URLhaus Database

You are currently viewing the URLhaus database entry for http://45.125.66.56/m68k which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3610829
URL:	http://45.125.66.56/m68k
URL Status:	Offline
Host:	45.125.66.56
Date added:	2025-08-24 14:55:24 UTC
Last online:	2025-09-27 22:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2025-08-24 14:56:17 UTC to admin{at}serveroffer[dot]lt)
Takedown time:	1 month, 4 days, 7 hours, 12 minutes (down since 2025-09-27 22:08:58 UTC)
Tags:	DEU elf geofenced mirai ua-wget

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-09-02	n/a	elf	7db99f0dd794e8e049d0d0d4fa86f3c2c3b95f2e9bc24e623ca11c1bcb02bf80	n/a		Mirai
2025-09-02	n/a	elf	0c6f64fff5c646f1ebcc601d50cf9ada2bc63119ccdfc45f969b07f71bb329f7	n/a		Mirai
2025-08-31	n/a	elf	584149f70fef678ddfba8cf20ecac4cd28baf5d9623e37ba9b460a436f4a91d6	n/a		Mirai
2025-08-31	n/a	elf	c6ba440da2de0e90624480b985178dc468c5d92de798ccea881f63293116e942	n/a		Mirai
2025-08-28	n/a	elf	3e8c2bf28e3386c9421e1171cb3177cfb2985cbe7c2a1fed79379e48bb7fea2f	n/a		Mirai
2025-08-27	n/a	elf	f33d5f0910b5ba3f36421f37c84c54caa7449bcc28e5f2c5d4c5f5f02777792d	n/a		Mirai
2025-08-26	n/a	elf	4f9fe42e6e59f70373448161101ca0473073dc62c6ad9f1d85cc51f83f86fe8f	n/a		Mirai
2025-08-25	n/a	elf	8c934944f955c21d2938b7993ae8f201e511b7809d59cf3d33ec4c5591c36c95	n/a		Mirai
2025-08-24	n/a	elf	ec7818ea55b22d853c1af6d0612aeb0dab14067c1111ff24ed38641b515f86a7	n/a		Mirai
2025-08-24	n/a	elf	6d4faf416fe6f81daca1b02e85c62c8342d1aaf5402d1ea831c84498736d1745	21.88%		Mirai