URLhaus Database

You are currently viewing the URLhaus database entry for http://46.8.78.55:8080/systemctl/bin.armv4l which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:3847412
URL: http://46.8.78.55:8080/systemctl/bin.armv4l
URL Status:flame Online (spreading malware for 2 months, 2 days, 20 hours, 18 minutes)
Host: 46.8.78.55
Date added:2026-05-15 15:50:17 UTC
Threat:Malware download Malware download
Reporter: abuse_ch
Abuse complaint sent (?): Yes (2026-05-15 15:51:16 UTC to abuse{at}cloudbackbone[dot]net)
Tags:elf mirai link ua-wget

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2026-05-26n/aelf d19ea55c4bbbae6762ae07040f6a9903f4633b40fe2dcc5dbf9aa41eef1ec715n/aMirai
2026-05-22n/aelf 197d0253ba15e2f40ae20235a90fb7260555a9222317f76afa4bebb2bdf0a566n/aMirai
2026-05-22n/aelf 197d0253ba15e2f40ae20235a90fb7260555a9222317f76afa4bebb2bdf0a566n/aMirai
2026-05-22n/aelf 4df6684ac5d1efca585d909d47565008727f4f29caab37b7da0da94db0cfdb03n/aMirai
2026-05-21n/aelf d1de962ef2822372b0db5c10360e8f21ba2401307c578df169e43271e0d60d90n/aMirai
2026-05-21n/aelf cea532ba4ef2f33aca2d38e3250605e06a33edf8cefabe32f12a94c9d0343cc1n/aMirai
2026-05-18n/aelf 903b4771836b5d15d001ce1016694b79b2d7bd3cd07f750128fe6ebe6e9c7d6en/aMirai
2026-05-15n/aelf 3273f921b59c98f024bfe386fd054f20e40e200c16040f09760549b8c1ff6751n/aMirai