URLhaus Database

You are currently viewing the URLhaus database entry for http://41.216.189.110/00101010101001/morte.arm7 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3704787
URL:	http://41.216.189.110/00101010101001/morte.arm7
URL Status:	Offline
Host:	41.216.189.110
Date added:	2025-11-13 22:38:12 UTC
Last online:	2025-11-18 23:XX:XX UTC
Threat:	Malware download
Reporter:	botnetkiller
Abuse complaint sent (?):	Yes (2025-11-13 22:39:13 UTC to abusepoc{at}afrinic[dot]net)
Takedown time:	5 days, 0 hours, 38 minutes (down since 2025-11-18 23:17:13 UTC)
Tags:	arm elf geofenced mirai opendir ua-wget USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-11-18	n/a	elf	dfafa5b4d7a552dfbbc3f03e47adc80fa21ad45da03c1ebcf927377229d8c867	39.06%		Mirai
2025-11-17	n/a	elf	ca211fb6122339dc96ab59797c0daa53458089c877554d7e7d070b08772fdc65	41.54%		Mirai
2025-11-16	n/a	elf	07636ea1ac10fdb5a2c8908a603f8c1c85dc62640c85cdbee70898f9bf5ac94b	40.00%		Mirai
2025-11-15	n/a	elf	759b7b535e312929274b186c9baa02472a9cc3731e56c997c8fdf401a7dd9a61	40.00%		Mirai
2025-11-15	n/a	elf	d679de5ce514c4b6923b0e61f1cefa9062adcc416aaff02887fd89a3fea1c7b6	n/a		Mirai
2025-11-15	n/a	elf	e69532d3d5e8d5edc2eca9efb9b0378cd20fca36bdb573fd4af7fc1a889b6d7c	n/a		Mirai
2025-11-13	n/a	elf	14da7da835f4d450a6314546f9cf33eea974397ec39a8a3f492e68027e874a3d	40.00%		Mirai