URLhaus Database

You are currently viewing the URLhaus database entry for http://kizitox.cf/arinzezx.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2021905
URL:	http://kizitox.cf/arinzezx.exe
URL Status:	Offline
Host:	kizitox.cf
Date added:	2022-02-01 18:36:05 UTC
Last online:	2022-02-23 07:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2022-02-23 06:52:07 UTC to joost[dot]zuurbier{at}verotel[dot]com)
Takedown time:	21 days, 13 hours, 1 minutes (down since 2022-02-23 07:43:30 UTC)
Tags:	32 AgentTesla exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2022-02-22	n/a	exe	b82f39f20d1f898ec2843720c8624b8ceeef92fed8ad60e27c13e3fb5b8b2ce0	n/a	AgentTesla
2022-02-21	n/a	exe	0af8735ab46d033f1e1415f018dfb438d8a89882db217c724ca08d6b970bbc71	n/a	AgentTesla
2022-02-21	n/a	exe	746bfddb79f556256b54c2f1a98233a8f70275eac082651b344b0172ec8495dd	n/a	AgentTesla
2022-02-16	n/a	exe	d8718664ac219fe7a9d618bd5daba699ef16692e178930d7847554d3f53339a6	n/a	AgentTesla
2022-02-14	n/a	exe	c7306a5127ceb855a0a1c821756df7c06a8fa143a09217ae03c92acbfb95c1cc	n/a	AgentTesla
2022-02-14	n/a	exe	78f33a426b119c7dd6684b6aacfd22ddf2c9a6ae77a8423d06a947783a3ff7c1	n/a	AgentTesla
2022-02-11	n/a	exe	106ecd49755f648a93574dea5137e176422cf8a95d538e400fdd0dad9a081a4c	n/a	AgentTesla
2022-02-10	n/a	exe	04790a6422fdf4ec650cae6fd06225919959ffa5bdbaace6ddc806d38dade2d2	n/a	AgentTesla
2022-02-10	n/a	exe	a7529794c9ce417bb106aadab6bbbb57c92a51efc640a19b714ee53f7110a1e4	n/a	AgentTesla
2022-02-09	n/a	exe	71ee1aae35cef3229e28dce8b67e84b9306a5898864a252e5794e62dac67f5e6	n/a	AgentTesla
2022-02-08	n/a	exe	6108451bc6172dff2d36a0e89492843db32052d8471be14c286f93913c815144	n/a	AgentTesla
2022-02-01	n/a	exe	15bc6b8e56a29f8e9d4b87890afb6969047ec2cc2ef739a30689987e7435abec	61.19%	AgentTesla