URLhaus Database

You are currently viewing the URLhaus database entry for http://31.170.22.205/dl1001 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3462411
URL: http://31.170.22.205/dl1001
URL Status:flame Online (spreading malware for 1 year, 3 month, 2 days, 4 hours, 39 minutes)
Host: 31.170.22.205
Date added:2025-03-01 18:56:05 UTC
Threat:Malware download Malware download
Reporter: NDA0E
Abuse complaint sent (?): Yes (2025-03-01 18:57:06 UTC to abuse{at}nano[dot]lv)
Tags:DDoSAgent mirai link sh

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-07-20dl1001sh d6f15ec01c199194f5b20746edc21f66148222032c7f2020f09164fded7b1f7bn/aDDoSAgent
2025-05-10dl1001sh 7ce53e1f421fe9348a212bc8f9637f7e8c745668795e7632e271d3811e5dbc08n/a
2025-05-04dl1001sh 747a4669cc103eedec70eb249891c59c2a3ccf9bfdb025098bb7e59a6878e33en/a
2025-05-03dl1001sh 838a291fe0538f837b9db1fcb6d88f977f61e02ab5c950082a9e886caaa26877n/a
2025-05-02dl1001sh cd8a5b1150f7f29c14265b6ec278c61383c5994c7c926e3c4bd0d07cfd5ba237n/a
2025-05-02dl1001sh fcd9c68e9f1c3419b61d8bb0768a1bb595f3291fb131424fe712cacd1b61cb60n/a
2025-05-02dl1001sh ea2b8a6c1f1c83cb931e1d1b26d3c3ceb6dcb14d5a4ccb44f3e61b35608fbd08n/a
2025-04-30dl1001sh 9f3f0aecb0f5af870936f9312a3ee4ab2694d081e8018bc08d46376b7d82f174n/a
2025-04-12dl1001sh 18d043f4820ff8613fd8a5e19cf0ce1158a8e89ff140cb2a134d3a6a533bf572n/aDDoSAgent
2025-04-03dl1001sh 4f2084acdd6de8c61fab67e69e0126e4ab44eb1044f466bd51ca5f3c4c31e840n/aDDoSAgent
2025-03-29n/ash d01d3e7ed5b7d6ac19fa2aee9d54e01edb21c544a637ba5a7cde19b88473ffc7n/aDDoSAgent
2025-03-25n/ash 3bef2eb065074b97dd60dea773424c328399559d884d848f9121ed30378a5e64n/aDDoSAgent
2025-03-01n/ash ba0ac329d7541bb450884728e0237fc34d72dc5cdeaf71e49e98c79c04a2347cVirustotal results 46.67%Mirai