URLhaus Database

You are currently viewing the URLhaus database entry for http://nbs.vizzhost.com/drop/84dor which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2124004
URL: http://nbs.vizzhost.com/drop/84dor
URL Status:Offline
Host: nbs.vizzhost.com
Date added:2022-03-31 08:44:10 UTC
Last online:2022-07-13 11:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: abuse_ch
Abuse complaint sent (?): Yes (2022-03-31 08:45:06 UTC to abuse{at}dataport[dot]com)
Takedown time:3 months, 14 days, 2 hours, 41 minutes Bad (down since 2022-07-13 11:26:47 UTC)
Tags:exe RedLineStealer link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-07-12n/aexe ba6d866e6c00ef1ee5755a50af8bcc78bc3e006ae515bae5a569fab603722c16n/a 
2022-07-11n/aexe 751272785131c058f63dccf1cc4d98b3cf0341ac5bec7c56c03459f6d95ee0c9n/a 
2022-07-11n/aexe 7e786baf057949c875861022149838c23d0efbccc598436eafaf480e2e7fd975n/a 
2022-07-11n/aexe afb276c01abbf1f494505c9caaaf288ce0d39a2e5f2c8fb82daadbdd4f481abcn/a 
2022-07-10n/aexe b08ac8c405dd88bb54f0c076677d64056eb1c45c909f7d2668141aca6ae82e60n/a 
2022-07-08n/aexe cf4f62d28daba24e8005c403d038dd2ea26eb250b2c3d5ec9aeb4f17fa1653ben/a 
2022-07-06n/aexe 4820afa886c24460a56899c3612a953669fbf5626a5b3f155eed9303ab462c98n/a 
2022-07-06n/aexe cfd19eee596ab7ca51e63166ae035ed319c32a7a76c0fd218da9f2cc42b4c940n/a 
2022-07-06n/aexe 5a289d0192ffc845f3432c93036eec3de0dc2983ce1af9689899fe971f462e0bn/a 
2022-07-04n/aexe 3d6fc4b4e07ea318c76c45dd872c793c996206222cb6488a935fe29ac7bbe047n/a 
2022-06-28n/aexe 8642154e3a375c2f4fc81921b554af9cae4d300fc8d955eee576a3f2deadf684n/a 
2022-06-26n/aexe 69a01097f271ac0c442efbdae9eaa231b868eb2578b49ddf01a4ffe8f77c8526n/a 
2022-06-25n/aexe d26c83e3a8bb6ef75de6a4c96fbed9a99f630f0bceb93f38c304fef3661ffe78n/a 
2022-06-19n/aexe 81c6d9b2703beb311a82c8773a01d7bbce1213b85e80bb1545b5262cc2602df8n/a 
2022-06-13n/aexe 90bed9411448dbcf7c56cdc8b9caca30e07bc9073417c34d197144fe2014998fn/a 
2022-06-03n/aexe 3951fc08cd6d20fd156da6151585580623df0f3a1895380f0541653e75eb7549n/a 
2022-05-21n/aexe c429feb3a122e6627e96615e5f001959cb25d0e546e2a68337844c2c2ae2c7a7n/a 
2022-05-14n/aexe a1573cc41ccd6c36d705ee3ef90a83ea5713c5a1f8831842e7419e5f5712e717n/a 
2022-05-12n/aexe ae4e7b674d9276e3dd8a943254a5227162817995eafea95ec42bcf3543e2c15fn/a 
2022-05-11n/aexe 9f39d5b3b2bb79c640a19e2f314816bd4d8726fc057fedc38986b6055a0a2458n/a 
2022-05-07n/aexe 8ea119768bd25f1e9b378ad9d373a8f419d0ec21f3ea103bb6054d9a3474272en/a 
2022-05-06n/aexe b346b90e477fd16ed1f0ad7da60e0807ce03de5b703c256599fb892e52310c15n/a 
2022-05-05n/aexe 6059bf753ba394cfe47b94d3e7027ee0bef90f6ec425e722062cd9cf4cfb0576n/a 
2022-05-03n/aexe ce7824747822d6a9a0313a0d7333991ddee58a2bf7f17728c6594bebeae25de2n/a 
2022-04-17n/aexe 6aee321b6d9fa5123e0780f0cb30dfdb36931165febba0756bea7a3dbed9f191n/a 
2022-04-11n/aexe 3df58f95673ea66a822fde408a33da67bd66344ece4839b66ec266d1b489e079n/a RedLineStealer
2022-04-06n/aexe 0200431b94084f2b3509336ae5f27a034c8d93b8281d3a45e010299a051f2e8fn/a RedLineStealer
2022-04-06n/aexe 581af564457a8e6f38e564502b597bb06b975a92dec39ecb2930a6df9c5f90f3n/a RedLineStealer
2022-04-05n/aexe f1c6c0da18442e9580f0db2ab67f9843423b536ee909392cd5d58ece5bc9622an/a RedLineStealer
2022-03-31n/aexe 71dde2fc30c31c903066ada95dd124f8581f6b2d066ed4087bf6e936a9f867edVirustotal results 56.52%RedLineStealer