URLhaus Database

You are currently viewing the URLhaus database entry for http://111.199.146.42:8085/AV.scr which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3175760
URL:	http://111.199.146.42:8085/AV.scr
URL Status:	Offline
Host:	111.199.146.42
Date added:	2024-09-15 18:55:01 UTC
Last online:	2024-10-04 14:XX:XX UTC
Threat:	Malware download
Reporter:	RacWatchin8872
Abuse complaint sent (?):	Yes (2024-09-15 18:57:33 UTC to zhaoyz3{at}chinaunicom[dot]cn)
Takedown time:	18 days, 19 hours, 52 minutes (down since 2024-10-04 14:50:29 UTC)
Tags:	CoinMiner

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2024-10-01	n/a	exe	df21b17d3d5814fde8eda52bf2670049994e56c88332605f60b5a29d1793ceb4	n/a	CoinMiner
2024-09-28	n/a	exe	5212fad91472552eba355b71e60fa553c9f711c1c3546d06b0f33cf7fe1faac6	n/a	CoinMiner
2024-09-27	n/a	exe	432aeee11a2d4a51c21a11969b4b3420a7fdda730ae5bfd542828d0ff87a7d0b	n/a	CoinMiner
2024-09-26	n/a	exe	5b41ff9b7e15ee95c37114580f536916bd5b6f015c3a871f9aee2a3731e75a84	n/a	CoinMiner
2024-09-26	n/a	exe	3d66fe97d975727fae14b4710d55b805a6581d677b78271c3773b1a2cefc8ab2	n/a	CoinMiner
2024-09-23	n/a	exe	2a2192acf672a44494262b155e25c8dd57c0fa9ac40608652b08f3f9a52db265	n/a	CoinMiner
2024-09-23	n/a	exe	3fde84a46aea58ba4ddb5fb0473fc756ff209ba96b1a63a2759d13b8adc01a69	80.82%	CoinMiner
2024-09-22	n/a	exe	692f4e345c71bcf9465aee8ddf0cf9f670cb836153871fc1b1601e5a67036658	n/a	CoinMiner
2024-09-22	n/a	exe	3d9bad83928ce5340c2d6437ead036a2df6ba9f30a3e3d1ce065805841a7f1c7	n/a	CoinMiner
2024-09-22	n/a	exe	9194b57673209c8534888f61b0cdefa34f463ae50cd78f72ab2b3348220baaf9	82.43%	CoinMiner
2024-09-20	n/a	exe	b77eda0fc4c44a7de680ddf925aef49a80934b9a306024148be29b14e8a1d8bb	n/a	CoinMiner
2024-09-20	n/a	exe	8283b9a5f1c039515e270d558a7aa43b2f184ce38b555efdadce4298680faeac	n/a	CoinMiner
2024-09-18	n/a	exe	40cab85aee3cbff4ffe0d3af9208a0ee8762af795be37fa683ac7a27a6f543c0	n/a
2024-09-18	n/a	exe	5d9fe2735d4399d98e6e6a792b1feb26d6f2d9a5d77944ecacb4b4837e5e5fca	81.94%	CoinMiner
2024-09-18	n/a	exe	6283c76126460834e1e5df2c7f8a136179852b857d9198c8eb827086be4a465e	n/a	CoinMiner
2024-09-16	n/a	exe	894df700acb2473b9eedf3b5ee28df6b7d410ca996367c7af3936f681ece8255	n/a	CoinMiner
2024-09-15	n/a	exe	f40e39cc51c4bc780a2cd7fd9554c163570e66898f09e95333e746ae2c86aef7	n/a	CoinMiner
2024-09-15	n/a	exe	af94ddf7c35b9d9f016a5a4b232b43e071d59c6beb1560ba76df20df7b49ca4c	82.19%	CoinMiner