URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2024-04-09 23:21:06	38.6.224.248		Not listed	AS398478 PEG-HK	US	yes

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-07-05 09:48:04	http://38.6.224.248/av.sh	Offline	bash mirai Mozi ua-wget	Ash_XSS_1
2024-04-14 20:26:04	http://38.6.224.248/arm6	Offline	elf mirai	tolisec
2024-04-14 20:25:09	http://38.6.224.248/arm7	Offline	elf gafgyt	tolisec
2024-04-14 20:25:09	http://38.6.224.248/mips	Offline	elf gafgyt	tolisec
2024-04-14 20:25:08	http://38.6.224.248/arm4	Offline	elf gafgyt	tolisec
2024-04-14 20:25:08	http://38.6.224.248/arm5	Offline	elf mirai	tolisec
2024-04-14 20:25:08	http://38.6.224.248/mpsl	Offline	elf gafgyt	tolisec
2024-04-14 20:25:08	http://38.6.224.248/x86_64	Offline	elf gafgyt	tolisec
2024-04-11 08:39:07	http://38.6.224.248/skid.mips	Offline	elf gafgyt ua-wget	abus3reports
2024-04-11 08:39:06	http://38.6.224.248/skid.arm5	Offline	elf mirai ua-wget	abus3reports
2024-04-11 08:39:06	http://38.6.224.248/skid.mpsl	Offline	elf gafgyt ua-wget	abus3reports
2024-04-11 08:39:06	http://38.6.224.248/skid.arm	Offline	elf gafgyt mirai ua-wget	abus3reports
2024-04-11 08:39:06	http://38.6.224.248/skid.arm7	Offline	elf gafgyt ua-wget	abus3reports
2024-04-11 08:39:05	http://38.6.224.248/skid.arm6	Offline	elf mirai ua-wget	abus3reports
2024-04-09 23:21:06	http://38.6.224.248/skid.x86	Offline	64-bit elf gafgyt x86-64	geenensp

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2024-04-14 20:26:04	7dd245dd604fe8283fc92e44922ffda2e2982ce509ea92450ca9056b82914b53	elf		Mirai
2024-04-14 20:25:09	cfed0b36678bddecb63cdbc437860dcd72a66eb3c3c5a169d6d7e0bbc76bac4b	elf		Gafgyt
2024-04-14 20:25:09	f4f0dec8ac9d05b31a60e8b079a482384867bbcbb95f51241cf18399c4a5924f	elf		Gafgyt
2024-04-14 20:25:08	ddacceb8a4db5c8ebf364da501e0a06c67a5a839aa27e24e5d7f1db4bb8d8c35	elf		Gafgyt
2024-04-14 20:25:08	2c1bc8d8a760fea6b05d9d139efce9bd1ef1992bffbc805527f45888d4add17e	elf		Gafgyt
2024-04-14 20:25:08	c3b9ffca2b7f5c9fdefb39d6c13d657769ec140efd4513842dbc68adbad99efa	elf		Mirai
2024-04-14 20:25:08	3d66e6334b96b782b295b25ec8dbe4417a5b3c435e6cba8542be739b7be7a180	elf		Gafgyt
2024-04-14 03:06:15	f4f0dec8ac9d05b31a60e8b079a482384867bbcbb95f51241cf18399c4a5924f	elf		Gafgyt
2024-04-14 03:04:17	c3b9ffca2b7f5c9fdefb39d6c13d657769ec140efd4513842dbc68adbad99efa	elf		Mirai
2024-04-14 03:01:09	cfed0b36678bddecb63cdbc437860dcd72a66eb3c3c5a169d6d7e0bbc76bac4b	elf		Gafgyt
2024-04-14 02:53:29	2c1bc8d8a760fea6b05d9d139efce9bd1ef1992bffbc805527f45888d4add17e	elf		Gafgyt
2024-04-14 02:53:18	c9fe390890a8b0586e8d5ac410685a7c4ed147858b10eb75459fa1afca8dc84d	elf
2024-04-14 02:50:17	3d66e6334b96b782b295b25ec8dbe4417a5b3c435e6cba8542be739b7be7a180	elf		Gafgyt
2024-04-14 02:43:31	7dd245dd604fe8283fc92e44922ffda2e2982ce509ea92450ca9056b82914b53	elf		Mirai
2024-04-14 01:39:17	218c4fbea4b1c0ec5ef2e7304413c19e2704af5ecd5509a8745fdd4e09b468fb	elf
2024-04-14 01:28:08	2c365aded5c3f7422c72261c678b42edb2311ac9b2c0b9af444e5b3c2d734bd0	elf
2024-04-14 01:25:38	40b14553bb53fc75aba15377ad45ed07eb4baa8e8cd1809e9031b74d844a686d	elf
2024-04-14 01:24:23	8939ab97ce91dcb3609d4add2e7417d232c8f9e9c9546a8828ebc36083650f76	elf
2024-04-14 01:23:17	e7cfe17c6318223e7557a3f170c9ce332a3b8cfdf368c6a6bb9f82f63f8b6f97	elf
2024-04-14 01:22:29	bc4da42c12b2a86cd2421379f331f2ae014077dcfbbe08c6dcfafd6ecc4af9f4	elf
2024-04-14 01:22:00	d251f5b37d3bfee3a23a9255f0f0c6aa592c849fc7b07220b51b8cb4540df839	elf
2024-04-11 08:39:07	3b32470b8c8dc9fba72dec9b9ac87913458ed4a39eb74e3006fb41d98fa801be	elf		Gafgyt
2024-04-11 08:39:06	aead71f5da9946457ac94292c20a74ee2a628eecfc062481356715eb575ab980	elf		Mirai
2024-04-11 08:39:06	7a051b1d2f15d57c7d238469b7d7e2c3963b7b459f4aec0bbe0f58e55d3fb87e	elf		Gafgyt
2024-04-11 08:39:06	346586a7bdb51c4b2ef7849b1225a29a9e34dfce3eddd21a97648f2c153b4c2d	elf		Gafgyt
2024-04-11 08:39:06	106eaf2030c051cc0e97f41c70cd29346197323cd032b3c2f369fe335d09b6dd	elf		Mirai
2024-04-11 08:39:05	bec05c1002347a33b6bb1c06b3fb9afdce1b5cc2ba56272c1b798a4c9e64773c	elf		Gafygt
2024-04-10 03:23:13	a939592b7c4b82eb07bf7ad619a3ce9606ebc119d3d7091b193b1a625684d77b	elf
2024-04-10 02:16:34	b4f503f1bb7d80be47b9c55d13376d03b06fdcde7fb448daf21e0e3da1bf4adc	elf
2024-04-09 23:21:06	859e679f8e8be4a4c895139fb7fb1b177627bbe712e1ed4c316ec85008426db8	elf		Gafgyt