URLhaus Database

You are currently viewing the URLhaus database entry for http://static.3001.net/upload/20140812/14078161556897.rar which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:94279
URL: http://static.3001.net/upload/20140812/14078161556897.rar
URL Status:flame Online (spreading malware for 7 years, 6 months, 21 days, 23 hours, 25 minutes)
Host: static.3001.net
Date added:2018-12-13 14:45:05 UTC
Threat:Malware download Malware download
URLhaus blocklist:Blocked
Spamhaus DBL :Abused domain (malware)
SURBL :Blocked
Quad9 :Blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Not blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2024-12-20 07:36:45 UTC to zhouhb{at}ofidc[dot]com)
Tags:rar

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2026-01-1114078161556897.rarrar dbaa62799c69ad0d3f8a9c983dabd95d26c4d841ab3bea0c35c1ea4b29850c36n/a 
2025-03-16n/arar 2726752db6c9fd5dae6aec67f2be00982b8d5b3cf2763005ea01046180886c99n/a 
2025-01-25n/arar 09f89dc053124a84ba3a75ff438667f2da5dbe92eaede6b0fd49922f6d3e163dn/a 
2024-08-27rar 7d539985943a088d23b88238bec3803d087a3e2428fc329143fe91f24b4a70ccVirustotal results 77.61% 
2024-03-14n/arar 097d04134e8da91f6fbf1474d39e663d796fb8bdb56d7643e22ce42ec8111005n/a 
2023-11-07n/arar 5d8b133b1c4074546280a9192a2c8d2428c76c51a29bf3cd94553e32fa82bf26n/a 
2018-12-13n/arar 7d539985943a088d23b88238bec3803d087a3e2428fc329143fe91f24b4a70ccVirustotal results 61.40%