URLhaus Database

You are currently viewing the URLhaus database entry for http://208.67.105.179/donstanzx.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	2322915
URL:	http://208.67.105.179/donstanzx.exe
URL Status:	Offline
Host:	208.67.105.179
Date added:	2022-09-29 04:00:05 UTC
Last online:	2023-05-17 10:XX:XX UTC
Threat:	Malware download
Reporter:	zbetcheckin
Abuse complaint sent (?):	Yes (2022-09-29 04:01:10 UTC to abuse{at}serverion[dot]com)
Takedown time:	7 months, 20 days, 6 hours, 56 minutes (down since 2023-05-17 10:57:27 UTC)
Tags:	32 AgentTesla exe Loki SnakeKeylogger

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2023-04-04	n/a	exe	f176afb0e949e8898728f53d6621a1d53e5daa49c0794e00a7c7b9b9224a0f2e	n/a	AgentTesla
2023-04-04	n/a	exe	015ac938d581a3af8e1d988e8a2a96fe502153b7cf90ee9e9224c6beb0238443	n/a	AgentTesla
2023-04-03	n/a	exe	b5749a73d0f43c8743d1be1bf19019853f626bc855e4f8815a7de861c59b417e	n/a	AgentTesla
2023-04-03	n/a	exe	fb373eca894b2523afbe1c0bfb7df775820e458d493a1e6df94e5da79ff7e232	n/a	AgentTesla
2023-04-03	n/a	exe	44ef1bf0090143868b6397ac30c5a5f3ea6b83dc8013cb4b57c691ddb5d88b9b	n/a	AgentTesla
2023-03-15	n/a	exe	8e576e578efa64de8ed384743375e6bc3f3a074d508e510893cfe734cbfacef3	n/a
2023-03-15	n/a	exe	52e048c9b6c14a000d4df828b554ff9cdfd6655e5dedd08ff6937631f21c672d	n/a
2023-03-14	n/a	exe	bd13e7e9615470717c0d6549b3531c99c506f73b77e1be50c79fa02cb896b233	n/a
2023-03-14	n/a	exe	0ff1cc98dafc08c873e03dcb7636920dbfaa83dc2dc7db01e4b80a968d194c58	n/a
2023-03-12	n/a	exe	e7870cef93da835cdf985f2b5ca04e113123ee0756b0c5a95fec7d5ad849185d	n/a	AgentTesla
2023-03-10	n/a	exe	cece74aa27a06a575221f1b7ddad46f980cee0a8ff1ae91581977089623259db	n/a
2023-03-10	n/a	exe	905aa3111fa0beb5a8101d32ddbbed0b13ccdde84975553694d01ea4820f58a0	n/a	AgentTesla
2023-03-09	n/a	exe	91a2cf3fd7e3f3d2fadb1cc846fa46996b0fc30da1e2eeac16cf477a6969398d	n/a	AgentTesla
2023-03-09	n/a	exe	0b1e290cad3b50f39cfded9b4c813f3c1dd06819ab0841f0b34e137fcf57d85f	n/a	AgentTesla
2023-03-09	n/a	exe	85609c31587f7752298afe029c049ab5ead5997bfbc6cc31151bf5e90ed41072	n/a	AgentTesla
2023-03-08	n/a	exe	433e7f14b1114b2b401e99fcfcc04cb7bcf5e7fcf402821cea3663124dac5644	n/a	AgentTesla
2023-03-08	n/a	exe	5458e3bb6f919b8dc46d243475fd72f0bb1f30ff2604cabc675bb1c707dbed97	n/a	AgentTesla
2023-03-03	n/a	exe	bc282c69e6f9c69b93651c0d399318577b6f9494c0b851eadb4a5b44bfef1262	n/a	AgentTesla
2023-03-02	n/a	exe	3047d199e9540948a25c577cc9181b77d26708c2539c660706a8fd12fec2db1b	n/a	AgentTesla
2023-03-01	n/a	exe	ff3f3b2ca9862a3effd4e7f4410f4fbb2e7004ae87860aed3a3015e38cd7349e	n/a	SnakeKeylogger
2023-03-01	n/a	exe	8388492bd6a2522d657998b29b8d1e152275eebfb5ddb648ae15e3a1e42b4ecb	n/a	SnakeKeylogger
2023-02-28	n/a	exe	b65c4b6176909f6ff47cb1c7321a4855995bfa97a473c0927aeef0e3b714cd83	n/a	AgentTesla
