URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	849617-ledger.com
Domain registrar:	NICENIC
Domain registration date:	2025-05-07 16:18:41 UTC
Spamhaus DBL :	Spammer domain
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2025-08-14 11:15:11 UTC
Total malware sites :	26
Online malware sites :	0 (0%)
Offline Malware sites :	26 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-08-19 18:08:19	185.196.9.137	riseon	SBL640645	AS42624 swissnetwork02	GB	yes

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-08-14 20:06:43	http://849617-ledger.com/d/akido.spc	Offline	botnetdomain mirai opendir	DaveLikesMalwre
2025-08-14 20:06:42	http://849617-ledger.com/d/akido.arm5	Offline	botnetdomain mirai opendir	DaveLikesMalwre
2025-08-14 20:06:42	http://849617-ledger.com/d/akido.sh4	Offline	botnetdomain mirai opendir	DaveLikesMalwre
2025-08-14 20:06:41	http://849617-ledger.com/d/akido.arm7	Offline	botnetdomain mirai opendir	DaveLikesMalwre
2025-08-14 20:06:39	http://849617-ledger.com/d/akido.mips	Offline	botnetdomain mirai opendir	DaveLikesMalwre
2025-08-14 20:06:37	http://849617-ledger.com/d/akido.m68k	Offline	botnetdomain mirai opendir	DaveLikesMalwre
2025-08-14 20:06:35	http://849617-ledger.com/d/akido.arm6	Offline	botnetdomain mirai opendir	DaveLikesMalwre
2025-08-14 20:06:31	http://849617-ledger.com/d/akido.x86	Offline	botnetdomain mirai opendir	DaveLikesMalwre
2025-08-14 20:06:25	http://849617-ledger.com/d/akido.mpsl	Offline	botnetdomain mirai opendir	DaveLikesMalwre
2025-08-14 20:06:22	http://849617-ledger.com/d/akido.ppc	Offline	botnetdomain mirai opendir	DaveLikesMalwre
2025-08-14 20:06:18	http://849617-ledger.com/d/akido.arm	Offline	botnetdomain mirai opendir	DaveLikesMalwre
2025-08-14 11:31:25	http://849617-ledger.com/1.sh	Offline	botnetdomain mirai sh ua-wget	BlinkzSec
2025-08-14 11:15:54	http://849617-ledger.com/hiddenbin/Space.mips	Offline	botnetdomain elf mirai ua-wget	BlinkzSec
2025-08-14 11:15:50	http://849617-ledger.com/hiddenbin/Space.x86	Offline	botnetdomain elf mirai ua-wget	BlinkzSec
2025-08-14 11:15:50	http://849617-ledger.com/hiddenbin/Space.i686	Offline	botnetdomain elf mirai ua-wget	BlinkzSec
2025-08-14 11:15:48	http://849617-ledger.com/hiddenbin/Space.sh4	Offline	botnetdomain elf mirai ua-wget	BlinkzSec
2025-08-14 11:15:46	http://849617-ledger.com/hiddenbin/Space.arm7	Offline	botnetdomain elf mirai ua-wget	BlinkzSec
2025-08-14 11:15:41	http://849617-ledger.com/hiddenbin/Space.arc	Offline	botnetdomain elf mirai ua-wget	BlinkzSec
2025-08-14 11:15:41	http://849617-ledger.com/hiddenbin/Space.x86_64	Offline	botnetdomain elf mirai ua-wget	BlinkzSec
2025-08-14 11:15:41	http://849617-ledger.com/hiddenbin/Space.mpsl	Offline	botnetdomain elf mirai ua-wget	BlinkzSec
2025-08-14 11:15:39	http://849617-ledger.com/hiddenbin/Space.arm5	Offline	botnetdomain elf mirai ua-wget	BlinkzSec
2025-08-14 11:15:30	http://849617-ledger.com/hiddenbin/Space.arm6	Offline	botnetdomain elf mirai ua-wget	BlinkzSec
