URLhaus Database

You are currently viewing the URLhaus database entry for http://208.67.105.179/chungzx.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2272201
URL: http://208.67.105.179/chungzx.exe
URL Status:Offline
Host: 208.67.105.179
Date added:2022-08-13 01:53:04 UTC
Last online:2023-05-17 12:XX:XX UTC
Threat:Malware download Malware download
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2022-08-13 01:54:05 UTC to abuse{at}serverion[dot]com)
Takedown time:9 months, 7 days, 11 hours, 3 minutes Bad (down since 2023-05-17 12:57:27 UTC)
Tags:32 AgentTesla link exe NetWire link RemcosRAT link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-03-12n/aexe 35e1a124178c0809f6db117d15e133965b0840ba4adb7f7a30bacc21204c191fn/aRemcosRAT
2023-03-10n/aexe b938ff358f891462489b2dc54b8d4cb2486eeebae2fa2dcd5a2e5c0de679b426n/aRemcosRAT
2023-03-09n/aexe fa46624d2dd01d99a0a1801e67a9e7688d477c1b8e12ca8b50c271a8f226271bn/aRemcosRAT
2023-03-08n/aexe 98d85feb709353dfcef5c9a2074200a7adc8a3cd325ae55b697c1774610ae84cn/a RemcosRAT
2023-03-03n/aexe 9367f2fed062c994290b2eff35d3560ead41338e9879d15ec49df4c7e8acd358n/aRemcosRAT
2023-03-01n/aexe 96d0368486de7d7dff9a894fde1ecc2138fe2cd4835b52d5e03a890d174f29fen/aRemcosRAT
2023-03-01n/aexe b66c50211263d233738e04d25bc0d59bdcdb522d2178bf94d95094df6d329aecn/aRemcosRAT
2023-02-21n/aexe e9b94cae938b5549cc9645b0e15337bc0ff894b9413305351937cf7831347d85n/aNetWire
2023-02-21n/aexe 6bd3a312c22fe9fa71fb2ace3f5ec6e8cdfc06a22a0d31f6bcb5896c083cc3acn/a NetWire
2023-02-11n/aexe e9b9ee1dc81aa5f6446ae52d861ae97fd211a3ccf58746e7154ce384457d3460Virustotal results 40.00%RemcosRAT
2022-12-01n/aexe f78c1d9582dfebb90c4fc5455d3d12817506ab177c5716bf6d69aadb0ad5f3fan/a 
2022-12-01n/aexe 5107b9fda1ce6e7c51fb52d7928c49a82731ff4fc3c75d700737ce3c2f274044n/aRemcosRAT
2022-12-01n/aexe 19fcec317d04580ec04fbfbd2adf0f956b2234257f019687cd760ea1845df05cn/a 
2022-11-30n/aexe 3ef58306ccf63fcbcff04e8f9a27152d3f7c3460e54c88fb09ee0ff8e1649d6cn/a 
2022-11-30n/aexe e4329b591798ee38b653024b171393393381df6881aa561bf70f0f2255c533f6n/a 
2022-11-25n/aexe 77aa0c3a0d0fe9352e0f281b1733c45fdc2ee8a40569755b293a824b14d74679n/a 
2022-11-25n/aexe 05e1c9b65c5c34d39abe5682f747ef5debcc931d768f0023644a39233a553405n/aRemcosRAT
2022-11-24n/aexe 4cbf921ca59d8725280de0d34864dc44eb98fadde5ea010683a8f8820eb3b803n/aRemcosRAT
2022-11-24n/aexe c09cb187ead292e38f9552449115d0e8ad5211f65cd6cc2ad2a2e8249d7481ecn/aRemcosRAT
2022-11-22n/aexe 2ce3863a4e824f825a7760ca9283a58c8b9483a5501e5b7a0578729736da7859n/a 
2022-10-28n/aexe d92ad864a7ceb69d94b5247c94dc7cec67a58ff72347738d695820f9b841e379n/a RemcosRAT
