URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 94.156.71.74
Firstseen:2023-11-29 11:52:03 UTC
Total malware sites :43
Online malware sites :0 (0%)
Offline Malware sites :43 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2024-07-12 07:03:04http://94.156.71.74/go.shOfflineshellscript LemonHaze420__
2024-07-12 07:03:04http://94.156.71.74/shOfflineshellscript LemonHaze420__
2024-07-11 19:29:04http://94.156.71.74/rOfflineshellscript LemonHaze420_
2024-07-10 15:41:10http://94.156.71.74/arm4Offlinemirai ext RacWatchin8872
2024-07-10 15:41:10http://94.156.71.74/arm7Offlinegafgyt ext mirai ext RacWatchin8872
2024-07-10 15:41:10http://94.156.71.74/mipselOfflinemirai ext RacWatchin8872
2024-07-10 15:41:10http://94.156.71.74/arm5Offlinemirai ext RacWatchin8872
2024-07-10 15:41:10http://94.156.71.74/arm6Offlinemirai ext RacWatchin8872
2024-07-10 15:41:09http://94.156.71.74/sh4Offlinemirai ext RacWatchin8872
2024-07-10 15:41:09http://94.156.71.74/powerpcOfflinemirai ext RacWatchin8872
2024-07-10 15:41:09http://94.156.71.74/x86Offlinemirai ext RacWatchin8872
2024-07-10 15:41:09http://94.156.71.74/mipsOfflinemirai ext RacWatchin8872
2024-07-10 15:41:08http://94.156.71.74/sparcOfflinemirai ext RacWatchin8872
2024-07-10 15:41:06http://94.156.71.74/arcOfflinemirai ext RacWatchin8872
2024-05-02 23:09:25http://94.156.71.74/rebirth.arm6Offlineelf gafgyt ext ClearlyNotB
2024-05-02 23:09:25http://94.156.71.74/rebirth.i686Offlineelf gafgyt ext ClearlyNotB
2024-05-02 23:09:25http://94.156.71.74/rebirth.arm5Offlineelf gafgyt ext ClearlyNotB
2024-05-02 23:09:23http://94.156.71.74/rebirth.m68Offlineelf gafgyt ext ClearlyNotB
2024-05-02 23:09:23http://94.156.71.74/hiddenbin/boatnet.spcOfflineelf mirai ext ClearlyNotB
2024-05-02 23:09:22http://94.156.71.74/hiddenbin/boatnet.x86_64Offlineelf mirai ext ClearlyNotB
2024-05-02 23:09:22http://94.156.71.74/hiddenbin/boatnet.x86Offlineelf mirai ext ClearlyNotB
2024-05-02 23:09:21http://94.156.71.74/hiddenbin/boatnet.arm7Offlineelf mirai ext ClearlyNotB
2024-05-02 23:09:19http://94.156.71.74/hiddenbin/boatnet.m68kOfflineelf ClearlyNotB
2024-05-02 23:09:19http://94.156.71.74/hiddenbin/boatnet.armOfflineelf mirai ext ClearlyNotB
2024-05-02 23:09:18http://94.156.71.74/rebirth.mpslOfflineelf gafgyt ext ClearlyNotB
2024-05-02 23:09:18http://94.156.71.74/rebirth.mipsOfflineelf gafgyt ext ClearlyNotB
2024-05-02 23:09:14http://94.156.71.74/hiddenbin/boatnet.mpslOfflineelf mirai ext ClearlyNotB
2024-05-02 23:09:13http://94.156.71.74/hiddenbin/boatnet.ppcOfflineelf mirai ext ClearlyNotB
