URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	server.eye-network.ru
Domain registrar:	R01
Domain registration date:	2024-10-10 18:02:16 UTC
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Not blocked
Control D HaGeZi :	Not blocked
Firstseen:	2024-10-12 12:27:04 UTC
Total malware sites :	12
Online malware sites :	0 (0%)
Offline Malware sites :	12 (100%)
A record(s) observed :	2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2024-10-12 12:27:05	188.114.96.3		SBL690066	AS13335 CLOUDFLARENET	n/a	no
2024-10-12 12:27:05	188.114.97.3		SBL691350	AS13335 CLOUDFLARENET	n/a	no

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2024-10-24 13:41:05	http://server.eye-network.ru/vkjqpc	Offline	elf mirai	tolisec
2024-10-24 13:41:05	http://server.eye-network.ru/kjsusa6	Offline	elf mirai	tolisec
2024-10-24 13:40:07	http://server.eye-network.ru/vwkjebwi686	Offline	elf mirai	tolisec
2024-10-24 13:39:06	http://server.eye-network.ru/vqsjh4	Offline	elf mirai	tolisec
2024-10-24 13:39:06	http://server.eye-network.ru/dvwkja7	Offline	elf mirai	tolisec
2024-10-24 13:39:06	http://server.eye-network.ru/jwwofba5	Offline	elf mirai	tolisec
2024-10-24 13:39:06	http://server.eye-network.ru/vqkjf64	Offline	elf mirai	tolisec
2024-10-24 13:39:06	http://server.eye-network.ru/wheiuwa4	Offline	elf mirai	tolisec
2024-10-24 13:39:06	http://server.eye-network.ru/qkehusl	Offline	elf mirai	tolisec
2024-10-16 06:02:04	http://server.eye-network.ru/yarn.sh	Offline	script	geenensp
2024-10-12 17:18:05	http://server.eye-network.ru/qkbfi86	Offline	32-bit elf mirai x86-32	geenensp
2024-10-12 12:27:05	http://server.eye-network.ru/vsbeps	Offline	32-bit elf mips mirai	geenensp

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Signature
2024-10-24 13:41:05	aea837bf9628d3cfc534230def660c233bd7b01875c8b7e656d36e870ed2b823	elf	Mirai
2024-10-24 13:41:05	4a5ae555bdbccf4935a857bb92ed48f28bd3d102556282a31156ff95820dc01f	elf	Mirai
2024-10-24 13:40:07	98ece0b04ea95bccb968941630f024879207d8e9d4cb4491211ed6d3104c95eb	elf	Mirai
2024-10-24 13:39:06	d2911331e063a88a1818abfcb50e899e906abbb113b25f49e650aa727727d280	elf	Mirai
2024-10-24 13:39:06	e72a32e5ee2d171eb2af61eae86d371020ad2ec17ab04236558d009e43b44106	elf	Mirai
2024-10-24 13:39:06	b5d2eb0f796d9cf1b3e7283dc8d9040844a8214b045559f94f5eae3dea9bafe3	elf	Mirai
2024-10-24 13:39:06	f7f2d8c4291f14dbc5332b69ad19b4e7972a96d9a17b9b1d5aa909eec486e324	elf	Mirai
2024-10-24 13:39:06	eb6be76c62683f5ba489dc50f52cd118537c97c979b2bad8e5f767c46028773b	elf	Mirai
2024-10-24 13:39:06	c51000dcc4034593b8ac668545610597901500c0e294ca5f264d6c1f7ac3d250	elf	Mirai
2024-10-21 01:22:06	57de556e136b4716cd59e19ce417fd0f0b095f75c2a08ecf073ac49e04c51bb8	elf	Mirai
2024-10-20 22:47:43	6e0334592de1ca1962a1a6cfb78db994765275b5b1237f91250bf7b9f94803d7	elf	Mirai
2024-10-20 06:38:04	662282667d4f4a14b0e9e7fe4c6c67b4f1531b7e5230dec7c6affb66d87ba580	elf	Mirai
2024-10-20 01:31:36	ecb6643290d3d00ea2498ef02cdc2e054de34444d856494f1c3969ea0b394de2	elf	Mirai
2024-10-17 02:03:48	2879f4f6416eb5b3e3638ecbed8dd84a66ff5fa05ef1392c2a22b4c9e461f938	sh
2024-10-12 17:18:05	a92fc8b24666c3b2e4fda6a458a5fc8d58505964100921baa0117c573ad569a0	elf	Mirai
2024-10-12 12:27:05	cfe8eb25d77ee2a45abce8b113405035b2a808a7a495e804af46c203ae1ce8c6	elf	Mirai