URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	152.89.170.15
Firstseen:	2025-06-05 04:39:03 UTC
Total malware sites :	23
Online malware sites :	0 (0%)
Offline Malware sites :	23 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-06-05 04:39:06	152.89.170.15	it-pom.server-by.c1vhosting.it	Not listed	AS212271 C1V	IT	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-06-05 09:34:09	http://152.89.170.15/bin	Offline	mirai sh ua-wget	BlinkzSec
2025-06-05 09:34:08	http://152.89.170.15/pay	Offline	mirai sh ua-wget	BlinkzSec
2025-06-05 09:34:08	http://152.89.170.15/wget.sh	Offline	mirai sh ua-wget	BlinkzSec
2025-06-05 09:34:08	http://152.89.170.15/oem.sh	Offline	mirai sh ua-wget	BlinkzSec
2025-06-05 09:34:08	http://152.89.170.15/dvr.sh	Offline	mirai sh ua-wget	BlinkzSec
2025-06-05 09:34:08	http://152.89.170.15/main.sh	Offline	mirai sh ua-wget	BlinkzSec
2025-06-05 09:34:08	http://152.89.170.15/w.sh	Offline	mirai sh ua-wget	BlinkzSec
2025-06-05 09:34:08	http://152.89.170.15/c.sh	Offline	mirai sh ua-wget	BlinkzSec
2025-06-05 09:34:08	http://152.89.170.15/yarn	Offline	mirai sh ua-wget	BlinkzSec
2025-06-05 09:34:08	http://152.89.170.15/wget2.sh	Offline	sh ua-wget	BlinkzSec
2025-06-05 09:34:08	http://152.89.170.15/curl.sh	Offline	sh ua-wget	BlinkzSec
2025-06-05 09:31:09	http://152.89.170.15/main_spc	Offline	elf mirai ua-wget	BlinkzSec
2025-06-05 04:42:04	http://152.89.170.15/main_ppc	Offline	elf mirai ua-wget	ClearlyNotB
2025-06-05 04:41:04	http://152.89.170.15/main_arm7	Offline	elf mirai ua-wget	ClearlyNotB
2025-06-05 04:41:04	http://152.89.170.15/main_arm6	Offline	elf mirai ua-wget	ClearlyNotB
2025-06-05 04:40:05	http://152.89.170.15/main_arm	Offline	elf mirai ua-wget	ClearlyNotB
2025-06-05 04:39:06	http://152.89.170.15/main_sh4	Offline	elf mirai ua-wget	ClearlyNotB
2025-06-05 04:39:06	http://152.89.170.15/main_arm5	Offline	elf mirai ua-wget	ClearlyNotB
2025-06-05 04:39:06	http://152.89.170.15/main_x86	Offline	elf mirai ua-wget	ClearlyNotB
2025-06-05 04:39:06	http://152.89.170.15/main_x86_64	Offline	elf mirai ua-wget	ClearlyNotB
2025-06-05 04:39:06	http://152.89.170.15/main_mpsl	Offline	elf mirai ua-wget	ClearlyNotB
2025-06-05 04:39:06	http://152.89.170.15/main_mips	Offline	elf mirai ua-wget	ClearlyNotB
2025-06-05 04:39:06	http://152.89.170.15/main_m68k	Offline	elf mirai ua-wget	ClearlyNotB

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-06-05 09:34:09	d50233080ff5c17b616e685d46b1c868cafdfff45395e5952d8156f8a75abe31	sh	Mirai
2025-06-05 09:34:08	d50233080ff5c17b616e685d46b1c868cafdfff45395e5952d8156f8a75abe31	sh	Mirai
2025-06-05 09:34:08	7b1a8b3b6ed3b2b39a2501d0ccbfbcecca3b1ee3b61e16c0300ca0b56c48e88f	sh	Mirai
2025-06-05 09:34:08	8961686ad08adc4ac8609d42419b8059fdcb0e44ccfbf3b311e290fd6a9475e4	sh	Mirai
2025-06-05 09:34:08	04b3cc12ac3765a967eb79e21080ad1d55a9305312a3efa81efc567f0b8e1023	sh	Mirai
2025-06-05 09:34:08	fd201adb9b014a7e9b10dd7da6e42a9ccb4911c79c791d95fc5450ba13a20540	sh	Mirai
2025-06-05 09:34:08	2859ddd77aea1dc3336ca702f0c62f00b6db7e353773566a9492bb45eccbb2cc	sh	Mirai
2025-06-05 09:34:08	9b3d306b8b974a3105e51286c8aa97a9d696945771c3dd205e0a6d1d52a88b9c	sh	Mirai
2025-06-05 09:34:08	d50233080ff5c17b616e685d46b1c868cafdfff45395e5952d8156f8a75abe31	sh	Mirai
2025-06-05 09:34:08	343058a45e1184ff143979f1b05df717b72f0fb904084ea05b5847cd1742b863	sh
2025-06-05 09:34:08	a8d227e608ceb4d8460e57da5c3e775f2e4170e60ee379c03f94efd648f78507	sh
2025-06-05 09:31:09	258227034178fafa463fde3c438c182bf6ac8681baa26d07bfd7767f7fe07c24	elf	Mirai
2025-06-05 04:42:04	612a1af3276c3aff19435f1788f0c1944b1d88a1ab9b9fbf7a69a55751c0f88c	elf	Mirai
2025-06-05 04:41:04	b7b564b80bb2784c76155230e6c6b3b135255f6939829dd115054539e7ff1135	elf	Mirai
2025-06-05 04:41:04	09345f643f2aa77df4aa0b80fc7e20aacd9e0f11019346eeeacbed6c44de66ba	elf	Mirai
2025-06-05 04:40:05	22f667e0a671977aabb06dbddf5098ccf968dedfeead6de499a411c0a7cc2bcd	elf	Mirai
2025-06-05 04:39:06	d3e83cab074a13642ea549bf1f043bc9401a27372d910151aa7605e0276b26d9	elf	Mirai
2025-06-05 04:39:05	d6f74c0a5f3fb8e78729fe2dc3bb4c329f931cbf21f14112d81c4008ecdc407a	elf	Mirai
2025-06-05 04:39:05	0bb7ae61f82553675cb1f2e8de6baf5cb6e23b9167e745849aecbb18ba7792d1	elf	Mirai
2025-06-05 04:39:05	1bfeada59790096161306f969c3b631b2f4098b4d0269a97c4e9518618d6eac2	elf	Mirai
2025-06-05 04:39:05	40eb38c996d59b03de13e8df4585f6d994f1d085ed48669b4f97a6cf31d6e562	elf	Mirai
2025-06-05 04:39:05	00624bb777664e814fafa82af75a69494724c22482fcd79eb4cd9c0e28a49ed8	elf	Mirai
2025-06-05 04:39:05	7756f534414530f998fbee175285442c66671ef908d04672d98fdcba59fdb6bf	elf	Mirai