URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host:	kizitox.ga
Domain registrar:	Freenom
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Blocked
Cloudflare :	Blocked
ProtonDNS :	Status unknown
OpenBLD :	Blocked
DNS4EU :	Blocked
Control D HaGeZi :	Not blocked
Firstseen:	2021-04-07 15:57:05 UTC
Total malware sites :	16
Online malware sites :	0 (0%)
Offline Malware sites :	16 (100%)
A record(s) observed :	8

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)	IP address	Hostname	SBL	ASN	Country	Active?
2022-02-23 07:19:37	195.20.48.44		Not listed	AS31624 VFMNL-AS	NL	no
2022-02-21 03:47:31	2.56.57.45	vegagarcia.fruttadelmondo.com	Not listed	AS3758 SINGNET	SG	no
2022-02-10 22:27:43	91.234.32.46	pozvonite.ua	Not listed	AS56485 THEHOST-AS	UA	no
2021-11-07 11:03:02	45.144.225.230		Not listed	AS206286 ONEOF1SERVERS	US	no
2021-10-21 14:24:06	46.30.41.177	vm561534.eurodir.ru	Not listed	AS216139 IRONHOST	NL	no
2021-08-11 02:39:22	45.147.197.110	vm4656116.1nvme.had.wf	Not listed	AS204601 PODAON	NL	no
2021-04-07 15:57:06	93.95.97.67	unspecified.mtw.ru	Not listed	AS48347 MTW-AS	RU	no

