URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	194.38.22.120
Firstseen:	2025-02-20 14:56:02 UTC
Total malware sites :	81
Online malware sites :	0 (0%)
Offline Malware sites :	81 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-02-20 14:56:04	194.38.22.120	gcakayt.ntup.network	Not listed	AS48693 NTSERVICE-AS	UA	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-02-20 15:18:03	http://194.38.22.120/mt.sh	Offline	geofenced kinsing sh ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/bg.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/kn.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/ni.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/tr.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/py.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/cf.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/cp.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/p.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/pa.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/vb.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/lf.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/ws.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/xx.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/k.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/c.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/sc.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/gi.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/unk.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/ap.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/m.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/f.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/a.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/tf.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/an.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/md.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/do.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/lh.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/spr.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/kinsing_aarch64	Offline	elf geofenced kinsing ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/gl.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/mo.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/vm.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/al.sh	Offline	geofenced sh ua-wget ukr	NDA0E
2025-02-20 15:18:03	http://194.38.22.120/hb.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:18:02	http://194.38.22.120/s.sh	Offline	CoinMiner geofenced sh ua-wget ukr	NDA0E
2025-02-20 15:18:02	http://194.38.22.120/mi.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:37	http://194.38.22.120/xmrig.exe	Offline	CoinMiner exe geofenced ua-wget ukr xmrig	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/r.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/libsystem.so	Offline	elf geofenced kinsing ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/w.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/tc.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/sp.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/ge.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/ku.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/scg.