URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	64.7.199.151
Firstseen:	2026-05-18 07:53:05 UTC
Total malware sites :	16
Online malware sites :	0 (0%)
Offline Malware sites :	16 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2026-05-18 07:53:07	64.7.199.151		Not listed	AS399629 BLNWX	RO	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2026-05-18 07:54:07	http://64.7.199.151:8081/x86_64	Offline	gafgyt	burger
2026-05-18 07:53:11	http://64.7.199.151:8081/sh4	Offline	gafgyt	burger
2026-05-18 07:53:11	http://64.7.199.151:8081/armv7l	Offline	gafgyt	burger
2026-05-18 07:53:11	http://64.7.199.151:8081/powerpc	Offline	gafgyt	burger
2026-05-18 07:53:11	http://64.7.199.151:8081/mipsel	Offline	gafgyt	burger
2026-05-18 07:53:11	http://64.7.199.151:8081/server	Offline		burger
2026-05-18 07:53:11	http://64.7.199.151:8081/m68k	Offline	gafgyt	burger
2026-05-18 07:53:11	http://64.7.199.151:8081/mips	Offline	gafgyt	burger
2026-05-18 07:53:11	http://64.7.199.151:8081/i686	Offline	gafgyt	burger
2026-05-18 07:53:11	http://64.7.199.151:8081/armv5l	Offline	gafgyt	burger
2026-05-18 07:53:11	http://64.7.199.151:8081/i586	Offline	gafgyt	burger
2026-05-18 07:53:11	http://64.7.199.151:8081/armv6l	Offline	gafgyt	burger
2026-05-18 07:53:10	http://64.7.199.151:8081/i486	Offline	gafgyt	burger
2026-05-18 07:53:10	http://64.7.199.151:8081/sparc	Offline	gafgyt	burger
2026-05-18 07:53:10	http://64.7.199.151:8081/armv4l	Offline	gafgyt	burger
2026-05-18 07:53:07	http://64.7.199.151:8081/deploy-client-v2.sh	Offline		burger

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2026-05-18 07:54:06	db175e6e4de27d93bd2c49a61b41e92c9ec3e41e2c652d5fe5ebaf3031a9b839	elf	Gafgyt
2026-05-18 07:53:11	5ecdb735ed978c5f220af4d2520b46f2a6f6902429dd5bb3a93ae9098168661e	elf	Gafgyt
2026-05-18 07:53:11	da9387058dfdaeda6517959334ec6e8e11ff1d77401d447ec78a7397834aa21e	elf	Gafgyt
2026-05-18 07:53:11	936a9efab6070da781915b9b293567a5fdf9a10d4e95d415cab5fd9352588435	elf
2026-05-18 07:53:11	2ba0efc355a22ed586133e4eadf6f2736f3df6bf38798ebca47f75bdbba067ae	elf	Gafgyt
2026-05-18 07:53:11	7ea3e22bf3f1c64e391c17cddb890551bb45c74fa62a4247ea57895dd955f1a2	elf	Gafgyt
2026-05-18 07:53:11	a1eb2a4c7598f230a637cd7105e71ad84063b11165625e266757f9de850b9e3f	elf	Gafgyt
2026-05-18 07:53:11	de4c7a518bc5659071baf32c5ad00ba4d2579f9254ffbc36c3d5e1c279e6c16b	elf	Gafgyt
2026-05-18 07:53:11	4ba6cd287d3c2ffb440f6aaef946a35bb1686a54644d7714c9f0990cca9794c5	elf	Gafgyt
2026-05-18 07:53:11	1d435214fd76b8dbe26f1fc3159f69615b038c8a022733f4457f129e258e9db9	elf	Gafgyt
2026-05-18 07:53:10	617b103fe31c8d53b7b64bd14c7daaf3b40d09d90658794a144c1217d5fe31fc	elf	Gafgyt
2026-05-18 07:53:10	69becc116756292000ea90cea79a79be398c2b063c1638125563dbc61f409ff9	elf	Gafgyt
2026-05-18 07:53:10	83d5ca61a8be05075cdaa48cff27cb698288a56642a5dd36e1917e98234c8c3a	elf	Gafgyt
2026-05-18 07:53:10	6707cf875e125fde56fd68733f4484ca9f4905b9ef569f35e75fa0eeeaf1f780	elf	Gafgyt
2026-05-18 07:53:10	1c04c19289765ac1ed3f231e18866fd3c8fd81b277c6840156af8a09ca82f06c	elf	Gafgyt