URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 198.23.212.246
Firstseen:2021-02-17 06:53:03 UTC
Total malware sites :17
Online malware sites :0 (0%)
Offline Malware sites :17 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-02-17 06:53:05 198.23.212.246198-23-212-246-host.colocrossing.comNot listedAS36352 AS-COLOCROSSING- USyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2025-04-17 04:50:09http://198.23.212.246/hiddenbin/boatnet.arm5Offlineelf mirai ext opendir ua-weget abuse_ch
2025-04-17 04:50:09http://198.23.212.246/hiddenbin/boatnet.sh4Offlineelf mirai ext opendir ua-weget abuse_ch
2025-04-17 04:50:09http://198.23.212.246/hiddenbin/boatnet.mipsOfflineelf mirai ext opendir ua-weget abuse_ch
2025-04-17 04:50:09http://198.23.212.246/hiddenbin/boatnet.spcOfflineelf mirai ext opendir ua-weget abuse_ch
2025-04-17 04:50:08http://198.23.212.246/hiddenbin/boatnet.m68kOfflineelf mirai ext opendir ua-weget abuse_ch
2025-04-17 04:50:08http://198.23.212.246/hiddenbin/boatnet.arcOfflineelf mirai ext opendir ua-weget abuse_ch
2025-04-17 04:50:08http://198.23.212.246/hiddenbin/boatnet.arm7Offlineelf mirai ext opendir ua-weget abuse_ch
2025-04-17 04:50:08http://198.23.212.246/hiddenbin/boatnet.x86Offlineelf mirai ext opendir ua-weget abuse_ch
2025-04-17 04:50:08http://198.23.212.246/hiddenbin/boatnet.armOfflineelf mirai ext opendir ua-weget abuse_ch
2025-04-17 04:50:08http://198.23.212.246/hiddenbin/boatnet.ppcOfflineelf mirai ext opendir ua-weget abuse_ch
2025-04-17 04:50:08http://198.23.212.246/hiddenbin/boatnet.arm6Offlineelf mirai ext opendir ua-weget abuse_ch
2025-04-17 04:50:08http://198.23.212.246/hiddenbin/boatnet.mpslOfflineelf mirai ext opendir ua-weget abuse_ch
2025-04-17 04:50:03http://198.23.212.246/hiddenbin/boatnet.i468Offlineelf opendir ua-weget abuse_ch
2025-04-17 04:50:03http://198.23.212.246/hiddenbin/boatnet.i686Offlineelf opendir ua-weget abuse_ch
2025-04-17 04:50:03http://198.23.212.246/hiddenbin/boatnet.x86_64Offlineelf opendir ua-weget abuse_ch
2025-04-17 03:01:04http://198.23.212.246/ohshit.shOfflinemirai ext cesnet_certs
2021-02-17 06:53:05http://198.23.212.246/capi.exeOfflineAgentTesla ext exe abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-04-21 12:35:0151c865568e1b5344fe903442d7cd84f508a82786422697cef3d00e82784b6f81elfMirai
2025-04-21 09:13:140f4c1dd007f95d956a5d40a103b0c7a6b0288af36e7e106d033c2d52b661936belfMirai
2025-04-20 18:40:420d82ab1637342e25b88ffde321f7999931d7e65d32ba70089f378b8fcaa9633felf 
2025-04-19 21:25:34d666e41866bd09fd34c9fcf77e1dc7bc91c4b89e01cc0887bcb276cb1528ee96elf 
