URLhaus Database

You are currently viewing the URLhaus database entry for http://mangotruff.redirectme.net/bins/mips which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3660252
URL:	http://mangotruff.redirectme.net/bins/mips
URL Status:	Offline
Host:	mangotruff.redirectme.net
Date added:	2025-10-06 12:08:12 UTC
Last online:	2025-10-25 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Not blocked
Reporter:	BlinkzSec
Abuse complaint sent (?):	Yes (2025-10-24 23:28:12 UTC to reports{at}magnates[dot]co[dot]za)
Takedown time:	18 days, 22 hours, 27 minutes (down since 2025-10-25 10:36:39 UTC)
Tags:	botnetdomain elf mirai

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-10-24	n/a	elf	831736946042211d84415484c342f625b042494b3416053bff5f130fe3f4f4a7	57.81%		Mirai
2025-10-17	n/a	elf	2414f0cfbbd246cf62e0d68a6154a18a7ed465831e6a1ce466f3e03d60e43519	43.08%		Mirai
2025-10-16	n/a	elf	8556bdb4f7010c1a8f9edf0201d56095f207895b3a0a1609c78a94bd05ec58ed	46.67%		Mirai
2025-10-16	n/a	elf	381bdf8868c70f1f80e7ffa78ff8a125640e9042b02130e2d4f2bac8aed02511	44.62%		Mirai
2025-10-14	n/a	elf	f497eb0343706b69c0c2ffa5b813e991f495f1205a735764b93c6ebe6b0f7f55	n/a		Mirai
2025-10-06	n/a	elf	90e8995bbd9ad36fc0b8e70f8838ea1f1d31812b70ddc3d6e802c8a81540dd0d	49.23%		Mirai