URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: paxz.tk
Domain registrar:Freenom -
Abuse complaint sent?: Yes (2022-01-08 09:32:34 UTC to abuse{at}freenom[dot]com)
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Blocked
Control D HaGeZi :Not blocked
Firstseen:2021-12-08 15:58:08 UTC
Total malware sites :34
Online malware sites :0 (0%)
Offline Malware sites :34 (100%)
A record(s) observed :5

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2021-12-16 22:19:17 2.58.149.41Not listedAS212238 CDNEXT- NLno
2022-02-15 01:19:15 91.223.180.57client.thehost.uaNot listedAS56485 THEHOST-AS- UAno
2021-12-22 02:25:40 104.21.21.41Not listedAS13335 CLOUDFLARENETn/ano
2021-12-22 02:25:41 172.67.196.97Not listedAS13335 CLOUDFLARENETn/ano

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-02-10 10:45:05http://paxz.tk/blessedzx.exeOfflineexe Formbook ext abuse_ch
2022-02-09 12:56:04http://paxz.tk/hussanbinzx.exeOfflineFormbook ext Cryptolaemus1
2022-02-08 01:14:03http://paxz.tk/gracezx.exeOfflineexe njRAT ext rat RemcosRAT ext abuse_ch
2022-01-31 04:43:03http://paxz.tk/mannseczx.exeOfflineexe Formbook ext abuse_ch
2022-01-28 08:55:04http://paxz.tk/sevenzx.exeOfflineAgentTesla ext exe abuse_ch
2022-01-27 13:23:04http://paxz.tk/dashzx.exeOfflineexe Formbook ext abuse_ch
2022-01-26 13:21:05http://paxz.tk/greatnesszx.exeOfflineexe Loki ext abuse_ch
2022-01-25 09:22:33http://paxz.tk/ivoryzx.exeOfflineexe Formbook ext abuse_ch
2022-01-20 03:59:09http://paxz.tk/kellyzx.exeOffline32 exe SnakeKeylogger ext zbetcheckin
2022-01-19 16:06:05http://paxz.tk/exclusivezx.exeOfflineAgentTesla ext exe abuse_ch
2022-01-19 08:40:04http://paxz.tk/peterzx.exeOfflineAgentTesla ext exe abuse_ch
2022-01-13 14:38:04http://paxz.tk/plugmanzx.exeOfflineAgentTesla ext exe NanoCore ext rat abuse_ch
2022-01-13 13:59:04http://paxz.tk/hussanzx.exeOfflineAgentTesla ext exe Formbook ext abuse_ch
2022-01-12 09:11:04http://paxz.tk/simonzx.exeOfflineArkeiStealer ext exe OskiStealer ext abuse_ch
2022-01-10 15:33:04http://paxz.tk/aguerozx.exeOfflineFormbook ext info_sec_ca
2022-01-10 15:28:04http://paxz.tk/emezx.exeOfflineexe Formbook ext abuse_ch
2022-01-07 21:33:03http://paxz.tk/macdonzx.exeOfflineAgentTesla ext Formbook ext James_inthe_box
2022-01-07 16:00:05http://paxz.tk/bukaszx.exeOffline32 exe Formbook ext zbetcheckin
2022-01-07 14:18:09http://paxz.tk/jayzx.exeOfflineexe Formbook ext Loki ext abuse_ch
2021-12-21 14:27:49http://paxz.tk/obizx.exeOfflineArkeiStealer ext Formbook ext OskiStealer ext James_inthe_box
2021-12-20 15:38:04http://paxz.tk/aguerobrozx.exeOfflineexe Formbook ext abuse_ch
