URLhaus Database

You are currently viewing the URLhaus database entry for http://112.72.162.159:4700/Mozi_MUTANT which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	1209239
URL:	http://112.72.162.159:4700/Mozi_MUTANT
URL Status:	Offline
Host:	112.72.162.159
Date added:	2021-05-08 15:40:44 UTC
Last online:	2022-02-17 20:XX:XX UTC
Threat:	Malware download
Reporter:	r3dbU7z
Abuse complaint sent (?):	Yes (2021-05-08 16:39:02 UTC to irt{at}nic[dot]or[dot]kr)
Takedown time:	9 months, 15 days, 3 hours, 25 minutes (down since 2022-02-17 20:04:59 UTC)
Tags:	elf Mozi

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT
2022-02-14	n/a	elf	f48def239b3631faae90a7153ae384298dc0f83f97e843193068ed7482ad5796	11.67%
2022-02-09	n/a	elf	412bd00e1a6d2ce970470710e452b4e8324d4c0523de75333914b452ab6b4bf7	0.00%
2022-02-08	n/a	elf	6ae71a49b5854dc66e795c520369d4947e6f41f9fa516b296af59f0f3f9b3043	28.33%
2022-02-05	n/a	elf	42f7d9bac2fde00031ba0ac08a92d4875bc8f948dbd9f170657b79dfa27a0b3b	30.65%
2021-09-08	n/a	elf	984a444a5a89523cb8ede1be459d7a4c06eabf73f271808546eb80b8365ce749	n/a
2021-09-07	n/a	elf	9f2e117aa784dd6924b17c739a607b1fde1ee4ef1560ad26b39dbde61f8adc65	n/a
2021-05-08	n/a	elf	f6c97b1e2ed02578ca1066c8235ba4f991e645f89012406c639dbccc6582eec8	60.66%