URLhaus Database

You are currently viewing the URLhaus database entry for http://103.149.252.178/skibidi/cutex86 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3562411
URL:	http://103.149.252.178/skibidi/cutex86
URL Status:	Offline
Host:	103.149.252.178
Date added:	2025-06-16 06:47:05 UTC
Last online:	2025-07-01 16:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2025-06-24 22:16:11 UTC to hm-changed{at}vnnic[dot]vn)
Takedown time:	6 days, 18 hours, 14 minutes (down since 2025-07-01 16:30:20 UTC)
Tags:	elf mirai ua-wget

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2025-06-30	n/a	elf	72f6704fdb711d1ba20c96a7ef73e7ac2cd41943cc4bdd417cab03417be1eb55	43.08%	Mirai
2025-06-30	n/a	elf	250b246f923c9d2ee434204388faefc8477ed0f9e539bd98e5947e1eb76bcdb7	n/a	Mirai
2025-06-30	n/a	elf	35ea949b87d8d18df1c660357ce6fe966d9f3c4f2d7f7660f61ff48ee8ec55cb	36.92%	Mirai
2025-06-29	n/a	elf	d316264d35274931cc7c17a9092033b3736ece877ac45e79122c12d035775c59	20.00%	Mirai
2025-06-27	n/a	elf	4427f663b9ef45d01d7925efe57d5670b5e27efc3e35c61abdda4786b681066d	n/a	Mirai
2025-06-24	n/a	elf	a2b294e28043e2d28890df774fa9403f8a173a558278c59a26181e47c9b9b0be	63.08%	Mirai