URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 91.80.138.168 |
|---|---|
| Firstseen: | 2020-12-20 10:36:02 UTC |
| Total malware sites : | 1 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2020-12-20 10:36:10 | 91.80.138.168 | Not listed | AS30722 VODAFONE-IT-ASN |  IT | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2020-12-20 10:36:10 | http://91.80.138.168:44081/Mozi.m | Offline | elf mirai  Mozi |  lrz_urlhaus |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2020-12-20 12:30:21 | 161b5f34ff48e513e68938cf4577ae0abc68aa956fff833c32784d47be420b9b | elf | ||
| 2020-12-20 11:55:24 | a829073855f00e14a923e74523d0e69d5cd99ad976ac4f23a71fb4e8fd5640fc | elf | ||
| 2020-12-20 11:32:28 | 585e4f8d76f06bedeb3bf65b6ea1e199d12eaf6936c4231396096cd4dc77d15d | elf | ||
| 2020-12-20 11:22:27 | c186c0b876a56d0da7b79bc2cae2e2ecf4617518fd9c996568da100e99179693 | elf | ||
| 2020-12-20 10:36:10 | 12013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0ef | elf | Mirai |