URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	mc.horror1010.64bit.kr
Domain registrar:	n/a
Domain registration date:	2021-04-02 00:00:00 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2025-08-07 15:35:06 UTC
Total malware sites :	10
Online malware sites :	0 (0%)
Offline Malware sites :	10 (100%)
A record(s) observed :	1

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2025-08-07 15:35:11	172.94.95.228		SBL688689	AS137409 GSLNETWORKS-AS-AP	US	yes

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2025-08-07 15:50:12	http://mc.horror1010.64bit.kr/bot.ppc	Offline	botnetdomain elf mirai ua-wget	NDA0E
2025-08-07 15:35:13	http://mc.horror1010.64bit.kr/bot.m68k	Offline	botnetdomain elf mirai ua-wget	NDA0E
2025-08-07 15:35:13	http://mc.horror1010.64bit.kr/bot.arm6	Offline	botnetdomain elf mirai ua-wget	NDA0E
2025-08-07 15:35:12	http://mc.horror1010.64bit.kr/bot.mips	Offline	botnetdomain elf mirai ua-wget	NDA0E
2025-08-07 15:35:11	http://mc.horror1010.64bit.kr/bot.arm5	Offline	botnetdomain elf mirai ua-wget	NDA0E
2025-08-07 15:35:11	http://mc.horror1010.64bit.kr/bot.sh4	Offline	botnetdomain elf mirai ua-wget	NDA0E
2025-08-07 15:35:11	http://mc.horror1010.64bit.kr/bot.x86	Offline	botnetdomain elf mirai ua-wget	NDA0E
2025-08-07 15:35:11	http://mc.horror1010.64bit.kr/bot.arm7	Offline	botnetdomain elf mirai ua-wget	NDA0E
2025-08-07 15:35:11	http://mc.horror1010.64bit.kr/bot.arm	Offline	botnetdomain elf mirai ua-wget	NDA0E
2025-08-07 15:35:11	http://mc.horror1010.64bit.kr/bot.mpsl	Offline	botnetdomain elf mirai ua-wget	NDA0E

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2025-08-07 15:50:12	e015f9ec16199608fa18e31fb720ca8fdaa55c6a38963dd6aae001d12e8ade5a	elf	Mirai
2025-08-07 15:35:13	bae6086f53f48b94f9e18dd9e679832a66793b941ad8ec3fb75e0b10b65ef05c	elf	Mirai
2025-08-07 15:35:13	619d8d03bb9739eb1d273c756105e7bc1f0d57697680e743a0d8504016f87819	elf	Mirai
2025-08-07 15:35:11	46c69be3e353fa5f70efe88f8e7466545be594671d5a70f0d67bacc62ea1e364	elf	Mirai
2025-08-07 15:35:11	b84d9f6dcc5e1a54958469bd3cb9746ae170f4483f05056777c34f1c6b9a0859	elf	Mirai
2025-08-07 15:35:11	2f4d2dc34c31d45c670706038bbe806cb7f35e69dc3620bb7bf523c274ca96a4	elf	Mirai
2025-08-07 15:35:11	c9ee7c0905cce9ffc8328d50986adc88c2e39ae202f5365adc924c646d93de06	elf	Mirai
2025-08-07 15:35:11	fa32be125d32a755d09443c604bfb49b97ab0cab94dee19a7e7e47389269de5d	elf	Mirai
2025-08-07 15:35:11	f60b0fa10aab61ef3bf2570662f8600bc917038d50cc7534f3b6e5eaec7ff51a	elf	Mirai
2025-08-07 15:35:11	e071d999db59c09f9354ca309adc4e1edadcba410d6886a94bc06e79406012ed	elf	Mirai