URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 89.213.44.31
Firstseen:2025-08-24 04:22:05 UTC
Total malware sites :29
Online malware sites :0 (0%)
Offline Malware sites :29 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2025-08-26 20:31:20http://89.213.44.31/LjEZs/uYtea.mpslOfflineelf mirai ext ua-wget ClearlyNotB
2025-08-26 20:31:20http://89.213.44.31/LjEZs/uYtea.spcOfflineelf mirai ext ua-wget ClearlyNotB
2025-08-26 20:30:36http://89.213.44.31/LjEZs/uYtea.x86_64Offlineelf mirai ext ua-wget ClearlyNotB
2025-08-26 20:30:36http://89.213.44.31/LjEZs/uYtea.ppcOfflineelf mirai ext ua-wget ClearlyNotB
2025-08-26 20:30:36http://89.213.44.31/LjEZs/uYtea.arm7Offlineelf mirai ext ua-wget ClearlyNotB
2025-08-26 20:30:36http://89.213.44.31/LjEZs/uYtea.armOfflineelf mirai ext ua-wget ClearlyNotB
2025-08-26 20:30:36http://89.213.44.31/LjEZs/uYtea.x86Offlineelf mirai ext ua-wget ClearlyNotB
2025-08-26 20:30:36http://89.213.44.31/LjEZs/uYtea.sh4Offlineelf mirai ext ua-wget ClearlyNotB
2025-08-26 20:30:36http://89.213.44.31/LjEZs/uYtea.mipsOfflineelf mirai ext ua-wget ClearlyNotB
2025-08-26 20:30:36http://89.213.44.31/LjEZs/uYtea.m68kOfflineelf mirai ext ua-wget ClearlyNotB
2025-08-26 20:30:31http://89.213.44.31/LjEZs/uYtea.arm6Offlineelf mirai ext ua-wget ClearlyNotB
2025-08-26 20:30:27http://89.213.44.31/LjEZs/uYtea.arm5Offlineelf mirai ext ua-wget ClearlyNotB
2025-08-26 20:30:26http://89.213.44.31/LjEZs/uYtea.arcOfflineelf mirai ext ua-wget ClearlyNotB
2025-08-25 07:28:21http://89.213.44.31/hiddenbin/boatnet.i686Offlineelf ua-wget abuse_ch
2025-08-25 07:07:11http://89.213.44.31/hiddenbin/boatnet.i468Offlineelf ua-wget abuse_ch
2025-08-25 07:07:11http://89.213.44.31/hiddenbin/boatnet.spcOfflineelf ua-wget abuse_ch
2025-08-25 07:07:11http://89.213.44.31/hiddenbin/boatnet.x86_64Offlineelf ua-wget abuse_ch
2025-08-25 05:35:12http://89.213.44.31/ohshit.shOfflinemirai ext script geenensp
2025-08-24 04:22:17http://89.213.44.31/hiddenbin/boatnet.arcOfflineelf mirai ext ua-wget ClearlyNotB
2025-08-24 04:22:12http://89.213.44.31/hiddenbin/boatnet.mpslOfflineelf mirai ext ua-wget ClearlyNotB
2025-08-24 04:22:12http://89.213.44.31/hiddenbin/boatnet.arm5Offlineelf mirai ext ua-wget ClearlyNotB
2025-08-24 04:22:12http://89.213.44.31/hiddenbin/boatnet.armOfflineelf mirai ext ua-wget ClearlyNotB
2025-08-24 04:22:12http://89.213.44.31/hiddenbin/boatnet.arm6Offlineelf mirai ext ua-wget ClearlyNotB
2025-08-24 04:22:12http://89.213.44.31/hiddenbin/boatnet.ppcOfflineelf mirai ext ua-wget ClearlyNotB
2025-08-24 04:22:11http://89.213.44.31/hiddenbin/boatnet.m68kOfflineelf mirai ext ua-wget ClearlyNotB
2025-08-24 04:22:11http://89.213.44.31/hiddenbin/boatnet.arm7Offlineelf mirai ext ua-wget ClearlyNotB
