URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 38.52.142.194
Firstseen:2024-12-30 13:43:04 UTC
Total malware sites :25
Online malware sites :0 (0%)
Offline Malware sites :25 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2024-12-30 13:43:06 38.52.142.194Not listedAS264837 CORPORACION_VISUAL_NUEVA_ESPARTA_C.A- VEyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2026-03-23 11:47:06http://38.52.142.194:58414/iOfflinemirai ext GAYINT_DOT_ORG
2026-03-23 11:17:07http://38.52.142.194:58414/bin.shOfflinemirai ext GAYINT_DOT_ORG
2026-03-11 15:44:16http://38.52.142.194:34491/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2026-03-11 15:19:21http://38.52.142.194:34491/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2026-03-01 16:34:17http://38.52.142.194:43236/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2026-03-01 16:13:19http://38.52.142.194:43236/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-09-10 13:04:17http://38.52.142.194:50898/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-09-10 12:35:15http://38.52.142.194:50898/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-07-04 19:58:06http://38.52.142.194:41582/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-07-04 19:32:08http://38.52.142.194:41582/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-07-03 08:34:08http://38.52.142.194:53414/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-07-03 08:16:09http://38.52.142.194:53414/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-04-04 04:24:05http://38.52.142.194:53444/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-04-04 03:59:04http://38.52.142.194:53444/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-04-03 01:34:05http://38.52.142.194:44180/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-04-03 01:15:06http://38.52.142.194:44180/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-04-01 23:29:05http://38.52.142.194:60107/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-04-01 23:12:05http://38.52.142.194:60107/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-02-09 01:04:04http://38.52.142.194:36636/Mozi.mOfflineelf mirai ext Mozi ext lrz_urlhaus
2025-01-09 02:46:07http://38.52.142.194:47816/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-01-09 02:08:06http://38.52.142.194:47816/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-01-02 07:49:06http://38.52.142.194:36470/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2025-01-02 07:17:06http://38.52.142.194:36470/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp
2024-12-30 14:09:06http://38.52.142.194:50464/iOffline32-bit arm elf mirai ext Mozi ext geenensp
2024-12-30 13:43:06http://38.52.142.194:50464/bin.shOffline32-bit arm elf mirai ext Mozi ext geenensp

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2026-03-23 11:47:0512013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2026-03-23 11:17:0712013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2026-03-11 15:44:1612013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2026-03-11 15:19:2112013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2026-03-01 16:34:1712013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2026-03-01 16:13:1912013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-09-10 13:04:1712013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-09-10 12:35:1512013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-07-04 19:58:0612013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-07-04 19:32:0712013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-07-03 08:34:0812013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-07-03 08:16:0912013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-04-04 04:24:0412013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-04-04 03:59:0412013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-04-03 01:34:0512013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-04-03 01:15:0612013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-04-01 23:29:0512013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-04-01 23:12:0512013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-02-09 01:04:0412013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-01-09 02:46:0712013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-01-09 02:08:0612013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-01-02 07:49:0612013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2025-01-02 07:17:0612013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2024-12-30 14:09:0612013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai
2024-12-30 13:43:0612013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0efelfMirai