2021-12-17 15:54:09http://paxz.tk/kellyseczx.exeOfflineexe Formbook ext abuse_ch
2021-12-17 15:54:09http://paxz.tk/izuzx.exeOfflineexe Formbook ext abuse_ch
2021-12-15 11:33:09http://paxz.tk/abdulzx.exeOfflineAgentTesla ext exe abuse_ch
2021-12-14 12:56:10http://paxz.tk/binzx.exeOffline32 exe Formbook ext zbetcheckin
2021-12-13 22:05:06http://paxz.tk/princezx.exeOffline32 exe Formbook ext zbetcheckin
2021-12-13 19:18:08http://paxz.tk/blackzx.exeOfflineexe Formbook ext opendir abuse_ch
2021-12-13 19:13:10http://paxz.tk/arinzezx.exeOfflineAgentTesla ext exe OskiStealer ext abuse_ch
2021-12-08 18:30:10http://paxz.tk/callyzx.exeOffline32 AgentTesla ext exe zbetcheckin
2021-12-08 18:22:10http://paxz.tk/haitianzx.exeOffline32 AgentTesla ext exe zbetcheckin
2021-12-08 18:22:10http://paxz.tk/famzx.exeOffline32 exe Formbook ext zbetcheckin
2021-12-08 18:08:08http://paxz.tk/mezxy.exeOffline32 AgentTesla ext exe zbetcheckin
2021-12-08 17:23:09http://paxz.tk/ogezx.exeOfflineexe Loki ext abuse_ch
2021-12-08 15:58:09http://paxz.tk/skyzx.exeOfflineexe Formbook ext abuse_ch

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-02-16 16:02:0742d9b223bd595579d838b2a890386ad150b10ede5d57e33bc06f69be41f6b0bfexeNanoCore
2022-02-16 11:45:513b1e9c46793241d99a98c9fbe14cd630d78fc113614ef6c183fec42a3efe8f17exeLoki
2022-02-14 19:01:409a0379b9363f704c49db190841ceb559ebed609d90f795df77ccf3b23765fa5dexeFormbook
2022-02-14 18:17:39ccd2967913b9a793688ec7e95f92b8a6e0d595126d45a4b3cb1ab8482bf8268aexeLoki
2022-02-14 05:03:33f477ff9ff2a431f168d2defd7c9b62ae9f0648488e9977479e407468d5cdce1eexeFormbook
2022-02-14 03:34:408c2c738ee2230ec142259f31fc60cd23ce3bac65dec24427437ec79250fa3653exeFormbook
2022-02-14 01:25:290a4ebd7a3922a03ec0c6db580671714e2318e997af1f6613ede7471d4d81f0abexeFormbook
2022-02-11 05:21:08c7a99feac21b0b8954a435f3ffa5e816dc3ea0342ec0899357cf352732a5fa57exeRemcosRAT
2022-02-10 18:11:482370525c812f4ac7b723e7123838e337a6f834cfc07c15df1cbfee713e78972aexe  
2022-02-10 10:50:25b100e4e89f9793a97ece1f3a91b2ef8c7c060c7e5685f6769651d54b06b986a3exe 
2022-02-10 10:45:05ccf47d9fd0a0ddce06c265b87f0e2377bb58107c18659ac908b7e3a5731ad081exeFormbook
2022-02-10 04:59:08e74f8d865247f9d2a8a4fdb29eafc31e6d67d4db3d80b786f6db6f04d803f7e3exeLoki
2022-02-09 12:56:04ce931ede894759cdd518d9dd8f4a9888b7fa3656bd6fa3bc0b66514b985efb5dexeFormbook
2022-02-09 12:37:03570db7da27af73440554e037bdddf491a0aece4c7b8061b22054a1c2a238ddd4exe AgentTesla
2022-02-09 11:52:24aa2cd3f62284e3b58f1cf0cb9a9b23b5eb4c170e061758b081b5c8a6a559af28exeAgentTesla
2022-02-09 09:20:17e95d991571c59d524166b962ba17843409b3b46447cb3f991ed640687b22e838exeAgentTesla
