URLhaus Database

You are currently viewing the URLhaus database entry for http://213.209.143.64/zerspc which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3726580
URL: http://213.209.143.64/zerspc
URL Status:Offline
Host: 213.209.143.64
Date added:2025-12-05 18:23:19 UTC
Last online:2025-12-18 17:XX:XX UTC
Threat:Malware download Malware download
Reporter: abuse_ch
Abuse complaint sent (?): Yes (2025-12-05 18:24:15 UTC to abuse{at}virtualine[dot]org)
Takedown time:12 days, 22 hours, 45 minutes Bad (down since 2025-12-18 17:09:39 UTC)
Tags:elf mirai link ua-wget

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-12-18n/aelf dbd0a83fd9c02f87e38f320be9fe7c80a71dc3cbfab365e016356cec6649d78an/aMirai
2025-12-17n/aelf a3685c1e38fa133a58afdafdd0964f572e87a68ec3cbc2fb0e3353cf91a54d3an/aMirai
2025-12-17n/aelf d7abdc834a837dd5a2cb7a18e21ef1a9371d488602171553a90f74c2f9312829n/aMirai
2025-12-16n/aelf ac396ff690f0b6a038378b6143791962354f190aa4ebae433749cbfb2d9ef3dan/aMirai
2025-12-16n/aelf e73064d5f680ab5b03e152eaba50a2de9de2c068af093120432d479b6060d3b8n/aMirai
2025-12-15n/aelf 8fdcc4b7de884c7f4c51448d13c23a16fc3dfefca6fe2c41937ef6489a1fc560n/a
2025-12-14n/aelf e688d96ade361816b328d55fb96ee9a82dd082903f596b1ce5929b89545b3350n/aMirai
2025-12-13n/aelf 0d840207c30e9a87abdc55767faed3f46f095ba196ec225c6b07ab7a03aee0c5n/aMirai
2025-12-09n/aelf 9ad6c1f6c898ab2730a68f8c24bb4f686e35fa5cd01c94473f2b62b6c2772e30n/aMirai
2025-12-07n/aelf 6496c61113866790377cfe12852de2281442a0a39857e7fb9081dce52540fc59n/a
2025-12-05n/aelf 58047ae1e9f63fefde5845b580d3a98486d34b6d63279d6ae5170c0f02587d6cn/aMirai