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/cpu.sh	Offline	geofenced sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/for	Offline	elf geofenced ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/wb.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/lr.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/rm.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/tm.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/ce.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/o.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/pg.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/d.sh	Offline	CoinMiner geofenced sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/j.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/h.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/ae.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/rv.sh	Offline	geofenced sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/sup.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/se.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/ph.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/kinsing	Offline	elf geofenced kinsing ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/n.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/kinsing2	Offline	elf geofenced kinsing ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/sm.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/sa.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/t.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/cpr.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/vml.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/wpf.sh	Offline	CoinMiner geofenced sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/ex.sh	Offline	CoinMiner geofenced sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/ci.sh	Offline	geofenced sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/ki.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/acb.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/cb.sh	Offline	geofenced kinsing sh ua-wget ukr	NDA0E
2025-02-20 15:17:32	http://194.38.22.120/st.sh	Offline	CoinMiner geofenced sh ua-wget ukr	NDA0E
2025-02-20 15:09:32	http://194.38.22.120/curl-aarch64	Offline	elf geofenced ua-wget ukr	abuse_ch
2025-02-20 15:09:32	http://194.38.22.120/curl-amd64	Offline	elf geofenced kinsing ukr	abuse_ch
2025-02-20 14:56:04	http://194.38.22.120/pg2.sh	Offline	CoinMiner coinmining geofenced nspps shellscript ua-wget ukr	lrz_urlhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-02-23 18:42:30	1b070b5e6467c4f251e4eb8bd42a095cdbc13c6c9c31ca6359e825972159c245	sh	CoinMiner
2025-02-23 18:42:29	c67153f754687fbc9472a3c3f209a7dd567d95c0ce866ed367a4a58091b7488f	sh	Kinsing
2025-02-23 18:42:26	c38c21120d8c17688f9aeb2af5bdafb6b75e1d2673b025b720e50232f888808a	elf	Kinsing
2025-02-23 18:42:24	c6fbd6896d162a12d9c900056781eb82f44649945808b7b009646b5397bcf6bf	elf	Kinsing
2025-02-23 18:42:07	8c4a05e63a083c05af96e08fcb3176ad22b4412d678dbe4b23464ff2658b4aa2	sh	Kinsing
2025-02-23 18:42:06	0edf7789b066e608703132735e56c1e56c026773e7a063cec70c7793a8a57ed8	sh	Kinsing
2025-02-23 18:42:05	15bd60e32b443ed8f5df60097fbfd19fb71989f95f77447f8cb8c40bd31311a1	sh	CoinMiner
2025-02-23 18:42:04	d086a222af2a7db6f5b8e09fddef0fbc47b8adec462550c6cad677f26a2a16e1	sh	Kinsing
2025-02-23 18:42:03	58464df91d5b6c4e2e92a526b8b1c18a8e60eb925073ebccff6d59853c5715b8	sh	Kinsing
