URLhaus Database

You are currently viewing the URLhaus database entry for http://91.92.240.38/x86_64 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3748051
URL: http://91.92.240.38/x86_64
URL Status:flame Online (spreading malware for 1 month, 5 days, 1 hours, 36 minutes)
Host: 91.92.240.38
Date added:2026-01-01 12:49:19 UTC
Threat:Malware download Malware download
Reporter: ClearlyNotB
Abuse complaint sent (?): Yes (2026-01-01 12:50:20 UTC to abuse{at}lanedo[dot]net)
Tags:elf mirai link ua-wget

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2026-02-05n/aelf 0a2c5c89de3bf14a6486af7018fe53da2ec6e23ef3eef464908808d9d5f4f904n/aMirai
2026-01-27n/aelf 2aae0a212cb3fcb92d2e19f6f5361fe267225d1a37d99b26787105bddbd2cf38n/aMirai
2026-01-26n/aelf f00b000e752999d6b01403951e97ffce4af3f2f3b11069e2435bf8a2e3c45cf0n/aMirai
2026-01-23n/aelf abdea3b6f8208a8b3d8de0152677fb5b3aac306812d17d2b0c7280002a1f7f3an/aMirai
2026-01-19n/aelf 90185077afdaa5f8b0862b5095a4651ad9789b3adc2530ee76daeec352a117d5n/aMirai
2026-01-16n/aelf 4d44169088b959257b3709cd0173405492daa384dfe0d71eb14b4934418b0aadn/aMirai
2026-01-12n/aelf b189fe06536314551f446c5b862463a75ae4b740b4f1857c73c7de8415e144a3n/aMirai
2026-01-12n/aelf 3798a995921ff89ef02c826411a19b54fdaaee42d03a55ea399a0347170a9da8n/aMirai
2026-01-04n/aelf 4bff688f2817cc74b2475f40edbec64df2132a73307a5f318f3080c3765c8a90n/aMirai
2026-01-04n/aelf 8ca9b19c9f40d51e981cce5be0e02d062c914197ab5d1ca4d822714b50576ea6n/aMirai
2026-01-02n/aelf a21448eebaef7099666c8cd8ee12f9327ef1b9e7addeaeed2eab9e7b922f2bb0n/aMirai
2026-01-01n/aelf 34d4956bc381786a0913e05be716bdbad46d7cfaa2de300a6e853c3cd2e44be2n/aMirai