URLhaus Database

You are currently viewing the URLhaus database entry for http://91.92.242.241/x86 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3657692
URL:	http://91.92.242.241/x86
URL Status:	Offline
Host:	91.92.242.241
Date added:	2025-10-05 13:50:17 UTC
Last online:	2025-11-02 19:XX:XX UTC
Threat:	Malware download
Reporter:	ClearlyNotB
Abuse complaint sent (?):	Yes (2025-10-05 13:51:18 UTC to abuse{at}metaspinner[dot]net)
Takedown time:	28 days, 5 hours, 56 minutes (down since 2025-11-02 19:48:16 UTC)
Tags:	DEU elf geofenced mirai ua-wget

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-11-01	n/a	elf	8206e1307185b0a4fea5e1eaf3f13306fcd5cdd937b1fe8c008cf18286a98f36	n/a		Mirai
2025-10-21	n/a	elf	f418805f80dba4a8bcf0d11fa4df6b4a09b9558af06c420ba3e34161adb9f957	n/a		Mirai
2025-10-20	n/a	elf	229f5fda1e265635152e24afa6df6a9d0f28c41ce13048c03e187da64b91c46c	n/a		Mirai
2025-10-17	n/a	elf	775f7f1fbed60be4dcf9c4fc964bd756a5e8ab598de23fc2f6c2057b8161ea41	n/a		Mirai
2025-10-16	n/a	elf	bc7d7e1f4b3c115c1ba02b0d4e592ebab4814e710e89f2f29e5017a59bd020d2	n/a		Mirai
2025-10-16	n/a	elf	fa01d931671a09afcdf03caf856f3c19b4b998fa0fbe41de3994f358f24d834f	n/a		Mirai
2025-10-15	n/a	elf	45feccf5a00064d06137bbd4b48a7edc8f33b0d1f99138d97c75ed34b8f65f74	n/a		Mirai
2025-10-12	n/a	elf	578a282d77c76387abce25a4fc2eb59f3b26173a44f36c4e5dbc072f1cb8a670	n/a		Mirai
2025-10-12	n/a	elf	1710521a19b788e30aca2f763ab5d59df3e917bdad147a9349263c9ad744020c	n/a		Mirai
2025-10-10	n/a	elf	c1220e05fe773144b6969a00cd7be07c622da0fb5ad1dcac896fd0b50a3805e5	n/a		Mirai
2025-10-05	n/a	elf	f9eba71feb34747af5686750c672a94a5f35d990c177026f7785b2744af2dbbd	36.92%		Mirai