URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	main.oooservers.kro.kr
Domain registrar:	n/a
Domain registration date:	2012-06-01 00:00:00 UTC
Spamhaus DBL :	Phishing domain
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Not blocked
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2025-05-06 13:00:05 UTC
Total malware sites :	26
Online malware sites :	0 (0%)
Offline Malware sites :	26 (100%)
A record(s) observed :	3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-05-19 10:34:22	51.38.140.84	ip84.ip-51-38-140.eu	Not listed	AS16276 OVH	FR	no
2025-05-06 13:00:19	91.208.206.217		Not listed	AS200019 AlexHost	MD	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-05-06 13:00:26	http://main.oooservers.kro.kr/bot.sh4	Offline	botnetdomain censys elf mirai moobot ua-wget	NDA0E
2025-05-06 13:00:21	http://main.oooservers.kro.kr/hidden.sh	Offline	botnetdomain censys mirai moobot sh ua-wget	NDA0E
2025-05-06 13:00:21	http://main.oooservers.kro.kr/goahead	Offline	botnetdomain censys mirai moobot sh ua-wget	NDA0E
2025-05-06 13:00:21	http://main.oooservers.kro.kr/thinkphp	Offline	botnetdomain censys mirai moobot sh ua-wget	NDA0E
2025-05-06 13:00:21	http://main.oooservers.kro.kr/aws	Offline	botnetdomain censys mirai moobot sh ua-wget	NDA0E
2025-05-06 13:00:21	http://main.oooservers.kro.kr/hnap	Offline	botnetdomain censys mirai moobot sh ua-wget	NDA0E
2025-05-06 13:00:21	http://main.oooservers.kro.kr/zte	Offline	botnetdomain censys mirai moobot sh ua-wget	NDA0E
2025-05-06 13:00:21	http://main.oooservers.kro.kr/pulse	Offline	botnetdomain censys mirai moobot sh ua-wget	NDA0E
2025-05-06 13:00:21	http://main.oooservers.kro.kr/huawei	Offline	botnetdomain censys mirai moobot sh ua-wget	NDA0E
2025-05-06 13:00:21	http://main.oooservers.kro.kr/lg	Offline	botnetdomain censys mirai moobot sh ua-wget	NDA0E
2025-05-06 13:00:20	http://main.oooservers.kro.kr/bot.arm6	Offline	botnetdomain censys elf mirai moobot ua-wget	NDA0E
2025-05-06 13:00:20	http://main.oooservers.kro.kr/zyxel	Offline	botnetdomain censys mirai moobot sh ua-wget	NDA0E
2025-05-06 13:00:20	http://main.oooservers.kro.kr/realtek	Offline	botnetdomain censys mirai moobot sh ua-wget	NDA0E
2025-05-06 13:00:20	http://main.oooservers.kro.kr/jaws	Offline	botnetdomain censys mirai moobot sh ua-wget	NDA0E
2025-05-06 13:00:20	http://main.oooservers.kro.kr/bot.mpsl	Offline	botnetdomain censys elf mirai moobot ua-wget	NDA0E
2025-05-06 13:00:20	http://main.oooservers.kro.kr/bot.x86	Offline	botnetdomain censys elf mirai moobot ua-wget	NDA0E
2025-05-06 13:00:20	http://main.oooservers.kro.kr/bot.arm7	Offline	botnetdomain censys elf mirai moobot ua-wget	NDA0E
2025-05-06 13:00:20	http://main.oooservers.kro.kr/bot.ppc	Offline	botnetdomain censys elf mirai moobot ua-wget	NDA0E
2025-05-06 13:00:20	http://main.oooservers.kro.kr/bot.arm	Offline	botnetdomain censys elf mirai moobot ua-wget	NDA0E
2025-05-06 13:00:20	http://main.oooservers.kro.kr/bot.arm5	Offline	botnetdomain censys elf mirai moobot ua-wget	NDA0E
