URLhaus Database

You are currently viewing the URLhaus database entry for https://github.com/KDot227/Somalifuscator/archive/refs/heads/main.zip which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3254228
URL: https://github.com/KDot227/Somalifuscator/archive/refs/heads/main.zip
URL Status:flame Online (spreading malware for 1 year, 7 month, 8 days, 11 hours, 19 minutes)
Host: github.com
Date added:2024-10-26 08:14:11 UTC
Threat:Malware download Malware download
URLhaus blocklist:Blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: abus3reports
Abuse complaint sent (?): Yes (2024-12-20 07:39:01 UTC to noc{at}github[dot]com)
Tags:xworm

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-12-01SomalifuscatorV2-main.zipzip c3b2bf0a9ac207d45ebcad20d7c8a4c3cf26990ef0d49cbf1a4dbe7a9900ba76n/a 
2025-06-10SomalifuscatorV2-main.zipzip 92fe047273a3b1db23dcf8a7f52d8353b98fd8a60ec5dabac43fd2df11aa5e88n/a 
2025-01-19SomalifuscatorV2-main.zipzip 369dce0f29222a6ce2cdb621a04ea20613666c3466952b4b64acd8e37ef27f6cn/a 
2024-12-15SomalifuscatorV2-main.zipzip 509358c16343abde528a741e34f78a76278d4a08d8f815e68a927cda7df6cc15n/a 
2024-11-26SomalifuscatorV2-main.zipzip a63761ecf58e5f70483b0ac17e29183c2fc76ba7eecbdbe995e752f9ffcd61c4n/a 
2024-11-09SomalifuscatorV2-main.zipzip b168daede4e1230df0b706e2c2803a95421ae8446af5133abb417ac3f0a7d3dbn/a 
2024-10-26SomalifuscatorV2-main.zipzip 4ecba89ae039692d9fbd53d9bb421b32d4d33a8d0c4aebbe40664a694fa14c16Virustotal results 13.85%