URLhaus Database

Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).

Database Entry

Host: zopxor.com
Domain registrar:Webnic -
Domain registration date:2022-08-05 13:31:44 UTC
Abuse complaint sent to registrar: Yes (2022-08-09 10:41:02 UTC to compliance_abuse{at}webnic[dot]cc)
Domain registry:VeriSign Global Registry Services -
Abuse complaint sent to registry: Yes (2022-08-09 10:41:03 UTC to info{at}verisign-grs[dot]com)
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Status unknown
AdGuard :Not blocked
Cloudflare :Not blocked
ProtonDNS :Status unknown
OpenBLD :Not blocked
DNS4EU :Not blocked
Control D HaGeZi :Not blocked
Firstseen:2022-08-09 10:35:04 UTC
Total malware sites :4
Online malware sites :0 (0%)
Offline Malware sites :4 (100%)
A record(s) observed :2

IP addresses

The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.

Firstseen (UTC)IP addressHostnameSBLASNCountryActive?
2022-08-09 10:35:07 176.100.42.182Not listedAS211663 GALEON-AS- RUno

Malware URLs

The table below shows all malware URLs that are associated with this particular host.

Dateadded (UTC)URLStatusTagsReporter
2022-08-09 10:35:08https://zopxor.comOfflineagenziaentrate agenziariscossione geo geofenced Gozi ext ITA SVCReady JAMESWT_MHT
2022-08-09 10:35:08https://zopxor.com/Offlineagenziaentrate agenziariscossione geo geofenced Gozi ext ITA SVCReady JAMESWT_MHT
2022-08-09 10:35:07http://zopxor.com/Offlineagenziaentrate agenziariscossione geo geofenced Gozi ext ITA SVCReady JAMESWT_MHT
2022-08-09 10:35:07http://zopxor.comOfflineagenziaentrate agenziariscossione geo geofenced Gozi ext ITA SVCReady JAMESWT_MHT

The table below shows recent payloads delivery by this host.

