URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	94.156.67.161
Firstseen:	2024-07-01 10:51:05 UTC
Total malware sites :	29
Online malware sites :	0 (0%)
Offline Malware sites :	29 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2024-07-01 10:51:08	94.156.67.161		Not listed	AS215804 GRIDGR	GR	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2024-07-21 23:23:55	http://94.156.67.161/arm5	Offline	elf mirai	ClearlyNotB
2024-07-21 23:23:48	http://94.156.67.161/mpsl	Offline	elf mirai	ClearlyNotB
2024-07-21 23:23:34	http://94.156.67.161/sh4	Offline	elf	ClearlyNotB
2024-07-21 23:23:33	http://94.156.67.161/arm6	Offline	elf	ClearlyNotB
2024-07-21 23:23:26	http://94.156.67.161/ppc	Offline	elf	ClearlyNotB
2024-07-21 23:23:23	http://94.156.67.161/x86_64	Offline	elf	ClearlyNotB
2024-07-21 23:23:22	http://94.156.67.161/spc	Offline	elf	ClearlyNotB
2024-07-21 23:23:22	http://94.156.67.161/m68k	Offline	elf mirai	ClearlyNotB
2024-07-21 23:23:20	http://94.156.67.161/arm7	Offline	elf	ClearlyNotB
2024-07-21 23:23:20	http://94.156.67.161/mips	Offline	elf mirai	ClearlyNotB
2024-07-21 23:23:12	http://94.156.67.161/arm	Offline	elf mirai	ClearlyNotB
2024-07-01 12:31:15	http://94.156.67.161/bins/x86_64	Offline	elf opendir	NDA0E
2024-07-01 12:31:15	http://94.156.67.161/bins/spc	Offline	elf opendir	NDA0E
2024-07-01 12:31:15	http://94.156.67.161/bins/arm5	Offline	elf mirai opendir	NDA0E
2024-07-01 12:31:15	http://94.156.67.161/bins/mpsl	Offline	elf mirai opendir	NDA0E
2024-07-01 12:31:15	http://94.156.67.161/bins/arm6	Offline	elf opendir	NDA0E
2024-07-01 12:31:15	http://94.156.67.161/bins/sh4	Offline	elf opendir	NDA0E
2024-07-01 12:31:15	http://94.156.67.161/bins/ppc	Offline	elf opendir	NDA0E
2024-07-01 12:31:13	http://94.156.67.161/bins/m68k	Offline	elf mirai opendir	NDA0E
2024-07-01 12:31:13	http://94.156.67.161/bins/AV.lnk	Offline	AV.lnk lnk opendir	NDA0E
2024-07-01 12:30:41	http://94.156.67.161/bins/Video.scr	Offline	CoinMiner exe opendir scr Video.scr	NDA0E
2024-07-01 12:30:40	http://94.156.67.161/bins/AV.scr	Offline	av.scr CoinMiner exe opendir scr	NDA0E
2024-07-01 12:30:39	http://94.156.67.161/bins/Photo.scr	Offline	CoinMiner exe opendir Photo.scr scr	NDA0E
2024-07-01 12:30:31	http://94.156.67.161/bins/info.zip	Offline	CoinMiner info.zip opendir	NDA0E
2024-07-01 12:30:20	http://94.156.67.161/bins/arm7	Offline	elf opendir	NDA0E
2024-07-01 12:30:16	http://94.156.67.161/bins/Photo.lnk	Offline	lnk opendir Photo.lnk	NDA0E
2024-07-01 12:30:16	http://94.156.67.161/bins/Video.lnk	Offline	lnk opendir Video.lnk	NDA0E
2024-07-01 10:51:09	http://94.156.67.161/bins/mips	Offline	32-bit elf mirai opendir	threatquery
2024-07-01 10:51:08	http://94.156.67.161/bins/arm	Offline	32-bit elf mirai opendir	threatquery

