URLhaus Database

You are currently viewing the URLhaus database entry for http://187.26.2.136:36382/Mozi.a which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	795811
URL:	http://187.26.2.136:36382/Mozi.a
URL Status:	Offline
Host:	187.26.2.136
Date added:	2020-11-07 09:37:46 UTC
Last online:	2020-11-25 07:XX:XX UTC
Threat:	Malware download
Reporter:	lrz_urlhaus
Abuse complaint sent (?):	Yes (2020-11-07 09:38:15 UTC to abuse{at}lacnic[dot]net)
Takedown time:	17 days, 22 hours, 15 minutes (down since 2020-11-25 07:53:41 UTC)
Tags:	elf mirai Mozi

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-11-21	n/a	elf	152a4692267842dd5fea26ad7def50d40df6a6785bc0eb6c15c2d9a0f5417dfb	27.87%
2020-11-21	n/a	elf	c7e675d2af5db0af076066e023390c4dccc55dc4dc00ad8185d3311f933913ce	29.51%
2020-11-21	n/a	elf	125586ad6c6e740d4e785944aef9e29a14897e58742a4548d79a82057b29d225	26.67%
2020-11-21	n/a	elf	eed5e6ab6affb2c19d3cb731dc7f30c1896e0edf51de66f9f51e43c1310c03b4	40.00%
2020-11-21	n/a	elf	0fea01f10d126bf88be843bb2470d2cda77c40940bc341eaa5b17b292b8fab68	29.51%
2020-11-21	n/a	elf	2b34507c5c1c34d3e9f0e9392c3ef8e5d740f2e5acef994b50c3c7eee48177c3	n/a
2020-11-20	n/a	elf	c91ca8b2d6e6a7a25a93d557db971277d9be6cd77b18a0b67d0ed6505ed6ae8b	28.81%
2020-11-19	n/a	elf	78faa7c818b75ee22e3dc446e2d1d311d2c01d0d3a0f5a23793b1a6331e9dd0c	19.67%
2020-11-19	n/a	elf	fc0bb65fbeef7e034a38a68b0bd9b73511d9126fe8fa262642a885db3e54c768	20.00%
2020-11-19	n/a	elf	1e3cddc3d3b80e438c44b1ad212b37824fbe59e676ec018e51a9ae7d79af9f42	28.33%
2020-11-19	n/a	elf	fcc7ef27e2e8d5700981a65434c84e14431ed6cda6557aebbd3abcf9cd733059	28.81%
2020-11-19	n/a	elf	4415583574b4847039f541b98f8afa9a2339e47a8843f4a1dfa814ad036a42c3	20.00%
2020-11-19	n/a	elf	71afe1104b5e1bc020dcc7a4db22fda6a09b0149cc1a842d148f652923ef1b27	19.67%
2020-11-18	n/a	elf	66483e23d3f45362d0bdaac4b4455249b1222a215a83bf6152890699e4dc3b49	20.00%
2020-11-18	n/a	elf	ef1960da9679a9e2ae863fae63311eb34d4b9f02566fc05998ad29d798a52b19	29.51%
2020-11-18	n/a	elf	213cf7cae2ed72a408bf3e34bbb7bacdb2a626fa5c5582153986b83fdb5d0e5b	14.29%
2020-11-17	n/a	elf	249d2f6b3cc0abfd07530e31dd20e7e1380045729d07c4c69ffa1b76895f555b	20.00%
2020-11-15	n/a	elf	a215a991b5497e3ffcaf0d0966cd6a101ab8b3b257ef3313a309257f63768c0c	n/a
2020-11-15	n/a	elf	223a9b42c129372165e047c90cb46e7181464dbac373961e7bd7358a3b400650	28.33%
2020-11-11	n/a	elf	3d6706b6715e84b3c6937fe1d6ab18128c1a49ae5200fdf0d8f7acadeb25d1e0	20.34%
2020-11-10	n/a	elf	6ff5d61c8facf26d01cd9cc1b65a4e7c290ef9136c4ff58898e0195ebc57d6d1	20.00%
2020-11-09	n/a	elf	dabb578865d76372ad70ba654999a7879dea2ecac90c71f20069c4d3587c673a	30.00%
2020-11-09	n/a	elf	4e14104f0fe7ab6c43a4cf8e209adb688e30d1380239bc107c5042883b05bb4c	20.00%
2020-11-09	n/a	elf	4543edc81c0b0bfcd42d76e3233c182da84ce5c8f4feccf7d4edd3eec2d0bafb	29.51%
2020-11-07	n/a	elf	1eb23b1bb9ad55ee41f2cdae591f8dd6b70ecc276813a7747e77625857673652	20.34%
2020-11-07	n/a	elf	fef9ad0e0d1a8ee3da9e49ec0c34cc418ce88b59f6d2db7b611699988ffd3f42	23.81%
2020-11-07	n/a	elf	e9de709da7fd11e01d5b532e596f123845b22b47c9c11e230f6206063bfd086e	20.69%
2020-11-07	n/a	elf	9e0a15a4318e3e788bad61398b8a40d4916d63ab27b47f3bdbe329c462193600	63.33%	Mirai