URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	196.251.114.199
Firstseen:	2025-10-31 07:03:04 UTC
Total malware sites :	30
Online malware sites :	0 (0%)
Offline Malware sites :	30 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-11-04 07:40:26	http://196.251.114.199/bins/pi586	Offline	elf ua-wget	abuse_ch
2025-11-04 07:40:26	http://196.251.114.199/bins/m68k	Offline	elf ua-wget	abuse_ch
2025-11-04 07:40:26	http://196.251.114.199/bins/ppc	Offline	elf ua-wget	abuse_ch
2025-11-04 07:40:25	http://196.251.114.199/bins/arm7	Offline	elf ua-wget	abuse_ch
2025-11-04 07:40:25	http://196.251.114.199/bins/arm5	Offline	elf ua-wget	abuse_ch
2025-11-04 07:40:25	http://196.251.114.199/bins/arm4	Offline	elf ua-wget	abuse_ch
2025-11-04 07:40:25	http://196.251.114.199/bins/mpsl	Offline	elf ua-wget	abuse_ch
2025-11-04 07:40:14	http://196.251.114.199/bins/pppc	Offline	elf mirai ua-wget	abuse_ch
2025-11-04 07:40:14	http://196.251.114.199/bins/px86_64	Offline	elf ua-wget	abuse_ch
2025-11-04 07:40:13	http://196.251.114.199/bins/arm6	Offline	elf ua-wget	abuse_ch
2025-11-04 07:40:13	http://196.251.114.199/bins/sh4	Offline	elf ua-wget	abuse_ch
2025-11-04 07:40:13	http://196.251.114.199/bins/x86	Offline	elf ua-wget	abuse_ch
2025-11-04 07:40:13	http://196.251.114.199/bins/mips	Offline	elf ua-wget	abuse_ch
2025-11-04 06:39:24	http://196.251.114.199/kla.sh	Offline	sh	BlinkzSec
2025-11-04 06:39:23	http://196.251.114.199/c.sh	Offline	mirai sh	BlinkzSec
2025-11-04 06:38:26	http://196.251.114.199/bin	Offline	sh	BlinkzSec
2025-11-04 06:38:25	http://196.251.114.199/wget.sh	Offline	mirai sh	BlinkzSec
2025-11-04 06:38:14	http://196.251.114.199/w.sh	Offline	mirai sh	BlinkzSec
2025-11-04 06:38:14	http://196.251.114.199/yarn	Offline	sh	BlinkzSec
2025-11-04 06:38:14	http://196.251.114.199/pay	Offline	sh	BlinkzSec
2025-10-31 07:03:25	http://196.251.114.199/bins/parm5	Offline	elf mirai ua-wget	ClearlyNotB
2025-10-31 07:03:25	http://196.251.114.199/bins/pmpsl	Offline	elf mirai ua-wget	ClearlyNotB
2025-10-31 07:03:20	http://196.251.114.199/bins/parm7	Offline	elf mirai ua-wget	ClearlyNotB
2025-10-31 07:03:20	http://196.251.114.199/bins/pm68k	Offline	elf mirai ua-wget	ClearlyNotB
2025-10-31 07:03:19	http://196.251.114.199/bins/px86	Offline	elf mirai ua-wget	ClearlyNotB
2025-10-31 07:03:19	http://196.251.114.199/bins/parm	Offline	elf mirai ua-wget	ClearlyNotB
2025-10-31 07:03:11	http://196.251.114.199/bins/pspc	Offline	elf mirai ua-wget	ClearlyNotB
2025-10-31 07:03:08	http://196.251.114.199/bins/pmips	Offline	DEU elf geofenced mirai ua-wget	ClearlyNotB
2025-10-31 07:03:07	http://196.251.114.199/bins/psh4	Offline	elf mirai ua-wget	ClearlyNotB
2025-10-31 07:03:06	http://196.251.114.199/bins/parm6	Offline	elf mirai ua-wget	ClearlyNotB

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-11-04 09:07:33	e89aacf39f962a3fbd203ed408b475d3f9ac985ab23ce3489d0dc98fcceaeb37	sh	Mirai
2025-11-04 08:40:40	e89aacf39f962a3fbd203ed408b475d3f9ac985ab23ce3489d0dc98fcceaeb37	sh	Mirai
2025-11-04 07:49:10	7a5ccea5287eeba3412d97c3ad509535d9a591b7c99ba0ce1930dcfcbfc16f61	sh
2025-11-04 07:40:14	d51e3825c28a858d438229bd88050835e090f1923b1935fb321d9d5790828653	elf	Mirai
2025-11-04 07:15:15	7a5ccea5287eeba3412d97c3ad509535d9a591b7c99ba0ce1930dcfcbfc16f61	sh
2025-11-04 06:38:14	7a5ccea5287eeba3412d97c3ad509535d9a591b7c99ba0ce1930dcfcbfc16f61	sh
2025-11-04 06:38:14	7a5ccea5287eeba3412d97c3ad509535d9a591b7c99ba0ce1930dcfcbfc16f61	sh
2025-11-04 06:38:14	f6c0e81a211d47beac6c201fa8024d4cf1423df035335c7706ffc7fa9115c5c6	sh	Mirai
2025-10-31 09:33:27	bbbc704e34bebf1947d288a63c9c2ff39a2975983cc66358d5b4c2c2b250fe57	elf	Mirai
2025-10-31 09:23:46	c643a81227e300f1e7737358b04f70039f272a36c5932161768be025be8095fd	elf	Mirai
2025-10-31 09:13:56	f03f0c9bcf169e716260f28ff60671acbdfc32902c24390691fd605914a67e05	elf	Mirai
2025-10-31 08:38:46	6daf093180aa5eed5e2e3c57d4cd08bf4256b9da14f3ca34c8e36d88ab18db2c	elf	Mirai
2025-10-31 08:14:18	6d5c885a939844849dd324987efdd55f9de3693dd660ff401810035f495ed529	elf	Mirai
2025-10-31 07:53:41	f7b0e8d4f6113c9b109adc25b0430e0a2659dc5abd6e004e27856e29f2ce0a51	elf	Mirai
2025-10-31 07:03:11	909cf78a489fcf08e7f69c4593ef2cb304f5a2f66dc1854d9f5d93b6b83b1610	elf	Mirai
2025-10-31 07:03:08	06bb8b785aea7cb2988f7ac7e29d31bfa1a65355740dd0933a7e8b6633a1c97a	elf	Mirai
2025-10-31 07:03:07	562eae54a314f565b875a5f6c1869a7992011c2c9dbf97e79252890e0476cd6e	elf	Mirai
2025-10-31 07:03:06	4a307a10ee486cace2a73f2c9c121e0ea40af6bd9d28f569f703f8a49856114c	elf	Mirai