2022-02-09 03:03:1451f3daecbaaaabc039cbc60dbb3f6ec2e2be67d5987c224fcfc781a3d4de569cexeLoki
2022-02-08 13:16:17b460f5424b6dc0b64a0196aef8c983ad2a0e63c92b2907173b42e215ff97898dexe ArkeiStealer
2022-02-08 11:04:391575198d7ad60f56d2a14359f82de8b6d0a5fc3278c1b6dc55716b17873ab54fexeFormbook
2022-02-08 10:56:036fbf32b25cfdfda1534b9f51dc51fee326db170e01156c858edf7997a9621ad8exe Loki
2022-02-08 10:18:51e87f71b377dfc6ffaf812f82c42b7f16db6d217e77dbfa56278eb97b33398d88exenjrat
2022-02-08 01:14:0335125b1dd360a1a6c3644dee373860f7e3c26660cb7cd8de4718b4ac8e4b4353exenjrat
2022-02-08 00:45:32ff3f7736a06e89ae300270369d83b922423c8a840903b30a8a21365c4b0b0628exeFormbook
2022-02-08 00:30:04d722f74a04f89e8f3af8e4cb5a43aeca14d07eee0e0c8f868040d5eb4baaffd9exe Loki
2022-02-07 13:58:52d5f77ba2b2ad58cfad5ae3111994ad0f889967e6d4f67ecb9cedf1b8f10a6149exeFormbook
2022-02-03 16:06:229210eb8c921ed0764cdbb0be707d4599531a0076b4984ee57d1076c89c966aabexeLoki
2022-02-03 16:05:439eaf0df03b713a2db74c928a0114e4f71ad5d5904abe1be89452925fac951098exe  
2022-02-03 04:35:221622451ec4733914ae0a894e1653514fe73ed87242ea1de35e58f01e15a38f96exe  
2022-02-03 04:32:08cdc7a28f5bfae148bc0317f4bc0614df9744614a79c758d29f4f154f73712063exe Loki
2022-02-03 03:52:380e8333bd57ef2ac051d65249e88b4fbc2e648951e5e417cc807bb9e23edffab1exeFormbook
2022-02-03 03:50:01833932f7e822744af70adb6a8ab9ffe0a742d08c0c56d45d0f3af9bceb57a84eexe ArkeiStealer
2022-02-02 13:19:56f4112faf7476b5132e97e1822ab118742924603900d01370ce0c66dfcbc1e41bexeOskiStealer
2022-02-02 09:48:43114505961db31e8df89e72793bdab23348cfde742a30cfd7171047a61d23af84exeFormbook
2022-02-02 09:42:04433bbd895d20c467d50a6d9909eab21c1698ba1ff876a95abb912dbd7a10a253exe Loki
2022-02-02 09:41:2186e6c9b5cdd4e9a0cf12c45591642f81a540c9f0a28ea70991efdfc5c4e06835exe  
2022-02-02 02:42:06a449b93527f1ab4b9298400a84b645aaeda2c71d5eb82ada8bfe10744779e42fexe  
2022-02-02 01:54:59acc4062193c163a6b87c426b6cd8b6ecbece7b523b0489e35f6b9b7a721c52d4exeLoki
2022-02-02 00:06:237291a9891ab2fca281f4d94cb3221d9796cae49f103a01a20eae392d06db25dfexeFormbook
2022-02-01 23:59:03ece9c52337f954a6036b2cd05085e68fec2f58e91d57c382e38e649562d80bf6exeLoki
2022-02-01 11:24:41117dcca8729805b9ed11e45f46e55a4c1e7700340bfe160a45afc14a97f27e41exe 
2022-02-01 09:47:00ce3c4fb15c6d4b7e2ab54a661876fd5b13a44ceac8b1da89ee67b43012138568exe OskiStealer
2022-02-01 08:08:078da8ab7799160b2a841085ed3d908c91c45eb87a10717f088fb4a72a93a07713exeFormbook
2022-02-01 07:19:4797abde0ddb5b910f8fa45bcc1aec6ffda61ca0556b6c9ee7e175e51f9191db70exeLoki
2022-01-31 20:27:3016dd3dab8ca4c6adf422e7d1d0c8256ce4d97a8c7f1e946021ca7b3e608db1ceexeLoki
2022-01-31 10:36:58da00ad76bb648365108fb03a95cf69a56608e4605cfe02fcaf933af239ce7ac2exeFormbook
