URLhaus Database

You are currently viewing the URLhaus database entry for http://41.216.189.110/00101010101001/morte.arm6 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3704790
URL:	http://41.216.189.110/00101010101001/morte.arm6
URL Status:	Online (spreading malware for 4 days, 23 hours, 2 minutes)
Host:	41.216.189.110
Date added:	2025-11-13 22:38:12 UTC
Threat:	Malware download
Reporter:	botnetkiller
Abuse complaint sent (?):	Yes (2025-11-13 22:39:13 UTC to abusepoc{at}afrinic[dot]net)
Tags:	arm elf geofenced mirai opendir ua-wget USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-11-18	n/a	elf	963e41aeaa3f297bff3ae1f0acc83b9a4d94f941d00aea025bc8a091757860f7	41.54%		Mirai
2025-11-17	n/a	elf	a13c9574f547fc3f4014f2863b1c1b7f9eb7df13c87089f02715c29dcc07f61d	n/a		Mirai
2025-11-16	n/a	elf	16bfab84438ee61f73af24eb6d7c482a43192f8be5a86751326ac545931ec345	41.54%		Mirai
2025-11-16	n/a	elf	45d3a37a8d82b3c60b671c11b44a7e2d106413a72c890443428a3a1c17b1f2a2	39.06%		Mirai
2025-11-15	n/a	elf	86d1089b91ce9ce616774fee8146704ea26f33188be13aa4aba1efff6c5ec79c	41.54%		Mirai
2025-11-15	n/a	elf	2bcc659b23dfa6276939173e02ab04890235c6baa0b770d5591ccbca47755193	n/a		Mirai
2025-11-15	n/a	elf	f02f512d7e42b3e068e74ee8d50fe728e4f4aaacf06824dee341a23e8fb741d8	n/a		Mirai
2025-11-13	n/a	elf	1f8981adeec9f602838fc5e012f8de88cff5e51fe743af7d7f750a904fca1a52	40.00%		Mirai