URLhaus Database

You are currently viewing the URLhaus database entry for http://41.216.189.108/00101010101001/morte.x86_64 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3614393
URL:	http://41.216.189.108/00101010101001/morte.x86_64
URL Status:	Offline
Host:	41.216.189.108
Date added:	2025-08-30 19:48:17 UTC
Last online:	2025-10-22 10:XX:XX UTC
Threat:	Malware download
Reporter:	botnetkiller
Abuse complaint sent (?):	Yes (2025-08-30 19:49:11 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:	1 month, 22 days, 15 hours, 9 minutes (down since 2025-10-22 10:58:33 UTC)
Tags:	elf geofenced mirai opendir ua-wget USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-10-20	n/a	elf	3af40b5a3d850ee6d5bf827fd7d0ee0b52924e6914afc2e779d43228d19bc519	n/a		Mirai
2025-10-02	n/a	elf	b226b34df0704cca25172bff460ac1310a82645fb4d1608b3f53e7d847094893	n/a		Mirai
2025-09-18	n/a	elf	14df181010aad0e99993aeb67096d8c21a2f7843457bcfa99900496e3fb1a189	40.00%		Mirai
2025-09-17	n/a	elf	a8905edb8524a9db1f51b07e60b9dbd1cda0f771d72413452650a7518a339f9f	38.46%		Mirai
2025-09-14	n/a	elf	16adf962cb7f0e8b3181247c9295c11dd4c9531ba8b085fed9f02c310be65625	36.92%		Mirai
2025-09-13	n/a	elf	59c7a5efa977006e985adbdd6423e629f5aa2a644b4d8064d2882e4487f0f2c8	36.92%		Mirai
2025-09-10	n/a	elf	926b74584621695f595102cdc02ae1c43c28e9a07b55dd3fe72aa6c8e93fe552	36.92%		Mirai
2025-09-09	n/a	elf	bb405cb7cee25302148547f07f6f1fde7364bf6916d0242b7ccf281f5eb1bb31	36.92%		Mirai
2025-08-30	n/a	elf	9caad0425c956ac4c3e48710e60503b9e6f90c6ddfb3cec9960603a28d9acaa0	n/a		Mirai