URLhaus Database

You are currently viewing the URLhaus database entry for http://162.248.53.119:8000/run-CN.sh which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3584199
URL: http://162.248.53.119:8000/run-CN.sh
URL Status:Offline
Host: 162.248.53.119
Date added:2025-07-16 02:30:35 UTC
Last online:2025-09-22 11:XX:XX UTC
Threat:Malware download Malware download
Reporter: abuse_ch
Abuse complaint sent (?): Yes (2025-07-16 02:39:12 UTC to arin{at}gigas[dot]com,hugo[dot]deandres{at}gigas[dot]com)
Takedown time:2 months, 8 days, 8 hours, 33 minutes Bad (down since 2025-09-22 11:12:24 UTC)
Tags:CoinMiner opendir

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-09-22run-CN.shsh 8fd19ce3f8c05683f7dd2d820a555a60ba84d6b70ef083ca67b0af437786d63cn/aCoinMiner
2025-09-08run-CN.shsh 2313d2be36cfe75bffced9e2221788cc4e21233ee304ecacf9da9e90a3b647c5n/aCoinMiner
2025-09-07run-CN.shsh 5fb604a045443810d279a6955c2e4792a27d93dcce35908620030196fc4e9a79n/aCoinMiner
2025-09-05run-CN.shsh 571841fb078412dc07a0ad7bde0f7455c8d9291ee7b530b93fa5ff2d372492f0n/a
2025-08-31run-CN.shsh bfbf2fb15e14356aba85da20089d290aeed48996f43c1fb715377013bb7a0bebn/aCoinMiner
2025-08-31run-CN.shsh 489a51ddbdd2db8db07e2cefcd70177812e2a03c48641eefd04627162c2376a0n/aCoinMiner
2025-08-30run-CN.shsh fce0c59b26673b3367ace813db43b06ade5e8f592c21fd805c00e3916e13d08en/aCoinMiner
2025-08-24run-CN.shsh 6984add6a21fecc140603d7e8a5f6ce0956123892a2f4b4196306a7f9f22d364Virustotal results 14.52%CoinMiner
2025-08-24run-CN.shsh 788949bced00005c922e666d700a832cef7e30536a711761ae68ff82a7605d6an/aCoinMiner
2025-08-14run-CN.shsh 9608954039df864624c7df090b3733abd2a67680ebef3b74bc4ecf429482f463n/aCoinMiner
2025-08-14run-CN.shsh fedcb8f679bb8791350ea92c5548f21a7bf6a2c835960504d3697c0431ebf914n/aCoinMiner
2025-08-11run-CN.shsh ec41fe791f4a4274442893045af124ebcbf1fbe61147dba8e54439e2f807d81dn/aCoinMiner
2025-08-08run-CN.shsh a927d760f2c71dd6ac8fbd11658b7edfe9315ba370b2abfa699659fba48d8fefn/aCoinMiner
2025-08-07run-CN.shsh 37e90abd9026052c60159298d2726bf783c824a36ac8e9cc80e2a5b98db1bfefVirustotal results 12.90%CoinMiner
2025-08-03run-CN.shsh 3e83e0866bf9d3191febe8560374849ccff901f4071b76543bd431785300c3c6n/aCoinMiner
2025-08-01run-CN.shsh 79990925039b1f007166624e5a032b1da8032bf64f6fe9323155ca2aad31f887n/aCoinMiner
2025-07-31run-CN.shsh a700386695465b21b6eb9a85522f861c2f587226042d0dd42c33bdfdb060a72dVirustotal results 11.29%CoinMiner
2025-07-26run-CN.shsh 7459a2c14c1ca4e00c4e170071d7005a78a2b76ca30f8b57d064b158d3890c8aVirustotal results 32.79%CoinMiner
2025-07-16run-CN.shsh 299e9bbf15e92c4c1f78d487d73b93c97942d504b8138179141f0192177cc262Virustotal results 11.29%CoinMiner