URLhaus Database

You are currently viewing the URLhaus database entry for http://195.177.94.107/b2 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3723751
URL: http://195.177.94.107/b2
URL Status:Offline
Host: 195.177.94.107
Date added:2025-12-03 02:05:08 UTC
Last online:2025-12-27 01:XX:XX UTC
Threat:Malware download Malware download
Reporter: botnetkiller
Abuse complaint sent (?): Yes (2025-12-03 09:22:15 UTC to abuse{at}pitline[dot]net)
Takedown time:23 days, 15 hours, 57 minutes Bad (down since 2025-12-27 01:20:10 UTC)
Tags:elf geofenced mirai link ua-wget USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-12-22n/aelf 0ebeb6035d83cb19af3eb645c026c40e2e89f3bb6fee549f93c3241edbcdc6f4n/aMirai
2025-12-21n/aelf a2108a9b9b291ddd8d11d06e39d4543e57def83ccd1641bb29484615ce622c36n/aMirai
2025-12-21n/aelf 1be02e7f4e32a3fe1872f238fcb49c6435c31c49e9b57781aa7bd9dea8f205f0n/aMirai
2025-12-17n/aelf 936ae6747220ed0035c8c4093c2ecbf301b49f0cfe8c7578d09f1a56607b632an/aMirai
2025-12-16n/aelf 16516159da4d7a13989c3bd18f001380a1dc82675e3b5cac654e1a58fd5553d5n/a
2025-12-15n/aelf 09a36e93dc1233930de2d1c913b0bac01841acb4d27cabe3c2f0effd67a6ae3an/a
2025-12-15n/aelf 99e6730d5a8930257d0d97532e6fd8059901246471e8e1598ba85ad27f6fbeb2n/a
2025-12-13n/aelf 98642808308a459cdc8e6e3167f483d875fddd2d0753213ba4b8c8929a30d709n/a
2025-12-12n/aelf 0d93a6ad1463a10af6120cfba0f68a5796027e0112b89701d455699af65dfd3an/a
2025-12-03n/aelf 73bfc9d438cd3c35d35a508c7ccb3e8c6683a9368b0daeb73ca9c4cc721b3270n/aMirai