2025-08-24 04:22:11http://89.213.44.31/hiddenbin/boatnet.x86Offlineelf mirai ext ua-wget ClearlyNotB
2025-08-24 04:22:11http://89.213.44.31/hiddenbin/boatnet.sh4Offlineelf mirai ext ua-wget ClearlyNotB
2025-08-24 04:22:07http://89.213.44.31/hiddenbin/boatnet.mipsOfflineelf mirai ext ua-wget ClearlyNotB

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-08-26 20:31:20a7247654d15df69028934481347da8da2a760bb161a37e1c3fb604a46b78963felfMirai
2025-08-26 20:31:20fe24b791b633f6234cb0e23db189eb2013c08cd31e505016ad01e9c8140c40eeelfMirai
2025-08-26 20:30:36fbd862dbf6718c963aec854d751e7ca11ef07397c0981bebabc522f053649e83elfMirai
2025-08-26 20:30:365366d28840d3f1102e22bc2aa451368fe1937cdf178db383db66b149cc15413felfMirai
2025-08-26 20:30:36f7628401e0e14877ad553bb428e7eae8a9ae33e603d13d173c5baa65c17b738belfMirai
2025-08-26 20:30:36743153d468739f7a5bd1643d9f78d5ddbbc3675e37671b2b312ad8076d836348elfMirai
2025-08-26 20:30:369bfc3b3296ca660a53ee14bf8def6542ca924c7501807771592275eb4b4eeb00elfMirai
2025-08-26 20:30:36d1d79f410231e7a070f504b1359cf1b65d549e293d1dbf08761188b5f8be613celfMirai
2025-08-26 20:30:369ad1b5d9693b1dddd096423dae14c31928333e8a4c30b93e79cc5539165b5fa6elfMirai
2025-08-26 20:30:36d8913948ec121dba3e87594feecffc26080a23add4f9d68851f99508a93884aaelfMirai
2025-08-26 20:30:31229140a87811c6d16e6b42bcbf51bca7c102bb419f7eb1e6e946f3faeefbb278elfMirai
2025-08-26 20:30:2717f7d7e74db3ed907ece75e503be0a81d1064c20eb84947d7ab9e4a737295269elfMirai
2025-08-26 20:30:26e177093844fcc3fd6fcb545fcc160c8f017fefc3d39a21ad62cb36ae58cbd076elfMirai
2025-08-25 05:35:1202fe8d9dfabcca6fe7b91f84de86f2aa28757fb03e569acd39d3a9057e0aa06fshMirai
2025-08-24 04:22:17bfdb9deeddac8493ea50b24b869164b389bb979d56b3e4a43d829ceff1b85938elfMirai
2025-08-24 04:22:12f96fa1b4e1248e8b04daf784134df743bc205a36cbb2403e2a193acc07ca8cfaelfMirai
2025-08-24 04:22:12a60e35a65a602247ca916d159e9c9945a355618b1fa53f202995c678675b0ce0elfMirai
2025-08-24 04:22:1288059f9d40f900eb32146ab9c79d0780eef1a35c14dcfe6551970028de45bbb0elfMirai
2025-08-24 04:22:12a90a0e7d3ef0722beb2a591de5d394f958a82de81a4bc0b0a78f12260e787467elfMirai
2025-08-24 04:22:12002a2e7d759f2b4dcfe0b09c51928f77a6dcb2a9f8a148a48c07dcd1bf14a48belfMirai
2025-08-24 04:22:11457b1fb711167a1e9a9602c4946d4dcc56f412b7dc4026784ada76da4bf42072elfMirai
2025-08-24 04:22:11c3b18649911ed0dc1adc397038531956f563d4981a44d3d7bc5d29868d15aa91elfMirai
2025-08-24 04:22:11b99240e52409060b4dba6a685391bde4d21bfde1d4ea7161a426e8e48995249delfMirai
2025-08-24 04:22:110fe36740d0c807888116b81d72c7c1d88cb5787952639122bfc491976faf5667elfMirai
2025-08-24 04:22:07a9f08bf18aa749cbe0efd8622d9b6493b5063a8f8763824db508cfaaf7dcb814elfMirai