URLhaus Database

You are currently viewing the URLhaus database entry for http://42.112.26.36:8080/arm5 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3469403
URL: http://42.112.26.36:8080/arm5
URL Status:Offline
Host: 42.112.26.36
Date added:2025-03-06 13:27:03 UTC
Last online:2025-04-07 20:XX:XX UTC
Threat:Malware download Malware download
Reporter: NDA0E
Abuse complaint sent (?): Yes (2025-03-06 18:18:07 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:1 month, 2 days, 2 hours, 31 minutes Bad (down since 2025-04-07 20:49:10 UTC)
Tags:elf gafgyt link mirai link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-03-29n/aelf 72eb6026c66c96d050f30a3da54cb3c85fad70f9f5b805ea8cf543835ab38dcdn/aGafgyt
2025-03-28n/aelf 5b228f994b7fe9ec41e8d1ff535aa7842bce3fc38b03a9009139a31e2077e7f5n/aMirai
2025-03-26n/aelf 03358369c2e4f882289ba76f6770730caccb20b2954c81c6f90e02312d0e07fdVirustotal results 22.22%Mirai
2025-03-25n/aelf d8da5e55d898b25c88fbb1d4dabe54c328d7edf2d5269cabc148aaf242eb453fn/aMirai
2025-03-24n/aelf a176268cbf5618c3222a6aa6f30a062f775e49aabbcc0993710bfc730cd4bd95Virustotal results 20.31%Mirai
2025-03-24n/aelf 1872eb2e727c53c86e7194d77ed30e953d7f4a3918836696c0562ec6adf90578n/aMirai
2025-03-24n/aelf 708d1dfc75dcbf61b5ecd0d457b1d70c09cb4c6536f3c6f64ba4014e68aede72n/aMirai
2025-03-20n/aelf c2d51bc86e52742a4d5bfc9541667690c516aaf1d7a4f971f4eee77d79c89076n/aMirai
2025-03-18n/aelf e31d5441833c0eb167ee8a9a614b20cc37dd13473d4bbc828594db450c79e4dan/aMirai
2025-03-17n/aelf 8dd5ff55453227c46149703611fd51ac59e5f23c3a3a6928afd4184c7a55e643n/aMirai
2025-03-15n/aelf 55cb275ff07c789ae26977ceaa475a8dc32ef5155e4b46c528b240be27f7b316n/aMirai
2025-03-14n/aelf 10688103269834c5593f31d4a5055ae1f9fb1ecd4a481cd9a1a59ba51694fd3cVirustotal results 18.75%Mirai
2025-03-11n/aelf 378410eeefa84de9d39d3ef8df7aef258b12854e86cabf673f854f6048f68240n/aMirai
2025-03-09n/aelf eaaed6f12dca54b40d74e2d015663c478b1e6b47aa21c41a067c9829997c3fc0Virustotal results 20.63%Mirai
2025-03-09n/aelf 51c964fba1c02c03ead1f1308dfd58f689b0802b71a6de8e4bdf31e920ddcb21Virustotal results 19.35%Mirai
2025-03-06n/aelf c126c3d51b5d5b368ce834b89a0143c2fcfeb096fc595ed8ef670bf041407afcVirustotal results 45.76%Mirai