URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 222.239.87.50
Firstseen:2024-09-25 12:41:07 UTC
Total malware sites :22
Online malware sites :18 (82%)
Offline Malware sites :4 (18%)
Newest active malware site :2026-01-09 05:23:12 UTC
Oldest active malware site :2025-07-02 14:02:11 UTC (Age: 11 months, 0 days, 1 hours, 7 minutes)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2024-09-25 12:41:08 222.239.87.50Not listedAS9318 SKB-AS- KRyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2026-01-09 05:23:12http://222.239.87.50:8020/Big/IMG001.exeOnlineopendir ua-wget BlinkzSec
2025-10-02 12:42:28http://222.239.87.50:8020/Big/Microsoft.SQL.Ser...OnlineCoinMiner Riordz
2025-10-02 12:42:22http://222.239.87.50:8020/INICIS_DLL/key/info.zipOnlineCoinMiner Riordz
2025-10-02 12:42:20http://222.239.87.50:8020/INCIS/info.zipOfflineCoinMiner Riordz
2025-10-02 12:41:46http://222.239.87.50:8020/INCIS/key/INIpayTest/...OnlineCoinMiner Riordz
2025-10-02 12:41:37http://222.239.87.50:8020/slnAmmiCafe/info.zipOnlineCoinMiner Riordz
2025-10-02 12:41:24http://222.239.87.50:8020/INCIS/key/info.zipOnlineCoinMiner Riordz
2025-10-02 12:41:04http://222.239.87.50:8020/INICIS_DLL/log/info.zipOnlineCoinMiner Riordz
2025-10-02 12:40:59http://222.239.87.50:8020/slnAmmiCafe/AmmiCafeF...OnlineCoinMiner Riordz
2025-10-02 12:39:49http://222.239.87.50:8020/slnAmmiCafe/AmmiCafeF...OnlineCoinMiner Riordz
2025-10-02 12:39:30http://222.239.87.50:8020/slnAmmiCafe2/info.zipOnlineCoinMiner Riordz
2025-10-02 12:38:58http://222.239.87.50:8020/slnAmmiCafe2/AmmiCafe...OnlineCoinMiner Riordz
2025-10-02 12:38:54http://222.239.87.50:8020/slnAmmiCafe2/AmmiCafe...OnlineCoinMiner Riordz
2025-10-02 12:38:40http://222.239.87.50:8020/Big/Html/info.zipOnlineCoinMiner Riordz
2025-10-02 12:38:19http://222.239.87.50:8020/images/info.zipOnlineCoinMiner Riordz
2025-10-02 12:38:19http://222.239.87.50:8020/Big/SQL%20server%2020...OfflineCoinMiner Riordz
2025-10-02 12:37:51http://222.239.87.50:8020/INICIS_DLL/key/INIpay...OfflineCoinMiner Riordz
2025-10-02 12:37:24http://222.239.87.50:8020/Big/info.zipOnlineCoinMiner Riordz
2025-10-02 12:37:24http://222.239.87.50:8020/INICIS_DLL/info.zipOnlineCoinMiner Riordz
2025-10-02 12:37:12http://222.239.87.50:8020/INICIS_DLL/key/jungmi...OnlineCoinMiner Riordz
2025-08-05 21:49:12http://222.239.87.50:8020/zMyJungMin/IMG001.exeOfflineua-wget BlinkzSec
2025-07-02 14:02:11http://222.239.87.50:8020/info.zipOnlineCoinMiner ua-wget BlinkzSec

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2026-01-09 05:23:12b21cc3afe552b093b598fc93a023897acd91ebcb8dc045f16463962dcfacf9d0exe  
2025-10-02 12:42:287126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:42:227126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:42:207126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:41:467126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:41:377126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:41:247126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:41:047126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:40:597126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:39:487126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:39:307126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:38:587126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:38:547126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:38:407126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:38:197126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:38:197126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:37:517126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:37:247126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:37:247126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-10-02 12:37:127126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner
2025-08-05 21:49:12b21cc3afe552b093b598fc93a023897acd91ebcb8dc045f16463962dcfacf9d0exe  
2025-07-02 14:02:117126b9932dc0cdfe751340edfa7c4a14b69262eb1afd0530e6d1fdb2e25986ddzip CoinMiner