2022-01-31 08:03:29b45a38f7012d02b12d3613d25450847d87c14c9b3207380594fc5e1f1b1728d9exeFormbook
2022-01-31 04:43:03d0eabfe28f6b77c25d883ad3e380620f1367082cc58f309e4d24dd1d2c3548c8exeFormbook
2022-01-31 03:07:32127d5e23957003ea84baea35da99f1095e51d4b3f48255251a062237f6af005fexe  
2022-01-28 08:55:04f41b0f5ebb96e168fb57057d1b7ce6e55ae76582c26986d119755b107297bd7aexeAgentTesla
2022-01-28 01:54:138323bfa811d207521f4e833af08813c6a4431f9c28f6d07279b656a6a60e57aeexe Formbook
2022-01-27 18:17:286ddb29ddbdec50f59762b9243d0f90a445c028bd5be7f50ef73568327726267eexe  
2022-01-27 13:23:040be852dc052384c403f96e94c0f681c8d4b2429dbb413f9abe896e39f5cb7285exeFormbook
2022-01-27 11:29:05da802ea908cc5dc0d777563ceb63c57eb2faefc5332c608c9619f0443d42911eexe OskiStealer
2022-01-27 04:11:49d1eddd348ee11e3da00c9f45fa1fb94e3b174c8abe780a7d764bd22f62980e8eexeLoki
2022-01-27 01:36:441ca6db75e32e4d85e0bf7d08c265bb2f562367844933200e91dfef8e73c3f78aexeLoki
2022-01-27 00:42:2503498e3d211b7302e66399ab0fd5996d051c77396f3dd30f7cf685a9b9bce518exe  
2022-01-26 13:21:05b0a6a533dd211b81330d35ed8b6802dba4a1ef4459c88ebd6ab896fa1e3f4b9aexeLoki
2022-01-26 10:15:19531a77c7c5cbcc69c60240cdf4a15690bf0275460fc58fb821090e162bcdc3feexe OskiStealer
2022-01-26 09:44:37c6e101b1f3ef37505f4cae99303735cdbc09b0ef4f33f1d3f27742722e8276b4exeFormbook
2022-01-26 02:08:062d1a5324bf948e1f5accd1ed72ce060f1c61326235383e31518eea11b2a8df21exe AgentTesla
2022-01-25 09:52:077b71276fecaec56cfd980d8dc4d17f73792567de14fd0554e80d0fb868c02b28exeFormBook
2022-01-25 02:47:1208fe866e85b6ecd9e1176df7b9c5053ed7e954695df5b3e05bba8ddd6ce59365exe  
2022-01-24 11:02:3797541ac8c52aa0d9b24dc374b62445716ab7dbc795d90b6d4372f104b0a3df2aexe  
2022-01-24 10:21:25f515a9d2910da428d7803afc2244476a5b185f30361482cc1dd49670513281a5exeNanoCore
2022-01-21 19:57:11bf355b1a895bb65ab02c1b446ccb192b6d44dc337dd6bdfca97fdb0c2751f28cexeAgentTesla
2022-01-21 19:53:207e8c03c14af669186fa20036d5360860d85130ef6bd375d75add1833c0c758cdexe ArkeiStealer
2022-01-21 12:03:16e0704a694e935943ebadf05fac8e531cef005acab38b99a2e53ac0a101793553exeAgentTesla
2022-01-21 06:47:14e2d736aa3991b4b9d09ec99401ea45bea6cc317f3470e2a71105f1aac46d1ff8exeOskiStealer
2022-01-20 18:29:43cc22442c518bfe15defd69b56f6d856ff83d29c4ef9d28b22d90db5b68d9b675exe NanoCore
2022-01-20 17:40:343464aeb37533874adbaa551d7850473649eab0394170c824091ab4978df0294eexeAgentTesla
2022-01-20 11:37:158621834afe5c047bf4da6854172f7174f26047a37c21b6944c70307ff3eca3a7exe OskiStealer
2022-01-20 10:04:3940a96f12e9f876806c1f6e1debdcb4acaad09d65a29b302ab803978457af4118exeAgentTesla
2022-01-20 03:59:098d18af0f1e3f5f105b58caa5bc4954f6512ceae4218ce0bc9ab2e143fa5bbaadexeSnakeKeylogger
