URLhaus Database

You are currently viewing the URLhaus database entry for http://61.52.11.87:51728/Mozi.m which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1080580
URL:	http://61.52.11.87:51728/Mozi.m
URL Status:	Offline
Host:	61.52.11.87
Date added:	2021-03-21 01:20:06 UTC
Last online:	2021-03-31 01:XX:XX UTC
Threat:	Malware download
Reporter:	lrz_urlhaus
Abuse complaint sent (?):	Yes (2021-03-21 01:21:02 UTC to hqs-ipabuse{at}chinaunicom[dot]cn)
Takedown time:	10 days, 0 hours, 8 minutes (down since 2021-03-31 01:29:56 UTC)
Tags:	elf Mozi

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT
2021-03-30	n/a	elf	249f1190d8ef2bf15a8df68d1b3d4daa8828cd2949049f69216b9e29183ec613	31.58%
2021-03-30	n/a	elf	4ac557dfb898c8afadea539fdc740ba538b3304df76c16f989a2a0507ceb758c	33.33%
2021-03-24	n/a	elf	475aad916cf4815f985cd89e85034f52a84a8904ac12aa6efe6bd0fcffc7b44b	23.81%
2021-03-24	n/a	elf	37fbe934e0a63efd6d9d10b7091415fd01647b20fda7f8f8440a1f18905bb876	30.00%
2021-03-22	n/a	elf	8d12149bdc4c91c5dbf520bcea3c4966881b75f003559941ff8b54742e428837	24.19%
2021-03-22	n/a	elf	76d0ca44c775bd55fdc4900a224400625b3ff70cf8561143538e7fe2c5668bf0	23.33%
2021-03-21	n/a	elf	2e4506802aedea2e6d53910dfb296323be6620ac08c4b799a879eace5923a7b6	59.68%