URLhaus Database

You are currently viewing the URLhaus database entry for http://45.125.66.56/i486 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3610830
URL:	http://45.125.66.56/i486
URL Status:	Offline
Host:	45.125.66.56
Date added:	2025-08-24 14:55:25 UTC
Last online:	2025-09-28 04:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2025-08-24 14:56:17 UTC to admin{at}serveroffer[dot]lt)
Takedown time:	1 month, 4 days, 13 hours, 44 minutes (down since 2025-09-28 04:40:48 UTC)
Tags:	DEU elf geofenced mirai ua-wget

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-09-02	n/a	elf	d1d4d3b6ffb937a022a8978c4d01811ab7c5ddd912e0e94c4cd7a025d73a3843	21.54%		Mirai
2025-09-02	n/a	elf	ff4bbda148c27c3ef591a5270825c632970360089c8f762d49b9de92ea9b1f7e	n/a		Mirai
2025-08-31	n/a	elf	b3a24915e692ba1edc945371605bfb4324cfb6046a560cecca4efaeb6a5e0d8b	n/a		Mirai
2025-08-30	n/a	elf	90a20d373a00b5519b62290f582e6d034dcc30800edbc836fa0aa3e55a651942	n/a		Mirai
2025-08-28	n/a	elf	7a48e9b1353703002157434112e3b8dd8f3f16b7eb6996747cad82493ba1cea9	n/a		Mirai
2025-08-27	n/a	elf	301fae247457530e9fd95f83332dc04b631255813e14009ae615d3692d0fa9ee	n/a		Mirai
2025-08-26	n/a	elf	62b2fa8696b69dc5afcd5ddfdb6e471c5ea63170cc7eee00a0e304c8bae4f119	n/a		Mirai
2025-08-25	n/a	elf	587820135f6b358a44ad48fb7b307935f1722a289fc27e58144baac4a0b7e68d	15.62%		Mirai
2025-08-24	n/a	elf	123daf70b1335d2ad35f452d7588681dfedde9a6af65367e25a08376de419968	n/a		Mirai
2025-08-24	n/a	elf	a00b3cde85ac7d9a29b748880f6dd6744ecc2a04083742e543a5d7495fd84a2e	14.29%		Mirai