URLhaus Database

You are currently viewing the URLhaus database entry for http://106.41.71.243:33296/Mozi.a which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2453577
URL:	http://106.41.71.243:33296/Mozi.a
URL Status:	Offline
Host:	106.41.71.243
Date added:	2022-12-10 13:05:05 UTC
Last online:	2022-12-25 19:XX:XX UTC
Threat:	Malware download
Reporter:	lrz_urlhaus
Abuse complaint sent (?):	Yes (2022-12-10 13:06:07 UTC to 13348615181{at}189[dot]cn)
Takedown time:	15 days, 6 hours, 26 minutes (down since 2022-12-25 19:32:13 UTC)
Tags:	elf mirai Mozi

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-12-25	n/a	elf	fc46d6971cddda09b32caa15052c3de9540f84b530ee9f406d81ccdbcd88d590	43.55%
2022-12-25	n/a	elf	3d7ffe28e7b60ea7a7beb7d5f79abb2cd98f6fe5213640a841a1a21a2b9e6e7a	30.65%
2022-12-25	n/a	elf	6b284ea2f2ea14efc8d680695891ca694361ab035ea869ae0be615f5c54992f7	47.46%
2022-12-25	n/a	elf	c1a892f2cdc45a5466ac735c220be02730b01b5d087c64e0fb4d4302d9f9d750	51.61%
2022-12-25	n/a	elf	9ffaf828779e2475226d567f28e3cf0ff6651440e70db616d6a5efa7265e0ad4	29.03%
2022-12-25	n/a	elf	ea91ecc487eab0a9819062e05d955d2bfcafca39f74838e2392a539f8a78fbb8	56.45%
2022-12-25	n/a	elf	34286fbedc65302f77233051f1abcc3be9120a3c2104665215151161294ef9f3	35.00%
2022-12-25	n/a	elf	75c17d9dbe32e3e13d36c941f9a517e8321669b754501cab6e9254683e2f5ad1	51.67%
2022-12-25	n/a	elf	acf33057c6c6ed86e1b1b19768f8f05be32ff7c3088d21917e80e0bac86c7446	63.49%
2022-12-25	n/a	elf	09869760766dba8f98d326710444ae3fd33ee21147f63d275a95e8752eabc0a0	37.70%
2022-12-25	n/a	elf	34053fed7349f4d08826e5b4e4521feaedf5fbb2343ba15fce5fd9c7bda102b1	29.51%
2022-12-24	n/a	elf	b55f34900137f51842e9a4870f5971f34e91589fc3039d41786fe1a86fcce25d	59.02%
2022-12-24	n/a	elf	2f6fe825419d567cd2957638d30d8ad2056dc1499fa599ad50c6fc59a8c8a4a3	57.38%
2022-12-24	n/a	elf	96e6cbf452372d1b26772151fd85ddddbe19d3964eec5a054be7f8940e5bfc26	38.71%
2022-12-24	n/a	elf	a2ea9dca175aafb4a96867ffc76cfef84f4cddef82fd2cece61dd1cf535335fb	37.10%
2022-12-24	n/a	elf	a8f65950f6df648f3802b807412fba1d1f15edc44c6d1218ed16e4b2d285f7cf	40.32%
2022-12-24	n/a	elf	116f8441904c5d8024765d61d8928c039cfdb89d1503513d40c55d80ac73c159	46.77%
2022-12-24	n/a	elf	e62612443715920e204bda790c1eb909fa6fe9934d218a0f3ba284f889fa85ea	54.24%
2022-12-10	n/a	elf	12013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0ef	77.78%	Mirai