URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: 9atiuana2s911.twilightparadox.com
Domain registrar:Porkbun -
Domain registration date:2003-07-29 04:33:29 UTC
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2025-09-23 05:23:07 UTC
Total malware sites :17
Online malware sites :0 (0%)
Offline Malware sites :17 (100%)
A record(s) observed :2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-09-23 05:23:18 121.127.34.118Not listedAS400587 RYAMER- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2025-09-23 05:25:19http://9atiuana2s911.twilightparadox.com/huhu/t...Offlinebotnetdomain elf mirai ext BlinkzSec
2025-09-23 05:24:17http://9atiuana2s911.twilightparadox.com/huhu/t...Offlinebotnetdomain elf mirai ext BlinkzSec
2025-09-23 05:24:17http://9atiuana2s911.twilightparadox.com/huhu/t...Offlinebotnetdomain elf mirai ext BlinkzSec
2025-09-23 05:24:14http://9atiuana2s911.twilightparadox.com/huhu/t...Offlinebotnetdomain elf mirai ext BlinkzSec
2025-09-23 05:23:20http://9atiuana2s911.twilightparadox.com/all.shOfflinebotnetdomain mirai ext sh BlinkzSec
2025-09-23 05:23:20http://9atiuana2s911.twilightparadox.com/huhu/t...Offlinebotnetdomain elf mirai ext BlinkzSec
2025-09-23 05:23:19http://9atiuana2s911.twilightparadox.com/huhu/t...Offlinebotnetdomain elf mirai ext BlinkzSec
2025-09-23 05:23:19http://9atiuana2s911.twilightparadox.com/huhu/t...Offlinebotnetdomain elf mirai ext BlinkzSec
2025-09-23 05:23:19http://9atiuana2s911.twilightparadox.com/huhu/t...Offlinebotnetdomain elf mirai ext BlinkzSec
2025-09-23 05:23:19http://9atiuana2s911.twilightparadox.com/huhu/t...Offlinebotnetdomain elf mirai ext BlinkzSec
2025-09-23 05:23:19http://9atiuana2s911.twilightparadox.com/huhu/t...Offlinebotnetdomain elf mirai ext BlinkzSec
2025-09-23 05:23:19http://9atiuana2s911.twilightparadox.com/huhu/t...Offlinebotnetdomain elf mirai ext BlinkzSec
2025-09-23 05:23:18http://9atiuana2s911.twilightparadox.com/huhu/t...Offlinebotnetdomain elf mirai ext BlinkzSec
2025-09-23 05:23:18http://9atiuana2s911.twilightparadox.com/huhu/t...Offlinebotnetdomain elf mirai ext BlinkzSec
2025-09-23 05:23:18http://9atiuana2s911.twilightparadox.com/huhu/t...Offlinebotnetdomain elf mirai ext BlinkzSec
2025-09-23 05:23:18http://9atiuana2s911.twilightparadox.com/huhu/t...Offlinebotnetdomain elf mirai ext BlinkzSec
2025-09-23 05:23:18http://9atiuana2s911.twilightparadox.com/huhu/t...Offlinebotnetdomain elf mirai ext BlinkzSec

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-09-23 05:25:198fcd31c6867be1ef681ad0a575638b0b573aa75639517dddbfae7a7b70e32152elfMirai
2025-09-23 05:24:17c6406173c4da554bb15f32678bde884c78d294dc47621a7c99f193f598305b60elfMirai
2025-09-23 05:24:178a4e93e0f92ebb199e3f24f204266ce01c1a4435b63a5e6df50f9c13b3ec36d7elfMirai
2025-09-23 05:24:13f7ee9a7b647ce17952cb58852dc982f60e05cb4b1273ee3b7952a6ccddf4c3c9elfMirai
2025-09-23 05:23:208a5036d2fc7712d9fdaec4dbfe7153874a1d6171d2c40a6fdbb0066d66229b9fshMirai
2025-09-23 05:23:20bcd61dc057f2f1b3017deba71b3c1d13317c53cdc7a492b93a94ec02ed4bbbfbelfMirai
2025-09-23 05:23:19250855553d63176a23ccd75ffcff07f7a5d105e842feefe73c008e305e0f5316elfMirai
2025-09-23 05:23:199ffd6ce2680298be886b41720166cf363f6672df921eed5e74af9bdb7791dd64elfMirai
2025-09-23 05:23:19ac3432c05f15518fde2e9021b97a848d3765ed3623a6d4fd61f45e9909a118bfelfMirai
2025-09-23 05:23:1960476a9eee6be01b2c57cf85316afb2fa5ec6d6a78ec11861123c94d5b350c29elfMirai
2025-09-23 05:23:19d559f6ef2ab195feba1588bfdaa609685857661cb7d00b00283fe776e4bbc6bfelfMirai
2025-09-23 05:23:1954b446871a3408712f0581d3dcb44d9afc76f6a9d786937500c062f89a7c8810elfMirai
2025-09-23 05:23:18247d1cf2a79f3f0a8d379b44e4c53883593202e6a65f7fba9d923b934e730956elfMirai
2025-09-23 05:23:18cacfdfca3a47aba64231cc6a48b602bc12fdd337e2876a56ec7d4d4e2d65125belfMirai
2025-09-23 05:23:189aca785aa54ee40d9104f942c1e955891c4b281f722cbd91a9db21a9ce505dcdelfMirai
2025-09-23 05:23:18edb700f9c37339565671e81edd3511ad1b5c23b94a994f13c936b99f7340c90belfMirai
2025-09-23 05:23:180433a31dad420dcc9fb234f1390e4520f0169bb426ec277176542cdc2595abd1elfMirai