2024-05-02 23:09:12http://94.156.71.74/rebirth.spcOfflineelf gafgyt ext ClearlyNotB
2024-05-02 23:09:11http://94.156.71.74/rebirth.ppcOfflineelf gafgyt ext ClearlyNotB
2024-05-02 23:09:10http://94.156.71.74/hiddenbin/boatnet.sh4Offlineelf mirai ext ClearlyNotB
2024-05-02 23:09:10http://94.156.71.74/rebirth.sh4Offlineelf gafgyt ext ClearlyNotB
2024-05-02 23:09:09http://94.156.71.74/rebirth.arm4Offlineelf gafgyt ext ClearlyNotB
2024-05-02 23:09:09http://94.156.71.74/rebirth.arm4tOfflineelf gafgyt ext ClearlyNotB
2024-05-02 23:09:09http://94.156.71.74/hiddenbin/boatnet.arm6Offlineelf mirai ext ClearlyNotB
2024-05-02 23:09:08http://94.156.71.74/rebirth.x86Offlineelf gafgyt ext ClearlyNotB
2024-05-02 23:09:08http://94.156.71.74/rebirth.arm7Offlineelf gafgyt ext ClearlyNotB
2024-05-02 23:09:05http://94.156.71.74/hiddenbin/boatnet.mipsOfflineelf mirai ext ClearlyNotB
2024-05-02 23:09:05http://94.156.71.74/hiddenbin/boatnet.arm5Offlineelf mirai ext ClearlyNotB
2023-12-01 04:00:10http://94.156.71.74/hjio.exeOffline32 AsyncRAT ext exe zgRAT zbetcheckin
2023-11-30 09:37:07http://94.156.71.74/bnh.exeOffline32 exe zgRAT zbetcheckin
2023-11-29 11:52:07http://94.156.71.74/hjk.exeOfflineexe zgRAT vxvault
2023-11-29 11:52:06http://94.156.71.74/eta.exeOfflineexe N-W0rm zgRAT vxvault

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2024-07-10 15:41:10624af334ad1d629d8fb6d8cb7c942efe6b37bf29882b530349270b55ce2c3e55elf  
2024-07-10 15:41:105fb9ad80f866e43d007581ba44606d550310d1524bb4c2d110acdd6915dfdc4eelfGafgyt
2024-07-10 15:41:109895eb8e672fb87cad8fe268843fdf3e5a7d67732e2f5cd405396c9fe5fde941elf  
2024-07-10 15:41:10441295752299b0856299698874e39da66f5a825191bd6eac4b23d94e4c221fbbelf  
2024-07-10 15:41:100d2b8de6c42d023023b6d1cca4fb8aa76eca8cf00f60cad1e3052faff6847411elf  
2024-07-10 15:41:09f4bf61fc335db4f3e7d7d89b534bc1e6ead66a51938e119ea340fe95039935e3elf  
2024-07-10 15:41:09c0ae1eb249705f61d45ca747c91c02a411557a28792f4064c1d647abb580bc10elf  
2024-07-10 15:41:09e0b2d95a4ce45262e40bc3ed785df718eedf9c4ffa049550fac080726d97ebbeelf  
2024-07-10 15:41:0999397ef3623381d294f9cb285800bf5146b203fa2d536ee7a760e64b86a6cd02elfMirai
2024-07-10 15:41:08484c8ffc43d5cdaf279374fa07c4146ca2fa0d0ffa8c32b7d5c562f85888b552elf  
2024-07-10 15:41:06ffd4f65f00826b1dae8edfa36c8bbbefd449d1a264dc8cf725848a305b166cecelf  
2024-05-02 23:09:257a9f85fa82a79613c536f712b49f402ac1709301707ed1cd1727bbac5b2a9dbbelfGafgyt
2024-05-02 23:09:2591c143a395cdc1c7848313758a27c3b249efde81e5ca9baca482ab19768163e9elfGafgyt
2024-05-02 23:09:24b8180be7c24f36ee21552df9cd5c97cf623b0bae9693daedb9c0e95a9995b8b6elfGafgyt