Firstseen (UTC)SHA256 hashFile typeBazaarSignature
2022-08-11 05:45:5403ff07649176bc724f5ec93c4ec4a0eb6eb5857aefa4b23040c4f1a1ff974097dll Gozi
2022-08-11 05:21:2692afccb1071aad0cf08b9116daa54d93a1e1767e09fd3c8192e577313b997b08dll Gozi
2022-08-11 04:59:53e1029789f70054736738b7861f9e5e7305aca6abb3c752fcc3a2bb361fc1e4f6dll Gozi
2022-08-11 04:32:5768ea106b3ff0d710ee9af1271bb8af0636100691c1d08f45036f31a9e29ae688dll Gozi
2022-08-11 03:59:45d6b195e927231278a6fb5d68330dd1acf03fa8b39e29d9cc42d4d72d68a41b26dll Gozi
2022-08-11 03:22:15894617f75abd4df5496937b51f04ee6ac4b1e1eb1173f328a0bd90475db31093dll Gozi
2022-08-11 02:45:5813009b7413f580ba54d6a7bd3745babb846965b460917bd0f30722541069a415dll Gozi
2022-08-11 02:02:5997e8e454ad2b38a0065cae9f3eb576a2a928419e4cbc8ec77e4a91e4c1b6c630dll Gozi
2022-08-11 01:26:50fa5347f5f9688d7212a282ab3afd2bccb9e5aaa45f11c1622a6341a795e2affedll Gozi
2022-08-11 00:57:152f47374b921aa4464173976f565aeeaacc679241919bb99e1f59e75a8e1dc9fcdll Gozi
2022-08-11 00:54:178b00beac8a1ba142d1f1dbe910c4d54bf9fee5bcfdeba16b2b1f0ce41bd69fd3dll Gozi
2022-08-10 23:42:20fc12d07f2f615591e2007e545abdf1fbda4840fb48193e0e2f9074af62d1c740dll Gozi
2022-08-10 23:33:07f206c47d6a6ebda166beb8cc219f5d4d1438bba84fbcf40eed7f114d8910e6f8dll Gozi
2022-08-10 22:38:11a0f2bc137ccb342c4ab9419ef092e5839a2de44d6c4f6159bb6b0b6492e38464dll Gozi
2022-08-10 22:16:39492846f8663a3f47c45fa1692245690e131d92bb17fdce30dd69ab5f90edaac1dll Gozi
2022-08-10 21:51:58144cc995c4b44a87f07b2cc8ea775b0ad1abbe231fff7a12c2ecbf3f1562ec9edll Gozi
2022-08-10 20:49:213fb39c01c9209266d939f1188e1ce1e7d01bb96a47189124f742e26e8ac2780ddll Gozi
2022-08-10 20:00:0006b3489d9e852fc700be0d1d80751bf6e1a02a9ee0cd322dea50b5513c21ba31dll Gozi
2022-08-10 19:38:27b6bd7915f6157f14f2ba212fce9d7f92880ac61ffd37e1e82041016a8845fc27dll Gozi
2022-08-10 19:33:24a55062deb88f3042f5a172442ca40be82e1dc0ea9cd32fb07abf4ce19cd0d9bfdll Gozi
2022-08-10 18:38:0296253f5253b7aa3a04c696551e8427a7e6ce2e496259795eb6127d2f858b2ba1dll Gozi
2022-08-10 18:32:348419487b96dbb9619e554388bc6d0a062753a69fbb86d757ac4cd36ea3d4ed91dll Gozi
2022-08-10 17:48:094ce9259d1fc75f4fcc5a8ddcd8325a15951ba2cc274267cea821c2b47d01b59adll Gozi
2022-08-10 17:12:23b42bfa36e6704c17918269538833bf9f00c7da7475e9fbccbed188c074aa9394dll Gozi
2022-08-10 16:20:56a94a279468b6e5c208e312ae524add03a86bc46326ff2e8810c1d1ef6a7b9e4ddll Gozi
2022-08-10 15:47:1117b951a8207e6c3fda940e0255c894f9e60ae719b9a06e5ba46b7b4c17c5690edll Gozi
2022-08-10 15:23:359e39c9bfa9c9702aab2a7c9180a235abdc63f94579f7ce5418b7e031da532aa8dll Gozi
2022-08-10 15:18:367030c3decfb57520394c796e0004aca65f6f4e326b5380596f0c2d680808a7a3dll Gozi
2022-08-10 14:08:571277c4177d2b564b221a369c587c6a99558253234f37bfbf19fef3a63bce88b5dllGozi
2022-08-10 14:00:126337ed7b9b81663c6e8c4bcf2d9c25184f99ef4307999cb9ad3d45a50b70f7e6dll  
2022-08-10 13:32:180fbe67ea1b964bded9e7a8ae90c7459d8dcdc06bf4685ad7a8a2dcc8cf028987dll Gozi
2022-08-10 13:00:01b80e6fbe234673f47a00139bca8aa519a120d0f1035175adde2657bf017c0bfadll Gozi
2022-08-10 12:31:57abf885e22a9796e95f21bdf78039ed97c0377d52eebb4593922151855bfbfa2edll Gozi
2022-08-10 11:52:24b1cbeb219cde6eb238baeaa60c95f43248c0a451b87b141d3f1b837e656ce342dll Gozi
2022-08-10 11:08:4786154db206615855804bada5ecbe8fb1badcfa33c835e484635a8156078c119adll Gozi
2022-08-10 10:48:380d74933c6decb01ac97c815e3cd34c8feb8bfcdcbd235a88cae650cabcc418eddll Gozi
2022-08-10 09:43:58441b676349685e84b50a18c883cffc3cffa661e164fd6d0adbeb95669ff4f378dll Gozi
2022-08-10 08:59:4723060e58f102a8b23010e9ca467d9c6915401df636386127e06e7910034a7aeedll Gozi
2022-08-10 08:16:169f4d8913c0015e7e5275a7a29f9b0ab8eac9fa81e8a56b45ef1320b2a943cbbcdll Gozi
2022-08-10 08:10:563af1eb5b8e36b0e4dcb32e08e51a99d9d8690aff4fbee87d7ad39a609b60a320dll Gozi
2022-08-10 07:50:2913e9a3a71d26b9c2348d609e732d1cee40aac98b5cb2ffa7cb1faa8731bdda8ddll Gozi
2022-08-10 07:09:168f8944f9635b7abd526713432e51abea2ba6115b38e1e65a93b7c4ceac0f7374dll Gozi
2022-08-10 06:48:3516afe4b8adf1aa58cb4f08f1930d796cb9089959f065f0aa1277474b84cfcbb1dll Gozi
2022-08-09 10:35:0664cdc3940ca0769a298854cde01d73973ef217b80527f8dc853060ad9a53076fdll Gozi