URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	14.138.109.129
Firstseen:	2021-01-11 15:35:23 UTC
Total malware sites :	26
Online malware sites :	0 (0%)
Offline Malware sites :	26 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-10-15 06:20:07	14.138.109.129		Not listed	AS9943 KNCTV-AS	KR	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2023-08-03 18:20:07	http://14.138.109.129:3236/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2023-07-31 17:37:18	http://14.138.109.129:3236/i	Offline	32-bit elf mips Mozi	geenensp
2023-07-07 03:12:07	http://14.138.109.129:3913/i	Offline	32-bit elf mips Mozi	geenensp
2023-06-30 18:59:33	http://14.138.109.129:3913/bin.sh	Offline	32-bit elf mips Mozi	geenensp
2023-06-21 06:04:27	http://14.138.109.129:2563/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2023-06-14 13:59:23	http://14.138.109.129:2563/i	Offline	32-bit elf mips Mozi	geenensp
2023-06-14 13:31:22	http://14.138.109.129:2563/bin.sh	Offline	32-bit elf mips Mozi	geenensp
2023-05-29 03:04:13	http://14.138.109.129:4558/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2023-05-27 21:54:18	http://14.138.109.129:4032/i	Offline	32-bit elf mips Mozi	geenensp
2023-05-26 04:40:22	http://14.138.109.129:4032/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2023-05-22 00:17:22	http://14.138.109.129:4032/bin.sh	Offline	32-bit elf mips Mozi	geenensp
2022-03-20 08:51:10	http://14.138.109.129:3763/i	Offline	32-bit elf mips Mozi	geenensp
2022-03-20 08:23:08	http://14.138.109.129:3763/bin.sh	Offline	32-bit elf mips Mozi	geenensp
2022-03-16 00:49:06	http://14.138.109.129:3763/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2021-11-01 06:35:06	http://14.138.109.129:3767/bin.sh	Offline	32-bit elf mips Mozi	geenensp
2021-10-31 18:20:06	http://14.138.109.129:3767/Mozi.a	Offline	elf Mozi	lrz_urlhaus
2021-10-30 20:20:11	http://14.138.109.129:3767/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2021-10-29 10:21:12	http://14.138.109.129:3767/i	Offline	32-bit elf mips Mozi	geenensp
2021-07-18 02:03:12	http://14.138.109.129:2834/i	Offline	32-bit elf mips Mozi	geenensp
2021-07-18 01:00:05	http://14.138.109.129:2834/bin.sh	Offline	32-bit elf mips Mozi	geenensp
2021-07-05 08:51:11	http://14.138.109.129:2834/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2021-05-10 17:11:19	http://14.138.109.129:4164/i	Offline	32-bit elf mips Mozi	geenensp
2021-05-10 16:40:15	http://14.138.109.129:4164/bin.sh	Offline	32-bit elf mips Mozi	geenensp
2021-05-10 14:23:11	http://14.138.109.129:4164/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2020-10-27 03:35:07	http://14.138.109.129:3913/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2020-10-15 06:20:07	http://14.138.109.129:2937/Mozi.m	Offline	elf Mozi	lrz_urlhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type
2023-08-03 18:20:07	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2023-07-31 18:43:48	84c6efae14892f34461cf21f3e6c6d749efb421ca65cecf1e23df5a6baf2d96b	elf
2023-07-31 17:37:18	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2023-07-07 03:12:07	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2023-07-02 04:48:26	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2023-06-21 06:04:27	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2023-06-14 13:59:23	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2023-06-14 13:31:22	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2023-05-29 03:04:13	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2023-05-27 21:54:18	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2023-05-26 04:40:22	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2023-05-22 00:17:22	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2022-03-20 08:51:10	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2022-03-20 08:23:08	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2022-03-16 00:49:06	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-11-01 06:35:06	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-10-31 18:20:06	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-10-30 20:20:11	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-10-29 10:21:12	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-07-18 02:03:12	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-07-18 01:00:05	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-07-05 08:51:11	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-05-10 17:11:19	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-05-10 16:40:15	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-05-10 14:23:11	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2020-10-27 03:35:07	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2020-10-15 06:20:06	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf