URLhaus Database

You are currently viewing the URLhaus database entry for http://46.8.78.55:8080/systemctl/bin.mips which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:3847404
URL: http://46.8.78.55:8080/systemctl/bin.mips
URL Status:flame Online (spreading malware for 2 months, 2 days, 11 hours, 33 minutes)
Host: 46.8.78.55
Date added:2026-05-15 15:49:13 UTC
Threat:Malware download Malware download
Reporter: abuse_ch
Abuse complaint sent (?): Yes (2026-05-15 15:50:18 UTC to abuse{at}cloudbackbone[dot]net)
Tags:elf mirai link ua-wget

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2026-05-26bin.mipself 543106cacc95fa78c110162631da3d860ae80065d59ad6881ae185c7214910ccn/aMirai
2026-05-22bin.mipself bc55dce2e859b0d282b04d328fce7e15663e7ba273172cadb39e9206d398ac99n/aMirai
2026-05-22bin.mipself 25a21c6cff4e75a9ff8284ca6dddc71b1c3799b726d94b29ed82dbed0df6a0aan/aMirai
2026-05-21bin.mipself ee1aa365a1e1aadaa322cf09e066ca377d91bddad1b4075adb34f6f0ca9fb2e5n/aMirai
2026-05-18bin.mipself dee911cd0b2987cedfbad85a750a8e56ce10815569212dfa548bc61e83fadb7dn/aMirai
2026-05-15bin.mipself bd294988b105332f922819984c7a132acdd40d5bef0db066d072567ce40d7ecdn/aMirai