URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 45.138.70.19
Firstseen:2022-10-21 08:12:03 UTC
Total malware sites :53
Online malware sites :0 (0%)
Offline Malware sites :53 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2022-10-21 08:12:33 45.138.70.19Not listedAS35251 ANTI-DDOS- HKyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-10-26 20:57:05http://45.138.70.19/bins/Squidward.arm7Offline32 arm elf mirai ext zbetcheckin
2022-10-26 20:56:04http://45.138.70.19/bins/Squidward.mipsOffline32 elf mips mirai ext zbetcheckin
2022-10-26 20:56:04http://45.138.70.19/bins/Squidward.m68kOffline32 elf mirai ext motorola zbetcheckin
2022-10-26 20:56:04http://45.138.70.19/bins/Squidward.sh4Offline32 elf mirai ext renesas zbetcheckin
2022-10-26 20:56:04http://45.138.70.19/Squidward.shOfflineshellscript zbetcheckin
2022-10-26 20:55:05http://45.138.70.19/bins/Squidward.mpslOffline32 elf mips mirai ext zbetcheckin
2022-10-26 20:55:05http://45.138.70.19/bins/Squidward.x86Offline32 elf intel mirai ext zbetcheckin
2022-10-26 20:55:05http://45.138.70.19/bins/Squidward.arm5Offline32 arm elf mirai ext zbetcheckin
2022-10-26 20:54:04http://45.138.70.19/bins/Squidward.arm6Offline32 arm elf mirai ext zbetcheckin
2022-10-26 20:54:04http://45.138.70.19/bins/Squidward.ppcOffline32 elf mirai ext PowerPC zbetcheckin
2022-10-26 20:53:04http://45.138.70.19/bins/Squidward.spcOffline32 elf mirai ext sparc zbetcheckin
2022-10-26 20:52:04http://45.138.70.19/bins/Squidward.armOffline32 arm elf mirai ext zbetcheckin
2022-10-26 12:45:34http://45.138.70.19/Mddos/Mddos.mipsOffline32 elf mips mirai ext zbetcheckin
2022-10-26 12:45:34http://45.138.70.19/Mddos/Mddos.arcOffline32 elf mirai ext zbetcheckin
2022-10-26 12:45:34http://45.138.70.19/Mddos/Mddos.arm7Offline32 arm bashlite elf gafgyt ext mirai ext zbetcheckin
2022-10-26 12:45:34http://45.138.70.19/Mddos/Mddos.arm6Offline32 arm elf mirai ext zbetcheckin
2022-10-26 12:44:34http://45.138.70.19/Mddos/Mddos.m68kOffline32 elf mirai ext motorola zbetcheckin
2022-10-26 12:44:34http://45.138.70.19/Mddos/Mddos.ppcOffline32 elf mirai ext PowerPC zbetcheckin
2022-10-26 12:44:34http://45.138.70.19/Mddos/Mddos.arm5Offline32 arm elf mirai ext zbetcheckin
2022-10-26 12:44:34http://45.138.70.19/Mddos/Mddos.i686Offline32 elf intel mirai ext zbetcheckin
2022-10-26 12:43:34http://45.138.70.19/Mddos/Mddos.armOffline32 arm elf mirai ext zbetcheckin
2022-10-26 12:43:34http://45.138.70.19/Mddos/Mddos.i486Offline32 elf intel mirai ext zbetcheckin
2022-10-26 12:43:34http://45.138.70.19/web-api.shOffline script geenensp
2022-10-26 12:43:34http://45.138.70.19/Mddos/Mddos.x86Offline32 elf intel mirai ext zbetcheckin
