URLhaus Database

You are currently viewing the URLhaus database entry for http://94.154.35.154/x86_32.uhavenobotsxd which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3687976
URL: http://94.154.35.154/x86_32.uhavenobotsxd
URL Status:Offline
Host: 94.154.35.154
Date added:2025-10-26 15:19:45 UTC
Last online:2025-12-24 18:XX:XX UTC
Threat:Malware download Malware download
Reporter: botnetkiller
Abuse complaint sent (?): Yes (2025-10-26 15:20:16 UTC to abuse{at}pitline[dot]net,abusep{at}kharkiv[dot]com)
Takedown time:1 month, 29 days, 2 hours, 52 minutes Bad (down since 2025-12-24 18:12:36 UTC)
Tags:elf geofenced mirai link ua-wget USA x86

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-12-24n/aelf 29ded76647c1db3bf5b092b92985eb9bc36eeb843bd8af4cb7f5a90b91ecb81cn/aMirai
2025-12-22n/aelf df2a5ff1d9f25fbca547bbd8ed3bba1d3a2ac96f4a4c1c92da48430aa3f3a34cn/aMirai
2025-12-22n/aelf 99c3e31628d4c1e5ffc94be945d4aaa0a4a0577565f6578dc7f4db8d10e9dfcan/aMirai
2025-11-29n/aelf 74f28772568490bbdb90de8d8faccd61be266af691d07c944e75b97c42819599Virustotal results 29.23%Mirai
2025-11-28n/aelf 5222465fa77d24210196df0d856afa26f2ce9e9365d513e40ba054468d6eb1a9Virustotal results 27.69%Mirai
2025-11-25n/aelf c1b5e7b4da44dda350efa32458644ac0852534869a11c83da1be61445f6ce050n/aMirai
2025-11-23n/aelf 207c44dc24b64ccb863ffd5a2678512115891ec6645b18e74f3804d872f9d381n/aMirai
2025-11-23n/aelf 699ac04e9d733bc3b808b1e9042c9cf5a009ce449a8d3c2f189acad3d1f320e8n/aMirai
2025-11-23n/aelf d5dabd73c9e5e9b8a06bae5335bd9ef740846d4ec661b0c21c9ec94adf955795n/aMirai
2025-11-22n/aelf 073e56e39efe1c9c403d8a1a38465e708ea5b4d759ee0988e75b2ccefa2f396fn/aMirai
2025-11-21n/aelf 27f5ac15860069a99ad3175072e216826ad04087171b99ab6882fc82b6f4a9c5Virustotal results 29.23%Mirai
2025-11-20n/aelf a3c324d0f42b969e0c46cd76675304afd08214d1a873c82ca6eabd73bad82d21n/aMirai
2025-11-19n/aelf 41a9fb1058fb469c0c8be148d700d38f8d168ca3e9d14566235a48913c09fe5an/aMirai
2025-11-19n/aelf 7ac845ff8d1b6b557e410966284686e065d33d2eb536a90ecd138a03e3fe7349n/aMirai
2025-11-19n/aelf e5dbc1fff2ab50275f19fd3436ad0c7c641727d47e735335e89e6d6d621a0b3en/aMirai
2025-11-19n/aelf cca4ad0ff3c285c96eee002392c001a24b69828a19c2d1657a54ffd3f884d706n/aMirai
2025-11-17n/aelf 166ce2f911f31b507297b11e4db601c8074b36e5f0f181bd9b3fd6e90b12cd11Virustotal results 27.69%Mirai
2025-11-10n/aelf 6ced328f552d5b181ec7e0dd8780ddb8273fbc37bebe4c4d3fe09cf1d5506361n/aMirai
2025-11-09n/aelf 81f2c3ad4ac29556a4315c4d86e6fb824f4271d94c1cd55e26a39876fbdb6763n/aMirai
2025-11-09n/aelf ef4bc158ee4ab711726363a1200b0f925d711975b3e06ace131531a93f85937cn/aMirai
2025-11-08n/aelf 44e86db4db1d2108a7a6411f5f56a7bd400da3ab38c2c50070b169ce8608b2d4Virustotal results 26.98%Mirai
2025-11-08n/aelf d873cf5d7c643d4d4e902fab63cd0d6cd3f0be40713cd9f60ed1124fd19e60c4Virustotal results 30.16%Mirai
2025-11-07n/aelf 24dc82d5cf6ed929fa931f38be674fef12256c10d6dbbccab4123cb7d047173fVirustotal results 27.69%Mirai
2025-11-06n/aelf 14ef61ae4466eef365b8b1fbe085bd74c55732abd1d468e6fbbb458e1b6a3a75n/aMirai
2025-10-26n/aelf d9c341129cf7fb0cca7c085ba5568ec073c17ef8303ac60abbc6732282331709n/aMirai
2025-10-26n/aelf 1ed67f7a03abc93aed509ddb3f14a7e52a6dba99b6f50b65ec91c700dcc621f2n/aMirai