2025-04-19 20:50:12a1f86217ebc9eb628b0ba9a3d494f813adf4663cf8c10cfcf5f42bc914550f75elf 
2025-04-19 19:30:04ebb44a64cc4c02745c80614140efbe470ce4352a956825895e014dafa558ada7elf 
2025-04-19 17:38:181c01d06f64b5bf9052162377d8e8570de418f9e104e737255a706381e9dc6fa7elf 
2025-04-19 17:16:280bcfffd7c3c4cb1f626d3b0b050243bd6e9ddf126ecb81da99520871fc1dc1a3elf 
2025-04-19 16:59:3201f5987eb2e934e78e2da63b6fc95c9aa1958cd06b3db107fbef391d057fc481elf 
2025-04-19 16:04:24301f0bbbefac91a400dad7b38b874dbbf44bbf46e9bf2c4ff9b05a58a07fb322elf 
2025-04-19 11:05:597d15194b6d0d9510a77696463abdd17c7cb444b2709a16935d46aea487ca76d4elf 
2025-04-19 11:02:2708dadd48bc853393ecc5d696c04ab4e2e76c04888b5a43b3920eb73c6bbd1715elfMirai
2025-04-19 10:33:26cd6086ba4d3e5a92a6d521423e63886a5e8111ab45d54ba9ab67106fdc7711d6elf 
2025-04-19 10:17:59ad84828e52d746520acf7bed5f7ba684d577a5dc12b98750678a1dd6257416daelf 
2025-04-19 08:52:5161536d9aa7e030c3690a2236544848282c5d576fa8e9168d5fbba35497334ebeelf 
2025-04-17 04:50:09bf6984ccc9fb21beba3f492420901be0b0bace8d4530e6d2850f039622f1b96felfMirai
2025-04-17 04:50:09141064ed90f74e05f0a6c54e90385646447bb2d8fad1728c3c013dfd74572f69elfMirai
2025-04-17 04:50:094a7a342879aa745421b93e7581d6f8f1d0bc34e8e737049318a8c2cccbf598e9elfMirai
2025-04-17 04:50:081090d02e6af4103cd9ea91849c2aeb8ad525c8044ca908b35260e7b1600964e6elfMirai
2025-04-17 04:50:08c9e8e8e550acd4fea70c8570e54e647af14fc8a8a550d1173037699dcbb76a7eelfMirai
2025-04-17 04:50:0858f7d61e3e474d5f5eccbba79556070220f52fa011b7cd24bdd96c23c338cd4belfMirai
2025-04-17 04:50:0864ca8dd1a2702e0463bab19a0b826f79c55cfd46e4e1b41c6c33d7e7aa2c7530elfMirai
2025-04-17 04:50:08286a9d65e31986c5835badc60697253b34ac6702144e20a816bd194b583c0401elfMirai
2025-04-17 04:50:0844c39330556abe50947cb271a5b8852ef73f8e345074f525008bc1752a92c942elfMirai
2025-04-17 04:50:08caa631409ba183ee91bdf812c50cdd0ea4e3dda08dc95a1d91a93cb19bf03838elfMirai
2025-04-17 04:50:08b3ca1dae660b9c85a0efa3b832821c6dc98f6cca5106ca126727c61a46e7367aelfMirai
2025-04-17 04:50:089f05425478d03e4a2fd5b990fe5625d93c468b80a3880bb52475aa7561548582elfMirai
2025-04-17 03:01:049835dec5712b6b95118f9f592d538a6712c9c6a64f2c08709ddb05719a0a4aedshMirai
2021-02-19 06:18:559e4b9f59b341a8e760275904eb1c708f2c0cd20cca1339c6dbd90e53b935ff35exe AgentTesla
2021-02-18 16:02:357e0a740a561dd3f6ce599f1d6abe946addce41d7326be0daf860405fb5377b07exeAgentTesla
2021-02-17 16:55:46c9a9178d3dd94a0b59883cf092aa29ef14c9d24d3950ac642d6f6e6a3ad10cd4exeAgentTesla
2021-02-17 10:49:2321bc6e657606c08dca9703d2149640fa9738c460c8d71a65b8913b5c7a7ae0f4exeAgentTesla
2021-02-17 06:53:0504011c1270f49d82c05e80b9702130e0b62acaf6dd62b46c148a383da5b3e51aexeAgentTesla