URLhaus Database

You are currently viewing the URLhaus database entry for http://222.188.223.138:48306/Mozi.m which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2468161
URL:	http://222.188.223.138:48306/Mozi.m
URL Status:	Offline
Host:	222.188.223.138
Date added:	2022-12-17 18:50:13 UTC
Last online:	2022-12-26 13:XX:XX UTC
Threat:	Malware download
Reporter:	lrz_urlhaus
Abuse complaint sent (?):	Yes (2022-12-17 18:51:07 UTC to anti-spam{at}chinatelecom[dot]cn)
Takedown time:	8 days, 19 hours, 7 minutes (down since 2022-12-26 13:58:31 UTC)
Tags:	elf mirai Mozi

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-12-26	n/a	elf	e2f0675e023f49357edc1017c1f5b36c6dfc5c868582d20edf9c911e6288f294	30.16%
2022-12-26	n/a	elf	13e544b9e1ddaff338c42ebc22e2d4ea17e3486b63fc18fe515cb928ab428377	43.55%
2022-12-25	n/a	elf	9f41c5d998f23df4ba83a191810fc30f145546ee88236e777f195ba5f6712e14	61.29%
2022-12-25	n/a	elf	2714f3a012f46efe986f4465c0bf55cd05346d81c896019b3537a5502e2c69b7	63.49%
2022-12-25	n/a	elf	0d9c645f783b7be73814fdfc7d330195773260a945d56a26aaa52678d26c6caf	62.90%
2022-12-25	n/a	elf	0442dd31c3608cb718ff2df547aa6c2f3ce724e66767cf2cd828f59f9c30583d	60.66%
2022-12-25	n/a	elf	e17a18d0974c01f832529c7510560aeca173e0b4a4ed94dbdce50afc2e02e0c8	39.34%
2022-12-25	n/a	elf	7c1e1410db0827ff07f80c7fb66f0a281f1ebbf09586bb172d5589e08f159e31	45.90%
2022-12-25	n/a	elf	17a2578baa3a9f071a32e35fd946992ae1507a6471f4ad7bc6d24db94f21662f	44.26%
2022-12-25	n/a	elf	6b284ea2f2ea14efc8d680695891ca694361ab035ea869ae0be615f5c54992f7	47.46%
2022-12-24	n/a	elf	63551601e564aab7e37f483a77b99faa313de2a7acd3bea85cf97762b38f3a24	60.00%
2022-12-24	n/a	elf	557a0d82baccdf975830d03ae4050315e2817bfd9d5438b4906b8f2e4cdf188a	59.68%
2022-12-24	n/a	elf	da18baa027fb4afe0824c884884540cebdeda03bbe6ae421139bb8599beef09e	46.77%
2022-12-23	n/a	elf	ff6675f7b4e031cd67b82040824fa2b35487d266489fba635b3e068b5defd399	41.67%
2022-12-23	n/a	elf	fc46d6971cddda09b32caa15052c3de9540f84b530ee9f406d81ccdbcd88d590	43.55%
2022-12-23	n/a	elf	a8f65950f6df648f3802b807412fba1d1f15edc44c6d1218ed16e4b2d285f7cf	40.32%
2022-12-23	n/a	elf	15f81b23221f83f9acdeb7228404164d5b935cdb2d24d745fcd46a98173b25be	40.98%
2022-12-23	n/a	elf	116f8441904c5d8024765d61d8928c039cfdb89d1503513d40c55d80ac73c159	46.77%
2022-12-23	n/a	elf	a2ea9dca175aafb4a96867ffc76cfef84f4cddef82fd2cece61dd1cf535335fb	37.10%
2022-12-23	n/a	elf	831f2769f28e67d2d3ccaab5b701975fdf25a7665b8c7904c80c4d4dee758e46	61.90%
2022-12-23	n/a	elf	e62612443715920e204bda790c1eb909fa6fe9934d218a0f3ba284f889fa85ea	54.24%
2022-12-17	n/a	elf	12013662c71da69de977c04cd7021f13a70cf7bed4ca6c82acbc100464d4b0ef	76.19%	Mirai