URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	74.194.191.52
Firstseen:	2025-08-11 15:11:04 UTC
Total malware sites :	51
Online malware sites :	0 (0%)
Offline Malware sites :	51 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-08-11 15:11:04	74.194.191.52	74-194-191-52.htvlcmta01.com.dyn.suddenlink.net	Not listed	AS19108 SUDDENLINK-COMMUNICATIONS	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-11-08 15:39:14	http://74.194.191.52/rondo.wcr.sh	Offline	RondoDox	BushidoToken
2025-11-08 15:39:10	http://74.194.191.52/rondo.qzj.sh	Offline	RondoDox	BushidoToken
2025-11-08 15:39:09	http://74.194.191.52/rondo.sdu.sh	Offline	RondoDox	BushidoToken
2025-11-08 15:39:09	http://74.194.191.52/rondo.qbq.sh	Offline	RondoDox	BushidoToken
2025-11-08 15:39:09	http://74.194.191.52/rondo.wwc.sh	Offline	RondoDox	BushidoToken
2025-11-08 15:39:04	http://74.194.191.52/rondo.fzr.sh	Offline	RondoDox	BushidoToken
2025-10-27 13:28:05	http://74.194.191.52/rondo.dtm.sh	Offline	sh ua-wget	NDA0E
2025-10-27 13:28:05	http://74.194.191.52/rondo.xcw.sh	Offline	sh ua-wget	NDA0E
2025-10-27 13:28:05	http://74.194.191.52/rondo.txg.sh	Offline	sh ua-wget	NDA0E
2025-10-27 13:28:05	http://74.194.191.52/rondo.eby.sh	Offline	sh ua-wget	NDA0E
2025-10-27 13:28:05	http://74.194.191.52/rondo.vgz.sh	Offline	sh ua-wget	NDA0E
2025-10-19 14:51:17	http://74.194.191.52/rondo.qyz.sh	Offline	sh ua-wget	NDA0E
2025-10-19 14:51:12	http://74.194.191.52/rondo.uzz.sh	Offline	sh ua-wget	NDA0E
2025-10-19 14:51:12	http://74.194.191.52/rondo.rwx.sh	Offline	sh ua-wget	NDA0E
2025-09-22 19:05:15	http://74.194.191.52/rondo.wtf.sh	Offline	sh ua-wget	NDA0E
2025-09-22 19:05:15	http://74.194.191.52/rondo.idk.sh	Offline	sh ua-wget	NDA0E
2025-09-18 13:26:15	http://74.194.191.52/rondo.armeb	Offline	elf ua-wget	NDA0E
2025-09-18 13:26:15	http://74.194.191.52/rondo.armebhf	Offline	elf ua-wget	NDA0E
2025-09-18 13:25:23	http://74.194.191.52/rondo.zqq.sh	Offline	sh ua-wget	NDA0E
2025-09-18 13:25:23	http://74.194.191.52/rondo.fep.sh	Offline	sh ua-wget	NDA0E
2025-09-18 13:25:22	http://74.194.191.52/rondo.ush.sh	Offline	sh ua-wget	NDA0E
2025-09-18 13:25:22	http://74.194.191.52/rondo.qre.sh	Offline	sh ua-wget	NDA0E
2025-09-18 13:25:21	http://74.194.191.52/rondo.xbm.sh	Offline	sh ua-wget	NDA0E
2025-09-18 13:25:21	http://74.194.191.52/rondo.ebj.sh	Offline	sh ua-wget	NDA0E
2025-09-18 13:25:21	http://74.194.191.52/rondo.wyu.sh	Offline	sh ua-wget	NDA0E
2025-09-18 13:25:21	http://74.194.191.52/rondo.djc.sh	Offline	sh ua-wget	NDA0E
2025-09-17 17:55:07	http://74.194.191.52/rondo.cay.sh	Offline	RondoDox	BlinkzSec
2025-09-09 05:34:08	http://74.194.191.52/rondo.sbx.sh	Offline	sh ua-wget	BlinkzSec
2025-08-24 14:55:26	http://74.194.191.52/rondo.lol	Offline	elf ua-wget	abuse_ch
2025-08-24 07:24:29	http://74.194.191.52/rondo.xsj.sh	Offline	RondoDox sh ua-wget	BlinkzSec
