URLhaus Database

You are currently viewing the URLhaus database entry for http://151.242.30.13/bins/arm5 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	3719332
URL:	http://151.242.30.13/bins/arm5
URL Status:	Online (spreading malware for 25 days, 14 hours, 49 minutes)
Host:	151.242.30.13
Date added:	2025-11-29 04:00:14 UTC
Threat:	Malware download
Reporter:	botnetkiller
Abuse complaint sent (?):	Yes (2025-11-29 04:01:14 UTC to report{at}abuseradar[dot]com)
Tags:	arm elf geofenced mirai opendir ua-wget USA

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2025-12-15	n/a	elf	d4ac7e5c0f78e10f1fe63eb105a7f6c295ac5cc9b1cdc9eddeb2642acc51639e	n/a		Mirai
2025-12-14	n/a	elf	256f781d6ee2f2f367bad65c5a2936977afb66458af4f4454db48f657a67c77c	n/a		Mirai
2025-12-13	n/a	elf	ab19b181a1fa1fe6211abbcf083c7eba048faaefa1f64f28df269b9f2254b2a3	n/a		Mirai
2025-12-13	n/a	elf	8acc0b90fc3e076cba801c0db171318e70d9cde9e18a0ec17491cf5b0c054c52	n/a		Mirai
2025-12-04	n/a	elf	4fbc8be43f8d47feab328015c4c8f5ba87562f880e73430c8c981f2868e51628	n/a		Mirai
2025-12-01	n/a	elf	4d41a9967f0da9235e8c27831ee286ba0311c378e00370ff2fb56180f4ea5ebd	n/a		Mirai
2025-11-29	n/a	elf	759a5a9b47a96e17a62ead6c750a997a2d11e02b8582084f3287240a35e8761c	26.56%		Mirai