2025-02-23 18:42:02	9b8054ff5d45fe145efaeaeba316822d0c27cc0a1b19fa300eb8877c55eb4a9e	sh	Kinsing
2025-02-23 18:42:01	62994f7f87a470a824f22bfe26a752cba8ebf4b1a6ca8a4e4fc6ae649801e6e4	sh	Kinsing
2025-02-23 18:42:00	fecd30cd7802f8ac4137a2d0659b3052411a99d809a5aefb48f8b821905100f3	sh
2025-02-23 18:41:59	7d4dd6e33a566948387deed0d15056bce04ac55b2d12d47533c92ee1e8481933	sh	Kinsing
2025-02-23 18:41:58	920b45fe56fbbc1127151544bf2703a7d8ff5bee422f768eb004607cc90c4219	sh	Kinsing
2025-02-23 18:41:56	1e7ebf2d952e79e0724b539e12ea5e8fee12189cc811760784a745dc4bd1a1b6	sh	Kinsing
2025-02-23 18:41:55	fec37d7849c5c3fde83c8fe9f3e8c12141f931a288a8fabdc34d4a9d15c9fcba	sh	Kinsing
2025-02-23 18:41:54	2657b9a60ae94edb29e8d5914afa71b290907edde8c65e9be7a06ac5c52dd8ab	sh	Kinsing
2025-02-23 18:41:53	154d33e07f94d0e1445d7f805866ad81d72a8ca2ba2632c5b43f6bdeceb5ca67	sh	Kinsing
2025-02-23 18:41:52	76d6321fc2da5222a00d8b255f399d74d9399d596729281e82a3db219bf55a68	sh	Kinsing
2025-02-23 18:41:51	5f5549322948ad8304a04fc96fb21ca48f87962a1499303f493a86b38bd7c68c	sh	Kinsing
2025-02-23 18:41:50	3a4a73b5ba3c3b7b287890d97fe331f5381b4c52622f08fe132187f2484d905f	sh	Kinsing
2025-02-23 18:41:49	e7dcd6fe4c55cebba453f06418bd09f6e9aac74c6e1d63a687a843207d581fa6	sh	Kinsing
2025-02-23 18:41:49	495e305f0e401ae4d43db137361948f8b92c9dde314548484786f1731d74a311	sh	Kinsing
2025-02-23 18:41:48	e525d578fffb8f146951d8387ad37c2d60c61f2311141a571a51572208cf7885	sh	Kinsing
2025-02-23 18:41:47	5afcd6676866ec08eb69891ac9e85119df2253230400f36453dd77c12ab172cf	sh	Kinsing
2025-02-23 18:41:46	b8304758ba0ef14fcf89a16a4009fc61cbf6528c96f7712fd2151d6ce56e8b10	sh	Kinsing
2025-02-23 18:41:45	7a3b462caa85ccfaa810a182c527bb75511a455f81d37e7f7ced6162d7cf2414	sh	Kinsing
2025-02-23 18:41:44	64a3043d718a48c1474d9584bad242a70067b9c79f7ccc0f7f8f1ee5b987ff6d	sh	Kinsing
2025-02-23 18:41:43	6500a2f596046773ff769e86ec030374b461433ddb0a650dfed4667e797f2b94	sh	Kinsing
2025-02-23 18:41:42	7f65f1d3cc38298c0b27c6f307b51a578619a16f12d3e8c662c3b7e290d08ebe	sh	Kinsing
2025-02-23 18:41:41	41514012cc5d28caacffb293409e932670a9104ba31971d8838e0f228e9d93d8	sh	Kinsing
2025-02-23 18:41:40	03e4f04531cb41a4a13e29255ff3e647697f9aaea9b0e83d21d62f354940c881	sh	Kinsing
2025-02-23 18:41:39	a14be34769e1dda95da96a7f47b1c98037ba213d0442a2b2373e340197e43fd2	sh	Kinsing
2025-02-23 18:41:39	789a62dbdf36198f26d3f0b453e31f0f055067f121a06962099622221541a2a0	sh	Kinsing
2025-02-23 18:41:38	4612796f8d7909642bac5713c3aa1be3cc5725131455ca95fa52546884f15e2a	sh	Kinsing
2025-02-23 18:41:37	f818b0e322efac17b2274ead17ff2a4195800f4c6a5617227fe75488495ff322	sh	Kinsing
2025-02-23 18:41:35	4c4e76e7c553a9f419c43bb0b8157a9455d90c2c3890ccf6e6e120c5d8796128	sh	Kinsing
2025-02-23 18:41:34	4f8b6bd4bd56285d2039e605ec990fc86faf000eb369d92bf8c7568c7b745395	sh	Kinsing
2025-02-23 18:41:33	e1ecb846011ce98ad8e3efe2aa9d511e1c08787f15810abd456792ed9e98818f	sh	Kinsing
2025-02-23 18:41:31	114c13aa2907527e1f08819d143a67c23ee030dc680bb0a18a9d1de95de7a6c9	sh	Kinsing
2025-02-23 18:41:30	35ebb29b633366f3b62034fe03bdabf604f328295c418c1831641da828752aa3	sh	Kinsing
2025-02-23 18:41:29	cbe53e9e5185edfe9da69ceed715e384858fe1c2d451a6869787ed7f41f79941	sh	Kinsing
2025-02-23 18:41:28	aa9b110527e62a224d858d9cee7a4545fde2394d32d5adeaefeb1d9408d973e0	sh	Kinsing
