URLhaus Database

You are currently viewing the URLhaus database entry for http://sex.secure-cyber-security-rebirthltd.su/mips which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2803838
URL:	http://sex.secure-cyber-security-rebirthltd.su/mips
URL Status:	Offline
Host:	sex.secure-cyber-security-rebirthltd.su
Date added:	2024-04-07 15:44:03 UTC
Last online:	2024-05-01 13:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	abus3reports
Abuse complaint sent (?):	Yes (2024-04-29 23:32:10 UTC to abuse{at}4media[dot]bg)
Takedown time:	23 days, 20 hours, 44 minutes (down since 2024-05-01 13:49:38 UTC)
Tags:	botnetdomain elf gafgyt mirai

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2024-04-29	n/a	elf	dfcc85a75ab10107b73e3b2d057c8b3caf4285d0364ba698a61208da8b6ea977	53.85%
2024-04-15	n/a	elf	aba28502803baa9807bc0e6da964ba7b4685efeb0edfcade29c9efc5e31f8840	n/a
2024-04-15	n/a	elf	a80e04d0b10fcdf6378419728945d274b4452c1b2d49ba925f41c7238888c5aa	n/a
2024-04-15	n/a	elf	c05e45298adb6a7387ff63e8027d07c6780cc3388aadf5388165744ffde76bce	n/a
2024-04-15	n/a	elf	b91f9f15346db22dcd7f60e274d722f6cc183d7910487a2d986b419a6ecb8dbf	n/a
2024-04-14	n/a	elf	3a96b7dd429439a415a3b06989b62810a773bb20f424b019c247b58e31316b2a	n/a
2024-04-14	n/a	elf	62cbe2e66473c4906b3eb8a73773dd11105d1a61b9959592df56f770ca885cf1	n/a
2024-04-14	n/a	elf	cfed0b36678bddecb63cdbc437860dcd72a66eb3c3c5a169d6d7e0bbc76bac4b	27.42%		Gafgyt
2024-04-14	n/a	elf	40b14553bb53fc75aba15377ad45ed07eb4baa8e8cd1809e9031b74d844a686d	n/a
2024-04-14	n/a	elf	3b32470b8c8dc9fba72dec9b9ac87913458ed4a39eb74e3006fb41d98fa801be	58.62%		Gafgyt
2024-04-13	n/a	elf	29c34a66025a6fe1c1c1aba5285fbc94f77576b107b2b172cde6b103e46ee51f	n/a
2024-04-13	n/a	elf	090232f9537c44d4cd5023d735ca5f1c82e68d15d807e52203262531243954c2	n/a
2024-04-13	n/a	elf	6a6f39d10dac0fa6d91b617e0c841675a4088fa28886ec4f05ccb8eab771c08e	n/a
2024-04-13	n/a	elf	90f02822cad8334751cf845526dcfe6e8737021f7249806b4297f7939e3e0ede	n/a
2024-04-13	n/a	elf	a4169bf462fdaf3341a143cc9e0361c20f48ddc4eb5c23800ad90d07f58d6cca	33.87%
2024-04-13	n/a	elf	4d72296b026005cbf17e25d7ef5aad6d2d45203cbd52267b2f4ad407e5429b08	35.48%
2024-04-12	n/a	elf	7ff9bc28a2faffa4cea439819b4b46c37faa50596404553dc1b2849ec2ff4c73	n/a
2024-04-11	n/a	elf	ba3ae1c76bb23f626cedcdb5d67c6da68472d977fdbce27261c589c40aeb51d7	35.48%
2024-04-11	n/a	elf	d0920cae14e05480aa3bd75c0fe9a8dd296d4e1e896701480cbbf5132e1dbaef	n/a
2024-04-11	n/a	elf	61f07b86cde364118e7ffcf04fb2fb6f8bd74e6506d89a22b9a9138c3a99ab1c	34.92%
2024-04-10	n/a	elf	e4abc14be4304af3180f91ea0fbfd2e12e4fe3b1c1b8e747887467d0b2061342	34.43%
2024-04-10	n/a	elf	b5c7ed315e97448f172355de5904438c6ff69fae99966b968c3063336e4b9257	n/a
2024-04-10	n/a	elf	c02d21a737d039b28ac09c40c420be58d3f8355d7add6e32fec576a5be87da81	n/a
2024-04-10	n/a	elf	fcef1d70c6bc508c57094331022a186695a0b6a1ed9a67fb36685cba01d9ebf2	n/a
2024-04-09	n/a	elf	0c46089aff1bf063a775e25d142e3fab2bae72d74e0459d6836fd6b01b254570	32.26%		Mirai
2024-04-08	n/a	elf	45ec58305d9f8f0c5ba5820e3377beb9847418060a4702382078815a968c0f16	35.48%		Mirai
2024-04-07	n/a	elf	850b29c1a8e394717536ba620a01b7ce0ea0550fef8dff9f0a36c449889c754b	n/a
2024-04-07	n/a	elf	864ef14e9bc33a47a2dcdb223b2237a9afb8f9b214d242ed3cd0546bbc3730e0	n/a
2024-04-07	n/a	elf	64ddab5d58bf252369e98d75f5373241c98a7e63ae6f1648e4875c3694be244f	n/a
2024-04-07	n/a	elf	67eee1baddaddc6c2d52ad8f9e790ec4219eacb1f00e72585d80a72820fca9b5	31.75%		Mirai