URLhaus Database

You are currently viewing the URLhaus database entry for https://codeload.github.com/mmdfgg/2023/zip/refs/heads/main which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3105734
URL: https://codeload.github.com/mmdfgg/2023/zip/refs/heads/main
URL Status:Offline
Host: codeload.github.com
Date added:2024-08-14 03:28:13 UTC
Last online:2024-08-14 22:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: JAMESWT_MHT
Abuse complaint sent (?): Yes (2024-08-14 04:05:10 UTC to noc{at}github[dot]com)
Takedown time:6 days, 9 hours, 52 minutes Bad (down since 2024-08-20 13:22:03 UTC)
Tags:RemcosRAT link zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2024-08-162023-main.zipzip 56a5d45b78aae4e3c9d8af389ae91293ea642cb1c66f299ef17f16202fbb2557n/a 
2024-08-162023-main.zipzip 8d1aa9c76dc90eb17e2f9abc56e0b3c75a7f531026d29c6c550df8ffeb050dcbn/a 
2024-08-152023-main.zipzip b5efcebd408d1dbea62c58c3a08bc73d9d139479db9d66241be8db4ce75cc83fn/a 
2024-08-142023-main.zipzip 87915b655daa897804af5f1261d677178b585a8618bdb791ffef78797d576f32n/a 
2024-08-142023-main.zipzip 1b6f9a6e39df79ee659763a7c58954eebe5771c44b98bdd42a3111b51887c231n/a