URLhaus Database

You are currently viewing the URLhaus database entry for http://114.241.225.1:8085/AV.scr which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3091769
URL: http://114.241.225.1:8085/AV.scr
URL Status:Offline
Host: 114.241.225.1
Date added:2024-08-06 05:49:48 UTC
Last online:2024-09-05 02:XX:XX UTC
Threat:Malware download Malware download
Reporter: BlinkzSec
Abuse complaint sent (?): Yes (2024-08-06 05:50:13 UTC to zhaoyz3{at}chinaunicom[dot]cn)
Takedown time:29 days, 20 hours, 26 minutes Bad (down since 2024-09-05 02:16:50 UTC)
Tags:CoinMiner ua-wget

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-08-30n/aexe d9d7c5c9501f5dc594be2865cc689293ac8d91b62529057d2f3c7b6422c8fb48n/a CoinMiner
2024-08-30n/aexe ba55dc54b425b77c801296008291e49335687fb2216274ae00c17dca8030942cn/a CoinMiner
2024-08-27n/aexe ebcdf536447cba219a13756c00c97b4ed5fea47f2cbf2283ea86e80216d3822eVirustotal results 83.78% CoinMiner
2024-08-26n/aexe cc86fba9db3756b190a3c865bf77b0b8b6cce8367d29df557b93aef638e36d61n/a CoinMiner
2024-08-25n/aexe 946488078c504e4b7445bc2ddce8289d4e5a5acce973aa0052117f97ca678924n/a CoinMiner
2024-08-24n/aexe 20ff80dbbe22ebed2aa327519e2ee47bacd2e39790ea690a6b96bd8b55796568n/a CoinMiner
2024-08-23n/aexe 38f6bf0c8e269b4d50ecde86294c17b7d25be78ee902a2284e52b38dfa535f08n/a CoinMiner
2024-08-22n/aexe 1da1136e2069cf4e661ed20117806b5b099c7bdfac7f7749afd0eab2c9286982n/a CoinMiner
2024-08-22n/aexe ac9a5680352a3ea4e7e32b6f476247960ffc899569345b9d5b3d152b31b6bf40n/a CoinMiner
2024-08-20n/aexe fae7517fb46daaecc9fc962b073ee80b215def25652e26218175b8e52df1ad1fn/a CoinMiner
2024-08-20n/aexe 6d7aa86ebbf1b384f8d82ab3cd787407e8681e9cd712b053a8e657b8cea1591fn/a CoinMiner
2024-08-17n/aexe 4f68058862d5f793a1056f86d1706154ab5363359b36a3f9c24796c3b777a259n/a CoinMiner
2024-08-16n/aexe 6e8d5eb436e2b8673e1a240314ffa8745f2a1573c75d4b7c03abc6b86eeca1e3n/a CoinMiner
2024-08-15n/aexe ac0d2a6f30d628b701a13ab69f4b602db71f2e7b1d5beb9eff73130c52a3231bn/a CoinMiner
2024-08-15n/aexe 74b50987ebc289ba45c163f083e66c78617b468da9353a63ecc406388468b77fn/a CoinMiner
2024-08-14n/aexe 60a160e4c1ef9493012c04f5b6bb95b20d1e4449eb4335bedc08c2f4290f502fn/a CoinMiner
2024-08-13n/aexe b3316e7c93b8912ebf7cf4daec69634df7241559a26db0f69a6c2f3f32489a38n/a CoinMiner
2024-08-11n/aexe 6c7681104b923af47d43b0f20bf834ef243abdceebb16643f349eb19e9837116n/a CoinMiner
2024-08-10n/aexe 9194b57673209c8534888f61b0cdefa34f463ae50cd78f72ab2b3348220baaf9Virustotal results 84.00% CoinMiner
2024-08-10n/aexe e05b8184018d6752c16e2d302b1cc2d11dbde3a6ecfb6f1fa03acaab448d84f7n/a CoinMiner
2024-08-08n/aexe 5d9fe2735d4399d98e6e6a792b1feb26d6f2d9a5d77944ecacb4b4837e5e5fcaVirustotal results 81.08%CoinMiner
2024-08-08n/aexe 04b62889f3c32b021eede59b83ac2d7cff95406f11c42470614721cd4908ab69n/a CoinMiner
2024-08-07n/aexe 93640e157859592e62a30adb039bce989d86a37bb1c424d91b369da81db84a47n/a CoinMiner
2024-08-07n/aexe 9c72a4f23af80ce3426ad589f979e80e3f071d71e73351816b3feb82c240661cn/a CoinMiner
2024-08-06n/aexe af94ddf7c35b9d9f016a5a4b232b43e071d59c6beb1560ba76df20df7b49ca4cVirustotal results 82.67% CoinMiner