URLhaus Database

You are currently viewing the URLhaus database entry for http://66.63.187.193/aarch64 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3568518
URL:	http://66.63.187.193/aarch64
URL Status:	Offline
Host:	66.63.187.193
Date added:	2025-06-20 08:06:07 UTC
Last online:	2025-08-29 02:XX:XX UTC
Threat:	Malware download
Reporter:	NDA0E
Abuse complaint sent (?):	Yes (2025-06-20 08:07:11 UTC to abuse{at}virtualine[dot]org)
Takedown time:	2 months, 9 days, 18 hours, 42 minutes (down since 2025-08-29 02:49:40 UTC)
Tags:	CoinMiner elf ua-wget

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2025-08-07	n/a	elf	89782d8142297907c9962eebdae29c28df86805a99f38a683ab55c8fa1596dd8	10.94%
2025-07-27	n/a	elf	d3978bf8ba2e285588ea5c7473dac39a25b72fc28664d3e78ffdbdaf85b98f57	10.94%	CoinMiner
2025-07-21	n/a	elf	a79c55976c27bc471f3599e781d4f355645390705ea3f3e9c6fd504eb4957fc6	10.94%	CoinMiner
2025-07-15	n/a	elf	b158697f5166889c4793ddca63f099a332ed705e7c62c0ed795a5686e4a1bcef	n/a	CoinMiner
2025-07-14	n/a	elf	af444df1eb9bfa66264765e5312e293ded5a25b9be80738d5c8b39fdd759fd71	10.94%	CoinMiner
2025-06-28	n/a	elf	1bffd7c3966df6d50a91f5b181ba6bb68d0eeff2fc9c7fbb004d74e429999af3	12.50%	CoinMiner
2025-06-27	n/a	elf	9b96b92434b46f2f8775811e3f72002103f238ef2d3cbccdc8293e385d7210c8	11.11%	CoinMiner
2025-06-24	n/a	elf	dcc5ed13cb4a06a956aaef0487b5c1b8a3310cdf9c9921b52241d664705f0cfc	10.94%	CoinMiner
2025-06-20	n/a	elf	fc8730fbe87bcbdc093a1ffbcb0028ccb4c24638e55d13fd853b07574f4cbe4a	54.69%	CoinMiner