URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	202.67.98.13
Firstseen:	2020-09-15 07:35:16 UTC
Total malware sites :	20
Online malware sites :	0 (0%)
Offline Malware sites :	20 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-09-15 07:35:21	202.67.98.13	13.98-67-202.dart.iprimus.net.au	Not listed	AS9443 VOCUS-RETAIL-AU	AU	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2020-11-22 11:55:07	http://202.67.98.13:34288/bin.sh	Offline	32-bit elf mips	geenensp
2020-11-19 20:20:07	http://202.67.98.13:34288/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2020-11-09 11:58:10	http://202.67.98.13:40227/i	Offline	32-bit elf mips	geenensp
2020-11-04 08:07:06	http://202.67.98.13:40227/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2020-10-06 17:51:33	http://202.67.98.13:53551/Mozi.a	Offline	elf Mozi	lrz_urlhaus
2020-10-05 19:04:33	http://202.67.98.13:53551/i	Offline	32-bit elf mips	geenensp
2020-10-05 11:59:32	http://202.67.98.13:53551/bin.sh	Offline	32-bit elf mips	geenensp
2020-10-03 13:39:06	http://202.67.98.13:52552/i	Offline	32-bit elf mips	geenensp
2020-09-28 14:21:06	http://202.67.98.13:40575/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2020-09-23 07:54:08	http://202.67.98.13:55405/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2020-09-23 04:45:07	http://202.67.98.13:55405/i	Offline	32-bit elf mips	geenensp
2020-09-23 04:02:08	http://202.67.98.13:55405/bin.sh	Offline	32-bit elf mips	geenensp
2020-09-22 09:32:11	http://202.67.98.13:37898/i	Offline	32-bit elf mips	geenensp
2020-09-22 06:38:19	http://202.67.98.13:37898/Mozi.a	Offline	elf Mozi	lrz_urlhaus
2020-09-18 15:05:12	http://202.67.98.13:52458/i	Offline	32-bit elf mips	geenensp
2020-09-18 14:53:06	http://202.67.98.13:52458/bin.sh	Offline	32-bit elf mips	geenensp
2020-09-17 17:21:06	http://202.67.98.13:52458/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2020-09-15 22:39:11	http://202.67.98.13:44413/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2020-09-15 10:54:31	http://202.67.98.13:44413/i	Offline	32-bit elf mips	geenensp
2020-09-15 07:35:21	http://202.67.98.13:44413/bin.sh	Offline	32-bit elf mips	geenensp

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type
2020-11-22 11:55:07	b5cf68c7cb5bb2d21d60bf6654926f61566d95bfd7c9f9e182d032f1da5b4605	elf
2020-11-19 20:20:07	b5cf68c7cb5bb2d21d60bf6654926f61566d95bfd7c9f9e182d032f1da5b4605	elf
2020-11-09 11:58:10	b5cf68c7cb5bb2d21d60bf6654926f61566d95bfd7c9f9e182d032f1da5b4605	elf
2020-11-04 08:07:06	b5cf68c7cb5bb2d21d60bf6654926f61566d95bfd7c9f9e182d032f1da5b4605	elf
2020-10-06 18:17:43	b5cf68c7cb5bb2d21d60bf6654926f61566d95bfd7c9f9e182d032f1da5b4605	elf
2020-10-05 19:14:01	b5cf68c7cb5bb2d21d60bf6654926f61566d95bfd7c9f9e182d032f1da5b4605	elf
2020-10-05 12:30:07	b5cf68c7cb5bb2d21d60bf6654926f61566d95bfd7c9f9e182d032f1da5b4605	elf
2020-10-03 13:39:06	b5cf68c7cb5bb2d21d60bf6654926f61566d95bfd7c9f9e182d032f1da5b4605	elf
2020-09-28 14:21:06	c672798dca67f796972b42ad0c89e25d589d2e70eb41892d26adbb6a79f63887	elf
2020-09-23 07:54:08	2e4506802aedea2e6d53910dfb296323be6620ac08c4b799a879eace5923a7b6	elf
2020-09-23 04:45:07	2e4506802aedea2e6d53910dfb296323be6620ac08c4b799a879eace5923a7b6	elf
2020-09-23 04:02:08	2e4506802aedea2e6d53910dfb296323be6620ac08c4b799a879eace5923a7b6	elf
2020-09-22 09:32:11	c672798dca67f796972b42ad0c89e25d589d2e70eb41892d26adbb6a79f63887	elf
2020-09-22 06:38:19	c672798dca67f796972b42ad0c89e25d589d2e70eb41892d26adbb6a79f63887	elf
2020-09-18 15:05:12	c672798dca67f796972b42ad0c89e25d589d2e70eb41892d26adbb6a79f63887	elf
2020-09-18 14:53:06	c672798dca67f796972b42ad0c89e25d589d2e70eb41892d26adbb6a79f63887	elf
2020-09-17 17:21:06	c672798dca67f796972b42ad0c89e25d589d2e70eb41892d26adbb6a79f63887	elf
2020-09-15 22:39:11	c672798dca67f796972b42ad0c89e25d589d2e70eb41892d26adbb6a79f63887	elf
2020-09-15 10:54:31	c672798dca67f796972b42ad0c89e25d589d2e70eb41892d26adbb6a79f63887	elf
2020-09-15 07:35:21	c672798dca67f796972b42ad0c89e25d589d2e70eb41892d26adbb6a79f63887	elf