URLhaus Database

You are currently viewing the URLhaus database entry for http://94.154.35.154/x86_32.urbotnetisass which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3618255
URL: http://94.154.35.154/x86_32.urbotnetisass
URL Status:flame Online (spreading malware for 2 months, 16 days, 14 hours, 40 minutes)
Host: 94.154.35.154
Date added:2025-09-06 06:05:14 UTC
Threat:Malware download Malware download
Reporter: botnetkiller
Abuse complaint sent (?): Yes (2025-09-06 06:06:21 UTC to abuse{at}pitline[dot]net,abusep{at}kharkiv[dot]com)
Tags:elf geofenced mirai link ua-wget USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-10-12n/aelf c45dae76b08c1d5842f98e5084de1dc8712befe9bf9e36569a9d77a6cba3b7f1Virustotal results 29.69%Mirai
2025-10-03n/aelf 53f2d224064cf1acc0b54320e65bb84f7f398b861e002d9ef1dc1071ef1a2d71Virustotal results 29.23%Mirai
2025-10-02n/aelf 93855241d0102f605b30c4a23abb341a9e891541b69d634018b1de4a3a51c06an/aMirai
2025-10-02n/aelf c18bb536ea07f0d8f7aca0137d9eb2f80f0300ea5b16cac4353da52bbe574af4n/aMirai
2025-09-26n/aelf 20417541ff8b1b5d77a46fe26641c4609019332509b67567c6cd13d1507fe7b0n/aMirai
2025-09-24n/aelf d924c86900c79101c15327d5856259a033840a492e935edbf2261ad714e6107fn/aMirai
2025-09-24n/aelf b80912fc13fb97d3ca24c0da9d4b7ae4d9104635b60f7fc582945135195bb6f9n/aMirai
2025-09-23n/aelf b1d2b68dadf055292e5f2d17952cf1d1c9a8752f94625f9ae4e67a840a288849n/aMirai
2025-09-22n/aelf b6b7e9b8213f5448d8125395549c825a07c1765a1153e0bc817f2c35e3e828a6n/aMirai
2025-09-21n/aelf 5245c572b41cb1257c070a75fa2fb6625c3d699172f89306aadd2bd32843546dn/aMirai
2025-09-21n/aelf c9922ed8521e186ce9fe038658d57d07df71bbcebc062d2451c78af0f659c97cn/aMirai
2025-09-20n/aelf 9d6786871dc94431af660bba8fd943feeca68e3f5bcabe6cb6b52c68b91eaec2n/aMirai
2025-09-19n/aelf 100e0eb8f8e79c69ad97e36e542700bb8e1b83986de9b0a65e8e80c92a8cee7fn/aMirai
2025-09-14n/aelf 7f7f0d711bbb3fd8c747e86a594c875ace72c37a48c3b1332e14a84f92bfd0abn/aMirai
2025-09-13n/aelf 551cbc1698d7e07b9e00c4443098449f0a5ef09e14e7d861b757e853f77fe671Virustotal results 28.12%Mirai
2025-09-13n/aelf 95aaa9662104a4d431c88ce9422df8c6c34ac73225ba716febae85b96470f455n/aMirai
2025-09-12n/aelf 7bd913776eaa318cdd4eac133b27578c9eec59bcda1e9b2a8f5cd60218683695n/aMirai
2025-09-12n/aelf a64df1d17f7c1575c62efe35fa466d6217cddb6b813ea9fc7039b3a451326c93Virustotal results 27.69%Mirai
2025-09-12n/aelf 7e7ed21fc051b096ab0d5507e254c8855fa81533a30577ce72c71dbfe6ccc901n/aMirai
2025-09-11n/aelf 18112ef9bada413a225ebd359100f0937eda13f3bc61e7232d54b2335c5744den/aMirai
2025-09-11n/aelf 4257f0992f19704aa44249881566901db0943a83f90c7ae563777473a7017b25n/aMirai
2025-09-10n/aelf 827c160f408822ca75b51c498f257842f75ea9a12b6428420688744c302a0703n/aMirai
2025-09-10n/aelf dbb3bb6eebf5717676045c9b683de6db4bfe065c2bcd44f4e50496b816d8a53an/aMirai
2025-09-10n/aelf 8c714bdaa8914237ba7dc9eaa764184ae17ed4c5eeede566aaffecd1d47fe5bcn/aMirai
2025-09-09n/aelf 3088a0f1ff0bdb8ee474673d5dda29c78df862ed31c6cde90dc47f3175406f1dn/aMirai
2025-09-08n/aelf add7c90ca40fbda571f25b8fe6b98e62e8d43790ac7fbbdea9cf512454b6ccebn/aMirai
2025-09-08n/aelf e08bd9c604efbf539b8c91b29df9757942a0203ba7bebeebfac6e36a418f0843n/aMirai
2025-09-06n/aelf b8a1a94f76991f0f5c8a1679196b54c1db8f0c919644551ac3abf3604cfb7ab0n/aMirai