Malware URLs

• URLs
• Payloads

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)	URL	Status	Tags	Reporter
2021-11-22 14:25:13	http://kizitox.ga/mpomzx.exe	Offline	32 exe Formbook	zbetcheckin
2021-11-22 14:25:06	http://kizitox.ga/okeyzx.exe	Offline	32 exe Formbook	zbetcheckin
2021-11-22 12:41:04	http://kizitox.ga/mazx.exe	Offline	exe Loki	abuse_ch
2021-11-22 10:39:06	http://kizitox.ga/chriszx.exe	Offline	AgentTesla exe	abuse_ch
2021-11-18 23:32:04	https://kizitox.ga/obinnazx.exe	Offline	32 exe Formbook	zbetcheckin
2021-11-18 19:51:09	http://kizitox.ga/mezxy.exe	Offline	exe Formbook	abuse_ch
2021-11-15 12:32:12	http://kizitox.ga/bluezx.exe	Offline	AgentTesla exe SnakeKeylogger	abuse_ch
2021-11-15 09:57:06	http://kizitox.ga/chikwazx.exe	Offline	32 exe Formbook	zbetcheckin
2021-11-15 08:49:09	http://kizitox.ga/chungzx.exe	Offline	exe rat RemcosRAT	abuse_ch
2021-11-15 08:21:03	http://kizitox.ga/doziezx.exe	Offline	exe Formbook	abuse_ch
2021-11-11 18:48:03	http://kizitox.ga/obinnazx.exe	Offline	32 exe Formbook	zbetcheckin
2021-11-11 18:41:09	http://kizitox.ga/serverzx.exe	Offline	32 exe Formbook	zbetcheckin
2021-11-11 18:41:09	http://kizitox.ga/randyzx.exe	Offline	32 exe Formbook	zbetcheckin
2021-11-11 18:41:06	http://kizitox.ga/ugopoundzx.exe	Offline	32 exe Formbook	zbetcheckin
2021-11-11 16:46:05	http://kizitox.ga/papizx.exe	Offline	exe Formbook	abuse_ch
2021-04-07 15:57:06	http://kizitox.ga/modex/arinzex.scr	Offline	AgentTesla exe	abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)	SHA256 hash	File type	Bazaar	Signature
2021-11-24 00:34:04	3243d9e21c7c6009d1ad3ba5012ffc92b34be1be3828046b2529b7c24bc9d8ba	exe		Loki
2021-11-24 00:27:24	dc722bb796e3a490e59399f5b160f47defb6c9d7ec68bdb5d51beadc234698eb	exe		AgentTesla
2021-11-23 12:38:39	5ec0c7be5a0eb115ac83c1bd09c7dfcb3ce9a340bc615ceb66f0025c0717b868	exe		Loki
2021-11-23 12:11:10	9b67f9dad10824c82b845955f11d5db737afb670aea11cd8717f4487b332874a	exe		Formbook
2021-11-23 11:48:41	530d31a67ed538e78fc4c9a037f09f8fbe5e0a3a20d2c9dfb1911879a4475ff7	exe		AgentTesla
2021-11-23 06:35:44	93f935dc4c2e58ee9dc6b7f323e61930e22bab5d963e07d5078a36ab209412ec	exe		AgentTesla
2021-11-22 15:04:01	f9e8b1a020567e08d42998b5e64a00325905c9818b977307b60df78a018ffd75	exe
2021-11-22 14:34:15	30c4d8cc68cc16af698b521cf9e31a8540f0c5cce8e2d66e874fc62a87dae393	exe		Formbook
2021-11-22 14:29:15	ecc6439ff97e4b77f3af320e4c224f712478610fd28a1b6e6a03573c4b90f405	exe		Formbook
2021-11-22 12:41:04	bf3369be67b56fc50682da8d97caeb1daad4d7fbfd59d7f0df5022409457c9c9	exe		Loki
2021-11-22 10:39:06	cbbecfb69f51c439ae43b433c31a414fd73376a822515340abe74ee7df881543	exe		AgentTesla
2021-11-22 06:18:34	241582074a493ed1b28fa87dcab270e4057eac6fbe0171e14dce9f99c601f2b3	exe		Formbook
2021-11-19 03:12:28	348a4cca3d114bf601910086493b389faf88ac8d00e7a7e04b4e8eb83f6bf9cf	exe		RemcosRAT
2021-11-19 02:43:31	00f38651e028591175cc482289f6ceabfed9592b7176a24d8f00999ebb0bf996	exe		Formbook
2021-11-19 02:40:11	5d407049f81d3b75bf2d9eb7dc14662f533b1ca37d283e5ef50e001a7ac1f758	exe		Formbook
2021-11-18 23:32:04	2f013b6c0a13830f5fb60d799623ce6131f6b37ff9b47b8de35f2daa9631feee	exe		Formbook
2021-11-18 19:51:09	862aab1f62349d70f33bdfbcfba008e6ffbf499c6e79e6f701641f478e5e30b2	exe		Formbook
2021-11-18 10:14:19	2f013b6c0a13830f5fb60d799623ce6131f6b37ff9b47b8de35f2daa9631feee	exe		Formbook
2021-11-17 13:17:41	1355cec23e597ec14de3450c359f5f8ace322482edb1a1098c0fa7b407292187	exe		AgentTesla
2021-11-17 08:29:22	f9eaded7e2a9b80530a8b06cd2e517e23b713386e055f35b40564018cc77b8e7	exe		Formbook
2021-11-15 12:32:11	b61468b10fb2abdcff1ac5447636a345c5da7d687bc0bbd465b203ef7a3249a2	exe		SnakeKeylogger
2021-11-15 09:57:06	b88385613d90ebbd240b11a3847fc2117c0d832fdf7a3c45f1ed68692ed68038	exe		Formbook
2021-11-15 09:25:44	afa8139ef1e6cbc28ac8aa89dbd9fc2d2922724eb5749e1eed1a80c4f9813ea8	exe		Formbook
2021-11-15 08:49:09	ffbc5e54216b20404fd721b3ceab3b8b078dfbba0f42376223c37e34ef4fbf23	exe		RemcosRAT
2021-11-15 08:30:16	2021c1d6e9983c17fea9c773618a95407628b9c7b58071edea71c8525cd17d7e	exe		Formbook
2021-11-15 05:17:16	86df15ac78abc1d224a4249db72d29dcb2979fd0669a15c0d291e47648dc0c1c	exe		Formbook
2021-11-11 18:48:03	cf8ab312ec2e263777fd777cdc2f714c18d259241bfeec9dbe6eb4ac62708f7f	exe		Formbook
2021-11-11 18:41:09	dafe42f172204ac9777c502bf75a2aa9d621c5bba23080815439446f10b74cab	exe		Formbook
2021-11-11 18:41:09	211285d0278cfa608b2f7e0280641bdb07816ddca9fb7b8d70d9f0c8cf7bdb6e	exe		Formbook
2021-11-11 18:41:06	5f5195f363ef21135a5b5298c2a3576bd03125eec094d769b25296eb0a2605b9	exe		Formbook
2021-11-11 16:46:05	63e295bda0cf227062e001b0e3f6f469230901621311763f1dee154ebc9461ae	exe		Formbook
2021-04-09 08:24:05	916d2e1ea3919552b36ef11fcf204a43533f0b980604bb24d1efc585ef000e41	exe		AgentTesla
2021-04-07 15:57:06	9bdd28e639ad1bd0bd8cab6e287279db86d951b1a488786c3435f7a5f39ac383	exe		AgentTesla