2025-08-18 14:34:24	http://74.194.191.52/rondo.tkg.sh	Offline	DEU geofenced sh ua-wget	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.armv6l	Offline	elf geofenced mirai ua-wget USA	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.powerpc	Offline	elf geofenced mirai ua-wget USA	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.sh4	Offline	elf geofenced HUN mirai ua-wget	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.fbsdamd64	Offline	elf geofenced mirai ua-wget USA	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.mips	Offline	elf mirai ua-wget	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.x86_64	Offline	elf geofenced mirai ua-wget USA	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.fbsdi386	Offline	elf geofenced mirai ua-wget USA	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.sparc	Offline	DEU elf geofenced mirai ua-wget	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.i686	Offline	elf geofenced mirai ua-wget USA	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.mipsel	Offline	elf geofenced HUN mirai ua-wget	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.arc700	Offline	CHE elf geofenced mirai ua-wget USA	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.armv7l	Offline	elf geofenced mirai ua-wget USA	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.armv4l	Offline	elf geofenced mirai ua-wget USA	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.fbsdpowerpc	Offline	elf geofenced mirai ua-wget USA	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.m68k	Offline	elf geofenced HNG mirai ua-wget	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.i486	Offline	elf geofenced mirai ua-wget USA	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.i586	Offline	elf geofenced mirai ua-wget USA	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.powerpc-440fp	Offline	elf geofenced mirai ua-wget USA	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.armv5l	Offline	elf geofenced ITA mirai RondoDox ua-wget	BlinkzSec
2025-08-11 15:11:05	http://74.194.191.52/rondo.fbsdarm64	Offline	elf geofenced mirai ua-wget USA	BlinkzSec

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-11-18 17:42:24	60d814eed996f11b3cba89bf3c623beef71c3f824b3dc460b632ae91ca6f7922	elf	RondoDox
2025-11-02 18:09:46	bb0069de1a2b09dab1947e8c9a7668c422a6fbc188b41d6808b23f5396766296	elf	RondoDox
2025-10-30 12:49:17	f060cc5d9e4cf974b219dbead99a24b0d1482c5aebe88210018ec54727e3c997	elf	RondoDox
2025-10-22 21:57:47	d59ee7e62c7a1fe52ab7fc649e6675eea2755a53d34f203aee0742a6261c1d7b	elf	RondoDox
2025-10-21 16:18:57	694608d38b05b9e2af7f3140545498baede355f91ee5a877928bec4009dce805	html
2025-10-14 23:35:42	694608d38b05b9e2af7f3140545498baede355f91ee5a877928bec4009dce805	html
2025-10-09 11:21:28	17be568b6b2acb3b237c6dc81b3692976bb83eea76a7a26fd405805d34901016	elf	RondoDox
2025-10-01 22:49:38	8fb9139e6b456df2ad035d597051e3bf28a4ce8b0f57b47761ec928d4a49b6dc	elf	RondoDox
2025-09-16 14:21:50	25238642826b2cddf510638eaf28a0a4f5d79091595868d01a312b8e9670d9d6	elf	Mirai
2025-09-14 05:31:46	e480c5556efd90bf1c71eb9a645ad1c7c31b2610f68aec7ac57a28218446484c	html
2025-09-12 20:52:42	e480c5556efd90bf1c71eb9a645ad1c7c31b2610f68aec7ac57a28218446484c	html
2025-09-12 08:57:27	e480c5556efd90bf1c71eb9a645ad1c7c31b2610f68aec7ac57a28218446484c	html
2025-09-09 03:10:06	694608d38b05b9e2af7f3140545498baede355f91ee5a877928bec4009dce805	html
2025-09-02 19:25:05	694608d38b05b9e2af7f3140545498baede355f91ee5a877928bec4009dce805	html
