URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	93.123.85.120
Firstseen:	2024-05-04 08:00:09 UTC
Total malware sites :	23
Online malware sites :	0 (0%)
Offline Malware sites :	23 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2024-05-04 08:00:13	93.123.85.120		Not listed	AS58212 DATAFOREST	DE	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2024-09-14 15:08:05	http://93.123.85.120/a-r.m-6.SNOOPY	Offline	elf	ClearlyNotB
2024-06-13 05:41:07	http://93.123.85.120/fenomenalu.sh	Offline	shellscript	zbetcheckin
2024-06-13 05:41:07	http://93.123.85.120/fenomenalu.arm7	Offline	32 arm elf	zbetcheckin
2024-06-13 05:41:07	http://93.123.85.120/fenomenalu.arm4	Offline	32 arm elf	zbetcheckin
2024-06-13 05:40:09	http://93.123.85.120/fenomenalu.x86	Offline	64 elf gafgyt	zbetcheckin
2024-06-13 05:40:09	http://93.123.85.120/fenomenalu.arm5	Offline	32 arm elf	zbetcheckin
2024-06-13 05:40:09	http://93.123.85.120/fenomenalu.sparc	Offline	32 bashlite elf gafgyt sparc	zbetcheckin
2024-06-13 05:40:09	http://93.123.85.120/fenomenalu.arm6	Offline	32 arm elf	zbetcheckin
2024-06-13 05:40:09	http://93.123.85.120/fenomenalu.mpsl	Offline	32 elf mips	zbetcheckin
2024-06-13 05:40:08	http://93.123.85.120/fenomenalu.ppc	Offline	32 elf PowerPC	zbetcheckin
2024-05-04 08:39:10	http://93.123.85.120/armv4l	Offline	32 arm bashlite elf gafgyt	zbetcheckin
2024-05-04 08:39:10	http://93.123.85.120/armv6l	Offline	32 arm bashlite elf gafgyt mirai	zbetcheckin
2024-05-04 08:39:09	http://93.123.85.120/mips	Offline	32 bashlite elf gafgyt mips mirai	zbetcheckin
2024-05-04 08:39:09	http://93.123.85.120/i586	Offline	32 bashlite elf gafgyt intel mirai	zbetcheckin
2024-05-04 08:39:09	http://93.123.85.120/sparc	Offline	32 bashlite elf gafgyt mirai sparc	zbetcheckin
2024-05-04 08:39:08	http://93.123.85.120/x86	Offline	64 elf mirai	zbetcheckin
2024-05-04 08:38:07	http://93.123.85.120/armv5l	Offline	32 arm bashlite elf gafgyt	zbetcheckin
2024-05-04 08:38:07	http://93.123.85.120/mipsel	Offline	32 bashlite elf gafgyt mips mirai	zbetcheckin
2024-05-04 08:38:07	http://93.123.85.120/m68k	Offline	32 elf mirai motorola	zbetcheckin
2024-05-04 08:38:07	http://93.123.85.120/powerpc	Offline	32 bashlite elf gafgyt mirai PowerPC	zbetcheckin
2024-05-04 08:38:07	http://93.123.85.120/i686	Offline	32 bashlite elf gafgyt intel	zbetcheckin
2024-05-04 08:38:07	http://93.123.85.120/sh4	Offline	32 bashlite elf gafgyt mirai renesas	zbetcheckin
2024-05-04 08:00:13	http://93.123.85.120/eskgbins.sh	Offline		misa11n

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2024-09-14 15:08:05	b4e9060ce9fe62fda28fa1126d414ded500f9aab4c88723d3e49761a9c740358	elf
2024-06-13 05:41:07	0a544f1dc2b259d9960e70b2b8a140bc2622cd66f7344c31087348609ac98f43	sh
2024-06-13 05:41:07	f915cc3d8d51e4a370f65f9a15ad4e9dd864bcd82f2a0abb5f9bd6eb642239dc	elf
2024-06-13 05:41:07	86952a4690c13efd3fef3f11ba33e867a47a8e013ee6bebb4a124970d6ee3416	elf
2024-06-13 05:40:09	a156bfb6eee4a41f1139d6ff3eda0f6f7fa89ea79a0dd632facb137a4e56187b	elf	Gafgyt
2024-06-13 05:40:09	dd112dc5c0fdfe8862082086b923ced18b574c29b6359f6bf88fb700646c91ce	elf
2024-06-13 05:40:09	b763dd696d9abfcf2543189eba6eb0ab2112f95108bd774f52d3a33c24853ead	elf	Gafgyt
2024-06-13 05:40:09	7c5562265c5cbeb6256f8d534511c30f9388065010130f0f4ee9f1d66b471f6e	elf
2024-06-13 05:40:09	dddae1cd1a22dcdec9ca5821310dd1e6cc23ba8c6a47788a351c35fdb2dee932	elf
2024-06-13 05:40:08	d35b626f0977f6ef9a7bb2ac9908062d99a0d1303471829f2ca92f2e845e02a9	elf
2024-05-04 08:39:10	0fdd647ab48d1f4a3f9f4516105a78a5446efff3e05192d9fd165669a9ef5f8f	elf	Gafgyt
2024-05-04 08:39:10	a65ec60b8403f2af40ee6ab1c9ee5382f85d28837f63ecbb6138954725eba236	elf	Mirai
2024-05-04 08:39:09	e847ea066316be6280172cc6e59e2c9cd38bc03febb0dfc4be454a1cbdf71de0	elf	Mirai
2024-05-04 08:39:09	84961844e87b553426b1a001be1634a4102f2aeffccfee9982b2bae176d2f682	elf	Mirai
2024-05-04 08:39:09	7e27f68f13461febf39b4c7fa7821a1e0e5a56263e5efa9806994957cecde9a7	elf	Mirai
2024-05-04 08:39:08	d892bd09c654ba6ab85da7d31799047052b693e2e85599d97234497cdc28f035	elf	Mirai
2024-05-04 08:38:07	7513f05cd74c1e7ad671c789749a3f45ebcafe125891c8badaac969aeeb4640f	elf	Gafgyt
2024-05-04 08:38:07	4bf2224f7fbda297b5a23e1baedaab4d7dbf9b2bb4631dcb98fdae73a18b5082	elf	Mirai
2024-05-04 08:38:07	95d3981dc6379ec2888b3577280ecb89118b060cfdbf93c1d66d68a28f52b5fe	elf	Mirai
2024-05-04 08:38:07	01568c265d8d1da6ddc2ba60ff2b9161128284be3e8f8f7060280a7970c8b3d0	elf	Mirai
2024-05-04 08:38:07	5fa43c2b8aee99dd792e8bf612c01aa85c62476ccde7c0834d286da7c78b4956	elf	Gafgyt
2024-05-04 08:38:07	3fd8260e38244edceda9b42e2b7e83574f3591faa780192cb96582247cef70ef	elf	Mirai
2024-05-04 08:00:11	c47aaf9cce0d9fe4621bbc9717f614bb04979c2edc879cabdee74ba219e166ff	sh