2025-05-06 13:00:20	http://main.oooservers.kro.kr/gpon443	Offline	botnetdomain censys mirai moobot sh ua-wget	NDA0E
2025-05-06 13:00:20	http://main.oooservers.kro.kr/bot.mips	Offline	botnetdomain censys elf mirai moobot ua-wget	NDA0E
2025-05-06 13:00:20	http://main.oooservers.kro.kr/bot.m68k	Offline	botnetdomain censys elf mirai moobot ua-wget	NDA0E
2025-05-06 13:00:20	http://main.oooservers.kro.kr/bot.x86_64	Offline	botnetdomain censys elf mirai moobot ua-wget	NDA0E
2025-05-06 13:00:20	http://main.oooservers.kro.kr/yarn	Offline	botnetdomain censys mirai moobot sh ua-wget	NDA0E
2025-05-06 13:00:19	http://main.oooservers.kro.kr/bot.spc	Offline	botnetdomain censys elf mirai moobot ua-wget	NDA0E

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-05-19 11:07:36	b0021b02e93fff1e0a28e799fadb027f75339afb1f1a93f3c03552b71709e993	sh
2025-05-19 10:56:47	7cbd0af522e867c269dbeee726a285435d151e545659a0760ad35b9802fc4590	sh
2025-05-19 10:53:32	8535dab6e4b22df990a2f0287db2b4cd5661720daa449a186e42b45e6b2ba91c	sh
2025-05-19 10:52:52	c287bc8d3565017f3fe8aa740a00297f664b52504df224a16494fd692d84b45c	sh
2025-05-19 10:51:10	afe347ea9026aec7b4eb18bb09a1cbb5289e59c6b083fe11a49b80eb75b7279b	sh
2025-05-19 10:44:11	9620cb7ed0ab21d086792eefa71bf36be4352839bc61b89f77cc493faaeba129	sh	Mirai
2025-05-19 10:38:20	b88eafda532abd3c6a06367c916b3028236d635eb8535cb9856041ebcc252e6e	sh
2025-05-19 10:35:17	2ec9807578e979689eb1a8a897dccbcefb3f2b97bab4e6487c27c4a31e9cbb43	sh
2025-05-11 13:51:18	5086f4d3eff992a3c5c5936266cdd2ffd8a3952f49b8e58b40c44e9ea5619d55	sh	Mirai
2025-05-11 13:43:23	270cf60b440d9395bbb009c56bb65d58f13e3f180096248d6fba09386a231ddd	sh	Mirai
2025-05-08 11:34:20	db1fba877499f081df7b12b12ba0012e416114793e5e78909d543bbbdb492b63	sh
2025-05-08 11:22:00	22069de11c7c562f50d28aff517822863ba78aea80119a9d8fb855cc8ac37ecd	sh
2025-05-08 11:03:38	bdebfdc5b28a0bce50be6afd0c57a52ef8fe17f675d61eaf698b4c0f467a2fd1	sh
2025-05-08 10:49:44	1e19810a813531e95ba69961e1616e836080e8f6af865e3574357d1ffa20cde0	sh
2025-05-08 10:46:20	76e88125ebc60c2929216f4e715b4ea66f4a405a2b35a50f59e9a0ac0ae1ab10	sh
2025-05-08 10:40:28	60fc35b2a368ea956c7c11f35c999b938f66d21c2a21ecbb7c861c41a19470ab	sh	Mirai
2025-05-08 10:37:26	f87f437a0ac8fc731fe19e0910e220b75593672972ff88477d9f4ed155cfa73a	sh
2025-05-08 10:29:40	a135652096d9a02c278d0c0caf31370083e5b40ac0f1535b51d8bb2c6449d2b4	sh
2025-05-08 10:22:24	e8bdf18e2c76dab34c3ae4a86ff7debf306b339f5ec5b9e85b1c7b2aa1d0f708	sh
2025-05-08 10:20:12	bb8b9e098beb52ab67f62f2e4b11ebda7753ac22ecfbbdb4d493447565b29d87	sh
2025-05-08 10:15:28	21420692de8be749bf26ff0b17b3ce69328164e55f7a8098f1d6612a5267c7cc	sh
2025-05-08 10:04:36	19cac7b258deda206c45247eb1c54271f98cb33b9cbace149044cab7d0523fc6	sh
2025-05-08 09:51:04	d77d019977cc00426b62835ff707059fd0f303de46493ad2dcca643d93a23ed5	sh	Moobot
2025-05-08 09:15:20	9e84cef8a7a1c4276170fbc5de4a478416a8cf9d56f9a8dcaca8a17e67c9d8a0	elf	Mirai
2025-05-08 08:54:55	fcd6ea78c0a4309a53096c3e5a8fdd41e06d60d851a971e37a71339baf0585f0	elf	Mirai
2025-05-08 08:41:40	3fc8b3e4234f42cf021fb0e61580df7b148921641c8258b2dc489578ef66baee	elf	Mirai
