URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	banthis.su
Domain registrar:	R01
Domain registration date:	2024-12-08 06:22:19 UTC
Spamhaus DBL :	Not blocked
SURBL :	Blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Blocked
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2024-12-16 14:18:04 UTC
Total malware sites :	23
Online malware sites :	0 (0%)
Offline Malware sites :	23 (100%)
A record(s) observed :	11

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-03-16 09:06:57	185.196.9.228	noballs.lol	SBL640645	AS42624 swissnetwork02	GB	no
2025-03-15 16:09:55	164.90.197.54		Not listed	AS14061 DIGITALOCEAN-ASN	NL	no
2025-03-14 16:54:07	146.190.24.176		Not listed	AS14061 DIGITALOCEAN-ASN	NL	no
2025-03-12 23:19:36	178.128.235.246		Not listed	AS14061 DIGITALOCEAN-ASN	CA	no
2025-03-10 20:10:48	24.199.121.112		Not listed	AS14061 DIGITALOCEAN-ASN	US	no
2025-03-01 21:42:06	193.143.1.117		SBL634458	AS198953 proton66	RU	no
2025-02-28 21:25:21	185.157.247.126	ip.126-247-157-185.reverse.inovaperf.fr	Not listed	AS34534 BULLIONET	FR	no
2025-02-15 13:43:27	185.142.53.41	root	Not listed	AS34534 BULLIONET	FR	no
2024-12-16 14:18:06	185.142.53.6	ip.6-53-142-185.reverse.cpuserv.fr	Not listed	AS34534 BULLIONET	FR	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-02-20 14:42:03	http://banthis.su/dlr.ppc	Offline	botnetdomain elf fbi.gov	NDA0E
2025-02-20 14:42:03	http://banthis.su/dlr.x86	Offline	botnetdomain elf fbi.gov	NDA0E
2025-02-20 14:42:03	http://banthis.su/dlr.spc	Offline	botnetdomain elf fbi.gov	NDA0E
2025-02-20 14:42:03	http://banthis.su/dlr.m68k	Offline	botnetdomain elf fbi.gov	NDA0E
2024-12-16 14:20:10	http://banthis.su/wget.sh	Offline	404 botnetdomain mirai sh ua-wget	NDA0E
2024-12-16 14:20:08	http://banthis.su/curl.sh	Offline	404 botnetdomain mirai sh ua-wget	NDA0E
2024-12-16 14:20:07	http://banthis.su/tarm6	Offline	404 botnetdomain elf mirai ua-wget	NDA0E
2024-12-16 14:19:07	http://banthis.su/dlr.mpsl	Offline	404 botnetdomain elf mirai ua-wget	NDA0E
2024-12-16 14:19:06	http://banthis.su/skid.mips	Offline	404 botnetdomain elf ua-wget	NDA0E
2024-12-16 14:19:06	http://banthis.su/dlr.arm	Offline	404 botnetdomain elf ua-wget	NDA0E
2024-12-16 14:19:06	http://banthis.su/darm7	Offline	404 botnetdomain elf mirai ua-wget	NDA0E
2024-12-16 14:19:06	http://banthis.su/hmips	Offline	404 botnetdomain elf mirai ua-wget	NDA0E
2024-12-16 14:19:05	http://banthis.su/dlr.arm7	Offline	404 botnetdomain elf mirai ua-wget	NDA0E
2024-12-16 14:19:05	http://banthis.su/dlr.arm5	Offline	404 botnetdomain elf ua-wget	NDA0E
2024-12-16 14:19:05	http://banthis.su/dlr.mips	Offline	404 botnetdomain elf mirai ua-wget	NDA0E
2024-12-16 14:19:05	http://banthis.su/dlr.sh4	Offline	404 botnetdomain elf mirai ua-wget	NDA0E
2024-12-16 14:18:06	http://banthis.su/tarm7	Offline	404 botnetdomain elf mirai ua-wget	NDA0E
2024-12-16 14:18:06	http://banthis.su/tarm5	Offline	404 botnetdomain elf mirai ua-wget	NDA0E
2024-12-16 14:18:06	http://banthis.su/tsh4	Offline	404 botnetdomain elf gafgyt ua-wget	NDA0E
2024-12-16 14:18:06	http://banthis.su/tarm	Offline	404 botnetdomain elf mirai ua-wget	NDA0E
2024-12-16 14:18:06	http://banthis.su/tmips	Offline	404 botnetdomain elf mirai ua-wget	NDA0E
2024-12-16 14:18:06	http://banthis.su/tmpsl	Offline	404 botnetdomain elf mirai ua-wget	NDA0E

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2025-03-01 17:35:03	da80863061dc0e02682bb76dcb69b6012e205d7c55252ec228416cdc813bc81e	sh		Mirai
