URLhaus Database

You are currently viewing the URLhaus database entry for http://185.106.94.146/spirit which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2505217
URL:	http://185.106.94.146/spirit
URL Status:	Offline
Host:	185.106.94.146
Date added:	2023-01-12 07:18:20 UTC
Last online:	2023-03-07 16:XX:XX UTC
Threat:	Malware download
Reporter:	RadwareResearch
Abuse complaint sent (?):	Yes (2023-01-12 07:19:04 UTC to abuse{at}aeza[dot]net)
Takedown time:	1 month, 24 days, 9 hours, 10 minutes (down since 2023-03-07 16:30:03 UTC)
Tags:	elf

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT
2023-03-06	n/a	elf	69c2af1e0d3819c55979685a1a7e38435ed0d771635843e8528317f46f7fb567	n/a
2023-02-11	n/a	elf	c6c88c94d479d08057827a49435f9535c4feca314c213d0093e883731bc95a6c	n/a
2023-02-01	n/a	elf	ffeac7115ad43104e0d94c18d36a5cfe0acc80cb4a683d3140b6adc8f090d8ab	28.57%
2023-01-22	n/a	elf	2938708566e2cf761a9433fe6ce242459c5d7f9d925d813e360a933c8c61a298	n/a
2023-01-19	n/a	elf	99be5728b0e4e975ec77cfcda874c6816b662b31e31fee220d8913c8ef1f7fc8	n/a
2023-01-12	n/a	elf	2c649d1fd64fad057a454c8aab729cba1b5ccda1b4ceb341127def934cfb381d	n/a
2023-01-12	n/a	elf	6fb1ac28d276805cea9c386adab82f0f11664dcd5bb494618ce35961cbdb7e4a	33.33%