URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 192.109.200.20
Firstseen:2026-01-30 19:30:06 UTC
Total malware sites :17
Online malware sites :0 (0%)
Offline Malware sites :17 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2026-01-30 19:30:20 192.109.200.20shiveringcheese.ptr.networkSBL692428AS51396 PFCLOUD- SEyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2026-01-30 19:33:17http://192.109.200.20/systemcl/x86_32Offlineelf mirai ext ua-wget NDA0E
2026-01-30 19:33:17http://192.109.200.20/systemcl/mipsOfflineelf mirai ext ua-wget NDA0E
2026-01-30 19:33:17http://192.109.200.20/systemcl/spcOfflineelf mirai ext ua-wget NDA0E
2026-01-30 19:32:17http://192.109.200.20/systemcl/ppcOfflineelf mirai ext ua-wget NDA0E
2026-01-30 19:32:17http://192.109.200.20/systemcl/arm7Offlineelf mirai ext ua-wget NDA0E
2026-01-30 19:32:17http://192.109.200.20/systemcl/arm6Offlineelf mirai ext ua-wget NDA0E
2026-01-30 19:32:17http://192.109.200.20/systemcl/m68kOfflineelf mirai ext ua-wget NDA0E
2026-01-30 19:32:17http://192.109.200.20/systemcl/mpslOfflineelf mirai ext ua-wget NDA0E
2026-01-30 19:32:17http://192.109.200.20/systemcl/arm5Offlineelf mirai ext ua-wget NDA0E
2026-01-30 19:31:20http://192.109.200.20/systemcl/armOfflineelf mirai ext ua-wget NDA0E
2026-01-30 19:31:19http://192.109.200.20/systemcl/sh4Offlineelf mirai ext ua-wget NDA0E
2026-01-30 19:31:19http://192.109.200.20/systemcl/x86_64Offlineelf mirai ext ua-wget NDA0E
2026-01-30 19:31:19http://192.109.200.20/wget.shOfflinemirai ext sh ua-wget Anonymous
2026-01-30 19:31:19http://192.109.200.20/systemcl/x86Offlineelf mirai ext ua-wget NDA0E
2026-01-30 19:31:19http://192.109.200.20/systemcl/arcOfflineelf mirai ext ua-wget NDA0E
2026-01-30 19:30:21http://192.109.200.20/w.shOfflinemirai ext sh ua-wget Anonymous
2026-01-30 19:30:21http://192.109.200.20/c.shOfflinemirai ext sh ua-wget Anonymous

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2026-01-30 19:33:179418229152c4443ec1c46ccdd857e1873f9327e923a3c835a77228632b6ed6f5elfMirai
2026-01-30 19:33:17e97bd21957370f3a8f8e3fa87d8a24930037bc502e4d1f4b137704f8e6196754elfMirai
2026-01-30 19:33:172da9aada390eb59926908e1d524aebd9caf576592e658f7f609224039ec67255elfMirai
2026-01-30 19:32:17d96ab01f98ffc4f7c9e823addde5b5251070d6fd29232d082073b44db0bce2b7elfMirai
2026-01-30 19:32:173f3b4a76a815a87eb358bec5991075b6fbdf419870d9600b5a05dbc20d048094elfMirai
2026-01-30 19:32:17948824f8e8ceaca8592b95029fb3641e45d9df579f9d38a65fee0da69bf6f16delfMirai
2026-01-30 19:32:173f5945900371ca5cd71423d99b8a5e9d700feba6ce1f1911ba441f3618a346ceelfMirai
2026-01-30 19:32:170709e18799de4b59083e6f7522dcec559887b3aff69d9716377c253a7d5b042felfMirai
2026-01-30 19:32:17d336ef7eab01e98908b706686fee3a4076af1b2bd40c947dd01cd0731cc4f133elfMirai
2026-01-30 19:31:20ac4a2cfb359465283fab7762bddee0218eb6bf0501fde976bb7bb0b654d73b75elfMirai
2026-01-30 19:31:19da980bb7ca7b754e215c9e6c5e699d3de122c4373366e047815f05dc9ab68634elfMirai
2026-01-30 19:31:1925bdf128f0ffdb2d91125eee6b084f41f4fc039d7a4eabb84c24d64b91cc3349elfMirai
2026-01-30 19:31:19b0eb52374c2316d5138b92c42e270e21a5a43cc661842b1bc38eea8e03bd7ca5shMirai
2026-01-30 19:31:19ea7cb57f3bb1e19a2ec60d1ceb31297892dc6e58020d58c562d51eaee40e719aelfMirai
2026-01-30 19:31:19a5c272e47879f9cae2037885aa797ce4b8ee85cf25e5c2471946c3c380569db5elfMirai
2026-01-30 19:30:2069db2a670ef3bb7d59c96bb09e022a98d2ef1af7755eb843f31292409798bac0shMirai
2026-01-30 19:30:20b74475ca385520ebb69bf84bab7a77305e7e0421a174cf0a3bf0dc1bd8be6245shMirai