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2024-07-21 23:23:55	60e8604fc7698a441f71aaa37bcb5d01b4f7164ca74f3287c48d54f8eb79ebe3	elf	Mirai
2024-07-21 23:23:47	ae689bad6f4f441e442e4f53a7ec7997eaf1765990b13747c84bfe9c01f5cad1	elf	Mirai
2024-07-21 23:23:34	e554b9e31ae82107958bbad187ca5109d11a2bf748251e769f24d82e0ceaa289	elf
2024-07-21 23:23:33	43a139eff45eecd348966d027c8ca8d58cfddf3c4a65f0474b6083e7d3750527	elf
2024-07-21 23:23:26	1738b29878566e4c8ebf98f2d3c796468f320b52e7e83463af8e9f6246445022	elf
2024-07-21 23:23:23	85418cb92e356fddb2439d1518680362e03342e401660a9c767c72b25ec0bcff	elf
2024-07-21 23:23:22	6aa03eb18411f81c6779158dd65149f49dde91f71278eb1ba3da0f3734f8f0d7	elf
2024-07-21 23:23:22	a5aad8617bd6bdbda266d9a65e80c2a9792cb7f538856cbb90d3087167a96fef	elf	Mirai
2024-07-21 23:23:20	27e19cdfa39506d4c1f0ede17492acdab43ffbaa1523831b933505674b19f999	elf
2024-07-21 23:23:20	712824c481c3cd733c85f0e2da653eaa098912abb7c2705835780f1492f51f33	elf	Mirai
2024-07-21 23:23:12	674f862095db3af22ef55c848b644a11c63baa01399d266606b3ef295bc4e2d3	elf	Mirai
2024-07-02 05:56:45	b914abc696286a639a847d2e3a4a36ff682f30a87b08c4ffc61f2e0cf5e7ec5f	zip
2024-07-01 12:31:15	85418cb92e356fddb2439d1518680362e03342e401660a9c767c72b25ec0bcff	elf
2024-07-01 12:31:15	6aa03eb18411f81c6779158dd65149f49dde91f71278eb1ba3da0f3734f8f0d7	elf
2024-07-01 12:31:15	60e8604fc7698a441f71aaa37bcb5d01b4f7164ca74f3287c48d54f8eb79ebe3	elf	Mirai
2024-07-01 12:31:15	ae689bad6f4f441e442e4f53a7ec7997eaf1765990b13747c84bfe9c01f5cad1	elf	Mirai
2024-07-01 12:31:15	43a139eff45eecd348966d027c8ca8d58cfddf3c4a65f0474b6083e7d3750527	elf
2024-07-01 12:31:15	e554b9e31ae82107958bbad187ca5109d11a2bf748251e769f24d82e0ceaa289	elf
2024-07-01 12:31:15	1738b29878566e4c8ebf98f2d3c796468f320b52e7e83463af8e9f6246445022	elf
2024-07-01 12:31:13	a5aad8617bd6bdbda266d9a65e80c2a9792cb7f538856cbb90d3087167a96fef	elf	Mirai
2024-07-01 12:31:13	00401651af3194ede5157004b6dbe1edf836a94ca182221f2c034201fe55e4dc	lnk
2024-07-01 12:30:41	ebcdf536447cba219a13756c00c97b4ed5fea47f2cbf2283ea86e80216d3822e	exe	CoinMiner
2024-07-01 12:30:40	ebcdf536447cba219a13756c00c97b4ed5fea47f2cbf2283ea86e80216d3822e	exe	CoinMiner
2024-07-01 12:30:39	ebcdf536447cba219a13756c00c97b4ed5fea47f2cbf2283ea86e80216d3822e	exe	CoinMiner
2024-07-01 12:30:30	7126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986dd	zip	CoinMiner
2024-07-01 12:30:20	27e19cdfa39506d4c1f0ede17492acdab43ffbaa1523831b933505674b19f999	elf
2024-07-01 12:30:16	00401651af3194ede5157004b6dbe1edf836a94ca182221f2c034201fe55e4dc	lnk
2024-07-01 12:30:16	00401651af3194ede5157004b6dbe1edf836a94ca182221f2c034201fe55e4dc	lnk
2024-07-01 10:51:09	712824c481c3cd733c85f0e2da653eaa098912abb7c2705835780f1492f51f33	elf	Mirai
2024-07-01 10:51:08	674f862095db3af22ef55c848b644a11c63baa01399d266606b3ef295bc4e2d3	elf	Mirai