URLhaus Database

You are currently viewing the URLhaus database entry for http://78.26.81.99:58230/Mozi.m which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3216491
URL:	http://78.26.81.99:58230/Mozi.m
URL Status:	Online (spreading malware for 1 year, 7 month, 28 days, 3 hours, 48 minutes)
Host:	78.26.81.99
Date added:	2024-10-06 12:53:11 UTC
Threat:	Malware download
Reporter:	NDA0E
Abuse complaint sent (?):	Yes (2024-10-06 12:54:39 UTC to abuse{at}asdasd[dot]it)
Tags:	elf hajime

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-05-17	n/a	elf	f150626cfb404161d245c31eb6cd56bf2e1f7346130744d332db19c8a67540d5	60.32%
2025-05-17	n/a	elf	c8cf8c0b3a168815bc114f8ee3b6bcb9f60338da1d1efa701a69e45d6ee5135c	61.90%
2025-05-17	n/a	elf	f74992fd15796de27b6b33881a6576be8ce1da142b44db0a7f0f855beacc2014	59.68%
2025-02-16	n/a	elf	3c10d14ecb8b18db0da6638d795020b364ac317398545c4897dad976da47786e	58.06%
2025-02-08	n/a	elf	94ac160932ebcda07dedd6911553c12fe108c2c57d98e9e38cc298787307eeaf	59.68%
2025-02-06	n/a	elf	e81253da1c4c5120f95fe659babfcd51a7181ebef8b799953bdbf9f4519380b7	56.45%
2025-02-04	n/a	elf	d7b8c349756a5ce529ac5e0a9fa55bc1f73131795bf0d929f39cd1fad6308f7f	59.68%
2025-02-04	n/a	elf	6bc945889d641159017d13778bb5e6fc74d5860c3e60878c32b1c0b0bc797ffc	58.73%
2024-12-29	n/a	elf	a8eee45228616b39ed8273986993f9f990f8ef1b4f61fac48e8f2cb697074a97	57.14%
2024-12-28	n/a	elf	c72273f1cad406656c214fc0b8d4e11db4b0ebb532e44ffcc959c4c56caa72be	58.73%
2024-10-06	n/a	elf	020f1fa6072108c79ed6f553f4f8b08e157bf17f9c260a76353300230fed09f0	71.88%		Hajime