URLhaus Database

You are currently viewing the URLhaus database entry for http://45.95.168.87/ftp which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	612724
URL:	http://45.95.168.87/ftp
URL Status:	Offline
Host:	45.95.168.87
Date added:	2020-09-26 02:32:04 UTC
Last online:	2020-11-09 06:XX:XX UTC
Threat:	Malware download
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2020-09-26 02:34:10 UTC to abuse{at}maxko[dot]org)
Takedown time:	1 month, 14 days, 3 hours, 37 minutes (down since 2020-11-09 06:11:36 UTC)
Tags:	bashlite elf gafgyt

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT
2020-11-06	n/a	elf	8808a94ee434f1fad033b3eea3dd255346da6871e2a8c20be831db82997ce7bc	n/a
2020-10-28	n/a	elf	a0e2455e8d79b784e2d3606da6737cf2b545047f2ebb5b554432978df0983cf6	50.79%
2020-10-07	n/a	elf	c4ede9659e422cf1d2652a18e04083343ea6f401a3777474411f0ee6d1892957	n/a
2020-10-03	n/a	elf	9f9457f1ab4d6011f800e7dbc058b5ff1737c43c38320ac90341a230f1e8be9b	n/a
2020-09-28	n/a	elf	6ef5d7ef0733658adc8d74defd590ff568ae9b03f791e9f94b8243fbd579cee4	n/a
2020-09-28	n/a	elf	41502f03e7bbde6d2fab52a341053f2759e61529c54aef02c1dd16602d031425	n/a
2020-09-26	n/a	elf	95c7b69c1b48d77924441b6337b4ac754ec3e0b51336edb09d94724d122e6ea1	51.61%