URLhaus Database

You are currently viewing the URLhaus database entry for http://rz70tom99.band/xap_102b-AZ1/704e.php?l=xorof6.gas which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry




ID:119406
URL: http://rz70tom99.band/xap_102b-AZ1/704e.php?l=xorof6.gas
URL Status:Offline
Host: rz70tom99.band
Date added:2019-02-07 14:32:15 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL :Malware domain link
SURBL :Not listed
Quad9 :Blocked
AdGuard :Blocked link
Reporter:@oppimaniac
Abuse complaint sent (?): Yes (2019-02-07 14:56:02 UTC to noc{at}baxet[dot]ru)
Takedown time:8 hours, 32 minutes Good (down since 2019-02-07 23:28:16 UTC)
Tags:exe geofenced Gozi link ursnif link USA

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2019-02-07xorof6.gasexe 5ac7294bb3bcc7e0c5000a25efa13b1d8d29e86b417e5542e3f824514dd5f7een/aGozi
2019-02-07xorof6.gasexe e1b1e5cc666d4aa6e8a20dd7de6c0babd54a2194aae357edd1562cc5a95021d1n/aGozi
2019-02-07xorof6.gasexe 2f1a6b8297a0d570ca0a5ace077be72362956edb5c55bc5c44b4722495c8012dn/aGozi
2019-02-07xorof6.gasexe 098b05ee36b998781a8dc765768752de7221852c4681c806374b261caef57c47n/aGozi
2019-02-07xorof6.gasexe 2cdfbfec82bf59bd128110bfa35514b8fec7eb1e9a896f6481b54b24ebe5de8fn/aGozi
2019-02-07xorof6.gasexe 8863bcb844c6d64afeb7cf0dac95455f2126f728e48cd16b1a63c188e6a3fe13n/a
2019-02-07xorof6.gasexe 8d4855be359c4ee9a323076cddeca5b9a03fcd13a2ede0f2f38af1d63bf85884n/aGozi
2019-02-07xorof6.gasexe eb24a7302efb00534a8105868077f76e25b2ffee7d365498a0ef79791eb48fe8n/aGozi
2019-02-07xorof6.gasexe 1f65bb8e5be020482ca98e2dc7d3482909704d84cf60b7fd9bc96236927403a1n/aGozi
2019-02-07xorof6.gasexe 4e5becb785f57ef95988f08e53d97291df2aaba3b41b251924c427fcb45cf717n/aGozi
2019-02-07xorof6.gasexe 9fedf1327385ba4f5097469d6c888db0af4ec912cd756300d3d4689225bbb691n/aGozi
2019-02-07xorof6.gasexe b2d741058a0d36e953e8d14f76f2c8649e6ee1e2f28bcce83668e9b78a812b9bn/aGozi
2019-02-07xorof6.gasexe f954f1438cc847dc247d70c6eee05f61f7c177d001de015daa6bbb1bef6cfb4bn/aGozi
2019-02-07xorof6.gasexe d91d2a81119492d4f7e23ddb2a180c6f32e302702862e53a10cd58f477d71293n/aGozi
2019-02-07xorof6.gasexe 6c04cca9a6ea7e2143ee671a3d6808b063c01e3138af1fa34ad72aa16c7f7207n/aGozi
2019-02-07xorof6.gasexe ca79e324ea147bcd1acf34af6205e1c5164f71c5bc1e90ced2fd9cc03de11376n/a
2019-02-07xorof6.gasexe 14c0db2d745a6071d4d3f441909482ce969309379134bed248ee67e740479896n/aGozi
2019-02-07xorof6.gasexe 25cb087896b6bc3d2c3e90bbd1a7152baf3534b7178704f3832b6bf43cc03770n/aGozi
2019-02-07xorof6.gasexe 6a6585c2ce6ed3a275468bc6bde9387e68816de9b4f2e5e8fd2f3ba909f92a78n/aGozi
2019-02-07xorof6.gasexe f55c8b5282569c43cfc842cff90f449687b8e69d0969d963faf858c13da9ee3an/aGozi
2019-02-07xorof6.gasexe 6e124b8dcc3cbedc16fcb28662ebf7ba5481af1b01db414aceccd38bea6d0fd2n/aGozi
2019-02-07xorof6.gasexe 999781628f32f47b99207c92e804e8815eda60c866224e44ca002d6017592c75n/aGozi
2019-02-07xorof6.gasexe a2c47beeceafd5ed88287c4fae362f4efb516e20ec15fd0116dcd95b18939b4dn/aGozi