URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	202.61.139.34
Firstseen:	2025-09-27 21:16:04 UTC
Total malware sites :	50
Online malware sites :	12 (24%)
Offline Malware sites :	38 (76%)
Newest active malware site :	2026-01-15 18:05:07 UTC
Oldest active malware site :	2026-01-15 18:03:06 UTC (Age: 7 hours, 38 minutes)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-09-27 21:16:22	202.61.139.34		SBL669380	AS152194 CTGSERVERLIMITED-AS-AP	SG	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2026-01-15 18:05:07	http://202.61.139.34:65532/webshell.war	Online	huntio opendir ua-wget	BlinkzSec
2026-01-15 18:04:15	http://202.61.139.34:65532/dbs/linux.sh	Offline	huntio opendir sh ua-wget	BlinkzSec
2026-01-15 18:03:18	http://202.61.139.34:65532/linux_mipsel	Online	huntio Kaiji opendir ua-wget	BlinkzSec
2026-01-15 18:03:14	http://202.61.139.34:65532/linux_amd64	Online	huntio Kaiji opendir ua-wget	BlinkzSec
2026-01-15 18:03:14	http://202.61.139.34:65532/linux_arm7	Online	huntio Kaiji opendir ua-wget	BlinkzSec
2026-01-15 18:03:14	http://202.61.139.34:65532/linux_arm5	Online	huntio Kaiji opendir ua-wget	BlinkzSec
2026-01-15 18:03:14	http://202.61.139.34:65532/linux_mips64el	Online	huntio Kaiji opendir ua-wget	BlinkzSec
2026-01-15 18:03:14	http://202.61.139.34:65532/linux_arm6	Online	huntio Kaiji opendir ua-wget	BlinkzSec
2026-01-15 18:03:14	http://202.61.139.34:65532/linux_mips64	Online	huntio Kaiji opendir ua-wget	BlinkzSec
2026-01-15 18:03:14	http://202.61.139.34:65532/linux_aarch64	Online	huntio Kaiji opendir ua-wget	BlinkzSec
2026-01-15 18:03:12	http://202.61.139.34:65532/linux_386	Online	huntio Kaiji opendir ua-wget	BlinkzSec
2026-01-15 18:03:07	http://202.61.139.34:65532/linux_mips	Online	huntio Kaiji opendir ua-wget	BlinkzSec
2026-01-15 18:03:06	http://202.61.139.34:65532/xxa	Online	huntio opendir ua-wget	BlinkzSec
2025-09-28 13:50:23	http://202.61.139.34:65120/win.exe	Offline	Chaos exe opendir	botnetkiller
2025-09-28 13:50:13	http://202.61.139.34:65120/download.sh	Offline	geofenced opendir sh ua-wget USA	botnetkiller
2025-09-28 13:46:42	http://202.61.139.34:65120/linux_mips64	Offline	elf geofenced Kaiji opendir ua-wget USA	botnetkiller
2025-09-28 13:46:42	http://202.61.139.34:65120/linux_mips64_softfloat	Offline	elf geofenced Kaiji opendir ua-wget USA	botnetkiller
2025-09-28 13:46:42	http://202.61.139.34:65120/linux_mipsel_softfloat	Offline	elf geofenced Kaiji opendir ua-wget USA	botnetkiller
2025-09-28 13:46:42	http://202.61.139.34:65120/linux_ppc64	Offline	elf geofenced Kaiji opendir ua-wget USA	botnetkiller
2025-09-28 13:46:42	http://202.61.139.34:65120/linux_mipsel	Offline	elf geofenced Kaiji opendir ua-wget USA	botnetkiller
2025-09-28 13:46:42	http://202.61.139.34:65120/linux_arm5	Offline	elf geofenced Kaiji opendir ua-wget USA	botnetkiller
2025-09-28 13:46:42	http://202.61.139.34:65120/linux_arm64	Offline	elf geofenced Kaiji opendir ua-wget USA	botnetkiller
2025-09-28 13:46:41	http://202.61.139.34:65120/linux_mips_softfloat	Offline	elf geofenced Kaiji opendir ua-wget USA	botnetkiller
