URLhaus Database

You are currently viewing the URLhaus database entry for http://211.192.113.232/tftp which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2908899
URL: http://211.192.113.232/tftp
URL Status:flame Online (spreading malware for 1 year, 11 month, 9 days, 5 hours, 11 minutes)
Host: 211.192.113.232
Date added:2024-06-27 06:39:40 UTC
Threat:Malware download Malware download
Reporter: NDA0E
Abuse complaint sent (?): Yes (2024-06-27 16:55:09 UTC to irt{at}nic[dot]or[dot]kr)
Tags:elf tftp

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2026-05-14n/aelf 1777ccb9e0b58756c65ab09fe05aa581fb1f93a268bdad9fd5cd690b72ca7095n/a
2025-10-07n/aelf 05f533f4b35fab2f4db88afd937c01487cfdb9ebf5943f6637fceabf5489762bVirustotal results 42.19% 
2025-09-03n/aelf 05976fff64c73988a9423f3ce264a78dd0bcf1310ae1d0b4aff8ca5519c2e345Virustotal results 37.50%
2025-07-14n/aelf 38337acc60155d9cfcd14e8cef1fb18cdaa0dae232d3ea64b2c0073bf2e79e17Virustotal results 22.73% 
2025-06-17n/aelf 829f76e09c6e3a92735fd324c0295e27cab04b8d4671d2eaa79c4579fe6b95c0Virustotal results 36.51% 
2025-05-14n/aelf c257ad44baac4147971b4e1fea0647b7dd15210c36662e76fe75c1fa75b4eb0dVirustotal results 30.16%
2025-05-09n/aelf dbdfcc8a0ab879dd282d0f27edd574b9dd99f9a90775d01646ee597be0f5b470Virustotal results 26.98% 
2025-04-29n/aelf dba8dd7781565f85be06fc1e9bd8dffc1221e4d09af6128fe4b96c40f260fb50n/a
2025-04-24n/aelf f056d3d5a7f9d7b181fae49e1a27128a128775a213bdc4b81b1eb9bb066251e3n/a
2025-04-20n/aelf 7473f8d5a91f0a9b6d0fd915163ebf37987b74de7418a9bd5d55c668716ac927Virustotal results 22.73% 
2025-04-07n/aelf 10508873d38301fcb0c2068c74ef938eb27def95dc2953b7ee30ecb520d6b23eVirustotal results 20.63% 
2025-04-04n/aelf d1c75159302d48dd9040d3261e297e5e0e29ff5c04d7056a6c70660c2b3687acVirustotal results 25.81%
2025-04-03n/aelf 0493246590e319127dd5dd5259a7317c277fc040d0ee6c61e4605b5a4152eb61Virustotal results 16.42%
2025-03-27n/aelf 7b0ba2db25a9cd331cd5ac53d49580034f14219b719a8ae19647e384767b7574Virustotal results 29.03% 
2025-03-22n/aelf d655a719d7870605506928325b7848ac6d8fbd61974b02ccaa3b26529a963f7bn/a
2025-03-22n/aelf ebe7094a9838990fc6edbdc192bafcce7bd31ec4eb682720e53ece10d688b4c7n/a
2025-02-28n/aelf 607882cc05b7327b0cd2d7ed116d499780bf79f50d45138a5245c9708859908bn/a
2025-02-21n/aelf 14d98bed983d31163462f604ee2cdd6be8a25d1eed8105a9062bba391997405aVirustotal results 33.87% 
2025-01-23n/aelf 5772b8a0a19f969977fbbae77652f4fb80a42d1186e29a830d178f944b9af4fcVirustotal results 16.13% 
2025-01-15n/aelf 58b3727f1e6f9643e517deb67a5b8667490d2d41253119f848368a069a8f978bn/a
2025-01-08n/aelf 0d9572d540ccc11e49eb972d67b224239e31393e7fe396ac6620aa44b846a9f6Virustotal results 22.22% 
2025-01-06n/aelf 9b1ce75deae0c884f1beeebfd90cdaa09f98f33061ebfc7b63058d1bfa5202c9n/a
2024-12-11n/aelf 292a7921c543f4bf50bf9fd42356004b51752f484cffbdd34a6fb8c872e33ff9n/a
2024-12-10n/aelf 97955c1e404593f5e1d7bbe67113a4b6bec8705b911ecb37faa8f98a936421d4n/a
2024-12-05n/aelf e4460ff559b016b83d43e62d89436e2a4e96fd768ed96e876e89b410e8438d89n/a
2024-11-21n/aelf af8b052344911f7bffdee7cf6755c1292e00fadb8c0d9872ed57d6dbbadf53f4Virustotal results 23.81% 
2024-10-25n/aelf 11f03e14fb2dec3ca1954b16330e19a6aa40933cbd496e4860d13271feeb915cVirustotal results 24.62% 
2024-10-22n/aelf 7f2978a62475e66e5518b075694c715156949cb27279f8a296b45431e33b51edVirustotal results 22.03% 
2024-10-21n/aelf cb6ad1861aac72c2cd27a0838cc6dc3d9c80f1de51549d454c57400968d3d685Virustotal results 23.08% 
2024-10-18n/aelf dfbfdc000c419d19646de61d126718b8f61febf7ccc96adee630ed780f755ee0n/a 
2024-10-12n/aelf c1ee0848ebc5e68579fffbf51ed70f756fa480f06bce5753b26461115cce9d80n/a
2024-10-09n/aelf df12b303824b9bcefb1ce78d1c30e6194a8ac870550957f9e45425122da5f99bVirustotal results 14.29% 
2024-09-19n/aelf 583da2680076e209317f03fc32c9cb2c311ee2ae6966cf06e4f339313ae6918dVirustotal results 21.54% 
2024-09-13n/aelf 9590e45c8752e47194201003565309b4b2023d340a3800ac15808b4141e18becVirustotal results 21.21% 
2024-09-10n/aelf f35801def72d8b225a28271b45a87505136cd3e2da6644df9e801eb30ac4c17dn/a 
2024-09-06n/aelf b9bc6cf6c15a7ee4ef0241c18d49704c6a7678a965d0faa415280574173bf2c6n/a 
2024-09-05n/aelf 17887eb58347c9476b5c6d8bb1283394c73ea1e4b466e22655188b3752f6d357Virustotal results 17.74% 
2024-08-14n/aelf 70f1296a8bf6934a65f424f77b3bc6955fd4dce7cf3fc438a9005459862917baVirustotal results 21.21% 
2024-07-22n/aelf 97a11dfda9f498ca7672730afbcbee138ecf58fd1329e2226d6b74467594010an/a 
2024-06-27n/aelf 9b66676da9413803e42cb2efda1bb76084cdf89d40f503a6716f4eb719ac972fVirustotal results 27.27%