URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 120.209.126.74
Firstseen:2020-09-16 16:49:14 UTC
Total malware sites :26
Online malware sites :0 (0%)
Offline Malware sites :26 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2020-09-16 16:49:27 120.209.126.74Not listedAS9808 CHINAMOBILE-CN- CNyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2021-06-29 05:20:14http://120.209.126.74:51023/Mozi.mOfflineelf mirai ext Mozi ext lrz_urlhaus
2021-06-25 19:20:12http://120.209.126.74:34918/Mozi.mOfflineelf mirai ext Mozi ext lrz_urlhaus
2021-06-18 09:21:07http://120.209.126.74:46373/Mozi.mOfflineelf mirai ext Mozi ext lrz_urlhaus
2021-05-29 16:37:47http://120.209.126.74:35985/Mozi.aOfflineelf mirai ext Mozi ext lrz_urlhaus
2021-05-28 14:07:49http://120.209.126.74:35985/Mozi.mOfflineelf mirai ext Mozi ext lrz_urlhaus
2021-05-27 12:41:45http://120.209.126.74:35985/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2021-05-27 12:34:48http://120.209.126.74:35985/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2021-05-18 14:05:18http://120.209.126.74:54537/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2021-05-17 03:35:11http://120.209.126.74:54537/Mozi.aOfflineelf mirai ext Mozi ext lrz_urlhaus
2021-05-12 22:35:16http://120.209.126.74:38897/Mozi.mOfflineelf mirai ext Mozi ext lrz_urlhaus
2021-05-11 00:05:13http://120.209.126.74:46515/Mozi.aOfflineelf mirai ext Mozi ext lrz_urlhaus
2021-05-10 15:06:19http://120.209.126.74:46515/Mozi.mOfflineelf mirai ext Mozi ext lrz_urlhaus
2021-04-13 10:34:11http://120.209.126.74:42919/Mozi.mOfflineelf mirai ext Mozi ext lrz_urlhaus
2021-04-11 21:43:14http://120.209.126.74:42919/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2021-04-10 20:14:05http://120.209.126.74:42919/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2021-03-29 03:09:09http://120.209.126.74:50602/bin.shOffline32-bit arm elf mirai ext geenensp
2021-03-28 20:01:05http://120.209.126.74:50602/iOffline32-bit arm elf mirai ext geenensp
2020-12-18 19:04:04http://120.209.126.74:41006/Mozi.mOfflineelf mirai ext Mozi ext lrz_urlhaus
2020-12-08 21:49:05http://120.209.126.74:54972/Mozi.mOfflineelf mirai ext Mozi ext lrz_urlhaus
2020-11-16 05:05:06http://120.209.126.74:36355/Mozi.aOfflineelf mirai ext Mozi ext lrz_urlhaus
2020-11-02 13:35:05http://120.209.126.74:36355/Mozi.mOfflineelf mirai ext Mozi ext lrz_urlhaus
2020-10-23 07:31:04http://120.209.126.74:58566/iOffline32-bit arm elf mirai ext geenensp
2020-10-23 06:24:04http://120.209.126.74:58566/bin.shOffline32-bit arm elf mirai ext geenensp
2020-10-06 10:49:32http://120.209.126.74:58566/Mozi.aOfflineelf mirai ext Mozi ext lrz_urlhaus
2020-09-28 13:22:05http://120.209.126.74:58566/Mozi.mOfflineelf mirai ext Mozi ext lrz_urlhaus
2020-09-16 16:49:27http://120.209.126.74:57639/Mozi.mOfflineelf mirai ext Mozi ext lrz_urlhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2021-06-29 05:20:1412013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2021-06-25 19:20:1212013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2021-06-18 09:21:0712013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2021-05-29 16:55:3312013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2021-05-28 14:20:2612013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2021-05-27 13:19:2912013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2021-05-27 13:16:5712013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2021-05-18 14:05:1812013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2021-05-17 03:35:1112013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2021-05-12 22:35:1612013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2021-05-11 00:05:1312013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2021-05-10 15:06:1912013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2021-04-13 10:34:1112013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2021-04-11 21:43:1412013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2021-04-10 20:14:0512013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2021-03-29 03:09:0912013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2021-03-28 20:01:0512013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2020-12-18 19:04:0412013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2020-12-08 21:49:0512013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2020-11-16 05:05:0612013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2020-11-02 13:35:0512013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2020-10-23 07:31:0412013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2020-10-23 06:24:0412013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2020-10-06 11:40:4912013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2020-09-28 13:22:0512013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2020-09-16 16:49:1512013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai