URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	196.251.73.115
Firstseen:	2025-07-26 15:01:05 UTC
Total malware sites :	19
Online malware sites :	0 (0%)
Offline Malware sites :	19 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-07-29 07:22:05	http://196.251.73.115/HBTs/top1miku.sparc	Offline	elf opendir ua-wget	abuse_ch
2025-07-27 19:03:34	http://196.251.73.115/1.sh	Offline	mirai sh ua-wget	NDA0E
2025-07-26 20:40:11	http://196.251.73.115/c.sh	Offline	gafgyt sh ua-wget	NDA0E
2025-07-26 20:40:05	http://196.251.73.115/w.sh	Offline	gafgyt sh ua-wget	NDA0E
2025-07-26 20:40:05	http://196.251.73.115/wget.sh	Offline	gafgyt sh ua-wget	NDA0E
2025-07-26 17:55:35	http://196.251.73.115/HBTs/top1miku.sh4	Offline	elf gafgyt geofenced opendir ua-wget USA	botnetkiller
2025-07-26 17:55:35	http://196.251.73.115/HBTs/top1miku.powerpc-440fp	Offline	elf gafgyt geofenced opendir ua-wget USA	botnetkiller
2025-07-26 17:55:35	http://196.251.73.115/HBTs/top1miku.m68k	Offline	elf gafgyt geofenced opendir ua-wget USA	botnetkiller
2025-07-26 17:55:35	http://196.251.73.115/HBTs/top1miku.mipsel	Offline	elf geofenced mirai opendir ua-wget USA	botnetkiller
2025-07-26 17:55:35	http://196.251.73.115/HBTs/top1miku.mips	Offline	elf gafgyt geofenced opendir ua-wget USA	botnetkiller
2025-07-26 17:55:35	http://196.251.73.115/HBTs/top1miku.powerpc	Offline	elf gafgyt geofenced opendir ua-wget USA	botnetkiller
2025-07-26 17:54:40	http://196.251.73.115/HBTs/top1miku.armv7l	Offline	elf gafgyt geofenced opendir ua-wget USA	botnetkiller
2025-07-26 17:54:40	http://196.251.73.115/HBTs/top1miku.arc	Offline	elf gafgyt geofenced opendir ua-wget USA	botnetkiller
2025-07-26 17:54:40	http://196.251.73.115/HBTs/top1miku.armv4l	Offline	elf geofenced mirai opendir ua-wget USA	botnetkiller
2025-07-26 17:54:35	http://196.251.73.115/HBTs/top1miku.armv5l	Offline	elf gafgyt geofenced opendir ua-wget USA	botnetkiller
2025-07-26 17:54:35	http://196.251.73.115/HBTs/top1miku.i686	Offline	elf gafgyt geofenced opendir ua-wget USA	botnetkiller
2025-07-26 17:54:35	http://196.251.73.115/HBTs/top1miku.armv6l	Offline	elf geofenced mirai opendir ua-wget USA	botnetkiller
2025-07-26 15:01:35	http://196.251.73.115/HBTs/top1miku.x86_64	Offline	64-bit elf gafgyt geofenced honeypot ua-wget USA	threatquery
2025-07-26 15:01:35	http://196.251.73.115/HBTs/top1miku.i586	Offline	32-bit elf geofenced honeypot mirai ua-wget USA	threatquery

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-07-29 11:44:26	aa715a3d9f37994ec30942d6e12b58063b5715e69ce37890a08feb47cdce65c4	sh	Gafgyt
2025-07-28 22:46:38	555ba720db0587411c1b0417da105b95af9cb1d1bcfad0b819418b2e8ea81bd8	sh	Mirai
2025-07-28 22:43:10	eaf70e2d3d8c2c6e5bac50d349dd8950dbaf01bb856ded6ce511774e1fae25d8	sh	Gafgyt
2025-07-28 17:22:31	fc3ce236af095224f7922f9260cecb17b4b7a19d55bf846b6af5e02a50e5b65d	sh	Gafgyt
2025-07-26 18:04:13	66dcb48a513212f97ea2d5854a75684e45205ef7df570537b6dccf9a50f884fe	elf	Gafgyt
2025-07-26 18:04:02	c6d6cd1f14b543ce376cb43f767526b2ee56006597b50d814e29d91ea87bd473	elf	Mirai
2025-07-26 18:02:30	4e30c23211a643f52b7a509c8f9697a5d2b48a8fe84d02141b1be02ee4206c43	elf	Gafgyt
2025-07-26 18:02:28	534ae1dae832cc0346b2668f297d6607146a284d52911745f66287e221e8eb6a	elf	Gafgyt
2025-07-26 18:02:25	0a5518cc7853e55a323b28b5f624b5fafd9117579b1aa146156673d5119f7a9b	elf	Gafgyt
2025-07-26 18:02:21	4effee870aa7a9d00e6ee7e91507f9baa7cc61f2a73a0ba2ed3313c5d1a1ded7	elf	Gafgyt
2025-07-26 18:02:17	a45df75f26e340d38db002bb1efffbf223090e958d3c89b302e8e3296a70e4a5	elf	Gafgyt
2025-07-26 18:02:12	ab3684d9e81eb52ac6d2de5b6cfb2c555ee9f4d281e98d21c7afad6fc7c86d60	elf	Gafgyt
2025-07-26 18:02:09	026e03188789384e1d0de10c3c6600c04fb3c9980723537f46b2021023297396	elf	Gafgyt
2025-07-26 18:02:00	e3dbf697428e94539ead3bf7be9031446c413d90c23fca0189322902913b9385	elf	Mirai
2025-07-26 18:01:58	e5473a4d57b8ddba7aaf61c94087164f486536eeb92937315d50b11285fcf745	elf	Mirai
2025-07-26 18:01:55	3c50537e42808274d55be2ecc86d0f1a500b4035ab3909aecef40674b5e17376	elf	Gafgyt
2025-07-26 18:01:52	24fceae9a3d9a561b077832522cbb11fc839d32c89b2019cb06374c4a52f269a	elf	Gafgyt
2025-07-26 18:00:31	68ba5ec8df1009b7df49156b75101bd0cb995ec7c3f395e89fcaf4e0ffa021e0	elf	Mirai