2024-05-02 23:09:2386dae8f93696f59a12685ac43dd6f7cfbf5f153fc287970dbce991b5e0e7d40celfGafgyt
2024-05-02 23:09:23af40059196456f137e8c542b57e18a655a8ad1e76905a6cfe8c429f7ca8e4defelfMirai
2024-05-02 23:09:22521da3ef4c9a610183ca04406cd39b9c7126f874654719f83743e0461430f5d4elfMirai
2024-05-02 23:09:220cb9d915f5ca5e40f0ea1a2cd62dcfcd91453cb537a291cfa0c01e02492bfddbelfMirai
2024-05-02 23:09:21b1887f36f63009bcbdc93607aa4b4a604adc54ca3dbf170f520dfef732987d50elfMirai
2024-05-02 23:09:197b64361116c77496db2e0783a153804ea9fbfe9171aa6ce34288ddc71bc649c5elf  
2024-05-02 23:09:18362983cdf9beb93cc3d4b8322bd93d0afe0e32a484f1e75bfd229bed8cfc3d96elfMirai
2024-05-02 23:09:189637b3aefb147c1241ff9c9cc7fa4fb02c74ec5f4877ef99e584b54cb26525a9elfGafgyt
2024-05-02 23:09:17e18751bb68b59e06ae53b598d357f65e3327187b2fd6e3b9e70cb78cf31bb78celfGafgyt
2024-05-02 23:09:140cd25928650d896451aec0c180bbc6bc7fb14e8e4e3a0847b18459674a2998eaelfMirai
2024-05-02 23:09:13a593476d730debfcf6511c46a8a091cf0ea2090879f97c2f16909cdbe84d9677elfMirai
2024-05-02 23:09:119f2e9e859dde1e638403e1d14cbc7ac05ac65c1d33b2ff099f5ff2442bed629felfGafgyt
2024-05-02 23:09:11ec35a60c730133cb091231579cbbc1738fa65c295464ff93a27fc5f029a6bedfelfGafgyt
2024-05-02 23:09:107c440ba298a1497c6165ab79b67e25f6d22f4cf708b20d1091581ed531b4007belfGafgyt
2024-05-02 23:09:10f6efd121cf6b5ff7e54b591db37f1cbdbcdd062798416229787d175071d17e2celfMirai
2024-05-02 23:09:093535134071cf71660411f1af63654572003c3a73091e9779dca06b6ddd473117elfGafgyt
2024-05-02 23:09:09a7293a64938ce8e37aa19b146222f9ddcc4d31848e0963916068397a63fa6533elfMirai
2024-05-02 23:09:092f8f469a9e85bd5939bc37959c8d62ddff2535dabeaa0985bd81aa259e82002belfGafgyt
2024-05-02 23:09:0800671c6a523b024a70bb9bf0c421be59f4163e62d62f631eacc970e1287a9baaelfGafgyt
2024-05-02 23:09:08af2053ea11922e9f2e29313b990f8f64c15a30369a9a56c081178c121688f24belfGafgyt
2024-05-02 23:09:051ad5286438a592c5f4cbefd13b4cfd407597f96518a360c7b4e7807b18cb7a55elfMirai
2024-05-02 23:09:05a12a53a30cea31e0fa5d04e9aaa98a2adb9f8e42b9bc921d1c8207a29ca4f8acelfMirai
2023-12-01 07:31:495b614a4b5b02994b6900991eed28ee0a76a753d9e134eab400cccfc9ecd37e0aexezgRAT
2023-12-01 04:00:10f7f5e52a83cf839d901b6579c9df98755953dae650a43ed9aff8a57cf3b41382exeAsyncRAT
2023-11-30 09:37:0700fb52d7792f50ec51460c7e8ddc9bc9d951747b5f2f2c5abc246feb7ca2691bexezgRAT
2023-11-30 07:15:27afd0d6d2b9cd517f73b578b5845d729c88876910e359034a3f15dcd93c5e506eexeN-W0rm
2023-11-29 11:52:0762d9dc60aaf065ea6a33d95d6b62e20f4e1eeb704649155eff91874c226c31f7exezgRAT
2023-11-29 11:52:05ff0179442402fa306c85ba83a87df2cc46d13012a1e2819e73a6b3586c5c8dc3exezgRAT