URLhaus Database

You are currently viewing the URLhaus database entry for http://gothw.club/jshp1.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	407605
URL:	http://gothw.club/jshp1.exe
URL Status:	Offline
Host:	gothw.club
Date added:	2020-07-04 05:58:06 UTC
Last online:	2020-07-10 10:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	p5yb34m
Abuse complaint sent (?):	Yes (2020-07-10 10:42:02 UTC to abuse{at}server-panel[dot]net)
Takedown time:	13 days, 12 hours, 4 minutes (down since 2020-07-17 17:48:47 UTC)
Tags:	AgentTesla ArkeiStealer exe RedLineStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-07-16	n/a	exe	b6dd373190a7147e7ce0ddfe98148bdbb5683a9bb67ecb6dc6a92b3be001ad22	n/a
2020-07-16	n/a	exe	176fe1d16b96d5727bf2853d103c3acf7a12e137ae69da815d154c1ecfafb0fa	n/a
2020-07-15	n/a	exe	495a5bcf2a48e0674f75772b90ae6701d5f7d776b2fd7347d4f415b1a2e05299	20.83%
2020-07-15	n/a	exe	a85cd89c706de58c539bc3cd8f272afde7a1f6a1c195d6b6d97f3df433c6f905	n/a
2020-07-14	n/a	exe	3430545ed9a82246bbc4f866b67a7028be58df349a705ce2b5df74c72c3b4642	n/a
2020-07-13	n/a	exe	72d5d00a656a83ada587e55d3a3ed0164e57448e723561ffbc6b8445d7f00898	n/a
2020-07-13	n/a	exe	42791a7bbdeeb8f610488d3dc8d2ada81b9fc048fc128ff8c926ee0d9f7a110c	n/a
2020-07-12	n/a	exe	21d7514ffec0e458d2edb4a864c699a6958b44881d53028c3dd94dd8dc5f31a2	n/a
2020-07-12	n/a	exe	7a49dbce30ac04b950128d383b2b6f375f291542755e5100643c55aeb4ea6083	n/a
2020-07-12	n/a	exe	6edfc1121f797eb10daa3059a1d996215218c85db358fe9b54f0cb7b2deac8b9	n/a
2020-07-10	n/a	exe	f208226c60c95ee10f879f0f38ad9bf85a30fa411d6d20893e9ddaea5a0daf20	n/a
2020-07-10	n/a	exe	9b480eba8c66042041b18c29afdef1cd22857a0c24aee0afed8a3fa4ef93b955	22.54%
2020-07-10	n/a	exe	ee5330d0a01cd004994c5798a3c0c09b160b560e6cdb3f2509b9af2431a0a8fd	n/a	RedLineStealer
2020-07-10	n/a	exe	418b130f5c73961c34d1ec03208f0c9393c222beedd2164d6e8de02c9cc43799	n/a
2020-07-09	n/a	exe	a637d8d9ee6ac3ebb068888282dc23e228432dc239ce23e8791516ffd8bdf58c	n/a
2020-07-09	n/a	exe	afdd4c38c1245db142a7de2367c60f7a0b07103b9947adddd85286097ae42aa5	n/a
2020-07-09	n/a	exe	f0831b0ebc963c0d8dfdbcd780a520eab25577db8c5aca7f7076f8ef1a451faf	n/a
2020-07-09	n/a	exe	4a2b9ab0a784e4f1f6b86fb3c9db0a91c74dc9966c6c5cae0ba486c27215c639	n/a	1xxbot
2020-07-09	n/a	exe	ca3822a6d626b64ac7ed5f699c30758a27eebe60a0d72598155558a40a8297f9	n/a
2020-07-09	n/a	exe	4d42dfe7906c2a1c3b72e17b82c040ff7fecb6f317757cf8ecc59c67e7c8d7b1	n/a
2020-07-08	n/a	exe	df54c4cf12eb9ff00568d4936f2c55a3193f6726b1a7f59c78a88a6f06488dbd	n/a
2020-07-08	n/a	exe	ce132385429d155c07133450ef659e09f5fdfde333113a4f1ade379b9962b7fb	39.44%
2020-07-08	n/a	exe	3ee692779441b3a14699edc0f9ad269c58281d5735c570a9468f077739db26dd	n/a	RedLineStealer
2020-07-07	n/a	exe	1ca0fa0599ad3337700cfe55be2f6d0462a7e4301f8ccfdd87167a66754e7e71	n/a
2020-07-07	n/a	exe	83d8450c54c541ddceff68e7949b8709dfd557a79a4134d8434ca97df221de0e	n/a
2020-07-07	n/a	exe	de82af11b87869dfecdeac8a0a204ef51ec2ae52fca6230c6745ff2a09985c3e	n/a
2020-07-07	n/a	exe	de82af11b87869dfecdeac8a0a204ef51ec2ae52fca6230c6745ff2a09985c3e	n/a
2020-07-07	n/a	exe	4770c737ec585b1891363820395a57698b7ff37ee57bb6748ee97eacc337bd1c	n/a
2020-07-07	n/a	exe	dbbc9e640af23658de56eba2f5ec2152de38fa35f11343f0d2216b8b5d7967a8	n/a	RedLineStealer
2020-07-06	n/a	exe	8d377cfc96a5f8e67df1ebcedd7bcb322beba89b0a95c8cfc02b203b08ea3bb8	n/a
2020-07-06	n/a	exe	db76b13a6ba32f1cc5c6e23705957b627ab9ff18286c2138317c2ec4507ff07e	n/a
2020-07-06	n/a	exe	f37537ab1a0c2fd830bf2ea03f299ceccf2d1eb5f8c72be80580a680450da4aa	8.57%	RedLineStealer
2020-07-05	n/a	exe	0b95b126cf983c7a26829e8355d66de10cc1e085a3a981703040269ce43f863a	n/a	AgentTesla
2020-07-05	n/a	exe	658ab92e6f2e0e0b2ca141b3531d33d0e7f3511e35fa54541e954b4d88371afd	n/a
2020-07-05	n/a	exe	24c871a763e208ba82f7ce7df48fea42c962214954181dc72f17c9112cc74c5e	n/a	AgentTesla
2020-07-04	n/a	exe	e363126219327414e0ab73a7b053e3c25bcfd656ff7b3b1f5db6e86076a93986	n/a	AgentTesla
2020-07-04	n/a	exe	05a155b2e1218708d1803e647ce21abb556abb208d16c7861904f5ea938bde03	n/a	AgentTesla
2020-07-04	n/a	exe	033741ca568e4e71a586be960e503415579b0520d2c9ecd298ed03becf406b9c	n/a	ArkeiStealer
2020-07-04	n/a	exe	256966058fb63c734b270b6842820287bb83a5895d0a14a5b66f52db037405fb	n/a	AgentTesla