2022-10-26 12:43:34http://45.138.70.19/Mddos/Mddos.spcOffline32 elf mirai ext sparc zbetcheckin
2022-10-26 12:43:34http://45.138.70.19/Mddos/Mddos.x86_64Offline64 elf mirai ext zbetcheckin
2022-10-26 12:42:34http://45.138.70.19/Mddos/Mddos.sh4Offline32 elf mirai ext renesas zbetcheckin
2022-10-26 12:42:34http://45.138.70.19/Mddos/Mddos.mpslOffline32 elf mips mirai ext zbetcheckin
2022-10-24 18:04:05http://45.138.70.19/hiddenbin/boatnet.mpslOffline32 elf mips mirai ext zbetcheckin
2022-10-24 18:03:04http://45.138.70.19/hiddenbin/boatnet.m68kOffline32 elf mirai ext motorola zbetcheckin
2022-10-24 18:03:04http://45.138.70.19/hiddenbin/boatnet.armOffline32 arm elf mirai ext zbetcheckin
2022-10-24 18:03:04http://45.138.70.19/hiddenbin/boatnet.x86Offline32 elf intel mirai ext zbetcheckin
2022-10-24 18:02:05http://45.138.70.19/hiddenbin/boatnet.arcOffline32 elf mirai ext zbetcheckin
2022-10-24 18:02:05http://45.138.70.19/hiddenbin/boatnet.sh4Offline32 elf mirai ext renesas zbetcheckin
2022-10-24 18:02:04http://45.138.70.19/ohshit.shOfflineshellscript zbetcheckin
2022-10-24 18:01:05http://45.138.70.19/hiddenbin/boatnet.spcOffline32 elf mirai ext sparc zbetcheckin
2022-10-24 18:01:05http://45.138.70.19/hiddenbin/boatnet.arm6Offline32 arm elf mirai ext zbetcheckin
2022-10-24 18:00:05http://45.138.70.19/hiddenbin/boatnet.arm5Offline32 arm elf mirai ext zbetcheckin
2022-10-24 18:00:05http://45.138.70.19/hiddenbin/boatnet.ppcOffline32 elf mirai ext PowerPC zbetcheckin
2022-10-24 18:00:05http://45.138.70.19/hiddenbin/boatnet.arm7Offline32 arm elf mirai ext zbetcheckin
2022-10-21 08:41:04http://45.138.70.19/bins/sora.arm7Offline32 arm elf mirai ext zbetcheckin
2022-10-21 08:41:04http://45.138.70.19/bins/sora.x86_64Offline64 elf mirai ext zbetcheckin
2022-10-21 08:41:04http://45.138.70.19/bins/sora.m68kOffline32 elf mirai ext motorola zbetcheckin
2022-10-21 08:41:04http://45.138.70.19/sora.shOfflineshellscript zbetcheckin
2022-10-21 08:40:34http://45.138.70.19/bins/sora.mpslOffline32 elf mips mirai ext zbetcheckin
2022-10-21 08:40:34http://45.138.70.19/bins/sora.arm6Offline32 arm elf mirai ext zbetcheckin
2022-10-21 08:40:34http://45.138.70.19/bins/sora.sh4Offline32 elf mirai ext renesas zbetcheckin
2022-10-21 08:40:34http://45.138.70.19/bins/sora.arm5Offline32 arm elf mirai ext zbetcheckin
2022-10-21 08:38:05http://45.138.70.19/bins/sora.armOffline32 arm elf mirai ext zbetcheckin
2022-10-21 08:37:04http://45.138.70.19/bins/sora.spcOffline32 elf mirai ext sparc zbetcheckin
2022-10-21 08:13:05http://45.138.70.19/bins/sora.i686Offline32 bashlite elf gafgyt ext intel mirai ext zbetcheckin