2025-05-08 08:34:48	977e2623f7df729a8b9ae26e3749ff0becb4ca73e375a772c5189356efdf877f	elf	Mirai
2025-05-08 07:38:02	8bf7021542d113ab9ac362222ee7d4b8501d2cb21d7d016489b94fbd3daf2504	elf	Mirai
2025-05-08 07:31:49	caa10555706395da788270e9e40d7e92b12856c23f2879ac106496385c091a27	elf	Mirai
2025-05-08 07:12:19	2896c0dbd88bc18dc87d9fdeefb6e116b46792bf2d641eb527d490ec327e9f50	elf	Mirai
2025-05-08 07:01:35	b420d329868a4eef429f325b90479e74e8c1332950334daaf8a17a1e077873c5	elf	Mirai
2025-05-08 06:57:39	12421ba1eb13fb7de46ebeb60e5cda4b9b065713ff17b8718e84d7187a1473a4	elf	Mirai
2025-05-06 13:00:26	669c024055a447743cc20df0560f94828335e9d1eec71c1720340931064427d1	elf	Mirai
2025-05-06 13:00:21	e7f255c5493f828a0d7210908c51557fb545125a8d4592c77947a28c56c3c370	sh	Mirai
2025-05-06 13:00:21	d4192638e21381b6eab31cd7fbeb8838ce353a5e4c65549fd2946c91284d5acc	sh	Mirai
2025-05-06 13:00:21	9b8a5c0bcd417c165b422fe770f1725ba9ecc97de8a7835ce504893efc4b1d36	sh	Mirai
2025-05-06 13:00:21	c2d6d58eb799edffda8b28de80f3774448e8dcc3a60bf60dc03e083ac6788d7f	sh	Mirai
2025-05-06 13:00:21	dc8f745dfce8e79c312faf2047bccceeb677fed6e75e36dd2047a9aa95278282	sh	Mirai
2025-05-06 13:00:21	7bf6aab258c786baf87c877cacd66814c43a64bdaec3c5891483c3f34f95540f	sh	Mirai
2025-05-06 13:00:21	4a9b7ff3a7f778dfe95457db4f9edeeb18fb7378a85f9f87ea70708d4cfd3d84	sh	Mirai
2025-05-06 13:00:21	6b2291abd127acc3d1ce961ed4775e76719c3a262d476e1f4032e6938986644d	sh	Mirai
2025-05-06 13:00:21	093d295423c83230502c23b8962ca4e182f3d550e7de3552b682602b53c6b3a6	sh	Mirai
2025-05-06 13:00:20	6acd419809c04ca20437ce71af1f90f92ee8550de45ec675dfadb338f9f780ee	sh	Mirai
2025-05-06 13:00:20	081023d57a6212be002f12e3abc59cf9bcf596aaaf64e25778499a9d36ae8259	sh	Mirai
2025-05-06 13:00:20	6105110ec6f6c96b6ca1f14fc32fe7469ac4b3ff57dc5a49c9a0b9698f8978d9	elf	Mirai
2025-05-06 13:00:20	5b774fecf7bf25c2dd2d1c5b901b420231c202585f9faeccf9b9aa3bb821606c	sh	Mirai
2025-05-06 13:00:20	a6e59bb6c8313ab056702484643c26cfdc2d0cc30c9eb11730528ff162f88c4c	elf	Mirai
2025-05-06 13:00:20	9ac883e9d3547028c50d2be65753a502fec5aa011c395e73a0ab2db2aaa4363e	elf	Mirai
2025-05-06 13:00:20	3b581d612ba331c80d7ddc5830edc1c0e67a9ca7e79d7d171e9ceaaeb0d79af4	elf	Mirai
2025-05-06 13:00:20	a3a024e45097d3af8753f9fe5ae3c0fef2fd5db29e267dbfe989d5de4b0ce37d	elf	Mirai
2025-05-06 13:00:20	6105110ec6f6c96b6ca1f14fc32fe7469ac4b3ff57dc5a49c9a0b9698f8978d9	elf	Mirai
2025-05-06 13:00:19	acca8824ad7b62c5baabb789d4b998e96a9984e8fb261b082a08e552ec69474a	elf	Mirai
2025-05-06 13:00:19	3f00302f1e74cc2a693bc9d1abd17e4e172e47a497213bbf85e067c890c81445	elf	Mirai
2025-05-06 13:00:19	ed75f00fe47bd2c43f0fcf451c5c2eff97422aa17f9883ec565dc174515bb4f9	sh	Mirai
2025-05-06 13:00:19	aa8f6d520c87106db4cd824f7af44ef75b5b2000adc3e709e38211e60e9d1b36	elf	Mirai
2025-05-06 13:00:19	7b302ebc00e3a190e94b8ede8e81f760785e8c30538f89cc8ce05e249db27bb4	elf	Mirai
2025-05-06 13:00:19	920c23ede85dc9805c2cdb594dd0eb4a440a53fe0a1af132039174c937cd7443	elf	Mirai
2025-05-06 13:00:19	1dfac7c354c820d8f4fc770af6af48e7cfcf13bcb01ceece41946dd5442c4373	sh	Mirai