URLhaus Database

You are currently viewing the URLhaus database entry for http://208.67.105.179/mazx.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2298641
URL: http://208.67.105.179/mazx.exe
URL Status:Offline
Host: 208.67.105.179
Date added:2022-09-10 11:38:04 UTC
Last online:2023-05-17 12:XX:XX UTC
Threat:Malware download Malware download
Reporter: zbetcheckin
Abuse complaint sent (?): Yes (2022-09-10 11:39:05 UTC to abuse{at}serverion[dot]com)
Takedown time:8 months, 9 days, 0 hours, 46 minutes Bad (down since 2023-05-17 12:25:44 UTC)
Tags:32 AgentTesla link exe Formbook link RedLineStealer link SnakeKeylogger link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-04-17n/aexe a3225cdecee4f51aef9815859cdbaa70d5ce3b5e97d52518a5e0c5e2ac5deb12n/aFormbook
2023-04-17n/aexe 898d893d7c46d0c70d498f0323b24175c4d49df99b88f57d30aef08cb3e3edcan/aFormbook
2023-04-14n/aexe d744371010d5b494046c105db860eacdacd4b639408c7543407ab426f5bf4808n/aFormbook
2023-04-13n/aexe 49daade32a02cad550a909add48d98aac63ac1cccf729758d7099975ad25ca82n/aFormbook
2023-04-13n/aexe fb3df78e0774f9e4310703be3036e46c752a839bb8e56a8596a7b293ad69eaa3n/a 
2023-04-13n/aexe 911f9e2102c59661c8f9134c737f87c5c28186caeb3e58677a5f1ccca7bc3f73n/a 
2023-04-12n/aexe a5ba7f4454df1d027bf2044b7f30995361c997cb6f14c81fe3e5ddc9edfc7722n/a 
2023-04-11n/aexe c3a43716e23c04e5c2630c2e7f8e6911443fe4faa38e38ee1e5e60a8ecc24869n/aFormbook
2023-04-11n/aexe 2cbcb7754f39785eabe9c6f19f4f71887cc1c0a339cde87663b44d0c7d2b2d6fn/a 
2023-02-17n/aexe adaa96068e4072db205354abc3394d59db0cc04248c7ed3022f95da4efa94438n/a Formbook
2023-02-17n/aexe f8942728742c053d4ea847b57494bc495dbe64d2aad58633fa7334d5538e1860n/a Formbook
2023-02-16n/aexe 5fe93d9730b1f7d667b106fb482894dcdc0aeeac61ab1c1f26227cb46c27c947n/a Formbook
2023-02-15n/aexe 2837354869f992a1eb3d3e77eea48da8c35b4073f5e3a02be5ab6188b250cd52n/aFormbook
2023-02-15n/aexe 4e8729cec052302332f77edcfed6d5c7c8856dd9574afdae822f3c66d918e261n/aFormbook
2023-02-14n/aexe e0a25f64e0f24c31473db83ef9148f710563883ba2fece515f4e3f11e1514988n/aFormbook
2023-02-14n/aexe 4e76c680beb65149bcd635087a716ec03bbeed03d722482a959a3ddaa8671fc4n/aFormbook
2023-02-13n/aexe 12d38622f7319731f4ff01c6cd2cd7a9cf458658f6a7438e1d1d1f2a5c2edfe5n/aFormbook
2023-02-13n/aexe 81eeb17cfcd81f15427dcc3c88390712bfba7d19aa3f3e7e8d9ac43401456eb7n/aFormbook
2023-02-11n/aexe f5b22cd65df3a506c1f4fa2ee680a6bc4d027e8e83f0fe76ede3904eadaeb3den/aFormbook
2023-02-07n/aexe 6aae46140819f63ba6d8021f344c1e45fe751050aa6fa5d47e87711f4beb0e90n/aFormbook
2023-02-07n/aexe 41426da4ffb12d1285c4fe16e9f79ebc28150cd6552b7ce06292143a59caaccan/aFormbook
2023-02-02n/aexe e1556a1dda46c2e872e9a18f21d8cbbf8f71d0dd65094e9ec6cac22a9a1aa915n/aFormbook
2023-02-02n/aexe 82c024f643635b68f740f440beae2bb256d8851d7b88130389855a8bd8b8db18n/aFormbook
2023-02-01n/aexe 4436a15a442d5e5a2839124743cd91974230a8ce3fc55ebaa00ff66b8370493en/aFormbook
2023-02-01n/aexe 76cded40cd51eeb98f734dafed6ac0b0562d847a48b5d42a9b55d11dd73f1d21n/aFormbook
2023-01-31n/aexe a97aa6604d2ad5146a8ef252e571d4b0c1e2ee8566964be8086532ef049b10d4n/aFormbook
2023-01-31n/aexe c56a221640c5c2bdc86b73762659626cee2ecbbbdf2a48489966aedc7c3f4e38n/aFormbook
2022-11-09n/aexe 54933c48dcb2387600abe3a527ebb21ea93927134b38a014afdb2ba44d8c1fffn/aSnakeKeylogger
2022-09-21n/aexe 09432cd10fd7ebd576a0870608766e3a31a9f7ffe5335ab22b044b51162c6fe2n/a Formbook
2022-09-20n/aexe 7b7030b061909cbf066d6a36cbf04a9c97a425a3e2a639d78540e35e08dc8178n/aAgentTesla
2022-09-14n/aexe eee40eae568d6209855e662943eb8c35b8a37ea29f228b7708846506559750afn/aFormbook
2022-09-13n/aexe 030b29f6d570b97810b3291037903b1571cab4b49a1feb79e317596457cb328en/a 
2022-09-13n/aexe fc721a45aa96e7fbf3729572448b5d00dd15cc090763fdf1b6bcefbff6bf453bn/aFormbook
2022-09-13n/aexe d59bd7dda80b1167839c448eb2c2034d50ddfba7b8629360afc74bebf22cf406n/aRedLineStealer
2022-09-12n/aexe e205d7081e47ff8c618acb12db649dc78ae90e4b547d41046459607d8fa9a250n/a 
2022-09-12n/aexe e1dfd00a6920d1224fbe39a8522f2cdb806125572834f900a63a1b25ad515cbdn/aFormbook
2022-09-12n/aexe 78dd1114aae02a42921bbdeff31e6aa762352f5a64609c8858cee6532ad61f2bn/a Formbook
2022-09-10n/aexe 28520250ac9a5fc3eb106075215660125fa6d6bdf7109a16ebf95fb55f5d4152Virustotal results 50.70%RedLineStealer