URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	109.230.231.29
Firstseen:	2025-12-02 07:50:06 UTC
Total malware sites :	25
Online malware sites :	0 (0%)
Offline Malware sites :	25 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-12-02 07:50:11	109.230.231.29		Not listed	AS197071 ACTIVE-SERVERS	DE	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-12-02 07:51:15	http://109.230.231.29:8888/mimi_extract/Win32/m...	Offline	mimikatz opendir	juroots
2025-12-02 07:51:15	http://109.230.231.29:8888/mimi_extract/x64/mim...	Offline	mimikatz opendir	juroots
2025-12-02 07:51:14	http://109.230.231.29:8888/x64/mimilib.dll	Offline	mimikatz opendir	juroots
2025-12-02 07:51:14	http://109.230.231.29:8888/x64/mimispool.dll	Offline	opendir	juroots
2025-12-02 07:51:06	http://109.230.231.29:8888/mimi_extract/Win32/m...	Offline	opendir	juroots
2025-12-02 07:50:22	http://109.230.231.29:8888/chisel_server.exe	Offline	opendir	juroots
2025-12-02 07:50:22	http://109.230.231.29:8888/chisel.exe	Offline	opendir	juroots
2025-12-02 07:50:22	http://109.230.231.29:8888/agent443.exe	Offline	opendir	juroots
2025-12-02 07:50:22	http://109.230.231.29:8888/agent6000.exe	Offline	opendir	juroots
2025-12-02 07:50:20	http://109.230.231.29:8888/agent.exe	Offline	opendir	juroots
2025-12-02 07:50:18	http://109.230.231.29:8888/x64/mimikatz.exe	Offline	mimikatz opendir	juroots
2025-12-02 07:50:18	http://109.230.231.29:8888/agent_mutex.exe	Offline	opendir	juroots
2025-12-02 07:50:16	http://109.230.231.29:8888/mimikatz.zip	Offline	mimikatz opendir	juroots
2025-12-02 07:50:16	http://109.230.231.29:8888/mimikatz_base64.txt	Offline	base64-loader opendir	juroots
2025-12-02 07:50:16	http://109.230.231.29:8888/mimikatz.exe	Offline	mimikatz opendir	juroots
2025-12-02 07:50:15	http://109.230.231.29:8888/unlocker-setup.exe	Offline	opendir	juroots
2025-12-02 07:50:14	http://109.230.231.29:8888/mimikatz_remote_scri...	Offline	opendir	juroots
2025-12-02 07:50:14	http://109.230.231.29:8888/chisel_windows.gz	Offline	opendir	juroots
2025-12-02 07:50:14	http://109.230.231.29:8888/Win32/mimikatz.exe	Offline	mimikatz opendir	juroots
2025-12-02 07:50:13	http://109.230.231.29:8888/Win32/mimilib.dll	Offline	mimikatz opendir	juroots
2025-12-02 07:50:12	http://109.230.231.29:8888/Win32/mimidrv.sys	Offline	mimikatz opendir	juroots
2025-12-02 07:50:12	http://109.230.231.29:8888/mimicom.idl	Offline	opendir	juroots
2025-12-02 07:50:11	http://109.230.231.29:8888/Win32/mimilove.exe	Offline	opendir	juroots
2025-12-02 07:50:11	http://109.230.231.29:8888/x64/mimidrv.sys	Offline	mimikatz opendir	juroots
2025-12-02 07:50:11	http://109.230.231.29:8888/Win32/mimispool.dll	Offline	opendir	juroots

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-12-02 07:51:15	94795fd89366e01bd6ce6471ff27c3782e2e16377a848426cf0b2e6baee9449b	exe	MimiKatz
2025-12-02 07:51:15	61c0810a23580cf492a6ba4f7654566108331e7a4134c968c2d6a05261b2d8a1	exe	MimiKatz
2025-12-02 07:51:14	aef6ce3014add838cf676b57957d630cd2bb15b0c9193cf349bcffecddbc3623	dll	MimiKatz
2025-12-02 07:51:14	66928c3316a12091995198710e0c537430dacefac1dbe78f12a331e1520142bd	dll
2025-12-02 07:51:06	cc585d962904351ce1d92195b0fc79034dc3b13144f7c7ff24cd9f768b25e9ef	exe
2025-12-02 07:50:22	d8090f5058db31956d0503d0e4c9e16504d58623ba481715609a8ff1303d6e72	exe
2025-12-02 07:50:22	d8090f5058db31956d0503d0e4c9e16504d58623ba481715609a8ff1303d6e72	exe
2025-12-02 07:50:22	569a827eccf3e21fdb78c0817fb23af0cd1cae17434413dc036f674ee0583ce0	exe
2025-12-02 07:50:21	61155ab70f260a84792d08c16c5e20404f26c9a1996b66308c6ac305eb690d34	exe
2025-12-02 07:50:20	b10c25ad1676342cba1a88b01c8b1cbd098466ecd4ee9e2a953b5b837deedbe8	exe
2025-12-02 07:50:18	61c0810a23580cf492a6ba4f7654566108331e7a4134c968c2d6a05261b2d8a1	exe	MimiKatz
2025-12-02 07:50:17	982eecd68c7fd017d9127f54abea176aad2156fba01f4a63550d8b9e61f21243	exe
2025-12-02 07:50:16	7accd179e8a6b2fc907e7e8d087c52a7f48084852724b03d25bebcada1acbca5	zip	MimiKatz
2025-12-02 07:50:16	b9fe8aa542a12e51b34497056d785884057db8c4aaebd48e053225f5ac2422fe	txt
2025-12-02 07:50:15	61c0810a23580cf492a6ba4f7654566108331e7a4134c968c2d6a05261b2d8a1	exe	MimiKatz
2025-12-02 07:50:15	2efdffd1cf3adab21ff760f009d8893d8c4cbcf63b2c3bfcc1139457c9cd430b	exe
2025-12-02 07:50:14	0792293d87093254f4402c9e942af9c71497992f414d7a53984b43bf83137fbe	txt
2025-12-02 07:50:14	19188a4c5110709fe0277421eab563bf4d738cdd3766a440e76ff00cd653dc88	unknown
2025-12-02 07:50:13	94795fd89366e01bd6ce6471ff27c3782e2e16377a848426cf0b2e6baee9449b	exe	MimiKatz
2025-12-02 07:50:13	e60c210687e79347d06f9a144ee84417ba9ac4c1f303720f2fe4509734d670d6	dll	MimiKatz
2025-12-02 07:50:12	4ff7578df7293e50c9bdd48657a6ba0c60e1f6d06a2dd334f605af34fe6f75a5	exe	MimiKatz
2025-12-02 07:50:11	51d45e6c5df6b43b17afc863794f34000d32fb37cd7c3664efc5bd99039ac3df	txt
2025-12-02 07:50:11	d30f51bfd62695df96ba94cde14a7fae466b29ef45252c6ad19d57b4a87ff44e	exe	MimiKatz
2025-12-02 07:50:10	cc585d962904351ce1d92195b0fc79034dc3b13144f7c7ff24cd9f768b25e9ef	exe
2025-12-02 07:50:10	05842de51ede327c0f55df963f6de4e32ab88f43a73b9e0e1d827bc70199eff0	dll