URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	1.246.222.249
Firstseen:	2020-02-04 14:08:56 UTC
Total malware sites :	16
Online malware sites :	0 (0%)
Offline Malware sites :	16 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-02-04 14:08:59	1.246.222.249		Not listed	AS9318 SKB-AS	KR	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-12-05 16:34:06	http://1.246.222.249:1157/Mozi.m	Offline	elf mirai Mozi	lrz_urlhaus
2021-12-17 03:34:09	http://1.246.222.249:3477/Mozi.m	Offline	elf mirai Mozi	lrz_urlhaus
2021-12-15 19:04:07	http://1.246.222.249:3477/Mozi.a	Offline	elf mirai Mozi	lrz_urlhaus
2021-10-31 21:26:35	http://1.246.222.249:2837/Mozi.a	Offline	mirai Mozi	Petras_Simeon
2021-10-22 13:33:08	http://1.246.222.249:4236/i	Offline	Mozi	Petras_Simeon
2021-10-14 16:19:07	http://1.246.222.249:4236/Mozi.m	Offline	elf mirai Mozi	lrz_urlhaus
2021-08-13 04:49:06	http://1.246.222.249:1157/Mozi.a	Offline	elf mirai Mozi	lrz_urlhaus
2021-07-10 22:22:54	http://1.246.222.249:3847/i	Offline	mirai	Petras_Simeon
2021-04-17 01:19:11	http://1.246.222.249:3847/Mozi.a	Offline	elf mirai Mozi	lrz_urlhaus
2020-12-15 02:34:06	http://1.246.222.249:2984/Mozi.a	Offline	elf mirai Mozi	lrz_urlhaus
2020-12-12 03:04:05	http://1.246.222.249:2984/Mozi.m	Offline	elf mirai Mozi	lrz_urlhaus
2020-08-12 10:41:27	http://1.246.222.249:1137/Mozi.a	Offline	elf mirai Mozi	lrz_urlhaus
2020-06-05 01:27:28	http://1.246.222.249:1137/Mozi.m	Offline	mirai Mozi	Gandylyan1
2020-05-09 20:29:05	http://1.246.222.249:2837/Mozi.m	Offline	bashlite elf gafgyt mirai	zbetcheckin
2020-03-23 03:03:11	http://1.246.222.249:4094/Mozi.m	Offline	elf mirai Mozi	Gandylyan1
2020-02-04 14:08:59	http://1.246.222.249:3847/Mozi.m	Offline	elf mirai Mozi	Gandylyan1

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2022-12-05 16:34:06	e15e93db3ce3a8a22adb4b18e0e37b93f39c495e4a97008f9b1a9a42e1fac2b0	elf	Mirai
2021-12-17 03:34:09	e15e93db3ce3a8a22adb4b18e0e37b93f39c495e4a97008f9b1a9a42e1fac2b0	elf	Mirai
2021-12-15 19:04:07	e15e93db3ce3a8a22adb4b18e0e37b93f39c495e4a97008f9b1a9a42e1fac2b0	elf	Mirai
2021-10-31 21:26:35	e15e93db3ce3a8a22adb4b18e0e37b93f39c495e4a97008f9b1a9a42e1fac2b0	elf	Mirai
2021-10-14 16:19:07	e15e93db3ce3a8a22adb4b18e0e37b93f39c495e4a97008f9b1a9a42e1fac2b0	elf	Mirai
2021-08-13 04:49:06	e15e93db3ce3a8a22adb4b18e0e37b93f39c495e4a97008f9b1a9a42e1fac2b0	elf	Mirai
2021-07-10 22:22:54	e15e93db3ce3a8a22adb4b18e0e37b93f39c495e4a97008f9b1a9a42e1fac2b0	elf	Mirai
2021-04-17 01:19:11	e15e93db3ce3a8a22adb4b18e0e37b93f39c495e4a97008f9b1a9a42e1fac2b0	elf	Mirai
2021-01-08 16:09:19	f8fd549477f4e93fe88f9ef47768e227a2d326d774c765c9d3021f6afbe74092	elf
2020-12-15 02:34:06	e15e93db3ce3a8a22adb4b18e0e37b93f39c495e4a97008f9b1a9a42e1fac2b0	elf	Mirai
2020-12-12 03:04:05	e15e93db3ce3a8a22adb4b18e0e37b93f39c495e4a97008f9b1a9a42e1fac2b0	elf	Mirai
2020-08-12 10:41:27	e15e93db3ce3a8a22adb4b18e0e37b93f39c495e4a97008f9b1a9a42e1fac2b0	elf	Mirai
2020-06-05 01:27:28	e15e93db3ce3a8a22adb4b18e0e37b93f39c495e4a97008f9b1a9a42e1fac2b0	elf	Mirai
2020-05-09 20:29:05	e15e93db3ce3a8a22adb4b18e0e37b93f39c495e4a97008f9b1a9a42e1fac2b0	elf	Mirai
2020-03-23 03:03:11	e15e93db3ce3a8a22adb4b18e0e37b93f39c495e4a97008f9b1a9a42e1fac2b0	elf	Mirai
2020-02-04 14:08:59	e15e93db3ce3a8a22adb4b18e0e37b93f39c495e4a97008f9b1a9a42e1fac2b0	elf	Mirai