2025-02-23 18:41:26	c768d8ef99e6dedb4cf87c61556e97105bc6ffbc346b0ed0cbc03fe8846b415a	sh	Kinsing
2025-02-23 18:41:25	54dece0858f32afce3071451352fc9f2bfb58d4b6bc406919f5447366cfc5d78	sh	Kinsing
2025-02-23 18:41:23	2913825773f26186101310a872706b0a98a7d6347134b24cf0009fedebeb6748	sh	Kinsing
2025-02-23 18:41:21	eb179a70cbc9d4c84a5abce9128ed505113b1059c9ef4008a30ed84fd4a3cc9a	sh	Kinsing
2025-02-23 18:41:20	1163e38d65cae6cf2ef1fc9f09a7d662508d9aa53d48f3b7cd32f42df4b168ac	sh	Kinsing
2025-02-23 18:41:19	e7034295394dde8666895014f06c108ec40fca9d9d16c99748ac1488bb42231d	sh	Kinsing
2025-02-23 18:41:18	787e2c94e6d9ce5ec01f5cbe9ee2518431eca8523155526d6dc85934c9c5787c	elf	Kinsing
2025-02-23 18:41:16	2ddd5ef13511e2f74af72c4ad4dbc5967c2f853b992fe4fed1df0939b045ee4d	sh	Kinsing
2025-02-23 18:41:14	25d19152363063eb2b1976b416452e63ad21c205f727837d38d17001831f17f3	elf
2025-02-23 18:41:13	697059366f473ac32a9d77d08e864c3027a6133960c2512db2f458d5a7a47d94	sh	Kinsing
2025-02-23 18:41:12	2a7acc97265ab5d3fb4e42ddfa7815d7e2ad06084c5444422aa41e8b8bde9137	sh	Kinsing
2025-02-23 18:41:11	ca33dab18381c947257bcf5269bb818b733c890e5af6d0048aa5da629545ef14	sh	Kinsing
2025-02-23 18:41:10	3946cfee065f6dbf774207eba855006e9bdad00b5b5d06d274bc2a8e012be6bc	sh	Kinsing
2025-02-23 18:41:08	c6ff3a097ab737ce4430fb07453ca117c717a3156c0e4e2adfa56f98ba6d2945	sh	Kinsing
2025-02-23 18:41:07	c7ee98310542e2ba9bfa0a3da8c6a0b85edee811c0f10db9021074e420fba0c4	sh	Kinsing
2025-02-23 18:41:06	8f8d86c69236df10dbfe2536af307afa46317aef0fe4b544f0fb3122b59b24d5	sh	Kinsing
2025-02-23 18:41:04	3f57fceadeb097c028a7d7fa5e917da65bb9174245cdfde720629c6c495166fe	sh	Kinsing
2025-02-23 18:41:02	d5b2d30c7a94cd8d14c44162e61d593fd328d7460cf6895399601bb84aebf71c	sh	Kinsing
2025-02-23 18:41:01	fda4e028befffaf446b8bc494723729887ba79161d492d0ee06f0c0be66cfcd0	sh	Kinsing
2025-02-23 18:40:59	2566fe535a531152d9a441ddc6ddff3643882afe1ec120970337eabfacf6d056	sh	Kinsing
2025-02-23 18:40:40	05e7db3e51edb28600e3e3e28988a6186087ad6e6ffb7d3e38921b12e76d1ca1	sh	Kinsing
2025-02-23 18:40:39	5fec9ec232c0d0d4798ca31063d6e1b0ee52ec2246ff5a3a665d3fd1ec06ce80	sh	CoinMiner
2025-02-23 18:40:37	ece8ca0be686a214bd04f395150a06cc5b6312275daed8aab74bbe96d45bd253	sh	Kinsing
2025-02-23 18:40:34	11103c8122ea302803c0be9eb7c750a615ac7248ee9b1d97b4a1c15c9b5af87e	sh	CoinMiner
2025-02-23 18:40:31	350b239fa38c1bb84bed3acddf4485ae2d4dcb03b0d7c7e7f9445cbf22ab2225	sh	Kinsing
2025-02-23 18:40:30	b4d78fabe2943745667e6d6d4b1094a68a6889b1c767ce84c8dffa49f3ffb293	sh	Kinsing
2025-02-23 18:40:28	24d92e90b4dc2dc6391e29be2a3e2395a4b93013baf0312b4fdda1adbd8b3753	sh	Kinsing
2025-02-23 18:40:27	bbc997c2447527747f7785423b83f9def89a3270aa8c3c1fd8f2a2f38e13bf87	sh	CoinMiner
2025-02-23 18:40:25	3e17d3a355cc7dc00d953d65cffbc54e07d2bebbdf5be2d0f1031240c7798d08	elf
2025-02-23 18:36:50	ec1213394717932b0062136ce96d42092e9120da1e32cce7ff355de67c7b6988	sh	Kinsing
2025-02-23 13:28:52	6b9e23cb675be370a18a0c4482dc566be28920d4f1cd8ba6b4527f80acf978d3	elf	Kinsing
2025-02-23 13:28:08	6c7dccc2dd1f572db4ef853c81f88ac291f87025ff8c8f94a7d020b5730a7fa6	sh	Kinsing
2025-02-23 13:27:40	787e2c94e6d9ce5ec01f5cbe9ee2518431eca8523155526d6dc85934c9c5787c	elf	Kinsing
2025-02-20 15:17:37	5e5b5171a95955ecb0fa8f9f1ba66f313165044cc1978a447673c0ac17859170	exe	CoinMiner
2025-02-20 14:56:04	37a57c2532cf79ae7c2c6ac0d99df8f51732562e27d9807457a86f9e34bbf3f6	sh	CoinMiner