URLhaus Database

You are currently viewing the URLhaus database entry for http://176.65.140.135/rrrdsl which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3459073
URL:	http://176.65.140.135/rrrdsl
URL Status:	Offline
Host:	176.65.140.135
Date added:	2025-02-26 21:14:07 UTC
Last online:	2025-03-12 09:XX:XX UTC
Threat:	Malware download
Reporter:	tolisec
Abuse complaint sent (?):	Yes (2025-02-26 21:15:06 UTC to abuse{at}dolphinhost[dot]net)
Takedown time:	13 days, 12 hours, 6 minutes (down since 2025-03-12 09:21:40 UTC)
Tags:	elf mirai

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2025-03-07	n/a	elf	5b6a3ddaea69d6a2b4bde62a543fefb22c055e6f3b0165d415d00e12c62bdb64	n/a	Mirai
2025-03-05	n/a	elf	519e128c8d6dc8c5394ed99cd086a3643effc643c712508cccb39f526708e865	n/a	Mirai
2025-03-05	n/a	elf	6346aac64caa717e670ea357d1d7c0dceba1c65e1f871e9930ec8d5752f075f2	n/a	Mirai
2025-03-05	n/a	elf	24007c5a120749d9754428ecf0d468e096ec14c5c1088ec571d6753478e8627d	n/a	Mirai
2025-03-04	n/a	elf	5da56acfc9f8ae42f40cc76b55a5d3341252ba378a7ca81eda5b506767a130ad	n/a	Mirai
2025-02-28	n/a	elf	ee576f3f68099c2164879ae4ca5564c95cc0531336c7742fc38e5f2abc64f0b9	n/a	Mirai
2025-02-26	n/a	elf	9523abc17cfde9e084e16992449a34b0cb3633bccb70ecd639e6ccb9c7611f1c	63.08%	Mirai