URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 64.89.161.140
Firstseen:2026-06-08 17:28:05 UTC
Total malware sites :25
Online malware sites :0 (0%)
Offline Malware sites :25 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2026-06-08 17:28:19 64.89.161.140SBL692143AS205759 GHOSTYNETWORKS- USyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2026-06-10 16:34:27http://64.89.161.140/bins/arm6Offlineelf ua-wget abuse_ch
2026-06-10 15:36:15http://64.89.161.140/bins/pspcOfflinemirai ext opendir DaveLikesMalwre
2026-06-10 15:35:13http://64.89.161.140/bins/parmOfflinemirai ext opendir DaveLikesMalwre
2026-06-10 15:35:13http://64.89.161.140/bins/parm6Offlinemirai ext opendir DaveLikesMalwre
2026-06-10 15:35:13http://64.89.161.140/bins/pmpslOfflinemirai ext opendir DaveLikesMalwre
2026-06-10 15:35:13http://64.89.161.140/bins/psh4Offlinemirai ext opendir DaveLikesMalwre
2026-06-10 15:35:13http://64.89.161.140/bins/parm7Offlinemirai ext opendir DaveLikesMalwre
2026-06-10 15:35:13http://64.89.161.140/bins/parm5Offlinemirai ext opendir DaveLikesMalwre
2026-06-10 15:35:13http://64.89.161.140/bins/pppcOfflinemirai ext opendir DaveLikesMalwre
2026-06-10 15:35:13http://64.89.161.140/bins/pmipsOfflinemirai ext opendir DaveLikesMalwre
2026-06-10 15:35:13http://64.89.161.140/bins/pm68kOfflinemirai ext opendir DaveLikesMalwre
2026-06-10 15:35:13http://64.89.161.140/bins/px86Offlinemirai ext opendir DaveLikesMalwre
2026-06-08 17:29:21http://64.89.161.140/bins/dbgOffline64-89-161-140 elf mirai ext ua-wget BlinkzSec
2026-06-08 17:29:21http://64.89.161.140/bins/m68kOffline64-89-161-140 elf mirai ext ua-wget BlinkzSec
2026-06-08 17:29:21http://64.89.161.140/bins/x86Offline64-89-161-140 elf mirai ext ua-wget BlinkzSec
2026-06-08 17:29:21http://64.89.161.140/bins/mipsOffline64-89-161-140 elf mirai ext ua-wget BlinkzSec
2026-06-08 17:29:21http://64.89.161.140/bins/sh4Offline64-89-161-140 elf mirai ext ua-wget BlinkzSec
2026-06-08 17:29:21http://64.89.161.140/bins/arm5Offline64-89-161-140 elf mirai ext ua-wget BlinkzSec
2026-06-08 17:29:21http://64.89.161.140/bins/mpslOffline64-89-161-140 elf mirai ext ua-wget BlinkzSec
2026-06-08 17:29:15http://64.89.161.140/bins/ppcOffline64-89-161-140 elf mirai ext ua-wget BlinkzSec
2026-06-08 17:29:15http://64.89.161.140/bins/x86_64Offline64-89-161-140 elf mirai ext ua-wget BlinkzSec
2026-06-08 17:29:15http://64.89.161.140/bins/i686Offline64-89-161-140 elf mirai ext ua-wget BlinkzSec
2026-06-08 17:29:15http://64.89.161.140/bins/armOffline64-89-161-140 elf mirai ext ua-wget BlinkzSec
2026-06-08 17:29:15http://64.89.161.140/bins/spcOffline64-89-161-140 elf mirai ext ua-wget BlinkzSec
2026-06-08 17:28:19http://64.89.161.140/bins/arm7Offline64-89-161-140 elf mirai ext ua-wget BlinkzSec

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2026-06-10 15:36:1552576a56e466972d8abbe2e2b76ff6391065544068717b2a8bcf8567bb271c83elfMirai
2026-06-10 15:35:13a42c596ab4376bacbfc429abf2bfd828a5502bc6366d7db12b2aa7f4924f6939elfMirai
2026-06-10 15:35:13d6e7397ed255689006f48918b79efa661af40641acccb70b5b207e8245d2ea8aelfMirai
2026-06-10 15:35:13a50418ca44b2fa0571dadcdc7db34ca0175292c64854ae625f62160db6c1576celfMirai
2026-06-10 15:35:1358a02139c0d0511c5c84ebd4e7cd7316868e992796a7ea636bca4ed948b4de3delfMirai
2026-06-10 15:35:139faa8f1f81a06a057d3ef0ee5ad9339dbe44f1c1c0730be966a1a065a470f149elfMirai
2026-06-10 15:35:13d234a6094c5edb6a1193d31840a14f25fa4eee9d906b822765f2d20d6c5102acelfMirai
2026-06-10 15:35:133d9b580ea5ade122c84b78cf430ef0f7eaac90ef9460dac74012162dedbb965celfMirai
2026-06-10 15:35:13a28586cbe50b6cfab0174804f2d5d91d749f7fb12594acba8e2835804a6b5c1felfMirai
2026-06-10 15:35:130c393756c8713871b94d0cda58331cb449662b5325f2a612d86de514706e69b2elfMirai
2026-06-10 15:35:129164db5a23b56ef88c946b4cc3ef0d59540e1dd6303769c6a4587ce2be782e1celfMirai
2026-06-09 02:46:579164db5a23b56ef88c946b4cc3ef0d59540e1dd6303769c6a4587ce2be782e1celfMirai
2026-06-08 17:29:21284276487ba1f56937a2550018f506fbb956cd7d59dcff412b8544a248bfc561elfMirai
2026-06-08 17:29:21bb12b6c9f057edef4d13af8726d78e39c03b688f822b67db24a2d9d77f751646elfMirai
2026-06-08 17:29:2111f938ed53aadbbe0e03cc519df08144d5dc2486e19fa17279b7b8b846517862elfMirai
2026-06-08 17:29:218de52d0d7a5de43f21cb38020f21e76506dd739b8866b5af1fbb7ca8d2f21dc8elfMirai
2026-06-08 17:29:2190762b23f27df7fe853cd15ef0c03912d6d447eeea02ac28df5c337a390bdd65elfMirai
2026-06-08 17:29:21191ff4047ee6d6d68a609cfb65531e6f55ee973a331ae2340f3827ec178951acelfMirai
2026-06-08 17:29:21a5a37b0a779eee7b8eec398db28a4e91c3b2d18ebd1f7c35616e7c41fd9a984belfMirai
2026-06-08 17:29:15f6933f1e478dae66ef9cd99c902c9839ea180e9180e902b44a969e403d6a987felfMirai
2026-06-08 17:29:15718b13e943c387dee64c28faa958cdb9010f87e321a8d2ca5d94870f752cd2b7elfMirai
2026-06-08 17:29:1516d78160e10f383e673485b722c46961f5df3da2a081091baa933de0a63f878aelfMirai
2026-06-08 17:29:15b648413877c2e5a570952677eca1ccb18b33ac4d3a6b68e5158a5422c1234e5eelfMirai
2026-06-08 17:29:150fb46404e71786b024991909210d5317b39ab2eadd885e1b25b73e06f7daac97elfMirai
2026-06-08 17:28:193b6224b9ca2de083f50e9df99738d9b070d986f2f772bccd3ce232b6fd93eff3elfMirai