URLhaus Database

You are currently viewing the URLhaus database entry for http://208.67.105.179/blessedzx.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2295669
URL:	http://208.67.105.179/blessedzx.exe
URL Status:	Offline
Host:	208.67.105.179
Date added:	2022-09-07 01:23:05 UTC
Last online:	2023-05-17 11:XX:XX UTC
Threat:	Malware download
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2022-09-07 07:15:48 UTC to abuse{at}serverion[dot]com)
Takedown time:	8 months, 12 days, 4 hours, 30 minutes (down since 2023-05-17 11:46:35 UTC)
Tags:	32 AgentTesla exe ModiLoader NanoCore RemcosRAT

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-05-15	n/a	exe	e3f772c33f4e5952454a42de907932b2118472d4fb3268de6797b8338deb9a6b	26.76%	RemcosRAT
2023-05-15	n/a	exe	f07ddc7c081b1106a27590e5497bec74f0d48f18b8c49d17ea57fa3d7d0704d8	n/a	RemcosRAT
2023-05-12	n/a	exe	daca9499daa18dd4cd48b4fe3e7c9bee4dc895e27aff4af537ec33c2171b1fa0	n/a	NanoCore
2023-05-11	n/a	exe	a31358e9f59219cfa5f1acbc680eab9f56aa3fd9975fc73537768d9f43fb6abc	n/a	NanoCore
2023-05-10	n/a	exe	e16ceeac2ceac9ac8f837dcc8f0800a553d48232d28dba5e0019c50a4402e069	n/a	NanoCore
2023-05-10	n/a	exe	8d853712bed7706917f7bde15a26e0bba9ccc986e8497b2b8d67ef805b1e9b1c	n/a
2023-04-25	n/a	exe	ffa8ffdbd6932353f7c861f8d4568edb016ca1b7a3641bee86c30343a97527c7	n/a
2023-04-14	n/a	exe	23b3b5a24a51826ddb55a28333f4bfb9455f891f946e7d71a8d1eb3bab1f02f2	n/a	RemcosRAT
2023-04-14	n/a	exe	3d35655b8a265b213dba9d23a9542e024895cba4c18dbfb782cb844125c23654	n/a	RemcosRAT
2023-04-13	n/a	exe	e8264567d09fb6c851a1418adf0d45bea1f13a9f58298dba8342c166a4e14ace	n/a	RemcosRAT
2023-04-13	n/a	exe	7fa57b50346bf2b1841672d127b800eca2612ce891881587c4976f1ce1ae918c	n/a	RemcosRAT
2023-04-11	n/a	exe	73e786d5242a65d25c8ec6f8b76bc4745b200df7cc5a393529219220df8eb126	n/a	ModiLoader
2023-04-10	n/a	exe	135950b42dd73dbe351f5c677d8485c1bf4f0a0dafae8565301a069fad1db1da	n/a	ModiLoader
2023-03-16	n/a	exe	ed4750473cade168acd7fb6a70c66fac7b919266d17a6b78d99c693a2a2c758c	n/a	RemcosRAT
2022-11-08	n/a	exe	5a54fa09de31e6baf14516cbd5cf84735475d974cd88e798f45555bad4f78abb	n/a	NanoCore
2022-11-08	n/a	exe	bd9ff6b7dc8c369548395c762fe80c6fef248593a7b111a8305698d40a659c42	21.13%	NanoCore
2022-11-07	n/a	exe	f5417e47651d0dd6d5e1a15bd0e0e9395e5b468cf90c1ffab7c1ae6593eb78d4	n/a	NanoCore
2022-11-04	n/a	exe	a2aa73364f0a9d2acab679db4043eb7594f3845743ad7223a9d116512fbb04e2	21.13%	NanoCore
2022-11-03	n/a	exe	61b1cc2934d4a811075aa2ea856ea2ba436eb80dd749329bf3cfc7263466bbb8	n/a	NanoCore
2022-10-13	n/a	exe	2bcd2cd9b7ba2e16ee457931ea8cb0b188655aacd4d7516fc5589009b7199a01	38.03%	NanoCore
2022-10-10	n/a	exe	97593e02a62094f9d92ab699ebb286bfb8acdae17a90b746b57c1a1c6d953eef	n/a	NanoCore
