URLhaus Database

You are currently viewing the URLhaus database entry for http://kizitox.cf/dozzyzx.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1863440
URL: http://kizitox.cf/dozzyzx.exe
URL Status:Offline
Host: kizitox.cf
Date added:2021-12-07 17:57:09 UTC
Last online:2022-02-23 07:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2022-02-23 06:52:07 UTC to joost[dot]zuurbier{at}verotel[dot]com)
Takedown time:2 months, 17 days, 13 hours, 50 minutes Bad (down since 2022-02-23 07:49:15 UTC)
Tags:32 AgentTesla link exe Formbook link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-02-14n/aexe aec2d23bb87716eaa174b4204cbe45bebd6dfc447a009a73e03604ef49b11e88n/aAgentTesla
2022-01-18n/aexe 252fc688773140390e760e06a2f210bbb8cd89419b0555270e5f1a2c3296032dn/a 
2022-01-14n/aexe 949b1032b6c98badff262ca0c9370dc3acda692a0d8a60cb94af8f1bf8ca5656n/a 
2022-01-13n/aexe c4e0e2fd9fc5399619706e67a776832eeb09461874f035a75a7b8e047fb964a0n/aFormbook
2022-01-13n/aexe e9eaf870b7dc67f068a0e00b8bf7cc5b95bb6f071bbd7d95034268b40ec61649n/aFormbook
2022-01-12n/aexe a1c94b041635b2153e990827648e415b94da3b8f473e98798e5deaa599f2eb62n/aFormbook
2022-01-11n/aexe dfa0138818e4f998337af94d5fea30fc920237ffba320fe5acd7af469db0c4a8n/aFormbook
2022-01-11n/aexe d7fda2a0a022bdfd8f251e8bc6f67accbe5a792becadc5cd554d105ec4779be5n/a 
2022-01-11n/aexe 7fcdc8ce417e6d1372353c5194b0d0b8c9a62b7d325269c2917107e7d57718f7n/a 
2021-12-23n/aexe 9029cb23c3237afc1e63076ffba6a89ed9d4fec8df9606feebe68b2de092fa36n/aFormbook
2021-12-22n/aexe e82083623a3117817390fffc4485800fc38eae8f4ac7d3d602273293d2d1e368n/a 
2021-12-10n/aexe 4b0aaf5604a6ce5862163169095dfd26f4301e47e14c9e133415a924c601e5cen/aFormbook
2021-12-09n/aexe 8e1582ef41bfd2b7b11f0300618807eb95cd40bb63927fc4d178e460d6e244ffn/aFormbook
2021-12-07n/aexe 74a85ed80a3222cb8b97be0909787ba21cb93676db84c2fd33c2a612bd427874Virustotal results 16.67%Formbook