2022-10-21 08:12:34http://45.138.70.19/bins/sora.x86Offline32 elf intel mirai ext zbetcheckin
2022-10-21 08:12:33http://45.138.70.19/bins/sora.ppcOffline32 elf mirai ext PowerPC zbetcheckin

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-11-03 22:31:45c1d56a59fac4befcb28bb9806acfecbae557ded08eca7964c3b2b804c75c41a0elf  
2022-11-03 11:47:400465264909ef667a201623c1f0a301401eb65881e38dc668dc7f7d820d1409d9elfMirai
2022-11-03 10:06:3086ea06894d141955a3a681ef1d45e692bb9267baae06e546739e04ac5002bd68elfMirai
2022-11-03 09:29:290fe4ac3939c0fede636481d906ff0230798246a03447318b1ba1298097241b58elf  
2022-11-03 07:36:09f8ab2c4587c93fbfa2405eaaffb267ebb7c8c99abee85f293c5a30ecee0eb31aelf  
2022-11-03 06:50:00aeec81de4e7a4dc2ad0e886c748d31f683680e7df742b977b38b50b4017687d0elfMirai
2022-11-03 06:34:520a33b8ce3c06357c54f6766e0341f251636988c588eb1c29783fe45f92b2b077elf  
2022-11-03 05:10:33bf2b1f8649864baaebe045b08295ca4b405f0ed59ed63ee6eff4c209acebc974elfMirai
2022-11-03 02:24:39ae3ba9fcb80e8b7ebda84198cdfacd488b7781a13ff1648cab30ba9387265dc2elfMirai
2022-11-03 01:14:164a9ebd3a9689caec246119fa33be6f21b2f34a3fd95ce361498a7197ce8522b9elf  
2022-10-29 12:08:2255a30c0e7922e2dac40ae37b349cf33ddeb50ead0780d558b9ab427e10a066cfelf  
2022-10-29 12:03:54b363b8316236afd9836ec81988134ae4b33ed81eedf03c157c47537f853a94bdelf  
2022-10-29 12:03:36183418e625d0d9263b6c065f1e141b9cc89ea7b12b98bdc842864f148db97b3felf  
2022-10-29 11:59:07c6940b47e818dd650fa2eada736ae6974946704be212fe823bc74f3d9579c0a7elf  
2022-10-26 20:57:050d4204a51052cb7939150fae23a1bd41e7c12a6533d40f31a8194a3ba06a6f75elfMirai
2022-10-26 20:56:044bdad345ea7ddac211821b915cb0f1763138901c234d340fe2d89480ff9f3dcbelfMirai
2022-10-26 20:56:04b636665f197e41d1dc101ce00d44320f8daec5221948f0fe29a6016dd52b1a41elfMirai
2022-10-26 20:56:0428fa300778c091ecc82947a69bcc2608e4311679e8e5e89daae6a391f923adbdelfMirai
2022-10-26 20:56:04669bd2ec037c327535d6747df9f4b776444852238dd3accfd8d8ecdd6a868dd2unknown  
2022-10-26 20:55:0553e1fea006df70454a0cff528b124d9d1e41446551257646fa7a26d8192f76c7elfMirai
2022-10-26 20:55:05fb3a177cd50e758c67a435b8dc2dc9c8ac950aac627d54c7d8e21290ac907b43elfMirai
2022-10-26 20:55:0566f64c5e672746f5a803abea5cd547b965ced287f17d438c6a250e54e8d6c92celfMirai
2022-10-26 20:54:0431439b3cd10371084064a8fd3bff6d5e7c40935f785b569e86ab8d15f29ef162elfMirai
2022-10-26 20:54:04c2437e15b1ffb20f54cfafae2350051d46267997b1481e82edd975996413802delfMirai
2022-10-26 20:53:0400ee4ad820f48c5adc645443fc6c11c97dac176d6b6a68151ee38ec3b9f2a96aelfMirai
2022-10-26 20:52:047c8cf442171805fea90a8e54d45f5b7df539520502e4cdbdb2627bded925f353elfMirai
2022-10-26 14:23:1772d28efdc6e341af50ce2b88d9f73c67a0d444bd861d6bf40948f0b090c56912elfMirai
