URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 110.37.101.252
Firstseen:2025-09-27 05:18:04 UTC
Total malware sites :22
Online malware sites :2 (9%)
Offline Malware sites :20 (91%)
Newest active malware site :2026-02-01 15:42:17 UTC
Oldest active malware site :2026-02-01 14:59:09 UTC (Age: 2 days, 6 hours, 50 minutes)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-09-27 05:18:28 110.37.101.252GPONUser37101-252.wateen.netNot listedAS38264 WATEEN-IMS-PK-AS-AP- PKyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2026-02-01 15:42:17http://110.37.101.252:56958/iOnline32-bit arm elf mirai ext Mozi ext geenensp
2026-02-01 14:59:09http://110.37.101.252:56958/bin.shOnline32-bit arm elf mirai ext Mozi ext geenensp
2026-01-20 03:14:38http://110.37.101.252:48594/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2026-01-20 02:17:39http://110.37.101.252:48594/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2026-01-09 13:08:42http://110.37.101.252:57106/Offlineelf mirai ext Anonymous
2026-01-08 07:14:20http://110.37.101.252:57106/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2026-01-08 06:47:16http://110.37.101.252:57106/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-12-31 23:56:11http://110.37.101.252:33609/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-12-31 23:31:13http://110.37.101.252:33609/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-12-28 04:24:11http://110.37.101.252:38331/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-12-28 04:00:08http://110.37.101.252:38331/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-12-19 01:57:16http://110.37.101.252:45474/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-12-01 11:37:15http://110.37.101.252:43525/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-11-27 13:42:13http://110.37.101.252:52572/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-11-27 13:16:16http://110.37.101.252:52572/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-11-07 17:24:18http://110.37.101.252:59742/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-11-07 16:55:13http://110.37.101.252:59742/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-11-03 08:03:13http://110.37.101.252:55073/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-11-03 07:41:10http://110.37.101.252:55073/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-10-25 00:42:07http://110.37.101.252:52000/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-10-25 00:15:16http://110.37.101.252:52000/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-09-27 05:18:28http://110.37.101.252:56692/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2026-02-01 15:42:1712013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2026-02-01 14:59:0812013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2026-01-20 03:14:3812013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2026-01-20 02:17:3912013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2026-01-09 13:08:4212013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2026-01-08 07:14:2012013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2026-01-08 06:47:1612013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-12-31 23:56:1112013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-12-31 23:31:1312013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-12-28 04:24:1112013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-12-28 04:00:0812013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-12-19 01:57:1612013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-12-01 11:37:1512013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-11-27 13:42:1312013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-11-27 13:16:1612013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-11-07 17:24:1812013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-11-07 16:55:1312013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-11-03 08:03:1312013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-11-03 07:41:1012013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-10-25 00:42:0712013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-10-25 00:15:1612013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-09-27 05:18:2812013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai