URLhaus Database

You are currently viewing the URLhaus database entry for http://www.okhan.net/soft/uploadfile/guochang/setup_tvplayer.zip which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:95634
URL: http://www.okhan.net/soft/uploadfile/guochang/setup_tvplayer.zip
URL Status:flame Online (spreading malware for 7 years, 6 months, 20 days, 4 hours, 59 minutes)
Host: www.okhan.net
Date added:2018-12-15 11:52:55 UTC
Threat:Malware download Malware download
URLhaus blocklist:Blocked
Spamhaus DBL :Abused domain (malware)
SURBL :Not blocked
Quad9 :Blocked
AdGuard :Blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Blocked
DNS4EU :Not blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2018-12-15 11:54:01 UTC to abuse{at}chinamobile[dot]com)
Tags:zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-04-29setup_tvplayer.zipzip f77e5add971591799d781a5aa7b01a1a7cdde01ae95e0ae21b44ccb2f7e7a65aVirustotal results 54.69% 
2019-11-30n/ahtml 0877a83ea24cad3a381c0811b704a9a44abfee6a48714e008625222f85e92078Virustotal results 0.00% 
2019-06-24n/azip 0387283724113f20f49978f81c8bd53cc5cc9c3d60f88fa06ad5b3c779b7e058n/a 
2019-06-16n/azip e999088582d002a39e3c8e6b84ef0430efabecfed07b97ceebc16d5fbf304eb3n/a 
2019-04-01n/azip c196d16f43673f981dedd878953791b6dff52dad3e2b52710d6a2aaea6f14134n/a 
2019-01-14n/azip 1fc028583cb8294b49ed7fda10713c97038a977459e54645c1389b1777780982n/a 
2018-12-15n/azip f77e5add971591799d781a5aa7b01a1a7cdde01ae95e0ae21b44ccb2f7e7a65aVirustotal results 39.13%