URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 93.123.85.96
Firstseen:2023-11-23 18:34:04 UTC
Total malware sites :25
Online malware sites :0 (0%)
Offline Malware sites :25 (100%)

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2023-11-23 18:34:05 93.123.85.96Not listedAS58212 DATAFOREST- DEyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2023-12-11 01:34:06http://93.123.85.96/Pemex.shOfflineshellscript zbetcheckin
2023-12-10 16:14:05http://93.123.85.96/lmaoWTF/loligang.spcOffline32 elf mirai ext sparc zbetcheckin
2023-12-10 15:16:09http://93.123.85.96/lmaoWTF/loligang.arm6Offlineelf mirai ext tolisec
2023-12-10 15:16:08http://93.123.85.96/lmaoWTF/loligang.arm7Offlineelf mirai ext tolisec
2023-12-10 15:16:08http://93.123.85.96/lmaoWTF/loligang.mipsOfflineelf mirai ext tolisec
2023-12-10 15:16:08http://93.123.85.96/lmaoWTF/loligang.x86Offlineelf mirai ext tolisec
2023-12-10 15:16:08http://93.123.85.96/lmaoWTF/loligang.m68kOfflineelf mirai ext tolisec
2023-12-10 15:16:08http://93.123.85.96/lmaoWTF/loligang.arm5Offlineelf mirai ext tolisec
2023-12-10 15:16:08http://93.123.85.96/lmaoWTF/loligang.mpslOfflineelf mirai ext tolisec
2023-12-10 15:16:07http://93.123.85.96/lmaoWTF/loligang.ppcOfflineelf mirai ext tolisec
2023-12-10 15:16:07http://93.123.85.96/lmaoWTF/loligang.sh4Offlineelf mirai ext tolisec
2023-12-10 15:16:07http://93.123.85.96/lmaoWTF/loligang.armOfflineelf mirai ext tolisec
2023-11-28 21:13:05http://93.123.85.96/hiddenbin/boatnet.arcOffline32 elf mirai ext zbetcheckin
2023-11-28 21:13:05http://93.123.85.96/ohshit.shOffline script geenensp
2023-11-23 21:34:06http://93.123.85.96/hiddenbin/boatnet.spcOffline32 elf mirai ext sparc zbetcheckin
2023-11-23 18:34:06http://93.123.85.96/hiddenbin/boatnet.arm7Offlineelf mirai ext tolisec
2023-11-23 18:34:06http://93.123.85.96/hiddenbin/boatnet.sh4Offlineelf mirai ext tolisec
2023-11-23 18:34:06http://93.123.85.96/hiddenbin/boatnet.m68kOfflineelf mirai ext tolisec
2023-11-23 18:34:06http://93.123.85.96/hiddenbin/boatnet.mipsOfflineelf tolisec
2023-11-23 18:34:06http://93.123.85.96/hiddenbin/boatnet.arm5Offlineelf mirai ext tolisec
2023-11-23 18:34:05http://93.123.85.96/hiddenbin/boatnet.ppcOfflineelf mirai ext tolisec
2023-11-23 18:34:05http://93.123.85.96/hiddenbin/boatnet.x86Offlineelf mirai ext tolisec
2023-11-23 18:34:05http://93.123.85.96/hiddenbin/boatnet.armOfflineelf mirai ext tolisec
2023-11-23 18:34:05http://93.123.85.96/hiddenbin/boatnet.mpslOfflineelf mirai ext tolisec
2023-11-23 18:34:05http://93.123.85.96/hiddenbin/boatnet.arm6Offlineelf mirai ext tolisec

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2023-12-11 01:34:06b39126d6a2a93e928b321a29b4cb5c599e5e1241fb7af50c85e6601933e405b8sh  
2023-12-10 16:14:059e67e20abd360615322ff65f9923ff29ef62d86300dcb3b79c58ffb98166ad04elfMirai
2023-12-10 15:16:097f591d4ee3ff440ecfdcdf04fdf232163356cdfad6a5b7168564352aa9c2a38felfMirai
2023-12-10 15:16:087bca217a084040d7ddd33852487ab50f5725dc18f9c04d99e3f6cfb55fdba601elfMirai
2023-12-10 15:16:08ba7ca8ce7abb37fd35c1901bec35faa7813e9efd0739d6cc29233e06f5e5c577elfMirai
2023-12-10 15:16:08886c927cfd1b1eb82deaa61b4b7f92d9efe3885e074255291c68858e53273acdelfMirai
2023-12-10 15:16:0891a51f76714903064ab697bc6b015f0e871f2219c37b8692ed43bb9932c6bdccelfMirai
2023-12-10 15:16:08b53f249300c8aa71b7d73da01b0cc3a2b7fb53cb7fa3f226b7b69c0775657188elfMirai
2023-12-10 15:16:08b9fe37e31fc916e950a9c3f2eb210a5005ddea33f6fe937d3e90cdb471c16018elfMirai
2023-12-10 15:16:0791c08ae3786c135bcc307dab1b11eec0a28d2a8213466dc451cdc448ccab9cefelfMirai
2023-12-10 15:16:078d4312e61f73907d53b3bf8da742c7fc93b38ce1775430438b32a163b84c55c0elfMirai
2023-12-10 15:16:074a98e0fc408b6a52c6327f4ff537b47fe7748d4d7b7aca8d0148b27ef733cd9celfMirai
2023-11-28 21:13:05e789088fa08628a4570e8ea358d454a2d470f7faf582727115d38dfe1851bb93elfMirai
2023-11-28 21:13:05691ff2a5b4060a08b25e7513c3984259978c4f4da443853cc5218ec6aabf4e1fsh  
2023-11-23 21:34:06b55e2ca081cad6667f8b8934c338b7c00422e1b7f6188385f501514e2dcf57f4elfMirai
2023-11-23 18:34:063cda4f664e68392fed077781143242268842a8a13e998508ce4128d84257004aelfMirai
2023-11-23 18:34:066270665cc3dd34d831d23c3b05592dcf043ca3dd8b9f2ce9843b1094ca541549elfMirai
2023-11-23 18:34:066985d0ce78884605120b8ed3d0f1ff5a3507f61d5a224db14cdaba187500423belfMirai
2023-11-23 18:34:05b450a06dfc7aa712aa19effc6eccebefa3b6e8dfcd631ff29cbd2fd15e3990b9elfMirai
2023-11-23 18:34:05431e30bbe823cb2a4e6a6736deb3432385689591ecdebbee95dc064a2e86902celf  
2023-11-23 18:34:05ff68e7cfbfd00d19ec287dc1d24f1e14e063b5a65a2c47580cd2682bcf5f0f17elfMirai
2023-11-23 18:34:05f4ddeb76807845b85d3d3fed3ebccaf5c135bb1fa1278f06388dca8542ef2555elfMirai
2023-11-23 18:34:050b2ed52650f25e6642d1716eca1907e8e2cd8ff5cdaf7e1876d656d524e3b8b8elfMirai
2023-11-23 18:34:056a24acb40762a1f3c637ffd6b1dbe4e735a4043a3755e2c71be9bdb964ed79edelfMirai
2023-11-23 18:34:0537018d629fa88d9b99220982142fbdb682bda5ae46f47ee3ecebc97b67104409elfMirai