2022-01-20 03:24:20bb61009ea4375108c7cc8b8f8fcd1a413147a702605585fea63f43d9660fd271exeAgentTesla
2022-01-19 16:23:5430da60070f82a47f429374f3fe700e0c8c7a25cd4fbceb747e31abc6b07fb074exeNanoCore
2022-01-19 16:06:056aff239dea583fdf25d73f636e28a43e82ec19cc9d9f1b9a4155706d3498fb01exeAgentTesla
2022-01-19 08:40:04c1e2fcd95a1213c5bf83f17c5db22b71482c6a5e5baf2d12ba58cc4a36adf7f9exeAgentTesla
2022-01-19 08:20:1203ae2e28f851ce778699941a9a7d27256638047e40aecef71fba90292c622e5bexeNanoCore
2022-01-19 04:16:24e9843d569f5bdca339208ffb80c5c0c9a92f20c85828d03b5cdfc9c37bbd598eexeFormbook
2022-01-18 12:32:1522633ca2e23a6d2353a4a2a4f87b02548fc9c9e92b4e482df9bae8e93c17b793exeFormbook
2022-01-18 11:24:42b51bc604e8aad900cf995f28919bf4096ebec2d30a7f8210eed5f476860b9535exeAgentTesla
2022-01-18 09:01:551c0e03f910a70b5614f9b9b75ff74414a6bfd6f10d4f9bbd9dec78024f4da7bbexeFormbook
2022-01-17 14:16:1703c7d0b8c8367c4e83f98b05895aba07b794910b68e83a702bf5ae5bb3e7e16dexe OskiStealer
2022-01-17 13:51:1634ad1d8b703e3ab080304ab418bc94cdae0fea1c047ecd3f9e8864b039f7bc7aexe NanoCore
2022-01-17 10:13:06b1f400f40f32c2ee571dce263d97e7b81e08aff440cf3496105d6e4dbd849206exe NanoCore
2022-01-17 08:29:16f7a423c9fd6cf87566b34d2dab352a81821ba3737864cc1abec2593429965300exeOskiStealer
2022-01-17 06:23:039e54c12e7b23d9988514b9aae1e3593b0a08814357860ff270f42014914b0a1eexeFormbook
2022-01-17 05:59:492eae49fab9e056bf850971a4d931a48e52ac1f504f678b20c72d1a65720d796aexeNanoCore
2022-01-14 21:55:50f1f7a42018ffd700c3b6a90efbcf67c5cb7130cbb3eaea0989adfd865ddaf785exeFormbook
2022-01-14 15:46:500684e1cc2787745123b0d2454c847a318cb3753f95257648678b336e9ba17d1dexe OskiStealer
2022-01-14 15:36:1406c80f87ccf8d9b080ac9d8145f111738774ea48fcbc2b4d02ce25aa39dfe938exe AgentTesla
2022-01-14 15:20:03998746d0f5d0c13df720f0bf3981d652c828ea64d64d2e16736a80123fb534aaexeNanoCore
2022-01-14 09:48:06945cc074b259187bf0d90e4bc1c29a5ba7983a293eda5569267c7d83af7cb555exe Formbook
2022-01-14 09:22:08fefbd146f307631bbf60d9d0e0260f9240afbb5d2a22b9dfd4d5623f16c9dd58exe OskiStealer
2022-01-14 09:13:372cc19a1277ca2a6507fee58c641a74ce8c08285f033ca4771e7825f025274572exe  
2022-01-14 08:52:474ca428445ec6769033f239884895359a1bc523e673b34358adb8bb326799741dexe AgentTesla
2022-01-13 19:57:41734acbd591b35c3ab42e36ed5b97712ff3d1935a756d9158dbb1fcbaf8b5c1d6exeAgentTesla
2022-01-13 14:38:041fd93f45ddbe62337f2b72e31e6a82880bc0581430abeaebda88ac1f58272210exeNanoCore
2022-01-13 13:59:048f28ae124f2cec646121282ad88482092234cfb012912095bbcd5569d2f55565exeAgentTesla
2022-01-13 09:52:2562bc8624b6ed645ddbe1420ca67376863c88e58e347fc8282001a2b9e3330918exeFormbook