URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | fbi.eye-network.ru |
|---|---|
| Domain registrar: | R01  |
| Domain registration date: | 2024-10-10 18:02:16 UTC |
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Status unknown |
| AdGuard : | Status unknown |
| Cloudflare : | Blocked |
| ProtonDNS : | Status unknown |
| OpenBLD : | Not blocked |
| DNS4EU : | Not blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2024-12-31 02:08:05 UTC |
| Total malware sites : | 7 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 7 (100%) |
| A record(s) observed : | 2 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2024-12-31 02:08:07 | 188.114.96.3 | SBL690066 | AS13335 CLOUDFLARENET | n/a | no | |
| 2024-12-31 02:08:07 | 188.114.97.3 | SBL691350 | AS13335 CLOUDFLARENET | n/a | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2025-01-01 21:41:05 | http://fbi.eye-network.ru/woega6 | Offline | botnetdomain elf mirai  ua-wget |  DaveLikesMalwre |
| 2025-01-01 21:41:05 | http://fbi.eye-network.ru/ngwa5 | Offline | botnetdomain elf mirai ua-wget | DaveLikesMalwre |
| 2025-01-01 21:41:05 | http://fbi.eye-network.ru/wlw68k | Offline | botnetdomain elf mirai ua-wget | DaveLikesMalwre |
| 2025-01-01 21:41:05 | http://fbi.eye-network.ru/wrjkngh4 | Offline | botnetdomain elf mirai ua-wget | DaveLikesMalwre |
| 2025-01-01 21:41:05 | http://fbi.eye-network.ru/gnjqwpc | Offline | botnetdomain elf mirai ua-wget | DaveLikesMalwre |
| 2025-01-01 20:30:10 | http://fbi.eye-network.ru/nvebfe64 | Offline | 64-bit elf mirai x86-64 |  geenensp |
| 2024-12-31 02:08:07 | http://fbi.eye-network.ru/rjnven64 | Offline | 64-bit elf mirai x86-64 | geenensp |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2025-01-01 21:41:05 | 48f3923c4a5434675a38008a4dc75aed93a0b751b35070fc09d1a271923e8852 | elf | Mirai | |
| 2025-01-01 21:41:05 | 155154b113b0d050d2e6ef65608c765c90555a312ebbde7212b281af661012ae | elf | Mirai | |
| 2025-01-01 21:41:05 | f60a2537328834ad641c31d4b5c7eb4616477df2ca5bfc0ef2131a12e1d7c348 | elf | Mirai | |
| 2025-01-01 21:41:05 | bbcd618c4c1690817a81d2c22073e2848d64d396e45974e258cf998901ae7d12 | elf | Mirai | |
| 2025-01-01 21:41:05 | d71cb37f121cbe1331c68b14e46ab95c7d764362bb901de445193c1129e3a383 | elf | Mirai | |
| 2025-01-01 20:30:10 | af9bb8d23d718a6603edc6acd13041266d1f3964764014f997f89f853a2c4222 | elf | Mirai | |
| 2024-12-31 02:08:07 | 3b57990874af476bd1f59cb4bcb4fc31f95d8faeda1e57c1a73616bc21fae7c3 | elf | Mirai |