2025-08-14 11:15:26	http://849617-ledger.com/hiddenbin/Space.spc	Offline	botnetdomain elf mirai ua-wget	BlinkzSec
2025-08-14 11:15:26	http://849617-ledger.com/hiddenbin/Space.m68k	Offline	botnetdomain elf mirai ua-wget	BlinkzSec
2025-08-14 11:15:26	http://849617-ledger.com/hiddenbin/Space.ppc	Offline	botnetdomain elf mirai ua-wget	BlinkzSec
2025-08-14 11:15:22	http://849617-ledger.com/hiddenbin/Space.arm	Offline	botnetdomain elf mirai ua-wget	BlinkzSec

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2025-08-15 13:15:22	b5afe80cbdcd21730e9fea2dfb025eb74e6eda118b0e77493906eff4b9c17445	elf		Mirai
2025-08-15 13:03:16	383e558200d869c1788d64f5853b3992df67e99ec44dc033e3b9728bcf31341c	elf		Mirai
2025-08-15 12:52:57	fdf5ecdb7bedb07dc269bcb1fe2cae37559c2760cf94ff9f61476f3a23965ae9	elf		Mirai
2025-08-15 12:30:20	026ba1e9ce274331b802195e57f7e87a20b15057caacf1280e728f6e970ae758	elf		Mirai
2025-08-14 20:06:36	360ccd0d4074adbd4ee3f0a81367ffc7862a0c5b44dc869597c211f2e92261cc	elf		Mirai
2025-08-14 20:06:32	a2e04d20710a5c8e0e3844d02e171b795185044c9172398c76522bca3a95db0c	elf		Mirai
2025-08-14 20:06:30	f1c0bfceb822ea0dd8f78dfb3682f114c937bb64512c181f0d966c7d6dbe282a	elf		Mirai
2025-08-14 20:06:26	422f47c6f4bdf3522db4661bdaeae8d80578e8ad3c1ad4f6e5514e6285277b68	elf		Mirai
2025-08-14 20:06:19	5aac90cf4d936f87148a5e80aa7deba3c9577c6406ffe9d25d89963552fddd49	elf		Mirai
2025-08-14 20:06:16	3356cbc3c528952e51ce59b2be2fcca0228f33be548726cd8cdb4f79f60eb62b	elf		Mirai
2025-08-14 20:06:12	30b9270934d4bc3510d46f20447e998e343d3ed8aee252fb6ffd6cf0e5fe9644	elf		Mirai
2025-08-14 11:31:20	055ca345e9a0a15fa6001661decc511d6c880d5153ae797afc5051e85278a5b5	sh		Mirai
2025-08-14 11:15:48	b717dfe2f3ba28c1ed89c832745ed1d7c6c1ea5d0a0cd69febeb090f095f0674	elf		Mirai
2025-08-14 11:15:48	6d778db1fd0c252b4423d0873afdb8f2eaf00b3ef25f49a26b25f55038bc8e1d	elf		Mirai
2025-08-14 11:15:45	20f573ad38a6b62fbc9b3dbe9999b29beee2713eff0cafe4773fa5191fc11b6f	elf		Mirai
2025-08-14 11:15:43	c55b962805c52d43e3a163cec1e592f0540f5f33fe688f61ae09fc1b36d641d3	elf		Mirai
2025-08-14 11:15:40	02dfdc80f3af80bcdddcc16d1a9eb39e584df82689ffb535334c4f0b66c9988a	elf		Mirai
2025-08-14 11:15:36	406a42c668e00969f30a0b5eca61e597cb07167967b20d0086cdc49d3addd4d8	elf		Mirai
2025-08-14 11:15:36	171fa507c6904767e19089731ca65845a4fadb0e0e5507117a26c5e25ba99bf3	elf		Mirai
2025-08-14 11:15:35	11d4e7e7c7a94f5b913a7ed3290b97eab30e5091b69a9bd65e54e96df22cf318	elf		Mirai
2025-08-14 11:15:34	9c99f944a817255f780dabc2aa2bf313e004510aa763cabb1697bb5889f6e25e	elf		Mirai
2025-08-14 11:15:25	6819c003ffc0d9ef35c594711b846c4915ac882d128c809da5066bb739ba42f1	elf		Mirai
2025-08-14 11:15:20	dc0cb682b1e9d07f1dfa3794eed43840232b5d3a61245e5307780eb0b40debdc	elf		Mirai
2025-08-14 11:15:20	6502703703d2fe98fd5448d4d567824f712f8682d1128ee615087ad83e7abaef	elf		Mirai
2025-08-14 11:15:20	867fcce8bf469aff8c2a767c61722d025bf5a05a320d330464e1974227f6ef32	elf		Mirai
2025-08-14 11:15:17	99817d87922455fb11daeeef7129d4fb7b8783fe1281ca8a01f24c2fb1f8364e	elf		Mirai