2025-09-01 08:42:16	e480c5556efd90bf1c71eb9a645ad1c7c31b2610f68aec7ac57a28218446484c	html
2025-08-31 07:57:45	694608d38b05b9e2af7f3140545498baede355f91ee5a877928bec4009dce805	html
2025-08-27 02:25:54	e480c5556efd90bf1c71eb9a645ad1c7c31b2610f68aec7ac57a28218446484c	html
2025-08-24 16:54:08	e480c5556efd90bf1c71eb9a645ad1c7c31b2610f68aec7ac57a28218446484c	html
2025-08-24 08:16:52	e480c5556efd90bf1c71eb9a645ad1c7c31b2610f68aec7ac57a28218446484c	html
2025-08-23 02:10:39	e480c5556efd90bf1c71eb9a645ad1c7c31b2610f68aec7ac57a28218446484c	html
2025-08-22 08:38:50	694608d38b05b9e2af7f3140545498baede355f91ee5a877928bec4009dce805	html
2025-08-22 07:47:33	e480c5556efd90bf1c71eb9a645ad1c7c31b2610f68aec7ac57a28218446484c	html
2025-08-22 07:31:35	e480c5556efd90bf1c71eb9a645ad1c7c31b2610f68aec7ac57a28218446484c	html
2025-08-22 06:45:22	e480c5556efd90bf1c71eb9a645ad1c7c31b2610f68aec7ac57a28218446484c	html
2025-08-21 04:53:31	e480c5556efd90bf1c71eb9a645ad1c7c31b2610f68aec7ac57a28218446484c	html
2025-08-20 19:01:41	e480c5556efd90bf1c71eb9a645ad1c7c31b2610f68aec7ac57a28218446484c	html
2025-08-20 07:03:47	e480c5556efd90bf1c71eb9a645ad1c7c31b2610f68aec7ac57a28218446484c	html
2025-08-20 01:46:59	e480c5556efd90bf1c71eb9a645ad1c7c31b2610f68aec7ac57a28218446484c	html
2025-08-14 08:26:13	1fba96811cbce9a3b4beb1e1a7d3f8815f4d5ce26ff7ed45af6605cdaa75bd71	elf	Mirai
2025-08-14 08:26:07	afc3df82a9cccd95a5d0f85eda9e8c4a74dbcd9400ba36f0373cbca41723eb9e	elf	Mirai
2025-08-14 08:25:54	30c0a6751274f43092475551dd6d854ad8b3560b1b83f717446a359da336840d	elf	Mirai
2025-08-14 08:25:18	6b2473dcd0969072f81ae5692d34f4c83195778cc76cc759f12bc0a4e5991e64	elf	Mirai
2025-08-14 08:25:15	b1da86210c9614e15c9924cdc047c1af6678931062f578ebf80c40d3c4ec2420	elf	Mirai
2025-08-14 08:25:12	8bcdd2d3e2cc1024c0f0cd47e110e56abe66c5aaabe2f133c466c0a561a479af	elf	Mirai
2025-08-14 08:25:05	ee62ba350ea11f7f3d18db104eaa339ca21459c9e986859e356add6d95aa88b8	elf	Mirai
2025-08-14 08:24:53	a3af5e621fffe4e3e9da3ce84fe5363cf20566571da7c7bc546bf04b6b1a5d88	elf	Mirai
2025-08-14 08:24:36	f6f932a9c5538e728cb5379a3e9f25f329f659a321b803cd3ab452cc2a2188ea	elf	Mirai
2025-08-14 08:24:17	073f8c7a188f90025d074e9967c05bf1de285ca7ef107f415177501ae3ccbcdb	elf	Mirai
2025-08-14 08:24:12	a7f2879ba48b6c5eafbe0cac91859ee7705852d9c8d3e8daf82764cf20cff2cc	elf	Mirai
2025-08-14 08:24:09	9424c99087c5ee58e153eb7e6ac57dad449093bee74ddeb12a5f1ca344a95a1e	elf	Mirai
2025-08-14 08:24:05	7bcd2e83e2e9e364e5749faba1ad6c81b152c61d8b0e1218ece40f89a07d5c55	elf	Mirai
2025-08-14 07:49:08	aa56f5b1ac84921246a0adc4f4bfbfbbf8a2bdc0dc10cb1ed60db02da8b98e81	elf	Mirai
2025-08-12 16:26:48	3bfc9ab9372f6719e585361e44e999432026b1948e6f5d23c2dce68f9d600046	elf	Mirai
2025-08-12 16:26:46	9fb06f9f87f1db4cb8eaeac3804935e6edbe71eac2cfaab227b0da07ac62dd20	elf	Mirai
2025-08-12 16:26:43	c67e5edffca6b230236660c31b8689fddd67b77127f11827c12243a67082118c	elf	Mirai
2025-08-12 16:26:41	1c306b731ff5983fcf8effbf0c935f025b5cd9c7f59a9f7464fcaceb3621ed4d	elf	Mirai
2025-08-12 16:26:37	2a4c021eed57f148ab86f151cfdc30c9963b7ada7157550ae0334c368bf0d109	elf	Mirai
2025-08-12 16:26:14	0e8c75c260f3e61faa02cbe9b33546b86ace79b89725124b6f10f1809fabe764	elf	Mirai