URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: ransokk.de
Spamhaus DBL :Abused domain (malware)
SURBL :Blocked
Quad9 :Blocked
AdGuard :Blocked
Cloudflare :Blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2025-09-06 06:26:05 UTC
Total malware sites :16
Online malware sites :10 (63%)
Offline Malware sites :6 (38%)
Newest active malware site :2025-09-06 06:42:17 UTC
Oldest active malware site :2025-09-06 06:26:14 UTC (Age: 3 months, 24 days, 1 hours, 19 minutes)
A record(s) observed :3

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2025-12-27 17:43:20 51.38.196.153server143.mentality.cloudNot listedAS16276 OVH- FRyes

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2025-09-06 22:13:34http://ransokk.de/bins/morte.x86_64Offlinebotnetdomain mirai ext opendir DaveLikesMalwre
2025-09-06 06:42:17http://ransokk.de/bins/morte.x86Onlinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-09-06 06:42:11http://ransokk.de/1.shOnlinebotnetdomain mirai ext sh ua-wget BlinkzSec
2025-09-06 06:42:11http://ransokk.de/bins/morte.arm6Offlinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-09-06 06:42:10http://ransokk.de/bins/morte.i686Onlinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-09-06 06:42:10http://ransokk.de/bins/morte.arm7Onlinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-09-06 06:42:10http://ransokk.de/bins/morte.mpslOfflinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-09-06 06:26:16http://ransokk.de/bins/morte.sh4Onlinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-09-06 06:26:16http://ransokk.de/bins/morte.mipsOfflinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-09-06 06:26:16http://ransokk.de/bins/morte.spcOfflinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-09-06 06:26:15http://ransokk.de/bins/debugOnlinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-09-06 06:26:15http://ransokk.de/bins/morte.m68kOnlinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-09-06 06:26:15http://ransokk.de/bins/morte.ppcOfflinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-09-06 06:26:15http://ransokk.de/bins/morte.armOnlinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-09-06 06:26:15http://ransokk.de/bins/morte.arcOnlinebotnetdomain elf mirai ext ua-wget BlinkzSec
2025-09-06 06:26:14http://ransokk.de/bins/morte.arm5Onlinebotnetdomain elf mirai ext ua-wget BlinkzSec

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2025-12-28 07:33:36f50f37ec0d2cd7d799b30b9180a87fcdb2fa5eb6ddc60e613fb004c4b774458eelfMirai
2025-12-27 19:45:2412d86f647e6268120efc765e2ad3a0311091e2fe78240a1911bf267cc1a2f8e0elfMirai
2025-12-27 19:28:227c6371614ae39c5b6c821162f2da333ca5f91ad02c01d4f22d63c0f66e7f11adelfMirai
2025-12-27 19:21:40110a227b469b7a039e4c6905be1ae9637f90e1b38c200e72a95737eae62e7fefelfMirai
2025-12-27 18:52:27c08cecc872e4ce04ccbc26fc70c6f365cf0459036abd0f4bca3023352ac34a53elfMirai
2025-12-27 18:50:58c4306cb4631d098b231291fa846c1d8eef99e7450382cde792455976d5b1404belfMirai
2025-12-27 18:33:31c52089b4ad90e875e9ae8c0b38276a3fe961848b34ac3f8e4d55817dad9e24bbelfMirai
2025-12-27 18:32:456b9951f3306ad261daf0a77a357ce5f3c445ae7b5b28df83443f65e747e83011elfMirai
2025-12-27 18:12:5569cd8c85a6d85627ca1314be5c24da2d0cc36d45722161cfe549e01518a97b10sh 
2025-12-27 18:09:4782ee39c1318eee9fb39857efb933d8d5bcfa1842b55128ffff261577cafb4250elfMirai
2025-12-27 17:58:056322533d6a9ff69d3667bbacb4698a19a47c866559371064d8d1b2680055b31celfMirai
2025-12-27 17:53:4415aac9c45ea8f212f909bd1d45a206d082e25492d409440cea73b3676d28de52elfMirai
2025-12-27 17:49:067c4802a435488b0b52d050e2c3010c9c926aff36fca13ea53ebad4681c8556b9elfMirai
2025-12-27 17:48:550617e9fa489c1bfc65d776c30289aa617e9b51d81fcd1843579f3a0b54c0f3b4elfMirai
2025-12-27 17:47:2711756ba7ba295dfbc1b543c6d7b8023886cf841a97c7cdb681d2ff41655e1f0eelfMirai
2025-12-27 17:43:203e5425149e4db51986245328f098453f55416c99f1c60e40acc354cd4fcad259elfMirai
2025-10-29 18:39:35e5dd7a348c932383634a924b78c8ac0cccb9c65ae4f921095e9958ef5b02eae9shMirai
2025-09-06 22:13:33f904c5dbb0f0346f55ca3667fbe2f97aaac07b320ae16e4fcf718c34f23de2cdelfMirai
2025-09-06 06:42:17224bb391451b00c3c44269f7d9d94caa59623c65e08e24de22420f4f21686440elfMirai
2025-09-06 06:42:11b5ff3d5b1158f4cb6bffa6e8a1a4c25af0ee8655c31b0b8084c50e2f913daa5celfMirai
2025-09-06 06:42:1063021604b19c822d162cb1ff2e65a49e51c792fecfb2975f068ab5acb805a04felfMirai
2025-09-06 06:42:1054f3f6d1330b4c9667d1113ee3329c2a023cab9a71de20ba55dbed869a38a6b2elfMirai
2025-09-06 06:42:10c7121493e6e7e2c519dfaf688d1be09d07d06d46ac3984cc513d52d190169c9aelfMirai
2025-09-06 06:42:10bff314fbbc14981c43feaa5ddf2e48c926cf7902aa030de80a29ccbcd3556ce9shMirai
2025-09-06 06:26:16898f7f84f9ad51ae37a565893e4f72b6ebce2691d529f8744d7d3fb32ed4c4caelfMirai
2025-09-06 06:26:169d717775b3a0461cc62c5a8fbfd6027e62fb8f8ff47e5d1dc28a12db816cdcf3elfMirai
2025-09-06 06:26:15abb79091e35cd813de2d50e02ec355d6fc309d704ab8bc6d4354bbda531ca615elfMirai
2025-09-06 06:26:158ba34509d086573760aa8f7677c3d828c0cf477bd4342a9f743c7ba9b81051f5elfMirai
2025-09-06 06:26:15570791184ff5faa904839758cc51c3419e3802e8abe9d347e5928915e17d7ffeelfMirai
2025-09-06 06:26:156ceddf85002197439346890d29eda288c11ab7e11c27deb86a953bd96dd03096elfMirai
2025-09-06 06:26:15e98333b12e1353d142e9b467839d4f21a7640294f4b7cd9bd9a6029d93b806b3elfMirai
2025-09-06 06:26:1478e298ff1f2564c9b55330ddf19507dae4b8ebe9e06e062fa3774f30d7286b81elfMirai
2025-09-06 06:26:14c8ae7fee6b607a59a8a76bdf0026a987c118b01d7843cc01c3e4cd7182e67fd5elfMirai