URLhaus Database

You are currently viewing the URLhaus database entry for https://github.com/artist5435/fdsfdsa/raw/main/mixar.rar which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2638445
URL:	https://github.com/artist5435/fdsfdsa/raw/main/mixar.rar
URL Status:	Offline
Host:	github.com
Date added:	2023-05-22 05:29:05 UTC
Last online:	2023-05-22 13:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	tcains1
Abuse complaint sent (?):	Yes (2023-05-22 05:46:05 UTC to noc{at}github[dot]com)
Takedown time:	3 days, 5 hours, 45 minutes (down since 2023-05-25 11:15:31 UTC)
Tags:	pw-123 rar Stealc

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT
2023-05-25	n/a	rar	dd8cd7ec0dd90cec41b958b1ba679794f219675ee7c9c97344933b535e46a0e4	n/a
2023-05-22	n/a	rar	aa7c168b2633bd714aad346230bbae864a40f5a361b54c56a5c5ecc219765a86	n/a
2023-05-22	n/a	rar	f0a63e35dcc04a5615de95d7d27a5d037eeae709776067e48d2126005d270f86	0.00%