URLhaus Database

You are currently viewing the URLhaus database entry for http://143.20.185.225/bin/debug which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3711453
URL: http://143.20.185.225/bin/debug
URL Status:Offline
Host: 143.20.185.225
Date added:2025-11-18 17:16:18 UTC
Last online:2026-01-21 15:XX:XX UTC
Threat:Malware download Malware download
Reporter: DaveLikesMalwre
Abuse complaint sent (?): Yes (2025-11-18 17:17:16 UTC to report{at}abuseradar[dot]com)
Takedown time:2 months, 3 days, 21 hours, 45 minutes Bad (down since 2026-01-21 15:03:11 UTC)
Tags:mirai link opendir

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2026-01-17n/aelf 28f463829facf79a507c6521a7e9917c90f9c9cfe67251a7f35fb067894325a3n/aMirai
2026-01-14n/aelf 8722364e6484393e70c820ce1cc25a6835bf671eee7d535c27906e39e9a59835n/aMirai
2025-12-04n/aelf 296724ae77939294f95b72db61aacd8122ab5e28f15e7873b6358316c77485f2n/aMirai
2025-11-27n/aelf 4eb8f2bf3fd85e095b2f240ddc01526c4ed59cc1c86eee8937e18a8a8ab4f061n/aMirai
2025-11-26n/aelf 247a1ed5b5036501e2dff14f6d63ba56672b89234f7ea54e58a77678e8efaf16Virustotal results 43.08%Mirai
2025-11-20n/aelf 542131b62447f75d77ca799a08cdb65c41040287df1147adca357e46d5cb0ecaVirustotal results 58.46%Mirai
2025-11-18n/aelf c7949b9b6ce3e1ab5aa565edcfb24eaf71f2ad9fbd213dd10e5e1d5290a45a6eVirustotal results 43.08%Mirai
2025-11-18n/aelf b8a175425845fabbbc8319272e89c4091277b68f879e7200f3ac3dc333517207n/aMirai