2025-09-28 13:46:41	http://202.61.139.34:65120/linux_mips	Offline	elf geofenced Kaiji opendir ua-wget USA	botnetkiller
2025-09-28 13:46:41	http://202.61.139.34:65120/linux_ppc64el	Offline	elf geofenced Kaiji opendir ua-wget USA	botnetkiller
2025-09-28 13:46:41	http://202.61.139.34:65120/linux_arm6	Offline	elf geofenced Kaiji opendir ua-wget USA	botnetkiller
2025-09-28 13:46:41	http://202.61.139.34:65120/linux_arm7	Offline	elf geofenced Kaiji opendir ua-wget USA	botnetkiller
2025-09-28 13:46:41	http://202.61.139.34:65120/linux_386	Offline	elf geofenced Kaiji opendir ua-wget USA	botnetkiller
2025-09-28 13:46:41	http://202.61.139.34:65120/linux_amd64	Offline	elf geofenced Kaiji opendir ua-wget USA	botnetkiller
2025-09-28 13:46:41	http://202.61.139.34:65120/linux_mips64el_softf...	Offline	elf geofenced Kaiji opendir ua-wget USA	botnetkiller
2025-09-28 13:46:41	http://202.61.139.34:65120/linux_mips64el	Offline	elf geofenced Kaiji opendir ua-wget USA	botnetkiller
2025-09-28 06:32:12	http://202.61.139.34:65512/win.exe	Offline	exe opendir	botnetkiller
2025-09-28 06:32:09	http://202.61.139.34:65512/linux_mips64el_softf...	Offline	elf geofenced opendir ua-wget USA	botnetkiller
2025-09-28 06:32:09	http://202.61.139.34:65512/linux_mips64el	Offline	elf geofenced opendir ua-wget USA	botnetkiller
2025-09-28 06:32:09	http://202.61.139.34:65512/linux_arm5	Offline	elf geofenced opendir ua-wget USA	botnetkiller
2025-09-28 06:32:09	http://202.61.139.34:65512/linux_amd64	Offline	elf geofenced opendir ua-wget USA	botnetkiller
2025-09-28 06:32:09	http://202.61.139.34:65512/download.sh	Offline	geofenced opendir sh ua-wget USA	botnetkiller
2025-09-28 06:32:09	http://202.61.139.34:65512/linux_mips	Offline	elf geofenced opendir ua-wget USA	botnetkiller
2025-09-28 06:32:09	http://202.61.139.34:65512/linux_ppc64	Offline	elf geofenced opendir ua-wget USA	botnetkiller
2025-09-28 06:32:09	http://202.61.139.34:65512/linux_arm6	Offline	elf geofenced opendir ua-wget USA	botnetkiller
2025-09-28 06:32:09	http://202.61.139.34:65512/linux_386	Offline	elf geofenced opendir ua-wget USA	botnetkiller
2025-09-28 06:32:09	http://202.61.139.34:65512/linux_mips64_softfloat	Offline	elf geofenced opendir ua-wget USA	botnetkiller
2025-09-28 06:32:09	http://202.61.139.34:65512/linux_mipsel_softfloat	Offline	elf geofenced opendir ua-wget USA	botnetkiller
2025-09-28 06:32:09	http://202.61.139.34:65512/linux_arm7	Offline	elf geofenced opendir ua-wget USA	botnetkiller
2025-09-28 06:32:09	http://202.61.139.34:65512/linux_ppc64el	Offline	elf geofenced opendir ua-wget USA	botnetkiller
2025-09-28 06:32:09	http://202.61.139.34:65512/linux_mipsel	Offline	elf geofenced opendir ua-wget USA	botnetkiller
2025-09-28 06:32:08	http://202.61.139.34:65512/linux_mips64	Offline	elf geofenced opendir ua-wget USA	botnetkiller
2025-09-28 06:32:08	http://202.61.139.34:65512/linux_arm64	Offline	elf geofenced opendir ua-wget USA	botnetkiller
2025-09-28 06:32:08	http://202.61.139.34:65512/linux_mips_softfloat	Offline	elf geofenced opendir ua-wget USA	botnetkiller
2025-09-27 21:16:22	http://202.61.139.34:65512/bin.x86	Offline	64-bit elf Kaiji x86-64	geenensp

