URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	61.160.213.14
Firstseen:	2024-06-14 09:32:11 UTC
Total malware sites :	5
Online malware sites :	0 (0%)
Offline Malware sites :	5 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2024-06-14 09:32:20	61.160.213.14		Not listed	AS140293 CHINATELECOM-JIANGSU-CHANGZHOU-5G-NETWORK	CN	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2024-06-14 10:52:22	http://61.160.213.14:48596/dvfdbg.exe	Offline	CoinMiner TellYouThePass	abus3reports
2024-06-14 10:52:09	http://61.160.213.14:48596/hgfxfds.exe	Offline	CoinMiner nitol TellYouThePass	abus3reports
2024-06-14 09:33:45	http://61.160.213.14:48596/dbgb.exe	Offline	CoinMiner exe TellYouThePass	abus3reports
2024-06-14 09:33:16	http://61.160.213.14:48596/sgfc68	Offline	CoinMiner elf TellYouThePass	abus3reports
2024-06-14 09:32:20	http://61.160.213.14:48596/sgfc6	Offline	elf TellYouThePass	abus3reports

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2024-06-14 10:52:22	984822dbd5a24cb7e7e223a2d0410114f7e0ce4bdd5f06cc3129b3c9164fcf3d	exe	CoinMiner
2024-06-14 10:52:09	2672c1254165007fd8af38b9b123cf90919ca4c4f877d89448b29937a185b685	exe	CoinMiner
2024-06-14 09:33:45	d6350d8a664b3585108ee2b6f04f031d478e97a53962786b18e4780a3ca3da60	exe	CoinMiner
2024-06-14 09:33:16	ee6fe783dc9d81b093c0448352c3534e0064e22b9bd8ca6426de67ec3d86b9b2	elf	CoinMiner
2024-06-14 09:32:20	d0a140e46fb10b000d56653a99ace8a620b02dd08fb839766460df36f71d862a	elf