URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 45.143.223.146
Firstseen:2021-11-14 12:42:02 UTC
Total malware sites :17
Online malware sites :0 (0%)
Offline Malware sites :17 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-11-14 12:42:03 45.143.223.146Not listedAS213371 SQUITTER-NETWORKS- NLyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-08-27 07:12:09http://45.143.223.146/d/xd.armOffline32 arm bashlite elf gafgyt ext mirai ext zbetcheckin
2022-08-27 07:12:09http://45.143.223.146/d/xd.spcOffline32 bashlite elf gafgyt ext mirai ext sparc zbetcheckin
2022-08-27 07:02:05http://45.143.223.146/d/xd.ppcOffline32 bashlite elf gafgyt ext mirai ext PowerPC zbetcheckin
2022-08-27 07:01:04http://45.143.223.146/d/xd.mipsOffline32 bashlite elf gafgyt ext mips mirai ext zbetcheckin
2022-08-27 07:01:03http://45.143.223.146/d/xd.arm6Offline32 arm bashlite elf gafgyt ext mirai ext zbetcheckin
2022-08-27 07:01:03http://45.143.223.146/d/xd.m68kOffline32 bashlite elf gafgyt ext mirai ext motorola zbetcheckin
2022-08-27 07:00:06http://45.143.223.146/d/xd.x86Offline32 bashlite elf gafgyt ext intel mirai ext zbetcheckin
2022-08-27 07:00:05http://45.143.223.146/d/xd.arm5Offline32 arm elf mirai ext zbetcheckin
2022-08-27 07:00:05http://45.143.223.146/d/xd.arm7Offline32 arm bashlite elf gafgyt ext mirai ext zbetcheckin
2022-08-27 07:00:05http://45.143.223.146/d/xd.mpslOffline32 bashlite elf gafgyt ext mips mirai ext zbetcheckin
2022-08-27 07:00:05http://45.143.223.146/d/xd.sh4Offline32 bashlite elf gafgyt ext mirai ext renesas zbetcheckin
2022-08-27 06:32:03http://45.143.223.146/September.shOffline script geenensp
2021-11-14 14:05:04http://45.143.223.146/ui/windows_security.exeOffline32 exe zbetcheckin
2021-11-14 14:00:04http://45.143.223.146/ui/prox.exeOffline32 exe zbetcheckin
2021-11-14 12:42:04http://45.143.223.146/ui/stenc.exeOffline Cryptolaemus1
2021-11-14 12:42:04http://45.143.223.146/ui/hvn.exeOffline Cryptolaemus1
2021-11-14 12:42:03http://45.143.223.146/ui/lost.exeOffline Cryptolaemus1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-08-27 10:58:1240ceabd6e3341c442582e7fbc636a3f9f837baf53d277188e4ec676998624aeaelf  
2022-08-27 10:58:01f24710fe9cc4176c13d0ba945d27286a5cc383b901cb4cde343773aecc4dd491elf  
2022-08-27 10:56:2329a1968ced09f35d50e63d1ecbfdc0a2a57371f5facbd8b444f69aa55d3f068belf  
2022-08-27 10:56:1841ec7deb4e074861e5c1ef3443eb902a287a29bfe23d8b05231dcc539a094c27elf  
2022-08-27 10:52:574a14cfc51ce875c9d59e8b0aa253085b171792e72c9a39b17dd05c19bceaa7cbelf  
2022-08-27 10:48:11102173697b3709b8d2690708016d4bbc059cd3839fac34ac210c17aecd2209d3elf  
2022-08-27 10:29:57de00f27b462dc73a3cb93bb46b791d296075b6979842bec0379c5c83a9e71ba0elf  
2022-08-27 10:29:39483d10ecaf28cdbec7c6b06f7f50d13ab377a51b87757800d8f7cd286743e5f4elf  
2022-08-27 10:27:40701f16c74dbae18688fda507e1eb279e62ba3bab754c46a9da9ea2059017aca3elf  
2022-08-27 10:25:1505d33d2a55ee8b8767f2ebc115d577dee380560bec233899f7d1aa85b90e4e1aelf  
2022-08-27 10:24:26d00936d34445938e47f822f2bc4998b76c9561422889d305b04168504091dfc3elf  
2022-08-27 07:12:09f7aa1dfcbf61fbab13e31e84a59dd067a677419e9086dc70ff356632090119d4elfMirai
2022-08-27 07:12:09d933e3b00fe9fcedb5d5dadca2e6d7846d556ddfbe46757fa925bb4629b399dfelfMirai
2022-08-27 07:02:0483a77116b57b1078e43e769ba976e3bf60efd8f16c7cc3d2265761c09b7520efelfMirai
2022-08-27 07:01:044cb64e45ea55c45acd7664335d5eee4800e9e9176bdccff62b451c646bf0c136elfMirai
2022-08-27 07:01:03b893081f32191cb422a6316890f039e74fbd455ea893c187cf84ded5a5d0e127elfMirai
2022-08-27 07:01:03bf0820074f24ad820a29d76ab9d7e9ea8cb9d48a5083c3d18aa557c7fd879d2felfMirai
2022-08-27 07:00:05daf477a0e795231e5b581db4762e13780d13dccc17003c36315c7543253784d3elfMirai
2022-08-27 07:00:059b53a23816bc276a9d30d7dbe93b1d68f9368d3a96fa0621499013139f142e09elfMirai
2022-08-27 07:00:053f536f22e128e4489d8e450416a9711f4c1aeb5e919900a856ac376e6d2c8985elfMirai
2022-08-27 07:00:05e380327532b780ac5acb438afeec5807ca47c2fedcef1ca5bcd7a6923c29ba16elfMirai
2022-08-27 07:00:0514b1a106f0b5b05f244713e1cf60ed14ebbccf379d18923486f2736a9abab907elfMirai
2022-08-27 06:32:03f64c2c099c989351ee319451d0268e037fc6eccba9fdce6dba1d7bda481f18a5unknown  
2021-11-14 14:05:04253475cc935af014ede78d7c0b899d560015c6fa820bc5cae78203afc2eebe98exe 
2021-11-14 14:00:04f3133b021fd1eb20aa1b624a6295496e0d4cfdad4d6d25ac00ab02ee5cbea8b1exevkeylogger
2021-11-14 12:42:04e883e691eddd4d6c04e9a79998179cc27f99146e30f648f6ab71e2bd84426366exe 
2021-11-14 12:42:03f3133b021fd1eb20aa1b624a6295496e0d4cfdad4d6d25ac00ab02ee5cbea8b1exevkeylogger