2022-10-10	n/a	exe	29a17c1a2d542fef834a04a77982e8931f9c06a704ff84840e544e25c3fb1f48	33.33%	NanoCore
2022-10-10	n/a	exe	1c15539131a4b7a2864bf1cc5744ea213fce23e8b643d2cd00f0a242f4e775b2	n/a	AgentTesla
2022-10-10	n/a	exe	23a20b7b60c8876fa0850c98966de3cf05a18047c7fd5757aa862f0fcdcf05a9	n/a	AgentTesla
2022-10-07	n/a	exe	df55c97ad5964486c9bfd99b7c977c96e3a6a44e3c9f8fcc12c481d4f779d06b	n/a	AgentTesla
2022-10-07	n/a	exe	68ad2b2950787514a1fa666a5d004e6897766eae24883998ebcbe352d0c881c8	19.44%	AgentTesla
2022-10-06	n/a	exe	a5bffc285a32daea71f374e2e2179bbc13ac3713146762dd90cea11062dc9115	n/a	AgentTesla
2022-10-01	n/a	exe	d6399f09ce6de3c04d085c2d65bbd5bd3995aaa60d050229272b1650e19a2e86	n/a	AgentTesla
2022-09-30	n/a	exe	ac76f7c2a4bdf1384741cf285a0320cb0534d8c6b71bfccc3934d85496a4057f	n/a	AgentTesla
2022-09-30	n/a	exe	6a45965e8432c999b09077ed80bea92d88221b1acdc4438cef1fced193e9e775	n/a	AgentTesla
2022-09-30	n/a	exe	8e13d2811b868a517d94bfe74134e172fa719c752510802cbb26a60131b7a9f3	n/a	AgentTesla
2022-09-28	n/a	exe	a4dda6917b83bd651bdd9eda36b60d2bb2ab675c2f34d0847bbd1a83fbde0924	n/a	AgentTesla
2022-09-28	n/a	exe	601af4db4c13ff077270e2af8034c6d635f31364639685f10866e092ce24218c	n/a	AgentTesla
2022-09-27	n/a	exe	c6c7dd26afaa4712d2a40d72999dedb99415a389cc3dd856df47509e7bb7d07a	n/a	AgentTesla
2022-09-27	n/a	exe	1929ef2da8167b9e01aa552eda0419209e13c7e6825beb8a37214d2c1d43fee2	n/a	AgentTesla
2022-09-26	n/a	exe	bfb39a9599b3a4a5f2ae3ef4c0c26dc8c708600bebdebe47f3a8fc9fa5ee1e08	n/a	AgentTesla
2022-09-23	n/a	exe	38403140be153292b9fa08bcd87dae41e0f9e26327aaac95a05fea54decc291b	n/a	NanoCore
2022-09-22	n/a	exe	3a542858ddb263f3b60a1c7340d508e7f392443e9ee8521d0c9e4a8289173fdf	n/a	NanoCore
2022-09-20	n/a	exe	4a006f30188cebe843f8f979bbb0bd3c1808bb8bc46f9e2dbbec566d1e0e9e6b	n/a	NanoCore
2022-09-19	n/a	exe	87129abfc88787d86562d13e016a1a4662ad0c74a649be8f7722800cef23f36d	n/a	NanoCore
2022-09-19	n/a	exe	beb4456979d76348d5c834ef1cbdea0b090ec1cc9631e25a23e3029c15ad210e	n/a	NanoCore
2022-09-17	n/a	exe	39d67baa88d3e5110980270026165e55328a8c1c85955564cb2da726362c8dd6	n/a	NanoCore
2022-09-15	n/a	exe	f4bc1181812158592e420dbf3caa11923497746cb7475362c1200bf630b0b8f5	n/a	NanoCore
2022-09-15	n/a	exe	9d3a05900380c309b1b213edcfb1ab1bab9c4eedcc23d99a409d164e4a149b63	n/a	NanoCore
2022-09-15	n/a	exe	512e87f766b334c65256dd2f5d63dcf6a017b5e661fface388f435503f7a8d44	n/a	NanoCore
2022-09-14	n/a	exe	a2cb3f696e6b50bf6e6b1a53b27b5012425c86b63b5749b7819edd88e320cbee	n/a	NanoCore
2022-09-14	n/a	exe	45ffca5fa2df14d480328828b2a089c835841c83dc4904150f21a0d5cefce6ef	n/a	NanoCore
2022-09-07	n/a	exe	8cef594c035144fe483a5c2769c9dcd0fcc86b50195480008d117070a7f919eb	59.15%	AgentTesla