URLhaus Database

You are currently viewing the URLhaus database entry for http://mangotruff.redirectme.net/bins/m68k which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3660258
URL:	http://mangotruff.redirectme.net/bins/m68k
URL Status:	Offline
Host:	mangotruff.redirectme.net
Date added:	2025-10-06 12:08:19 UTC
Last online:	2025-10-25 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Not blocked
Reporter:	BlinkzSec
Abuse complaint sent (?):	Yes (2025-10-24 23:02:12 UTC to reports{at}magnates[dot]co[dot]za)
Takedown time:	18 days, 22 hours, 0 minutes (down since 2025-10-25 10:10:07 UTC)
Tags:	botnetdomain elf mirai

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-10-24	n/a	elf	e68a99c969220d1b77c43645d44cd637f2db999ef15bae84a10bd45fe1ea3def	44.62%		Mirai
2025-10-17	n/a	elf	76bc97f31cc897e6f0138d1d0abee829889c2a172cdea81484002b501b3e8c6b	n/a		Mirai
2025-10-16	n/a	elf	0591fd2d407eb2ed095456123998b06aace02d128deebdec6d2f280d6316652c	43.08%		Mirai
2025-10-15	n/a	elf	c56dec335a241f494310b2292929933e853f6d0e7e879d5e8a3c21f228dbfeb9	n/a		Mirai
2025-10-14	n/a	elf	25b16b951085cab03ff5aa47b424cf96853653791b88dd08b7dbd43fad2a41a1	n/a		Mirai
2025-10-06	n/a	elf	13d1f29afebfe41445a4a39a1b949407de9276dfa7f28bf4cace14ba9f17100d	44.62%		Mirai