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2026-01-15 18:05:07	7df18dab85d09ddfd38e71fbb8237e2601117983b589e00355df9520fb49191a	unknown
2026-01-15 18:03:18	c7c98a5ba966a7ff410bee89fcb3c3f4088c17dc4b1dc0ec5382407b7c4e1f41	elf	Kaiji
2026-01-15 18:03:14	4a97b1c545ae2f9f5e3b5aad2db93a763aaeed9678ef6fbf3d5149f912a31e93	elf	Kaiji
2026-01-15 18:03:14	3d028580601e9b614ed5074741ad0756c9c383e353924c3a023dd78e867e7f92	elf	Kaiji
2026-01-15 18:03:14	cb37d6a32f360d1e79907595a2b0d00916cb3e7e306dc320711b3e0019d991d6	elf	Kaiji
2026-01-15 18:03:14	12f65318aa3316ad18c0a9e879f1171fbcfee23d4717e5925a12867e42b9f589	elf	Kaiji
2026-01-15 18:03:14	4134fb3554e6dfa82d4822886968f50a008bb66b46f54f3a28dfd0ce167b1283	elf	Kaiji
2026-01-15 18:03:14	eaf2f72b30f65be112e05c6ab5d4cd3df59155b97ac4f2e8f4bc589e966ae6c3	elf	Kaiji
2026-01-15 18:03:13	d77b6eeb506ebd49b1f348eafd01f545cf41df13641a7417bcd8f34bdaa239d6	elf	Kaiji
2026-01-15 18:03:12	08b1ca7ff461d7931cdcbdeb71a22fd67bde07b93607bf2574b7cd666a93ed30	elf	Kaiji
2026-01-15 18:03:07	ab4525f80ffbdc65f127760d94ce05b9296a6c62f63f62ff6fac1a922a0a1a21	elf	Kaiji
2026-01-15 18:03:06	1d971ecb535f66b367264556aa031706ec71504e60258d4d35640ade33bcf170	elf
2025-10-02 03:55:18	eaf2f72b30f65be112e05c6ab5d4cd3df59155b97ac4f2e8f4bc589e966ae6c3	elf	Kaiji
2025-09-28 14:06:36	08310988e36012cabcfbb00d1aa0790117ff5f6d60572d974a452acb3ad2b400	txt
2025-09-28 13:50:23	19b2d144baa5343de7ffad9d60724b7af4dc612e2e456c7a85382adfb4f24e54	exe	Ransomware.Chaos
2025-09-28 13:46:42	6cb332c4248a7e6fdbffd4c36e3afa3f93a561f0f4836b5af9cfead5abd83cad	elf	Kaiji
2025-09-28 13:46:42	6cb332c4248a7e6fdbffd4c36e3afa3f93a561f0f4836b5af9cfead5abd83cad	elf	Kaiji
2025-09-28 13:46:42	b06221aab526dfe8fb1b5233cbc62d6aa5b253c3f9aa2d7bceed8641405a4e06	elf	Kaiji
2025-09-28 13:46:42	b760ca2501fce0675753455ba5bf36f4518b253ee6617a2b28ad6f9c0adefcf9	elf	Kaiji
2025-09-28 13:46:42	59d04334276a73bffdc8108362512e816b98991c8f2d66468fb2b7448dd46aa1	elf	Kaiji
2025-09-28 13:46:42	9f9a1a829a4e61207cf6358d1c7fd9055204840a7be07ea6844d2aaf7913db6d	elf	Kaiji
2025-09-28 13:46:41	0f126026a9a676a84ba2b93f152d7646626ad4b8e984025969bbd5c60a274775	elf	Kaiji
2025-09-28 13:46:41	1c1046e173b4584a76869f3d9132dbb034acecda3837b23781f09c2678787a11	elf	Kaiji
2025-09-28 13:46:41	a039d85be5679970d2af85f662c5018f6b51e47d0a7fc146d16d72cd525692ad	elf	Kaiji
2025-09-28 13:46:41	4c93ed6a555c9202b0ff263607a1c39d8e2abe211c57b5f9d4acc80c9dc285c1	elf	Kaiji
2025-09-28 13:46:41	00adc960a4c5b25828f84d45e8225c08e66cb9315cb745702b3007e1f7bb1a80	elf	Kaiji
2025-09-28 13:46:41	5079d694a0165fa0ffe864e00bc63619e4a77eaeb9652cf63a89dfee59887abd	elf	Kaiji
2025-09-28 13:46:41	8a9d002bbce07fd74f8f9bba8196f84c348b30d2c1b965cdddbc1f8bee359790	elf	Kaiji
2025-09-28 13:46:41	fb58552f2e41f83d38518142997eab68d9f1068b597ad43549ab44f9b2621af5	elf	Kaiji
2025-09-28 13:46:41	6b2d4b72f1e5302f8db2683de4c2406c1057d74c2412fba669e4c5dbfd14c198	elf	Kaiji
2025-09-28 13:46:41	6b2d4b72f1e5302f8db2683de4c2406c1057d74c2412fba669e4c5dbfd14c198	elf	Kaiji
2025-09-27 21:16:21	fb58552f2e41f83d38518142997eab68d9f1068b597ad43549ab44f9b2621af5	elf	Kaiji