URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 54.37.79.0
Firstseen:2021-10-22 23:03:03 UTC
Total malware sites :25
Online malware sites :0 (0%)
Offline Malware sites :25 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-10-22 23:03:05 54.37.79.0Not listedAS16276 OVH- FRyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-11-29 09:21:33http://54.37.79.0/SBIDIOT/m68k.keen.onion.1337Offline32 bashlite elf gafgyt ext mirai ext motorola zbetcheckin
2021-11-29 09:21:33http://54.37.79.0/SBIDIOT/arm.keen.onion.1337Offline32 arm elf zbetcheckin
2021-11-29 09:21:33http://54.37.79.0/SBIDIOT/sh4.keen.onion.1337Offline32 bashlite elf gafgyt ext mirai ext renesas zbetcheckin
2021-11-29 09:21:33http://54.37.79.0/SBIDIOT/mpsl.keen.onion.1337Offline32 elf mips zbetcheckin
2021-11-29 09:21:33http://54.37.79.0/SBIDIOT/mips.keen.onion.1337Offline32 elf mips zbetcheckin
2021-11-29 09:21:33http://54.37.79.0/SBIDIOT/arm6.keen.onion.1337Offline32 arm elf zbetcheckin
2021-11-29 09:21:33http://54.37.79.0/SBIDIOT/rtk.keen.onion.1337Offline32 elf mips zbetcheckin
2021-11-29 09:21:33http://54.37.79.0/SBIDIOT/zte.keen.onion.1337Offline32 elf mips zbetcheckin
2021-11-29 09:20:14http://54.37.79.0/SBIDIOT/arm7.keen.onion.1337Offline32 arm bashlite elf gafgyt ext zbetcheckin
2021-11-29 09:20:06http://54.37.79.0/SBIDIOT/x86.keen.onion.1337Offline32 elf intel mirai ext zbetcheckin
2021-11-29 09:14:07http://54.37.79.0/SBIDIOT/ppc.keen.onion.1337Offline32 elf PowerPC zbetcheckin
2021-11-29 09:14:04http://54.37.79.0/SBIDIOT/root.keen.onion.1337Offline32 elf intel mirai ext zbetcheckin
2021-11-29 08:40:04http://54.37.79.0/shOffline Petras_Simeon
2021-10-22 23:03:16http://54.37.79.0/LjEZs/uYtea.armOfflineelf mirai ext botnetofthings
2021-10-22 23:03:14http://54.37.79.0/LjEZs/uYtea.ppcOfflineelf mirai ext botnetofthings
2021-10-22 23:03:14http://54.37.79.0/LjEZs/uYtea.mpslOfflineelf botnetofthings
2021-10-22 23:03:13http://54.37.79.0/LjEZs/uYtea.spcOfflineelf mirai ext botnetofthings
2021-10-22 23:03:09http://54.37.79.0/LjEZs/uYtea.x86_64Offlineelf mirai ext botnetofthings
2021-10-22 23:03:08http://54.37.79.0/LjEZs/uYtea.arm6Offlineelf botnetofthings
2021-10-22 23:03:08http://54.37.79.0/LjEZs/uYtea.mipsOfflineelf mirai ext botnetofthings
2021-10-22 23:03:06http://54.37.79.0/LjEZs/uYtea.arm7Offlineelf mirai ext botnetofthings
2021-10-22 23:03:06http://54.37.79.0/LjEZs/uYtea.m68kOfflineelf botnetofthings
2021-10-22 23:03:05http://54.37.79.0/LjEZs/uYtea.sh4Offlineelf botnetofthings
2021-10-22 23:03:05http://54.37.79.0/LjEZs/uYtea.arm5Offlineelf botnetofthings
2021-10-22 23:03:05http://54.37.79.0/LjEZs/uYtea.x86Offlineelf mirai ext botnetofthings

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2021-12-20 19:14:374ac7bf1cf7ea42920612800e1786bcad207e3f59b76b04b4eabafb0e9ce29dc3unknown  
2021-12-13 17:34:2042f44e012f5fafc4437d28d8025934c3d166a8bdbecfe6227a4d4b7338dc10b3unknown  
2021-12-05 17:24:2080ff04620417248e62366adb3aa582507a710b0c2f0894ff7d0956f6fe18812dunknown  
2021-12-04 16:26:32d1b24b3838fd4742f728186e5db8ea01b682781661a3650204b79ed8be94c459unknown  
2021-12-04 14:45:16d4d83c38fcf92490c8a9e6d8972ef6f73166cdd5a7907e56ea2b80096e7e3743unknown  
2021-12-03 11:39:51604d1bcd2928dfcdc561ee3209c160bdac9dbf9522191ee5e1a8e210e7a97a2funknown  
2021-11-29 10:00:134e2bd010e05ec147ff6a64046468081fe7b2b3c7a072b4ae9fcf31a068e1f8a3elf 
2021-11-29 09:44:04c39ad4c5337162fd8c8e953a26cbed9889b34c6f651fa32078018984c77849f9elf 
2021-11-29 09:43:50e1926984edba6bf14107ed1a420978bb9df9089382ae073c5fa1b9a52850a281elf 
2021-11-29 09:40:09c39ad4c5337162fd8c8e953a26cbed9889b34c6f651fa32078018984c77849f9elf 
2021-11-29 09:35:40c39ad4c5337162fd8c8e953a26cbed9889b34c6f651fa32078018984c77849f9elf 
2021-11-29 09:35:17361a40a07a3db36cb291b46c5cad2b9e2d3dbe378b782b8319e8884f492d3f56elfMirai
2021-11-29 09:34:5970604ca9d5da94b63acf58f3e296ca3ff6355d5ef9adeef2a9ac206a6687f37eelf 
2021-11-29 09:34:578d082877c166a856dbe66a7580d5cdd381eec1913237965df08487873ec99aa2unknown  
2021-11-29 09:34:29f18876a3481c194b9f0321ed9270d68e4dabdb65d3339491aca9f84bdb991301elfMirai
2021-11-29 09:20:141669acba3ae65952191a042dc59672e9abfeab0420abc06d8b00fc8422f29ae4elf 
2021-11-29 09:20:06fc0ce41c62734d55e257fcfdfb9118fddb5f0b49646a5731e779570b751ba2eeelfMirai
2021-11-29 09:14:07c25fc8f63a27318d7dd8443e2ba56320ffc0ee7a530c50a6c0c94683b172cb30elf 
2021-11-29 09:14:04851cfd804618e6c653784e3fdd5866b9efad42c02b188cc0415f4f8fb05bbef1elfMirai
2021-10-22 23:03:15959f1afbe8948646c706310d888ce16342492c5fb577bf619de72aba635b17a0elfMirai
2021-10-22 23:03:142e2c3d0c454481157d797b3707e48eea80f6e1d8d353cd58c812d556eac36a39elf  
2021-10-22 23:03:14ca96cbe2de0a63ef68ee58a32989e0ba68f079e49c495621d4d89e4aca63c362elfMirai
2021-10-22 23:03:13058fec61866fd202f63fe2bcc8f3b024f8cbd50ed7cb40db75232982357ad1a3elfMirai
2021-10-22 23:03:0981c31cc3b5dcfb60425295ba18efab69992674e5766da2e36a08abb57b874bedelfMirai
2021-10-22 23:03:0847fbdacf3c05598be6df15ee1d3e7923d30d51aa2b3b326099a127e6db99fd8felf  
2021-10-22 23:03:0805da8fa221e352ec2a9d21e10aec3f1bfc957572d3319d1836125ba6663c83a3elfMirai
2021-10-22 23:03:06e8e61b87cf08268b0633e50b67eae12fb23bb495dd39e9a7430384ea6ded711delfMirai
2021-10-22 23:03:066c0571656746914c9267661fa95caefe6855e8a03fc022277d10be5da4c48dc4elf  
2021-10-22 23:03:0587a88e33617ddb8b6800e66611358037515d48daaf688cd2b5d1d148a9a0fcd2elf  
2021-10-22 23:03:05b5dfc72a62fd1599a65ddfd8630b0beeac9401324b2f0b97034cda69ed27a3e6elfMirai
2021-10-22 23:03:05c187b2ee2f147ac9771197dce869325d7b855ece5b2590fbe027feeccfd411feelf