URLhaus Database

You are currently viewing the URLhaus database entry for http://144.172.109.62/Orbt/Orbt.spc which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3682105
URL:	http://144.172.109.62/Orbt/Orbt.spc
URL Status:	Offline
Host:	144.172.109.62
Date added:	2025-10-20 06:35:19 UTC
Last online:	2025-10-28 22:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2025-10-20 06:36:13 UTC to abuse-reports{at}cloudzy[dot]com)
Takedown time:	8 days, 15 hours, 54 minutes (down since 2025-10-28 22:30:34 UTC)
Tags:	elf mirai ua-wget

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-10-28	Orbt.spc	elf	6eda1367bf822811a7d0e2b47903fa6983741685b017f17282638fbf9b889091	n/a		Mirai
2025-10-26	Orbt.spc	elf	82b67c2439dd69a4eba5a7fb2cc583d87b73a769c42d36fc9adfeaed7b1639b3	50.00%		Mirai
2025-10-25	Orbt.spc	elf	c45542f8b5e0a07e1fc1db489f890526793c09a2c66cc4778bba4469d9854a1f	n/a		Mirai
2025-10-23	Orbt.spc	elf	49cf9fab26afecba72cda79ad4bf54b92fe502b1e88619cc1f738140f7518e1a	n/a		Mirai
2025-10-22	Orbt.spc	elf	2164f4ee612bf77b8e0ecee19580ec57adf865813dfa9f6e5e04ff2ce1cb2d47	51.56%		Mirai
2025-10-21	Orbt.spc	elf	64d7bd94658076237d749a01fa2651b86a5c7622d862313f9e9c51bf47b5a5cf	51.56%		Mirai
2025-10-21	Orbt.spc	elf	90f76ae1ac716ee53723573780385fd77c510318694d87e092c7bedbb5dc7f70	n/a		Mirai
2025-10-21	Orbt.spc	elf	02f75834327203d2de636916cc829afb034913ea7e872e523654ba0bccdb66e7	n/a		Mirai
2025-10-20	Orbt.spc	elf	bf5aa271be37d0c03dc951c456f5d74e0e471e263b6d9a5115d8add1dd9e08e5	53.23%		Mirai
2025-10-20	Orbt.spc	elf	5fffe6d3b317a7bafc4a32635fdc4e442fead5c3548e07e7bac320a56aa69df4	n/a		Mirai