URLhaus Database

You are currently viewing the URLhaus database entry for http://49.64.99.117:33750/Mozi.a which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2432944
URL:	http://49.64.99.117:33750/Mozi.a
URL Status:	Offline
Host:	49.64.99.117
Date added:	2022-11-25 16:36:06 UTC
Last online:	2022-12-24 19:XX:XX UTC
Threat:	Malware download
Reporter:	lrz_urlhaus
Abuse complaint sent (?):	Yes (2022-11-25 16:37:08 UTC to anti-spam{at}chinatelecom[dot]cn)
Takedown time:	29 days, 2 hours, 34 minutes (down since 2022-12-24 19:11:09 UTC)
Tags:	elf mirai Mozi

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-12-24	n/a	elf	42f1343fa3d2fb2671082c6b4411b65bbef281d8058ab71d2aaffbc776899dbc	53.33%
2022-12-24	n/a	elf	a6f95525d7d96052eab8023d25c75741bf5441a284f3f00b5b468fc81e602716	30.65%
2022-12-24	n/a	elf	fc46d6971cddda09b32caa15052c3de9540f84b530ee9f406d81ccdbcd88d590	43.55%
2022-12-24	n/a	elf	d017186e6e703670b41ae44e4351959237fa50c220d176a7e25ed9d64d8f87aa	60.66%
2022-12-24	n/a	elf	7c1e1410db0827ff07f80c7fb66f0a281f1ebbf09586bb172d5589e08f159e31	45.90%
2022-12-24	n/a	elf	17a2578baa3a9f071a32e35fd946992ae1507a6471f4ad7bc6d24db94f21662f	44.26%
2022-12-24	n/a	elf	d9d52d78484d4e94e996f3180e4b40bb2971c198be91e03519bd19c8be194d86	50.82%
2022-12-23	n/a	elf	96e6cbf452372d1b26772151fd85ddddbe19d3964eec5a054be7f8940e5bfc26	38.71%
2022-12-23	n/a	elf	116f8441904c5d8024765d61d8928c039cfdb89d1503513d40c55d80ac73c159	46.77%
2022-12-23	n/a	elf	2be1da7e8af5b0d01a4e6be73fa655fa3240846974fd9a20050899e58bed811a	62.30%
2022-12-23	n/a	elf	a2ea9dca175aafb4a96867ffc76cfef84f4cddef82fd2cece61dd1cf535335fb	37.10%
2022-12-23	n/a	elf	b2b7e78893bd2c51a69aab1e5a58b4e62706dfa18d840e52be19aaa582f735a7	44.26%
2022-12-23	n/a	elf	dcd03a710df0cc3eb692cf04bef9e4c31ded43e070e53045d4e4467d39a3c3ef	58.06%
2022-12-23	n/a	elf	dc6ec0cf84a6befdf5b42d75449e07739651e5175caa1dbb5fb80be6d4c44bda	58.06%
2022-12-23	n/a	elf	1cd6fd767c05c927ab8f655a2e3dee1eb46a034a24f995ae06e95b032db59679	50.00%
2022-12-23	n/a	elf	65b19da4b080bded37b219448132dd31986e590f2ab584a31146f23cf6e777e3	33.33%
2022-12-23	n/a	elf	7aa992101c84b84a94054a209f0721d11516477d8c7a57c5ae786f1596e9264e	38.10%
2022-12-23	n/a	elf	73359883ec1bb01b43f08170acb18b3d1dd4749bbd8b3e40422dd946ebd3ea1a	25.40%
2022-12-23	n/a	elf	13e544b9e1ddaff338c42ebc22e2d4ea17e3486b63fc18fe515cb928ab428377	43.55%
2022-12-22	n/a	elf	831f2769f28e67d2d3ccaab5b701975fdf25a7665b8c7904c80c4d4dee758e46	61.90%
2022-12-22	n/a	elf	ebd44df05d1a28b5f6c64101d05cdb2aaaa91b5f4def75e9d57ca77e642a5cd9	55.56%
2022-12-22	n/a	elf	e62612443715920e204bda790c1eb909fa6fe9934d218a0f3ba284f889fa85ea	54.24%
2022-11-25	n/a	elf	12013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0ef	76.19%	Mirai