2025-03-01 16:29:59	1ad5621421e5f0d4c673d5ee8948f678cf992735d7c84c25bd7b8f2c0012479c	sh		Mirai
2025-02-28 22:06:13	0343cd4da3214cb98df604d40e5422b4e4d93197ffca7aca74da98cc56902ae2	elf		Mirai
2025-02-28 22:02:58	ee5f0f6724abdf85f8814fb515d2b427aba0a9a2a3a71ae3c684625c64a98de7	elf		Mirai
2025-02-28 22:01:32	6918e5351924a5df8a94a50afc2e634977d30cbd1c7c0123e3bb72c85d11fab6	sh		Mirai
2025-02-28 21:58:21	04f153396823c359abb972cba4487f57d58f09c7788e30834307945550302090	elf		Mirai
2025-02-28 21:57:07	2f1509f448a25d6a9f87ea194487b0f36c9ef71c255f35bba58d51c8ec4ff85f	elf		Mirai
2025-02-28 21:51:56	7c485e0a785c06f12dc7bae2f2f77f30e040300125b4fc7a0c69da4c12a9f7d5	sh		Mirai
2025-02-28 21:28:57	b835ea1518783cd906bc0c3c978c948bce83027fec4db4c482cd84c2374d01c7	elf		Mirai
2025-02-28 21:28:30	01401c31c9768b24329e94d1961fb9933d8e1ed4642148e012210bd22706b3d9	elf		Mirai
2025-02-28 21:25:21	796b727c2e1e3159fe182b10917159d73578378cf2c156cb5fa2c85de459f00d	elf		Gafgyt
2025-02-20 05:43:28	57b0aa9d927b0c400e59bbafcbbc71174e13933d0943f3b69caa0bcca78db307	elf		Mirai
2025-02-20 05:06:02	01f02c63d1668e5cc0946d9aaba4dffb35a5c4e4f1fa3f7d745746e52892ab3d	elf		Mirai
2025-02-20 05:03:28	79076da109a2b9fbd073e16c09228a32be81a133455576bd58f641670de5a433	elf		Mirai
2025-02-20 00:05:10	20bfe7da0be460dbb7363a7ceb7ab70fafa11810b7362aaf6635ca8643863fb7	elf		Mirai
2025-02-20 00:02:30	badddd90fcc121fc2d43b511e876db9048587a9574664832c7fdaa2dd595dcc8	elf		Mirai
2025-02-20 00:00:48	564c243b1f553f14bc3b7bb40299a554e40d02eaedd7c7f17da7259221685fb7	elf		Gafgyt
2025-02-16 05:37:19	47f2b64af6b8bb6d7db40ae5febeff478515043ffce1bd304c258683f9d9282c	sh		Mirai
2025-02-16 04:44:15	318d9f2a75cd221b43b96d2fe1c8ef0f09f295e2d6293e78d36bf086d0d47c70	elf		Mirai
2025-02-16 03:51:30	0f0307270a78c8ed0d813a6dd50bedbe281da11f52e78d1e8f5678d929d486b3	elf		Mirai
2025-02-16 03:02:30	7185b11e03083282e3808d50e8a2ab13d3a1d3dbf722334367390be28ea60180	sh		Mirai
2025-02-15 16:30:25	4306df94e4c1acd24418adbd57af1ad2351fc4cb2c5bc7eed349492f601fcab8	elf
2025-02-15 15:27:38	9352636497437c219220be662e40369e03810706a32b8c60de2dc255413fd170	elf
2025-02-15 15:08:23	9de1932d94508eb8811d308230ba93d38f04723c903e8cfadce2da52c3dd3768	elf		Mirai
2025-02-15 14:46:04	611c37e4c9627439ede21ddfb0d1897a412183280f7cd50218b9a61c9287f2db	elf		Mirai
2024-12-16 14:20:10	b6a6cd4a15be361c9154510b635330d6f73c25fe022e5a4518af5a4518610c15	sh
2024-12-16 14:20:08	5517b11aee1c8ca8e268e4050083463f02bb9195b8bcd30b2f544159fe098b3e	sh
2024-12-16 14:20:07	69490a8947c1f25ac8fd4fc0b839aad5cc21232b5268489b6f317a9121439043	elf		Mirai
2024-12-16 14:19:06	8af6520884b12350097cea5e452e0515d5ad83d23d0e4623266afa1f2c0c85cb	elf		Mirai
2024-12-16 14:19:06	488eea9fa3708c18ed0aab7132a7afe4b28fc64b46db60f6211c5c003b52c6ff	elf
2024-12-16 14:19:06	8f0f687db309bcae6e8ac78502fc00edac03260c2ee0c843c295f6d2057f9053	elf		Mirai
2024-12-16 14:18:06	e6ff63d78c6c1f39f833f009c70b5a0163e7ac7b50b4d3183e4892a126544080	elf		Gafgyt
2024-12-16 14:18:06	adc306d1685d4a96def58fceb1a09e713a483f387dfba30298f64dd8f5764b2e	elf		Mirai
2024-12-16 14:18:06	c4a60bcce49da54f7d7a2d3b7a6c4838ee67f398a1e30609a735366722a9643b	elf		Mirai
2024-12-16 14:18:06	a88d890b2fe3fe9ec992c214cc22c0677237850f1e31f228438c2eb4ed6b9dc0	elf		Mirai
2024-12-16 14:18:06	d82fefa7c75004dbcbbfdb49bbbf2d47d70f13ea6df326dbacd3ec7bcd52323c	elf		Mirai
2024-12-16 14:18:06	b6ef2e83c58ea734af6a01070d1fd1a06cb1b72aefa4d2e7ff4305e7d72c5306	elf		Mirai