URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	141.11.62.4
Firstseen:	2025-07-31 05:00:04 UTC
Total malware sites :	28
Online malware sites :	0 (0%)
Offline Malware sites :	28 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-07-31 05:00:05	141.11.62.4		Not listed	AS214481 wczapkowicz-as	NL	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-08-10 12:42:35	http://141.11.62.4/mpsl	Offline	elf geofenced GorillaBotnet ua-wget USA	botnetkiller
2025-08-10 12:42:35	http://141.11.62.4/arm5	Offline	elf geofenced GorillaBotnet ua-wget USA	botnetkiller
2025-08-10 12:42:35	http://141.11.62.4/ppc	Offline	elf geofenced GorillaBotnet ua-wget USA	botnetkiller
2025-08-10 12:42:35	http://141.11.62.4/sh4	Offline	elf geofenced GorillaBotnet ua-wget USA	botnetkiller
2025-08-10 12:42:35	http://141.11.62.4/m68k	Offline	elf geofenced GorillaBotnet ua-wget USA	botnetkiller
2025-08-10 12:42:35	http://141.11.62.4/spc	Offline	elf geofenced GorillaBotnet ua-wget USA	botnetkiller
2025-08-10 12:42:35	http://141.11.62.4/x86_64	Offline	elf geofenced GorillaBotnet ua-wget USA	botnetkiller
2025-08-10 12:42:35	http://141.11.62.4/i586	Offline	elf geofenced GorillaBotnet ua-wget USA	botnetkiller
2025-08-10 12:42:35	http://141.11.62.4/arm6	Offline	elf geofenced GorillaBotnet ua-wget USA	botnetkiller
2025-08-10 12:42:32	http://141.11.62.4/arm7	Offline	elf geofenced GorillaBotnet ua-wget USA	botnetkiller
2025-08-09 21:01:03	http://141.11.62.4/x86	Offline	Mozi	threatquery
2025-08-09 03:01:04	http://141.11.62.4/mips	Offline	Mozi	threatquery
2025-08-08 09:04:04	http://141.11.62.4/arm	Offline	Mozi	threatquery
2025-08-02 07:43:04	http://141.11.62.4/x86_34.nn	Offline	elf geofenced ua-wget USA	abuse_ch
2025-08-01 22:00:07	http://141.11.62.4/jaws.sh	Offline	censys mirai sh ua-wget	NDA0E
2025-08-01 21:59:08	http://141.11.62.4/lol.sh	Offline	censys mirai sh ua-wget	NDA0E
2025-07-31 05:01:07	http://141.11.62.4/m68k.nn	Offline	elf geofenced GorillaBotnet mirai ua-wget USA	botnetkiller
2025-07-31 05:01:02	http://141.11.62.4/arm.nn	Offline	arm elf geofenced GorillaBotnet mirai ua-wget USA	botnetkiller
2025-07-31 05:00:12	http://141.11.62.4/x86_64.nn	Offline	elf geofenced GorillaBotnet mirai ua-wget USA	botnetkiller
2025-07-31 05:00:12	http://141.11.62.4/mipsel.nn	Offline	elf geofenced GorillaBotnet mirai ua-wget USA	botnetkiller
2025-07-31 05:00:09	http://141.11.62.4/mips.nn	Offline	elf geofenced GorillaBotnet mirai ua-wget USA	botnetkiller
2025-07-31 05:00:09	http://141.11.62.4/sh4.nn	Offline	elf geofenced GorillaBotnet mirai ua-wget USA	botnetkiller
2025-07-31 05:00:09	http://141.11.62.4/x86_32.nn	Offline	elf geofenced GorillaBotnet mirai ua-wget USA	botnetkiller
2025-07-31 05:00:06	http://141.11.62.4/sparc.nn	Offline	elf geofenced GorillaBotnet mirai ua-wget USA	botnetkiller
2025-07-31 05:00:05	http://141.11.62.4/powerpc.nn	Offline	elf geofenced GorillaBotnet mirai ua-wget USA	botnetkiller
2025-07-31 05:00:05	http://141.11.62.4/arm5.nn	Offline	arm elf geofenced GorillaBotnet mirai ua-wget USA	botnetkiller
2025-07-31 05:00:05	http://141.11.62.4/arm6.nn	Offline	arm elf geofenced GorillaBotnet mirai ua-wget USA	botnetkiller
2025-07-31 05:00:05	http://141.11.62.4/arm7.nn	Offline	arm elf geofenced GorillaBotnet mirai ua-wget USA	botnetkiller

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-08-10 05:36:34	874a06388ef6532595962a7d25418b60da0559560a5f296a00ca3fc7846718bf	sh	Mirai
2025-08-04 06:26:17	a80a827d266f4920137e2c5028b7d360beafff47a5a6341f93f2032ee44c0869	sh	Mirai
2025-08-01 22:00:07	17b651a167bd77290314f5d828731fc46ba03f460e4b1485244e0b9556225e62	sh	Mirai
2025-08-01 21:59:08	db32c415d5bb72cbafdf8f149d2c24565304a0e54221321266192ab94e47c55e	sh	Mirai
2025-08-01 06:01:49	fbe1aaa1037ddceae279745c7ec4435ca2a343e78fa766113e40332b26f15625	elf	Mirai
2025-07-31 05:09:42	4316a20821a1eba161a7ab18b4a3efa763310cf5e91dff83fb61cbbfba7c5fa6	elf	Mirai
2025-07-31 05:09:30	bcaf40809284280b10b48a7b78bb9fbb04f8a0f1341ecddaa18ed286def8f26e	elf	Mirai
2025-07-31 05:09:27	68a2d3abee5f7b71c5428ec744712d36c9a24f3a323fad4c4bb3b8cea2993b5a	elf	Mirai
2025-07-31 05:09:12	7fa61d96545d9723646d109fa0303ea8c97adb12f411f3b44f49e178b7922d74	elf	Mirai
2025-07-31 05:09:09	e367518f1343b4196c8e32207ea7fee2ed374fc6cf556768e76365372b2f6af5	elf	Mirai
2025-07-31 05:09:01	f1590dbb7f242d7a8212a1108ced0b2feff991ba958b2109e826fa35b6f6fe70	elf	Mirai
2025-07-31 05:01:02	86a77643ac33e490cf49512d223e3c9b167337875ea727751cb1560d1a1460e0	elf	Mirai
2025-07-31 05:00:12	1cc472923e86a7f5753c1289f99df9d37ab5395a3c1b51a41e1f63d8d2dbabe4	elf	Mirai
2025-07-31 05:00:12	84e2dcd4f9377d758a3e0ad2f26aff33a990c9967de82beda592e44cca0183dd	elf	Mirai
2025-07-31 05:00:09	b2ad71184d7ccc265f7d4f9ba366a5c173eab687e6b52615d409a42dac540288	elf	Mirai
2025-07-31 05:00:09	1dbe006076a725cf351e32e38688e035b7c3b7f87a3e15937b0bda163b0812c9	elf	Mirai
2025-07-31 05:00:09	642e42d38ece15de9f1db5ea1c6690c14fec6e8d7d90f58759402f7197d4d403	elf	Mirai