URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 57.128.197.64
Firstseen:2024-10-06 17:18:04 UTC
Total malware sites :28
Online malware sites :0 (0%)
Offline Malware sites :28 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2024-10-06 17:18:16 57.128.197.64vps-fc6d134a.vps.ovh.netNot listedAS16276 OVH- PLyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2024-10-08 18:13:05http://57.128.197.64/masscanOfflineelf ua-wget BlinkzSec
2024-10-06 17:27:57http://57.128.197.64/x/ac586Offlineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:19:09http://57.128.197.64/acmipsOfflineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:19:08http://57.128.197.64/maga.shOfflinemirai ext opendir sh ua-wget DaveLikesMalwre
2024-10-06 17:19:08http://57.128.197.64/acarm5Offlineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:19:07http://57.128.197.64/magax86Offlineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:19:06http://57.128.197.64/x/acarm6Offlineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:19:00http://57.128.197.64/x/acarm5Offlineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:53http://57.128.197.64/x/acarmOfflineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:52http://57.128.197.64/magamipselOfflineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:47http://57.128.197.64/x/acmipselOfflineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:46http://57.128.197.64/x.shOfflinemirai ext opendir sh ua-wget DaveLikesMalwre
2024-10-06 17:18:46http://57.128.197.64/x/coolOfflineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:45http://57.128.197.64/maga86Offlineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:45http://57.128.197.64/acm68kOfflineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:43http://57.128.197.64/acsh4Offlineelf gafgyt ext mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:41http://57.128.197.64/x/acmipsOfflineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:39http://57.128.197.64/acarm7Offlineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:38http://57.128.197.64/x/acppcOfflineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:37http://57.128.197.64/magamips3lOfflineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:34http://57.128.197.64/acx86Offlineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:29http://57.128.197.64/x86xOfflineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:26http://57.128.197.64/acsparcOfflineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:25http://57.128.197.64/magaarmOfflineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:22http://57.128.197.64/x/acarm7Offlineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:17http://57.128.197.64/acmipselOfflineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:16http://57.128.197.64/acmips64Offlineelf mirai ext opendir ua-wget DaveLikesMalwre
2024-10-06 17:18:16http://57.128.197.64/aarchxOfflineelf mirai ext opendir ua-wget DaveLikesMalwre

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2024-10-08 18:13:059aa8a11a52b21035ef7badb3f709fa9aa7e757788ad6100b4086f1c6a18c8ab2elf  
2024-10-06 17:27:57618486fc511878ca58a19fd3b7a026ea200ef558b9e5085b48d1f5dc73090e6felf 
2024-10-06 17:19:086faca0d67f669a95cb879e969c74d836477160d8e48dacb5b0cb827261eef499elfMirai
2024-10-06 17:19:08176268235d1c6a9845275b5f11fa035de3d4013c5239537a588ee7bd2399225csh 
2024-10-06 17:19:0896748820aa19bdcf95440ffb555d5f235448af0b22d1242a077fd2b8a2b187b2elfMirai
2024-10-06 17:19:0796b403cc42d1fc59666c8b75aca2cb8e7c2e5772fa0a2057be30f117f00acd04elf 
2024-10-06 17:19:06566268d78230d55868533bc96913d79c543dff1248b151ffe569a56fec5d4fe7elfMirai
2024-10-06 17:19:00ff294846a8450043f9f0526e999d33ce4d3706decfc57bc7f6e87abf114f334belfMirai
2024-10-06 17:18:533040e8eae52d0a6e0ab38c4723ef68ba719b70410f9086956e4de8fbb3fac91eelfMirai
2024-10-06 17:18:51a97331d6ab73112d4fad4293ca3c5e93bda0105c5b950d71c29c1a3fc6850b24elf 
2024-10-06 17:18:47b3c10983e648d35cc74b150a785a45a7fb2d3bf65b7a104e995a9dce348d935belf 
2024-10-06 17:18:46e06bfccef8836362fecd017456d3d298ff28d722b5afef64d850c6ef3fd6f9d3sh 
2024-10-06 17:18:46d6cb33adb3addd0f00b2c4aba1631da95ac3cfced5825852c28d03cb308ed58aelf 
2024-10-06 17:18:4596b403cc42d1fc59666c8b75aca2cb8e7c2e5772fa0a2057be30f117f00acd04elf 
2024-10-06 17:18:4572a36f1a5b5d8080a81c6c551d5e98b88ee96071a555a86319b9beeae54eda07elfMirai
2024-10-06 17:18:43fd20a503b0ea1e14a48d25e03418cc5f2bd40c211548084a53ef25e2705128c9elfGafgyt
2024-10-06 17:18:41585905d66808fbe4738c7776775f288da521df633c74a1d4647f852a96bc7ee0elfMirai
2024-10-06 17:18:39a6423d2be29a72d4f41ef7960027172a2da11c05b977f2ef9d4aaf7392914ed9elfMirai
2024-10-06 17:18:38efc3fc429a066a809aa00ae0dae641705f73709699bc63c4ebff36b778f412cbelfMirai
2024-10-06 17:18:37a97331d6ab73112d4fad4293ca3c5e93bda0105c5b950d71c29c1a3fc6850b24elf 
2024-10-06 17:18:33992d895ab6e62a46ca565c307170b894afd78a59ab8d06238fa628be7d35c4b7elf 
2024-10-06 17:18:293292a7fec43c38a3db7b81f97c77d8e1239cd1b4bcbf78a8cabbbe03ba852887elf 
2024-10-06 17:18:2660f94b902cc7af89d1f596d74145646c7e8e5d0f81f18c171e004196a99c61adelfMirai
2024-10-06 17:18:2542d71620a6c3e2ef3f374fa156787064db5c171840b3a92683da80089302bbf6elf 
2024-10-06 17:18:224c9d16b64450e2cb181d1b4948ed8a3633571fc995e11e732c64cb795b12b73belfMirai
2024-10-06 17:18:1685348bc5ce9966d796e27a99e06318acae6714992b368b96211b6d6cefc78eb9elf 
2024-10-06 17:18:12d5d25a20a7e114d750e8577498a884bc35958504d64cb4157519bb50ce36b189elf 
2024-10-06 17:18:1129982e5974b847946b6b439531ea66ce2f01ee658b5da9c2cefc7b95e2962797elf