URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 169.40.135.84
Firstseen:2026-02-01 20:41:01 UTC
Total malware sites :28
Online malware sites :0 (0%)
Offline Malware sites :28 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2026-02-01 20:41:04 169.40.135.84Not listedAS209274 Kraken-Network-ISP- NLyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2026-02-01 23:50:27http://169.40.135.84:8080/bot.armv4lOfflinearm elf geofenced mirai ext opendir ua-wget USA botnetkiller
2026-02-01 23:40:59http://169.40.135.84:8080/bot.armv5lOfflinearm elf geofenced mirai ext opendir ua-wget USA botnetkiller
2026-02-01 23:33:00http://169.40.135.84:8080/bot.cross-compiler-sh4Offlineelf geofenced mirai ext opendir SuperH ua-wget USA botnetkiller
2026-02-01 23:32:36http://169.40.135.84:8080/bot.sh4Offlineelf geofenced mirai ext opendir SuperH ua-wget USA botnetkiller
2026-02-01 23:32:30http://169.40.135.84:8080/bot.cross-compiler-x8...Offlineelf geofenced mirai ext opendir ua-wget USA x86 botnetkiller
2026-02-01 23:28:21http://169.40.135.84:8080/bot.arc_gnu_2017.09_p...Offlinearc elf geofenced mirai ext opendir ua-wget USA botnetkiller
2026-02-01 23:26:17http://169.40.135.84:8080/bot.m68kOfflineelf geofenced m68k mirai ext opendir ua-wget USA botnetkiller
2026-02-01 23:25:38http://169.40.135.84:8080/bot.i686Offlineelf geofenced mirai ext opendir ua-wget USA x86 botnetkiller
2026-02-01 23:19:27http://169.40.135.84:8080/bot.mipselOfflineelf geofenced mips mirai ext opendir ua-wget USA botnetkiller
2026-02-01 23:12:21http://169.40.135.84:8080/bot.i586Offlineelf geofenced mirai ext opendir ua-wget USA x86 botnetkiller
2026-02-01 23:01:23http://169.40.135.84:8080/bot.cross-compiler-i586Offlineelf geofenced mirai ext opendir ua-wget USA x86 botnetkiller
2026-02-01 22:56:37http://169.40.135.84:8080/bot.cross-compiler-ar...Offlinearm elf geofenced mirai ext opendir ua-wget USA botnetkiller
2026-02-01 22:56:21http://169.40.135.84:8080/bot.powerpc-440fpOfflineelf geofenced mirai ext opendir PowerPC ua-wget USA botnetkiller
2026-02-01 22:31:25http://169.40.135.84:8080/bot.cross-compiler-ar...Offlinearm elf geofenced mirai ext opendir ua-wget USA botnetkiller
2026-02-01 22:29:05http://169.40.135.84:8080/attacks.x86_64.oOfflineelf geofenced opendir ua-wget USA x86 botnetkiller
2026-02-01 22:22:50http://169.40.135.84:8080/bot.sparcOfflineelf geofenced mirai ext opendir sparc ua-wget USA botnetkiller
2026-02-01 22:22:31http://169.40.135.84:8080/bot.x86_64.oOfflineelf geofenced opendir ua-wget USA x86 botnetkiller
2026-02-01 22:21:42http://169.40.135.84:8080/bot.cross-compiler-i686Offlineelf geofenced mirai ext opendir ua-wget USA x86 botnetkiller
2026-02-01 22:14:47http://169.40.135.84:8080/bot.cross-compiler-po...Offlineelf geofenced mirai ext opendir PowerPC ua-wget USA botnetkiller
2026-02-01 22:13:38http://169.40.135.84:8080/bot.cross-compiler-m68kOfflineelf geofenced m68k mirai ext opendir ua-wget USA botnetkiller
2026-02-01 22:01:42http://169.40.135.84:8080/bot.cross-compiler-mipsOfflineelf geofenced mips mirai ext opendir ua-wget USA botnetkiller
2026-02-01 21:52:35http://169.40.135.84:8080/bot.cross-compiler-sparcOfflineelf geofenced mirai ext opendir sparc ua-wget USA botnetkiller
2026-02-01 21:47:25http://169.40.135.84:8080/bot.powerpcOfflineelf geofenced mirai ext opendir PowerPC ua-wget USA botnetkiller
2026-02-01 21:41:39http://169.40.135.84:8080/bot.mipsOfflineelf geofenced mips mirai ext opendir ua-wget USA botnetkiller
2026-02-01 21:21:02http://169.40.135.84:8080/libbot.sh4.soOfflineelf geofenced mirai ext opendir SuperH ua-wget USA botnetkiller
2026-02-01 20:50:23http://169.40.135.84:8080/bot.cross-compiler-po...Offlineelf geofenced mirai ext opendir PowerPC ua-wget USA botnetkiller
2026-02-01 20:50:23http://169.40.135.84:8080/bot.cross-compiler-mi...Offlineelf geofenced mips mirai ext opendir ua-wget USA botnetkiller
2026-02-01 20:41:04http://169.40.135.84:8080/hmac.x86_64.oOfflineelf geofenced mirai ext opendir ua-wget USA x86 botnetkiller

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2026-02-01 20:41:0327257652132fa1deb30d9223d8b8e793fb467da4ac07a04b85c6c960b8d68dafelf