2022-10-26n/aexe 0f4d1dbae1cbb430bd201e362d7325a9a462de60d0fa04de4c3ef871de11248dn/aRemcosRAT
2022-10-26n/aexe 04ee5a42e652f250c4d6f5d1bed8e94db6662bece84bdad11c329a1e7d272150Virustotal results 20.63%RemcosRAT
2022-10-12n/aexe 380f94047b6ed93465883445faf556d4311517781011c79dc8ca2ca9517c07feVirustotal results 19.44% RemcosRAT
2022-10-07n/aexe 69399fa2e34a4a8c847aae9ef9722a1b3d525ebc88f8b24adf1e74666a1a9c52Virustotal results 19.44% 
2022-10-07n/aexe c851981e77db2c4cf2da93479d3b7ae48aac6ac5caa8a8e2172371da0bb67f76Virustotal results 18.57% 
2022-10-05n/aexe e193b843eaa1d3a72f26d790c516aa3c660d8f5160e72bb2ac2bc9967b4fb66cn/a 
2022-10-01n/aexe 2435aff7e691f28e5b1e98780fde77e2d690f088f0205f69a648c7eaa55ef076Virustotal results 27.14%RemcosRAT
2022-09-30n/aexe 6a327504361bd864a42e057da4bd562e38ae30f79ac3daabcb0082bd2b7e9b4fn/aRemcosRAT
2022-09-30n/aexe b81b2885828a95d83e21c5e30ada433fc502c76e469229136a588dc21f047ec8n/aRemcosRAT
2022-09-30n/aexe 7a9352ba24243856da8746b410cc2f900c837cae45c1a1f8bb05f6f1c39ba27cn/a RemcosRAT
2022-09-30n/aexe 59039905536ca8187e52bf5af1513f6ab2e9d81d6a4cbd79cacbbf66df8b8ec4n/a 
2022-09-29n/aexe 9615c285ffeae5e0055d71b13135f27d10d91650e6b49ffca54f97d914989e45n/a 
2022-09-28n/aexe a1dce7b6f0b2686aafd85187d7ebc65c9ec0e5fd10dfbe15abc48c56772bf33cn/a 
2022-09-28n/aexe 62a8ee1bda16883462f445cb228e8fbd223168f2b0cc47a9d3717afbc792d99bn/a 
2022-09-27n/aexe 75ea9d23e1302ecbb9213c5ae4bb44e53ffb1ec4694179901816426fc4ee005eVirustotal results 19.72% 
2022-09-26n/aexe 1a525f7775e612b39332008f765c54ef2f8da7c80a430052f265ae6be7ed2f4fn/a 
2022-08-29n/aexe 44ce30b3b4431308b5f14e2a6647841aa2a5e862793081836e2f7c7c2da3029cn/aRemcosRAT
2022-08-29n/aexe 6d1b76c5a89464cf3bcd16c51cfe9954befef272caf1e8ee0a64fc6b05ebe5a7n/a 
2022-08-28n/aexe e5b2da4a101c081677ea35e77dc80317ec72241652d049571571c9631e3e0c77n/a 
2022-08-26n/aexe ebb443f00afcb7b69099209821b747076d16ec48c76c13100c9e15da7ed2bedan/aRemcosRAT
2022-08-25n/aexe 43ecf48abd7270d67f21bc933f9e9f7b830727a72b3287882767da9efa1758c8n/aRemcosRAT
2022-08-24n/aexe a8ea6d7396aee16dfaa77560df46c54e21d723d5e8af2849a7fa52499c31573cn/aRemcosRAT
2022-08-19n/aexe 5de99c3cadaa3ee03ed2567b71df77ef8b8f50323961fa3225f1db07ccff808dVirustotal results 42.25% 
2022-08-18n/aexe cd4a8ac403fa5890139b9471739220d3e68773bc6c87c77d424f35f11a58c05cn/aRemcosRAT
2022-08-16n/aexe 29b28c8e73e44bd462316e235b705abf2ed633b53950c6f218e6425296406f26n/a 
2022-08-16n/aexe 648d77e7efbfcd98e8d57ee04350e6641269edb55b153c42b5a6c0b87945aa8an/a 
2022-08-15n/aexe a6b4c1b3989ff2831e4c4ca222fd3929d2e8b74d27f05e1b8dbb046e5e9be627n/aAgentTesla
2022-08-13n/aexe f12cd845990a4de0a6db8347d19f94046fd64a49971396c799ee98661e79d1f9Virustotal results 40.85%AgentTesla