URLhaus Database

You are currently viewing the URLhaus database entry for http://162.248.53.119:8000/run.sh which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3584173
URL: http://162.248.53.119:8000/run.sh
URL Status:Offline
Host: 162.248.53.119
Date added:2025-07-16 02:29:07 UTC
Last online:2025-09-22 11:XX:XX UTC
Threat:Malware download Malware download
Reporter: abuse_ch
Abuse complaint sent (?): Yes (2025-07-16 02:30:14 UTC to arin{at}gigas[dot]com,hugo[dot]deandres{at}gigas[dot]com)
Takedown time:2 months, 8 days, 8 hours, 57 minutes Bad (down since 2025-09-22 11:27:43 UTC)
Tags:CoinMiner mirai link opendir

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-09-22run.shsh 8fd19ce3f8c05683f7dd2d820a555a60ba84d6b70ef083ca67b0af437786d63cVirustotal results 17.74%CoinMiner
2025-09-08run.shsh 2313d2be36cfe75bffced9e2221788cc4e21233ee304ecacf9da9e90a3b647c5Virustotal results 13.56%CoinMiner
2025-09-07run.shsh 0ed758aeeb5596c9db5be5a67b608960461376cf0209cb60629e2ae7bc282419n/aMirai
2025-09-05run.shsh 9a0ce1fdf45370b23e6e1727a40b5143835a2ca34e05c67b4754eb31c869df52n/aCoinMiner
2025-08-27run.shsh e3b35476ea7d4de4b689a952ab25ed5ad1063149a03c0f342cfba9ad26bd614an/aCoinMiner
2025-08-24run.shsh 6984add6a21fecc140603d7e8a5f6ce0956123892a2f4b4196306a7f9f22d364Virustotal results 14.52%CoinMiner
2025-08-14run.shsh ec10a0d28dee48b814a9c149fc8b8f23016a9d1261ad284c85f2d9bfec3ba4a8n/aCoinMiner
2025-08-14run.shsh 594941bb3cec7dffb94aab169dac65bc8499ed15125401b1bdb5bd741283f137n/aCoinMiner
2025-08-07run.shsh 37e90abd9026052c60159298d2726bf783c824a36ac8e9cc80e2a5b98db1bfefn/aCoinMiner
2025-08-01run.shsh 5f807950046cd3e1bd8d9d5336ee137f075e091fd3029856813fc9f35667d5a2Virustotal results 9.68%CoinMiner
2025-07-31run.shsh ce078e93c7b103796d9b9bd506670c794d02863365241e744d3419924e5e0160n/aCoinMiner
2025-07-16run.shsh 7459a2c14c1ca4e00c4e170071d7005a78a2b76ca30f8b57d064b158d3890c8aVirustotal results 13.11%CoinMiner