m68k	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-06-11 04:14:11	http://176.65.148.194/spc	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-06-11 04:14:11	http://176.65.148.194/arm6	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-06-11 04:14:11	http://176.65.148.194/i686	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-06-11 04:14:11	http://176.65.148.194/arm	Offline	elf gafgyt ua-wget	ClearlyNotB
2025-06-11 04:14:11	http://176.65.148.194/arm5	Offline	elf gafgyt mirai ua-wget	ClearlyNotB
2025-06-11 04:14:09	http://176.65.148.194/arm7	Offline	elf gafgyt ua-wget	ClearlyNotB

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2025-07-29 18:10:11	7e96667d031be19d1532d524678f0239b338a1bbfc2e995b67e423fd112e1dc5	elf		Mirai
2025-07-29 18:10:06	1bddecb58c4b1ef9e101d9d98f0c3a03a39ea068af1e5e4299a5f0c4b1fa8a88	elf		Mirai
2025-07-29 18:09:14	3bfaf324fd7b23b789435661488a0e7f8d677d3713d2c7be3c2a412d1c498c71	elf		Mirai
2025-07-29 18:09:10	8517d2bee75166456f9ca6ffec940af183937471ccbb82f6cfc71194fa287f4a	sh
2025-07-29 18:09:09	e780359eda5148ff97035e67609b1b23ce9438e1a64e0ff13e1c11c19efcf376	elf		Mirai
2025-07-29 18:09:09	8f82296ea161e73a0bd13fb9898e3504c8fe0a9f0da0a42b583cb795eb608293	elf		Mirai
2025-07-29 18:09:09	d5afae76deeca3c7fd5b61ea2625292e8cd40da5a27e8f56e2e4f48a9cc30010	elf		Mirai
2025-07-29 18:09:09	7839d44fe1d07b72e050d3872f0854018faf984c64559d2953704643e321750f	elf		Mirai
2025-07-29 18:09:09	3aca001c37f66284b2b02f77475997aba118a232a15eb40b8b56fa6fd3835a0e	elf		Mirai
2025-07-29 18:09:09	dd7c3bbef3aa989d5174ddbfe089ab7825336b898921c47e2384a0f01fa6181e	elf		Mirai
2025-07-29 18:09:09	9457321f471cb82f0862c85c90c0773522a679a29bc344a3d462d2447a47abb7	elf		Mirai
2025-07-29 18:09:09	bd875a3e759ca935566213e2a833d160b0df2fd3a0732b5cd555c76356db0735	elf		Mirai
2025-07-29 18:09:09	3a7e5e871ef067f319375b0ff6ee000abb80072ceeea9538f421a3c0c4c44e36	elf		Mirai
2025-07-29 18:09:09	4603abb327738ff16e0b627352bf907b7a21198e4f7c70d20d8f0564baa420ab	elf		Mirai
2025-07-29 18:09:09	bdceb942c7d54e4235920d08d60a97bfd476e3546112f1eec6deb43211353fff	elf		Mirai
2025-07-29 18:09:09	3729c4397cf08612bf15dc0f158c07c145044475f142ff6c110c899bf84115fa	elf		Mirai
2025-06-12 19:35:29	799c50cf8ac75ad8d837022d930f6134cfe889b6dd79da0679e1f42250ac0627	elf		Mirai
2025-06-11 21:11:10	92c7eaa5dfc642b157d74b869fca719dd72e8f0191b1d9ba2704b625688ce908	sh		Gafgyt
2025-06-11 21:09:09	4f2cbb52242909019bef43b0179728a39ff579f29aade60b6fb9f5843bb3f94d	elf		Gafgyt
2025-06-11 15:36:53	f2463e46daafd068a312aa241baa4622a0cb2bdd6ed45ef1ef645f76dc5042e4	elf		Gafgyt
2025-06-11 15:34:46	230585b224c070247f37ce6c1b0aa3405a4b4f79ca750bd1f309f1d06090869d	elf		Gafgyt
2025-06-11 15:34:26	36692e31cbb89413835b7132bd963a63cb36c541ba8db5cc4b8350b9473713bb	elf		Gafgyt
2025-06-11 15:33:08	84cf0ed553e21c39d0a8345e2eec29002b489df76f876ea5842be198c531e112	elf		Gafgyt
2025-06-11 15:32:42	e4be7d6c5c1d15011342508e5705f72de5c8772c2ebff218c02cf3ec79f29311	elf		Gafgyt
2025-06-11 15:30:39	d810aee1172b7189eb472fade4c7d24968a30bd7938013e4dab24a6827c2593a	elf		Gafgyt
2025-06-11 15:29:30	5f981f7299bc39cfbaf450a6a901e39ada313b106f1d7fed9e01bd41c72a4738	elf		Gafgyt
2025-06-11 15:27:35	ad72da442c717ff4d673c498b9a59ba1068eaaab35d787400b36b6a933d47dd3	elf		Gafgyt
2025-06-11 15:21:41	2d5abf4eb00cc6440b511b260e2db161218f6b40c5ee55e5ddb1b17b7154fcbe	elf		Gafgyt
2025-06-11 15:10:00	cc39e46e983daadb8c04c96be533cea97ef79966567ec625dead6c74bfd35ab5	elf		Gafgyt
2025-06-11 15:09:59	0b143f828aff7469a235aabc874ad0b27d09c131aa72d924a2edc738194943c9	elf		Gafgyt
2025-06-11 15:07:09	1264a8832da9e1c025dacbea5b61b98c10ae6b19e579b82382469cf57a9a27bc	elf		Gafgyt
2025-06-11 09:39:31	8af3eae553f67c95b57661eaf35e8f6c3da35739afafc7d9ef0fc580cbef4b44	elf		Gafgyt
2025-06-11 04:14:11	a04b49d9fc2906911a31d688d56c3c09598a919500abf58a5fa52b6944c822f6	elf		Gafgyt
2025-06-11 04:14:11	51eb27d29770557861808d04828ea53794342051ff2b3c1a47d1bb40997f2712	elf		Gafgyt
2025-06-11 04:14:11	2aaa0e9381e4cb82aea2b8fc6c5d09db77ec7a43e980ff42ce5cea01bfa6b053	elf		Gafgyt
2025-06-11 04:14:11	ad2ef2e78f40cf5159f79fc608a4f8c5db751db4f982e39c0980a40cebbb3fa4	elf		Gafgyt
2025-06-11 04:14:11	a737400844bc2929c8518cf566bc93aca44c11b2d7bb4c34fcfb6bebc2d9a6ec	elf		Gafgyt
2025-06-11 04:14:11	1906d70bfe605a9d2ee52cbbd6cca36422aa2ca375162122feab0b116043b78a	elf		Gafgyt
2025-06-11 04:14:11	afb0641b156c8f45751f7b0c5624702cdbcf6f90a3ae9bcdb9cecbe295b43634	elf		Gafgyt
2025-06-11 04:14:11	e88b8653feb8bf2bc16f24afae9ddc5c58ad089844b18eda0002f1ed4cbb02da	elf		Gafgyt
2025-06-11 04:14:11	99ed85c7fcffa2e1ddbb1b2a49527f11edc5ff959cbeedb2bade01808443f19f	elf		Gafgyt
2025-06-11 04:14:11	a580e2e811d2408084731d9da306e3fe2994143c5f79442c8084f4277a3497df	elf		Gafgyt
2025-06-11 04:14:10	e8f1aa847dac41d3b10d9f4c87158f77a9097533872367a3988cde205ced5652	elf		Gafgyt