URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 205.185.124.206
Firstseen:2025-06-09 16:12:02 UTC
Total malware sites :14
Online malware sites :0 (0%)
Offline Malware sites :14 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-06-09 16:12:14 205.185.124.206Not listedAS53667 PONYNET- USyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2025-06-10 13:49:04http://205.185.124.206/scarOfflineelf ua-wget NDA0E
2025-06-10 13:49:04http://205.185.124.206/dcOfflineelf ua-wget NDA0E
2025-06-10 13:47:06http://205.185.124.206/arm61Offlineelf gafgyt ext ua-wget NDA0E
2025-06-10 13:47:05http://205.185.124.206/sex.shOfflinegafgyt ext sh ua-wget NDA0E
2025-06-09 16:12:14http://205.185.124.206/586Offlineelf gafgyt ext ua-wget NDA0E
2025-06-09 16:12:14http://205.185.124.206/mipsOfflineelf gafgyt ext ua-wget NDA0E
2025-06-09 16:12:14http://205.185.124.206/dssOfflineelf gafgyt ext ua-wget NDA0E
2025-06-09 16:12:14http://205.185.124.206/mipselOfflineelf gafgyt ext ua-wget NDA0E
2025-06-09 16:12:14http://205.185.124.206/m68kOfflineelf gafgyt ext ua-wget NDA0E
2025-06-09 16:12:14http://205.185.124.206/sh4Offlineelf gafgyt ext ua-wget NDA0E
2025-06-09 16:12:14http://205.185.124.206/i686Offlineelf gafgyt ext ua-wget NDA0E
2025-06-09 16:12:14http://205.185.124.206/x86Offlineelf gafgyt ext ua-wget NDA0E
2025-06-09 16:12:14http://205.185.124.206/ppcOfflineelf gafgyt ext ua-wget NDA0E
2025-06-09 16:12:14http://205.185.124.206/coOfflineelf gafgyt ext ua-wget NDA0E

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-06-16 17:28:0543a9a4285640214c573e393dcfc47d1060a7e9eccaf3f2f441ae5ec127a698bdelfGafgyt
2025-06-16 17:16:079c82e0f493cad4a98afee297cec21e67c5274712a840bf1d98bccba983dc5eceelfGafgyt
2025-06-16 17:12:08ff0d431529bc6108190aaa10bb99e12e8f5c823b318a397cc39273c43ff77a49elfGafgyt
2025-06-16 16:56:52bb2e1808d2391cef4cb85e06c35df52ae60e20ef95ea0410e7683d9058752245elfGafgyt
2025-06-16 16:45:57165888614bf0e954ab298cb35285f2d74b3daeb07b851f28fa84de4ce22bb97eelfGafgyt
2025-06-16 16:28:56fb40446caa9a65a3aff4407e682cbb0547e0e39fa29244c2d2dac734933fb0e8elfGafgyt
2025-06-16 16:28:52fcb31c49e5999e34641413c6789b8fb018deb257059f36262a73b145c3632577elfGafgyt
2025-06-16 16:27:37ca2db102f55e8c12aff82755030667628ad8224b56dfa337d0a535bec3640674elfGafgyt
2025-06-16 16:24:45c313b77160ea4f1aa126711d15a5075a505c0881b000345bb90c971bf9eb72b9elfGafgyt
2025-06-16 16:24:33f7a0ccfabba299709e2fdb691b56de355a9f244c6cdf74a86617ba3d6710758belfGafgyt
2025-06-16 16:19:59cdd96a30176d5b9a885411ce5717e9c9df0d89ac2033d5e3aed9e647b378574delfGafgyt
2025-06-15 16:47:416a6ae704162185aeddb608b1baba9c882b81844c8f932fb1de3ae26c2400ac88elfGafgyt
2025-06-15 16:23:33624bebf8c9bf161e377c60dc9a08fd17646d662bf5ce5d72e84b08865e27fb31elfGafgyt
2025-06-15 15:37:26f7766ccdfeb4cb15a753e8ad799087977f09fdf62986930bf59895fe03e507dfelfGafgyt
2025-06-15 02:48:554f2a0bbb014f2ae4aeae4eef652d7df506b275bc329eb202e821ccf0abf1fb12elfGafgyt
2025-06-14 17:45:33e25d349dc027bed46375c72260725fa18f255e0f1a25c837e8da9d4ebe480bf5elfGafgyt
2025-06-14 14:13:180933c214d332f11511325b41101645b217558878643efa05b23c0825d93d41e0elfGafgyt
2025-06-14 05:26:00b40a3b329170092d7dfafd579001d6178f597bc1baeaa9ff9f95b37292885b4aelfGafgyt
2025-06-14 03:25:324bb3a7c2a9df0aba02f953646d2df4f01395dc049803e574ea7d3eb451f4ef87elfGafgyt
2025-06-13 22:50:23000b6a80ceef15ed7da74385c9ac6a0cbccc0352848dc8b68912d32ed70103daelfGafgyt
2025-06-13 18:11:1702a17d8359a2f16564a08c385b2bda73f4f9ad849cdb20cc30239f4e19e6ca89elfGafgyt
2025-06-13 17:51:414fad9dd42d3e60fa5ec13f3dabc6453294ed7724d4b726d59bd931758515c8b7elfGafgyt
2025-06-10 13:47:06cac5cff36f70ba090c4a3813a637753cc1df574bac9e77063d1793fdb9626bb3elfGafgyt
2025-06-10 13:47:051ebf139fe8271dd0c5ee67ae22e4d4269115508c089fb2f31143c3778ae3b193shGafgyt
2025-06-09 16:12:139ebfaad779077adb8fd3842ea4bf07a817858d675ce3ea1f6dc7231265f90444elfGafgyt
2025-06-09 16:12:13c9a944bf6439e5b8fd51684d714585d746620799841bd1edadef8c11cbf64ff4elfGafgyt
2025-06-09 16:12:134153c92003eb618c248a36e6717d4f9e61e9b6678e0abd0d9d1a2ddb98cd04feelfGafgyt
2025-06-09 16:12:13a16a028ad203ac4b0befac274acf85188b35ff384f8523491eff21215baaa6f3elfGafgyt
2025-06-09 16:12:136013868712b5796d1abc917c8ef745f2af6dcb80324bc37c1485af516e03b3daelfGafgyt
2025-06-09 16:12:136c2ee8d063cef58ee749b49720bedd2118caf76814984543f7d597a75a89aaa5elfGafgyt
2025-06-09 16:12:1376a75091cca4fb6fdcd7be35483b87a410018fdee0b7b18f67e6be47d398bb8delfGafgyt
2025-06-09 16:12:1379607790181a99872404d10746f3a1af56e35e765cf7b5f5cc6c6e1f98e5c98belfGafgyt
2025-06-09 16:12:13c3199f69756b04d884b11b603493d351c45882996ef157eda8afff314a56008aelfGafgyt
2025-06-09 16:12:131e39836f4c38ba0321f719952efebaa7b58ffa3c878409221543c5567f194f46elfGafgyt