URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	192.142.53.127
Firstseen:	2025-10-11 21:01:05 UTC
Total malware sites :	24
Online malware sites :	0 (0%)
Offline Malware sites :	24 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-10-11 21:01:08	192.142.53.127		Not listed	AS214036 ULTAHOST-AS	ZA	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-10-13 20:26:12	http://192.142.53.127/html/cnr.sh	Offline	mirai sh	BlinkzSec
2025-10-13 20:26:11	http://192.142.53.127/html/dvr.sh	Offline	mirai sh	BlinkzSec
2025-10-13 20:26:11	http://192.142.53.127/html/yarn.sh	Offline	mirai sh	BlinkzSec
2025-10-13 20:26:11	http://192.142.53.127/html/tvt.sh	Offline	mirai sh	BlinkzSec
2025-10-13 20:26:11	http://192.142.53.127/html/jaws.sh	Offline	mirai sh	BlinkzSec
2025-10-13 20:26:10	http://192.142.53.127/html/faith.sh	Offline	mirai sh	BlinkzSec
2025-10-13 20:25:12	http://192.142.53.127/html/avtech.sh	Offline	mirai sh	BlinkzSec
2025-10-13 20:25:12	http://192.142.53.127/html/libdvr.sh	Offline	mirai sh	BlinkzSec
2025-10-13 05:34:26	http://192.142.53.127/ppc	Offline	elf geofenced mirai PowerPC ua-wget USA	botnetkiller
2025-10-13 05:34:21	http://192.142.53.127/spc	Offline	elf geofenced mirai sparc ua-wget USA	botnetkiller
2025-10-13 05:34:20	http://192.142.53.127/m68k	Offline	elf geofenced m68k mirai ua-wget USA	botnetkiller
2025-10-13 05:34:20	http://192.142.53.127/x86_64	Offline	elf geofenced mirai ua-wget USA x86	botnetkiller
2025-10-13 05:34:19	http://192.142.53.127/mass	Offline	geofenced mirai sh ua-wget USA	botnetkiller
2025-10-13 05:34:18	http://192.142.53.127/arm6	Offline	arm elf geofenced mirai ua-wget USA	botnetkiller
2025-10-13 05:34:18	http://192.142.53.127/i486	Offline	elf geofenced mirai ua-wget USA x86	botnetkiller
2025-10-13 05:34:14	http://192.142.53.127/sh4	Offline	elf geofenced mirai SuperH ua-wget USA	botnetkiller
2025-10-13 05:34:13	http://192.142.53.127/x86	Offline	elf geofenced mirai ua-wget USA x86	botnetkiller
2025-10-13 05:34:13	http://192.142.53.127/arm7	Offline	arm elf geofenced mirai ua-wget USA	botnetkiller
2025-10-13 05:34:13	http://192.142.53.127/mips	Offline	elf geofenced mips mirai ua-wget USA	botnetkiller
2025-10-13 05:34:13	http://192.142.53.127/i686	Offline	elf geofenced mirai ua-wget USA x86	botnetkiller
2025-10-13 05:34:12	http://192.142.53.127/mpsl	Offline	elf geofenced mips mirai ua-wget USA	botnetkiller
2025-10-13 05:34:09	http://192.142.53.127/arm5	Offline	arm elf geofenced mirai ua-wget USA	botnetkiller
2025-10-12 06:47:07	http://192.142.53.127/yarn.sh	Offline	ascii	geenensp
2025-10-11 21:01:08	http://192.142.53.127/arm	Offline	Mozi	threatquery

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-10-13 20:26:12	51e37873ee8098d11b8f6aef0b75fd3979cf8ab70c0f507d3e7354dcaf5d7473	sh	Mirai
2025-10-13 20:26:11	2c07c0af480731bc946ef69a0238c54f45586f7907c99b03ae84587908d78f1d	sh	Mirai
2025-10-13 20:26:11	d2eb78dc1d9a893c9abe10b883ac3a5317fcdd9ea01a4b2b18b6e4061d21e992	sh	Mirai
2025-10-13 20:26:11	d40ca44aca0b3e9fec2f047ac4296fb6f0cc02ddd6cb4bcca6c228d4a77e7c95	sh	Mirai
2025-10-13 20:26:11	2e7b8b20114f302ee6f4c8b77a6a0dc7bd786c026f89f956d92dffa923c6450d	sh	Mirai
2025-10-13 20:26:10	46a36628dc6cc3fcdf22a8b4a9e464694dde769942bd0511fa5ac67aac6b4040	sh	Mirai
2025-10-13 20:25:12	aae9401a4d4dca9c78ec18d49658ecc1c03562de415064e9b3ffa60a312851f9	sh	Mirai
2025-10-13 20:25:12	a13352d2ee7191a2a8cd4751c4a0fb1cb59c62985a34ba51eb934b71ee1ed827	sh	Mirai
2025-10-13 10:18:50	f778e3737ad3ef79706bcf35f18d38dc068b7e1530b75d82a60315cb6e1443cb	elf	Mirai
2025-10-13 05:34:25	1e32f52dc84d341a165fae5e310f86ccc5f9970c898659149218ec31b9640ed4	elf	Mirai
2025-10-13 05:34:21	6c6df42a6934cf566583861f7870d55f1e09d46ece58396af6a81cf1b16ff881	elf	Mirai
2025-10-13 05:34:20	215ca8d287d9eb62a0823a4de5a6545d87453e41872f14bdd8047cab035831b1	elf	Mirai
2025-10-13 05:34:20	87d56ee88baea0191d2bec7a2abb41cb74b3f2f2b976a2e197f56d20f24a3e61	elf	Mirai
2025-10-13 05:34:19	870e33b473e851aed35095627204bd2ed7104812305361cf54df5e7b4d883d6b	sh	Mirai
2025-10-13 05:34:18	e48469fdf3f1a8c1db70d059c6ed544a40cbae094f9b31e5fb885f254b27c1ee	elf	Mirai
2025-10-13 05:34:18	21e8420e2bce3849c7a769a7528c74f53a5add799606399b056f9090347ce6c4	elf	Mirai
2025-10-13 05:34:14	769c08447897057176f994fee999fdeee673535ffe3f1d639060a1fdff17bfb8	elf	Mirai
2025-10-13 05:34:13	138370145564ddb2b40f875b28a365134567f6865bbcecd08de5a782a3252128	elf	Mirai
2025-10-13 05:34:13	51ee1e61eac7a0dfdc1fd42ca93676cbe73f288e5e3c9d81509855d6d184845a	elf	Mirai
2025-10-13 05:34:13	e19458cf891d7e14ad4b0b6e8fa8fef6066daf953f1d795085fa7309d3c7949d	elf	Mirai
2025-10-13 05:34:13	987c294af82c88d806e02abac01cb3f955533c4ea38c7fe664b84696d902f03a	elf	Mirai
2025-10-13 05:34:12	234c1476e7002c92f77d72c166719a9db67c677c13d31d7aef445f9565dcf5c8	elf	Mirai