URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2020-09-29 02:07:05	61.162.55.42		Not listed	AS4837 CHINA169-Backbone	CN	yes

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2022-03-30 07:32:05	http://61.162.55.42:55507/i	Offline	32-bit elf mips Mozi	geenensp
2022-03-30 07:02:05	http://61.162.55.42:55507/bin.sh	Offline	32-bit elf mips Mozi	geenensp
2022-03-17 10:21:09	http://61.162.55.42:50599/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2021-12-29 16:44:01	http://61.162.55.42:2015/Mozi.m	Offline	Mozi	Petras_Simeon
2021-12-29 16:43:40	http://61.162.55.42:2015/Mozi.a	Offline	Mozi	Petras_Simeon
2021-12-22 01:01:04	http://61.162.55.42:60713/mozi.m	Offline		tammeto
2021-11-19 05:01:09	http://61.162.55.42:19041/i	Offline	32-bit elf mips Mozi	geenensp
2021-11-16 23:21:07	http://61.162.55.42:19041/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2021-10-11 07:13:13	http://61.162.55.42:47040/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2021-09-01 17:07:16	http://61.162.55.42:20457/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2021-07-02 05:07:12	http://61.162.55.42:7795/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2021-05-26 01:23:18	http://61.162.55.42:32773/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2021-05-11 14:30:08	http://61.162.55.42:4241/i	Offline	32-bit elf mips Mozi	geenensp
2021-05-06 10:55:12	http://61.162.55.42:4241/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2021-03-19 14:35:06	http://61.162.55.42:29690/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2021-02-12 22:05:05	http://61.162.55.42:59798/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2021-02-01 15:50:04	http://61.162.55.42:62462/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2020-12-08 21:50:05	http://61.162.55.42:45211/Mozi.m	Offline	elf Mozi	lrz_urlhaus
2020-10-08 19:09:04	http://61.162.55.42:16192/Mozi.a	Offline	elf mirai Mozi	lrz_urlhaus
2020-09-29 02:07:05	http://61.162.55.42:16192/Mozi.m	Offline	elf mirai Mozi	lrz_urlhaus

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2022-03-30 07:32:05	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2022-03-30 07:02:05	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2022-03-17 10:21:09	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-11-19 05:01:09	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-11-16 23:21:07	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-10-11 07:13:13	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-09-01 17:07:16	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-07-02 05:07:12	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-05-26 01:23:18	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-05-11 14:30:08	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-05-06 10:55:12	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-03-19 14:35:06	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-02-12 22:05:05	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2021-02-01 15:50:04	15bdbf939df62f49b626350a8ebe9d8b8c2f6ddf9c9277be6deaeda44e7751ed	elf
2020-12-08 21:50:05	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	elf
2020-10-08 19:09:04	9e0a15a4318e3e788bad61398b8a40d4916d63ab27b47f3bdbe329c462193600	elf		Mirai
2020-09-29 02:07:05	9e0a15a4318e3e788bad61398b8a40d4916d63ab27b47f3bdbe329c462193600	elf		Mirai