URLhaus Database

You are currently viewing the URLhaus database entry for http://oracle.zzhreceive.top/b2f628/b.sh which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2051157
URL:	http://oracle.zzhreceive.top/b2f628/b.sh
URL Status:	Offline
Host:	oracle.zzhreceive.top
Date added:	2022-02-21 17:19:13 UTC
Last online:	2022-06-30 12:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Abused domain (malware)
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Status unknown
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Not blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2022-06-28 22:11:04 UTC to abuse{at}as49447[dot]net)
Takedown time:	4 months, 8 days, 20 hours, 54 minutes (down since 2022-06-30 14:14:41 UTC)
Tags:	shellscript

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT
2022-06-29	n/a	unknown	fe6731f3025775e97d97e08699c57f464112883617bc4505cd8912ac7379d34e	n/a
2022-06-28	n/a	unknown	cacd4bb5b73b5041d93798a109a4ba3943c2294fa1d314c980db2b837f455f41	n/a
2022-05-09	n/a	unknown	3724b0555d0c8d0d0eb3856d84fc29317a1e8c4a8f4725344cb7336d97be80cb	n/a
2022-04-21	n/a	unknown	0672e1f1c463e5f64f2123adfca4fd0a9652f954fcc1e084a2edbbe327e31021	n/a
2022-04-20	n/a	unknown	1b8aa43c9ccb2526e322da9f01ac6b671a8550d7db905c1f279cd806fde53b5a	n/a
2022-04-19	n/a	unknown	e4281147982f9fd909c5e7c8a390b1c88f6c1fef57734800e68314d950c406bf	n/a
2022-04-18	n/a	unknown	c712bf42008bf4c83b9f45918c9c00a6b06d0e0fbf62ce76ded407deea274245	n/a
2022-04-18	n/a	unknown	f2c1346cfd101f26e8e08a7f03dee5ffc8b164337917b00d7d69e862743ec0e0	n/a
2022-04-18	n/a	unknown	a5b954928ed3a5e3907649c95d0c7187bd930f2c83b462b633d349e037a6f364	n/a
2022-04-12	n/a	unknown	49849d6d866ae7458ec1e6e93da8a949929f8e7063ef0c0e525a2ccb3845ccb8	n/a
2022-03-30	n/a	unknown	f8fcd7e13eb4d4c2fcbed5fcf765376088b7de1e0c35ef7bda6e9f35646171d4	n/a
2022-03-29	n/a	unknown	7b184cae6d3bdf53cbabe9710d14befcafdbccc47f0222d477e98f79c062679c	n/a
2022-03-02	n/a	unknown	f17e50746662aa0d515aa709891da7d702b1840de2793bdece04411d3a863c48	n/a
2022-02-28	n/a	unknown	a43776cdce6a00d6d5fce6acc0d29371142319e1593db4c82c303a60292f64da	n/a
2022-02-28	n/a	unknown	81cd22ce502686f1b57d211a9a220236683aea8d9a8c50b0e6b15cb7a36e8d8f	n/a
2022-02-21	n/a	unknown	988080f0293543abfc604835ed419f567234109733fec0e3003151acdfcd124d	52.54%