2022-10-26 14:22:45693d7f197a5eecc843fb4714dabaf93f530175c531a650b59e5bbdcfe40d43a3elfMirai
2022-10-26 14:01:038947ec88c6ab96baabbd0f86257e833e9f71839521d9bcc33314c47f57e79cbfelfMirai
2022-10-26 14:00:475d325ba71d7679eba921486057595426f1de4dbb1c191f3ba57575bbbc19acf3elfMirai
2022-10-26 13:59:28778df4b16f7c3d76b1da6aeb067ef59fcbfd90b9ec6541eea2a4f26cd716afebelfMirai
2022-10-26 13:55:000ff88b8a3bcfd6585f542009a11710bba0dba6b6f626d1f737634817ad6f370belfMirai
2022-10-26 13:53:5759c5cdccf2fa5e67716e87f4da18c23391e3773d54ce9c0c19cca0e730a468baelfMirai
2022-10-26 13:43:59d6f94ee18e5c7a5f9720894a0e50add0114c2cc1735ebc13c91cd816293893abunknown  
2022-10-26 13:37:03cb80b0e18f279ae22cda98780ad1e52ee7ded2c3eace9209e18a96418ee412c9elfMirai
2022-10-26 13:30:46cfbb025d4def076bdb43faf321ede9e9ebbdb57e5e2b05a32e66167efff93125elfMirai
2022-10-26 13:20:30fd0c81ab4ff174e7f53021082359dc1a488341a834efe34910dd2f879ac71d87elfMirai
2022-10-26 13:18:01af063ff6fcfaf445d6adabe6cec9ddb427f1f46ed7c52d75738b77755077ca1aelfMirai
2022-10-26 13:16:0957b940381a5d405da6452b4edbbe9ce57ff52285494f1f04b8b662805ba29621elfMirai
2022-10-26 13:15:185d6a507cc00bb3ca54b6f84bf4826fdd3098761c39c161eb163c25084d7eef04elfMirai
2022-10-26 13:15:114baa5535d8f3bf518cbd9cd0a60ddf3c0e6b86227baf423714b65b86e60878d2elfMirai
2022-10-26 13:13:2988b1976f68fe9cecf051917593fc2a52b6cef5bd8846584c0ab8f1ba0a73c23felfMirai
2022-10-25 02:49:3696f3389e2cf1f1ed23cfabd1199f0ea9b3cbd48c34504e5bf9f96adb676b09a5elfMirai
2022-10-24 18:04:04ebd3cb30dad8cee4c2bda1fed4066fdc038903a32878c85eac04b0b57a8eef36elfMirai
2022-10-24 18:03:0427e7f4485ba86642edfd556c7b61c5eebf17bbb92b84c83066700f882f35489celfMirai
2022-10-24 18:03:049c78a81968ade3ea010d4fdd36b705854294069a930ef0d56f2f6fcee390679delfMirai
2022-10-24 18:03:0461093b1baf09c71453885bf0a993b07d97f86e7b172f26d3241aa33fb437fc47elfMirai
2022-10-24 18:02:054929f16f7afaee8c0a91d4c2809a72f070cc3ee090772cf868f0de2f0d99dd85elfMirai
2022-10-24 18:02:051f9e03254c10e885fb4ba07f08f3fbfda01fac1fabdc18f0630d94ca4974e0beelfMirai
2022-10-24 18:02:0496c69482c483a04d661b03321ef1a82ca2bf4e704892c4bbdee5fa68a122c96bunknown  
2022-10-24 18:01:0534d2db6624251d2e94816fb5a68aa9d487025da7dec68428049667e1e1496fb8elfMirai
2022-10-24 18:01:0517dadc2b105c925bb5d598789e418a9fdedac3a5a26a05fa4b77c8d82f685bb1elfMirai
2022-10-24 18:00:05b104f929a00524fba6e665f518725ebc99bb6d77455a2fc0073d9756db2d796celfMirai
2022-10-24 18:00:056088bd689aa59857ce7b675430587858095ec45c04ddcc35e44f6ad37eb2e622elfMirai
2022-10-24 18:00:0553d1293cc0ad6e01882df14e326d9bfd658833c4a54efeeac5784b575bee34a5elfMirai
2022-10-21 08:41:04e792b2108657e4160b803ff045af2bf5e8d5587b57eeae085452ba3667a4b8c5unknown