URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 212.64.215.71
Firstseen:2024-12-25 12:39:04 UTC
Total malware sites :13
Online malware sites :0 (0%)
Offline Malware sites :13 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2024-12-25 12:39:06 212.64.215.71motif-controls.blogusajobs.comNot listedAS197450 SUNUCUN- TRyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2025-01-03 06:47:05http://212.64.215.71/spcOfflineelf gafgyt ext NDA0E
2025-01-03 06:47:05http://212.64.215.71/x86Offlineelf gafgyt ext NDA0E
2025-01-03 06:47:05http://212.64.215.71/arm5Offlineelf gafgyt ext NDA0E
2025-01-03 06:47:05http://212.64.215.71/sh4Offlineelf gafgyt ext NDA0E
2025-01-03 06:47:05http://212.64.215.71/mipsOfflineelf gafgyt ext NDA0E
2025-01-03 06:47:05http://212.64.215.71/ipcOfflineelf gafgyt ext NDA0E
2025-01-03 06:46:06http://212.64.215.71/arm4Offlineelf mirai ext NDA0E
2025-01-03 06:46:06http://212.64.215.71/arm6Offlineelf gafgyt ext NDA0E
2025-01-03 06:46:06http://212.64.215.71/ppcOfflineelf gafgyt ext NDA0E
2025-01-03 06:46:06http://212.64.215.71/mpslOfflineelf gafgyt ext NDA0E
2025-01-03 06:46:06http://212.64.215.71/m68kOfflineelf gafgyt ext NDA0E
2025-01-03 06:41:04http://212.64.215.71/arm7Offlineelf gafgyt ext mirai ext NDA0E
2024-12-25 12:39:06http://212.64.215.71/armOffline32-bit elf gafgyt ext mirai ext threatquery

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-01-06 03:01:08fc6fbc9d13e3b343ddb18350039e36cfaaf8aeda58d36bdedd1d1ce3402b40e1elfMirai
2025-01-04 18:16:125df4e0a3d22be0f4343217c58255d662ec1409c35d183bac4681d77d1e7f488celfMirai
2025-01-04 16:21:244fff6cad45bd8353368d894d2e849cfa09d6eb10e69a204217bc1fa5714cd7b5elfMirai
2025-01-03 06:47:0528dedd67eaeeb24ec4663e310d64bcac20becae4bf07b6425b49b245565b0fd6shGafgyt
2025-01-03 06:47:05afe1cc80e06d92bbe16070b220541a5edad0a767c9cf8aa566dc914a6ab66d60elfGafgyt
2025-01-03 06:47:0591aac3d740cd3663359d72073f53d1a4141fbe918f0670983b9bf1882d6c4ddfelfGafgyt
2025-01-03 06:47:0569b3cda867879e6e8fa8ab62402473bfb1e1fba08b9ebf93225c71e7050abb4eelfGafgyt
2025-01-03 06:47:056a61f3a96b35558028e393e6b15831d8b7d06345d14ad00a7505ba7a01b6b72eelfGafgyt
2025-01-03 06:47:053554518487f1532e6fe063c81c09f8a90bc057b92d3bcfc819f73f05d056fb3delfGafgyt
2025-01-03 06:46:06d174a81ab6b3be9fbb71e392d12946327410d71a55fd7e974c0baf94502863ccelfGafgyt
2025-01-03 06:46:06e281f68cb29ddaa918a627dfd49c903b25d7a3fd181a01d654e5025d3a9bd91felfGafgyt
2025-01-03 06:46:06915dccaa387bdf81c0f3d87d150b7f626208ddbaf09316f06cf16574bbfd5f94elfGafgyt
2025-01-03 06:46:0638868d291357511a937be546a172986f7625ff5f309cfec32f76e9897a76347celfGafgyt
2025-01-03 06:46:065cd25892f0b330577ff4b00c2dd75a0787ddc7b7b97999c648f95c806a6d2fcfelfMirai
2025-01-03 06:41:04c2b15fdd2e7a3a4e6f191fe4d416e0b2a0e3e3e51717df672b69db7d5a338d04elfGafgyt
2025-01-02 21:33:078eaf1818a59d9576d5918e5171718fff1b35ae1741ad93ccf23bab56de334577elfGafgyt
2025-01-02 20:04:37bf82b79ca4803adef7ce4d2456d6d3adb04a867fedebd07de87feeb8d5761e11elfGafgyt
2024-12-25 12:39:061b44454ddbab75b15db0a00ea6c26878732eda93ffb648cd9db334e80c249308elfGafgyt