URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | 2.249.142.93 |
|---|---|
| Firstseen: | 2025-08-23 15:01:05 UTC |
| Total malware sites : | 10 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 10 (100%) |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2025-08-23 15:01:17 | 2.249.142.93 | 2-249-142-93-no600.tbcn.telia.com | Not listed | AS3301 TELIANET-SWEDEN |  SE | yes |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2026-03-25 16:57:05 | http://2.249.142.93:45821/i | Offline |  GAYINT_DOT_ORG | |
| 2026-01-15 06:15:16 | http://2.249.142.93:44646/bin.sh | Offline | 32-bit elf mips Mozi  |  geenensp |
| 2026-01-09 13:08:53 | http://2.249.142.93:44646/ | Offline | elf mirai | Anonymous |
| 2026-01-08 03:02:19 | http://2.249.142.93:44646/i | Offline | 32-bit elf Mozi |  threatquery |
| 2025-12-23 11:58:08 | http://2.249.142.93:46919/bin.sh | Offline | 32-bit elf mips Mozi | geenensp |
| 2025-12-17 15:30:07 | http://2.249.142.93:46919/i | Offline | 32-bit elf mips Mozi | geenensp |
| 2025-09-10 14:29:18 | http://2.249.142.93:41683/i | Offline | 32-bit elf mips Mozi | geenensp |
| 2025-09-10 14:05:10 | http://2.249.142.93:41683/bin.sh | Offline | 32-bit elf mips Mozi | geenensp |
| 2025-08-26 04:44:26 | http://2.249.142.93:44709/bin.sh | Offline | 32-bit elf mips Mozi | geenensp |
| 2025-08-23 15:01:17 | http://2.249.142.93:44709/i | Offline | 32-bit elf Mozi | threatquery |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2026-03-25 16:57:05 | f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8 | elf | ||
| 2026-01-15 06:15:16 | f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8 | elf | ||
| 2026-01-09 13:08:53 | f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8 | elf | ||
| 2026-01-08 03:02:19 | f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8 | elf | ||
| 2025-12-23 11:58:08 | f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8 | elf | ||
| 2025-12-17 15:30:07 | f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8 | elf | ||
| 2025-09-11 03:06:46 | f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8 | elf | ||
| 2025-09-10 14:05:10 | f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8 | elf | ||
| 2025-08-26 04:44:26 | f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8 | elf | ||
| 2025-08-23 15:01:16 | f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8 | elf |