URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 196.251.84.250
Firstseen:2025-05-02 16:59:03 UTC
Total malware sites :27
Online malware sites :0 (0%)
Offline Malware sites :27 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2025-05-06 14:36:09http://196.251.84.250/bins/i686Offlinecensys elf ua-wget NDA0E
2025-05-06 14:36:09http://196.251.84.250/bins/arm7Offlinecensys elf ua-wget NDA0E
2025-05-06 14:36:09http://196.251.84.250/bins/arcOfflinecensys elf ua-wget NDA0E
2025-05-06 14:33:37http://196.251.84.250/pulseOfflinecensys mirai ext sh ua-wget NDA0E
2025-05-06 14:33:37http://196.251.84.250/goaheadOfflinecensys mirai ext sh ua-wget NDA0E
2025-05-06 14:33:37http://196.251.84.250/gpon443Offlinecensys mirai ext sh ua-wget NDA0E
2025-05-06 14:33:33http://196.251.84.250/huaweiOfflinecensys mirai ext sh ua-wget NDA0E
2025-05-06 14:33:33http://196.251.84.250/zteOfflinecensys mirai ext sh ua-wget NDA0E
2025-05-06 14:33:12http://196.251.84.250/lgOfflinecensys mirai ext sh ua-wget NDA0E
2025-05-06 14:33:11http://196.251.84.250/wget.shOfflinecensys mirai ext sh ua-wget NDA0E
2025-05-06 14:33:10http://196.251.84.250/realtekOfflinecensys mirai ext sh ua-wget NDA0E
2025-05-06 14:33:10http://196.251.84.250/hnapOfflinecensys mirai ext sh ua-wget NDA0E
2025-05-06 14:33:09http://196.251.84.250/jawsOfflinecensys mirai ext sh ua-wget NDA0E
2025-05-06 14:33:09http://196.251.84.250/update.shOfflinecensys mirai ext sh ua-wget NDA0E
2025-05-06 14:33:09http://196.251.84.250/zyxelOfflinecensys mirai ext sh ua-wget NDA0E
2025-05-06 14:33:09http://196.251.84.250/awsOfflinecensys mirai ext sh ua-wget NDA0E
2025-05-06 14:33:09http://196.251.84.250/thinkphpOfflinecensys mirai ext sh ua-wget NDA0E
2025-05-02 17:20:32http://196.251.84.250/bins/mpslOfflineelf mirai ext ua-wget BlinkzSec
2025-05-02 17:20:04http://196.251.84.250/bins/arm6Offlineelf mirai ext ua-wget BlinkzSec
2025-05-02 17:20:04http://196.251.84.250/bins/ppcOfflineelf mirai ext ua-wget BlinkzSec
2025-05-02 17:19:32http://196.251.84.250/bins/sh4Offlineelf mirai ext ua-wget BlinkzSec
2025-05-02 17:19:32http://196.251.84.250/bins/spcOfflineelf mirai ext ua-wget BlinkzSec
2025-05-02 17:19:05http://196.251.84.250/bins/m68kOfflineelf mirai ext ua-wget BlinkzSec
2025-05-02 17:19:04http://196.251.84.250/bins/x86Offlineelf mirai ext ua-wget BlinkzSec
2025-05-02 17:19:04http://196.251.84.250/bins/arm5Offlineelf mirai ext ua-wget BlinkzSec
2025-05-02 16:59:33http://196.251.84.250/bins/armOffline32-bit elf mirai ext threatquery
2025-05-02 16:59:10http://196.251.84.250/bins/mipsOffline32-bit elf mirai ext threatquery

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-05-06 22:47:074d9dea00cc38dbe0860e59de29daa0dbcf61f304e2b15acafd43c9ac076d2738shMirai
2025-05-06 20:42:06cec1cf675f2a65b8640089630de3664a19bcc9efcd202a41b59a3d6892cadac1shMirai
2025-05-06 20:17:0757276110526e4adf92a1a3809e7c752e543b73ead633253cfc4830573a8888ecshMirai
2025-05-06 17:58:548d009fbbf5f634e1f715385fde3da14e54cce967eea18d1de5c5df08f9a8094dshMirai
2025-05-06 17:51:07bfc7d8c99a7a87cc4def1d429f99479a3a6e4e8e00d87441713b5d0c67947dc9shMirai
2025-05-06 14:33:12c94233d242c3d39cd3f8a822886e07d30049ea1d00f931ae4d0eea11f9262db8shMirai
2025-05-06 14:33:115b0ae63cfb3072e95d0fdc75326b99e59bf27c15fff865e796d2afb3b93c064eshMirai
2025-05-06 14:33:10df45951f2a3742d5e507b3d7e8edc3427b8ba151ecd55ad7c1d9c1d64cbba39cshMirai
2025-05-06 14:33:0907fab0034f3fb641e13f0ab2eefb288343a99be9e150fcc06d965e57ec58cae1shMirai
2025-05-06 14:33:09f93f83a1a7ccc801cfca8a4aaf7a146e40764ee314bb0ee81382927e965d0b45shMirai
2025-05-06 14:33:095b0ae63cfb3072e95d0fdc75326b99e59bf27c15fff865e796d2afb3b93c064eshMirai
2025-05-06 14:33:0903e039fd0316bb1d70194f8aea6eda3f2299592f32331b3e876fc93c1b87a8d6shMirai
2025-05-06 14:33:094bea8f89518689e499453813017c8828c72e8707a0752d4f9163c2f1e209b102shMirai
2025-05-06 14:33:097cd2dc4bbe25ec6112ff3cd503a63cc28ed2de5e5dc53dee13d9e9d46de28e98shMirai
2025-05-02 18:33:3193d798bc2b8e2746f772cbe2346fa4abb0dd07ad93512c2021ea15cd900a73d9elfMirai
2025-05-02 17:21:214991a1558e62267fa1a41abb9c19796609f26e7426d283017a3b9e83cf7599d0elfMirai
2025-05-02 17:21:082f5bccd2e1bd3474bc60eeb58d47ba361827321324a3edd2aa65cd586487811celfMirai
2025-05-02 17:20:0432d033f243ddd5c2a7462deedc63297a1af5a5f583a799ecb07ed88a5c8100d5elfMirai
2025-05-02 17:20:043b8cba8e9d4b92c37c00e78bd3642a13f54e547fb0619270bc03f00af8bd1b28elfMirai
2025-05-02 17:19:54139752248d1b8b97331aa528399982e2f5776d2ec38e783f2357f47a0e23ad73elfMirai
2025-05-02 17:19:05240a26f3fae0060c058a4b49d8681757dc04e737c594cdc471041c30c9f4f765elfMirai
2025-05-02 17:19:04d32808af1e42d5e38850da570373372c6acbd46f21cc5f40cad349816afff6d2elfMirai
2025-05-02 17:19:04a52acf74b82e2a8d34d49b7bcb81fae3ca2bf7ba4937884c3b4cb4f8e849feacelfMirai
2025-05-02 16:59:10708cd48e7af4d40c16fcf7e30ea9d0c696816c6722d90c0248a00106bb30fcb7elfMirai