URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: bot.nightbotnet.my.id
Domain registrar: n/a
Domain registration date:2025-02-26 13:03:53 UTC
Spamhaus DBL :Botnet C&C domain
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
ProtonDNS :Not blocked
OpenBLD :Blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2025-07-09 08:41:07 UTC
Total malware sites :16
Online malware sites :0 (0%)
Offline Malware sites :16 (100%)
A record(s) observed :2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-08-08 17:26:02 185.208.159.135SBL640646AS42624 swissnetwork02- USyes
2025-07-09 08:41:29 87.121.84.44SBL683025AS215925 VPSVAULTHOST- USno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2025-07-09 08:41:34http://bot.nightbotnet.my.id/00101010101001/mor...Offlinebotnetdomain elf mirai ext ua-wget NDA0E
2025-07-09 08:41:33http://bot.nightbotnet.my.id/00101010101001/mor...Offlinebotnetdomain elf mirai ext ua-wget NDA0E
2025-07-09 08:41:33http://bot.nightbotnet.my.id/00101010101001/mor...Offlinebotnetdomain elf mirai ext ua-wget NDA0E
2025-07-09 08:41:32http://bot.nightbotnet.my.id/00101010101001/mor...Offlinebotnetdomain elf mirai ext ua-wget NDA0E
2025-07-09 08:41:31http://bot.nightbotnet.my.id/00101010101001/mor...Offlinebotnetdomain elf mirai ext ua-wget NDA0E
2025-07-09 08:41:31http://bot.nightbotnet.my.id/00101010101001/andOfflinebotnetdomain mirai ext sh ua-wget NDA0E
2025-07-09 08:41:31http://bot.nightbotnet.my.id/00101010101001/mor...Offlinebotnetdomain elf mirai ext ua-wget NDA0E
2025-07-09 08:41:31http://bot.nightbotnet.my.id/00101010101001/mor...Offlinebotnetdomain elf mirai ext ua-wget NDA0E
2025-07-09 08:41:31http://bot.nightbotnet.my.id/00101010101001/mor...Offlinebotnetdomain elf mirai ext ua-wget NDA0E
2025-07-09 08:41:30http://bot.nightbotnet.my.id/00101010101001/mor...Offlinebotnetdomain elf mirai ext ua-wget NDA0E
2025-07-09 08:41:30http://bot.nightbotnet.my.id/00101010101001/mor...Offlinebotnetdomain elf mirai ext ua-wget NDA0E
2025-07-09 08:41:30http://bot.nightbotnet.my.id/00101010101001/mor...Offlinebotnetdomain elf mirai ext ua-wget NDA0E
2025-07-09 08:41:30http://bot.nightbotnet.my.id/00101010101001/mor...Offlinebotnetdomain elf mirai ext ua-wget NDA0E
2025-07-09 08:41:29http://bot.nightbotnet.my.id/00101010101001/mor...Offlinebotnetdomain elf mirai ext ua-wget NDA0E
2025-07-09 08:41:29http://bot.nightbotnet.my.id/00101010101001/mor...Offlinebotnetdomain elf mirai ext ua-wget NDA0E
2025-07-09 08:41:29http://bot.nightbotnet.my.id/00101010101001/mor...Offlinebotnetdomain elf mirai ext ua-wget NDA0E

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-07-10 05:57:182f02636d03d8016446a1df6bf3976255a99740b48ad838eb53eb1cdc083a0d3fshMirai
2025-07-09 08:41:34aa7a00f2e8fa6079833b368bb53e0379df669d09f5490e578568e00c3b486f17elfMirai
2025-07-09 08:41:330af60479a4f52295d54a989ef3857f327e29129759094bd299d232f6b7b27396elfMirai
2025-07-09 08:41:322640512201ae2a0f515b0cc9d8cb8bba20c440aef5c91d0f7632d5f12b1bc01eelfMirai
2025-07-09 08:41:32bb0a72d9394c27afafbe882da58449ad8bb538e05ed478897028db9efb1837bbelfMirai
2025-07-09 08:41:31b3d0aeabcaf687d25e611b701068516cebf074cb8bcc35a2454618d558f423d3shMirai
2025-07-09 08:41:31ac5c338c558a7b2679876efa6965ad0fa2868cd2d42288e2492113c619622134elfMirai
2025-07-09 08:41:31388fca18d135e0355f1d8f0b6d72583d868fdedfd94e4433c13cabf2e22293acelfMirai
2025-07-09 08:41:31ba212c7156c961b97874657e81393cb6b94eef969c3e0b6e744956770d8f394aelfMirai
2025-07-09 08:41:31c0a05e039d5c3eb2be10b4bf48a58684466b52387506db4ca927b34220777c49elfMirai
2025-07-09 08:41:30ac5c338c558a7b2679876efa6965ad0fa2868cd2d42288e2492113c619622134elfMirai
2025-07-09 08:41:30ac411a17498b1006b712d89d16ab8b0c863435addd667aac4000dff0100bf23aelfMirai
2025-07-09 08:41:30c323ffb320b490e697419b50310aa8c2ac72447123f637404aab870431f2af02elfMirai
2025-07-09 08:41:29b05136041ee5e91d5a13ef2e542bd5e2a99a7c671a7b223db60edfc83e0ed94celfMirai
2025-07-09 08:41:29b3211943b1a91fb0f11eb32a0d5e74ae9eb4ae7df45daf3f368ba6216c63a739elfMirai
2025-07-09 08:41:29a5096a6f6f1d1a3a6cec37e9739eec6a57b20cb9a36cc36c36b6ad5b5876b953elfMirai
2025-07-09 08:41:274fa0b919f29ce04e492564cdc7fd04493f3c0fe4936f540b832fbbbb91ebd224elfMirai