URLhaus Database

You are currently viewing the URLhaus database entry for http://2.56.59.37/bins/Hilix.arm6 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2132213
URL:	http://2.56.59.37/bins/Hilix.arm6
URL Status:	Offline
Host:	2.56.59.37
Date added:	2022-04-05 03:14:04 UTC
Last online:	2022-04-15 11:XX:XX UTC
Threat:	Malware download
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2022-04-05 03:15:07 UTC to abuse{at}serverion[dot]com)
Takedown time:	10 days, 8 hours, 6 minutes (down since 2022-04-15 11:22:04 UTC)
Tags:	32 arm elf mirai

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-04-14	n/a	elf	d32368c7c74bbf2edbaac1ab92124eaa303a010d075d8aee9cdddede721c1e00	34.43%
2022-04-11	n/a	elf	609c5188997ab5170109951bcad70de71b4a236a432a9e9277b59dec477b5164	n/a
2022-04-11	n/a	elf	72c9b77459c2fcdd14d62dd1e7cb603f383f3ba8ee62ccab6fea53a871f3521f	n/a
2022-04-10	n/a	elf	e11467bb7a4716519a87d2d0ee1ab3f52eafa0578a372c324bc02dda3ca1938f	n/a
2022-04-05	n/a	elf	0be93e93663345e8bbff7307167681a66d339158313d582375347e9e81750ff2	n/a
2022-04-05	n/a	elf	4c076014d2a941b4de1f24d0dbe9be3e61d61b435235d84770481c758f9ee7da	n/a
2022-04-05	n/a	elf	6cf5558792bc56274d94cf8d7c6a629548c0e4ad0e4ee2e4d62d5b509a9509b3	56.67%	Mirai