URLhaus Database

You are currently viewing the URLhaus database entry for http://oracle.zzhreceive.top/b2f628fff19fda999999999/cronis.sh which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1430426
URL: http://oracle.zzhreceive.top/b2f628fff19fda999999999/cronis.sh
URL Status:Offline
Host: oracle.zzhreceive.top
Date added:2021-07-06 08:35:06 UTC
Last online:2022-04-18 08:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Abused domain (malware)
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Status unknown
Cloudflare :Blocked
dns0.eu :Status unknown
ProtonDNS :Status unknown
OpenBLD :Blocked
DNS4EU :Not blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2022-03-28 12:52:09 UTC to admin{at}frantech[dot]ca,fdias{at}frantech[dot]ca)
Takedown time:9 months, 16 days, 0 hours, 56 minutes Bad (down since 2022-04-18 09:32:17 UTC)
Tags:shellscript

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-12-13n/aunknown cbb37344fdf2429306d4f608237def14465f5667080f6ee43c732d8d42fa7e5bn/a 
2021-12-13n/aunknown c8946b520ebc0e9adbf87185c4fadcf91837bbf1b5a5adf00052607bca5dceccn/a 
2021-12-10n/aunknown 8498bace35187e90b63ddc5f9e09021e028a635ca2b7126ff1dc108575bd5e89n/a 
2021-07-16n/aunknown 247a1c618cfdc293b85245f0c2b365b6f6eacc23a0374264fd8c260e43a41901n/a 
2021-07-06n/aunknown 549ce260b7c3f72ccb0d57e0ca0798419f9e528f206fa5b3423ff36bca48ea47Virustotal results 21.05%