2023-02-23	n/a	exe	a1f20e7eb5cf78dfec6c0a2103ebff1e9809f2205f5f2098acb1cabed20960bd	n/a	SnakeKeylogger
2023-02-23	n/a	exe	aa140d9925e583d6b52f755beff163adc0f6b04c5cb36647dd666295fb4df704	n/a	AgentTesla
2023-02-22	n/a	exe	8f680961855c46cdb44bc6149bc3f27089f1fff0979bd72b558b8daa335dacc8	n/a	AgentTesla
2023-02-22	n/a	exe	3138dc3cb4f7bda6e0b01d3afd5835e1162f7f017fa329f51784a4e94a027cab	n/a	AgentTesla
2023-02-22	n/a	exe	102fd6ec47edeeb5e28e561c51b9e175a8ecd1de62e8afb73167a16b171a2694	n/a	AgentTesla
2023-02-21	n/a	exe	6b4cd3b97c5e9949ad66d175d6dab6c6105fe4fb4ee9497aa8b6ea374034832f	n/a	AgentTesla
2023-02-17	n/a	exe	03372b5bc8f3150c3698ebb6f356c11ffec8e23961e8d32b0c7ccb4ee5742636	n/a	SnakeKeylogger
2023-02-16	n/a	exe	91610b66796ef670692c7bb27a8cbe16a226bbb78de688dfc66b907a85db9f43	n/a	SnakeKeylogger
2023-02-16	n/a	exe	111fa339c4b6d5e0e08f4f51acfa1fc0a9a2b70f1ba3bedfbda1af5a3d030060	29.58%	SnakeKeylogger
2023-02-15	n/a	exe	b435ddbddc244cca3d3e085176a95ba87705b64952b074093f0a2e0837214179	n/a	SnakeKeylogger
2023-02-15	n/a	exe	6b55f0249f0db4e5fd6732e70f87513cc463545e952e23974cc612b94178922d	n/a	SnakeKeylogger
2023-02-15	n/a	exe	4bae43ed39ce2256e4125bbb217fe624635e1fe4e7a9d662be36d15ec3d0d660	n/a	SnakeKeylogger
2023-02-14	n/a	exe	f4aa9147ef6404e280e038adaa42f11c4cff8492f59d2f823e30304acf5cf066	n/a	SnakeKeylogger
2023-02-14	n/a	exe	0ed9aff27c95fc0b9915bcf964e5e08f0e4b9159bd4ed39cc2a3be64503ae27c	n/a	SnakeKeylogger
2023-02-14	n/a	exe	d1c140e8da159c5e1b62ef8707661a39fbe891438a417d41337119845b07ccbb	n/a	SnakeKeylogger
2023-02-12	n/a	exe	e175719a9c226b9ef410b3ec21354f6efc4d7d540825f4fa9f2a62912d97cdb9	n/a	SnakeKeylogger
2022-11-08	n/a	exe	f51e1bc152d24b6a729cfea5b66828a8128c86f9de3519cede74026ca3581a36	n/a	Loki
2022-10-28	n/a	exe	bbc763fe70295d3e51e833aa8275ae914446a375f1c8d73d3b2a3e7940d5551f	n/a	Loki
2022-10-26	n/a	exe	c708079a2a12a176063560cfc55742d7ed84ca4ed0507a24af2ff40d16317957	n/a	Loki
2022-10-26	n/a	exe	22dd75db3310abe81b9c918342a62e557d17cf3a18be61ccd02c15fd07e8243e	n/a	Loki
2022-10-25	n/a	exe	2582d9399f2320b2b5d57dbd25817c59a8d4ba4303e5ecf4b4753edb2729391a	n/a	Loki
2022-10-24	n/a	exe	408df2ad8c4ca7daca906870171422b9cef7d7416a5e7fbc67990cd04d5e91b2	n/a	Loki
2022-10-23	n/a	exe	456f5d6ccb736a5abe0607d4ea875c270b43cddf91600bc82d4294802c209e61	n/a	Loki
2022-10-18	n/a	exe	89a6d6cde6b6bda22932091c640d4057f300ae65dc5e82deeaac810e6a22bfba	n/a	Loki
2022-10-18	n/a	exe	bec934403d0932077b792406c49b22342d15fc84cd17798f27e062f6084d7910	n/a	Loki
2022-10-17	n/a	exe	35b5899a6543d8b0eb66661f1af64e6ac46f5c53306c8e41ff1352d6130d2e9f	n/a	Loki
2022-10-17	n/a	exe	ca11dd9523ea8d8588e86517f72147e2b046b76b5c575e57e247b072e3d05ad0	n/a	Loki
2022-10-15	n/a	exe	84d216a04e9ffb9137fbd6801272eb2ea81aae806b269274ed6cc65abb690f22	29.17%	Loki
2022-10-13	n/a	exe	28d1c6178d28a42cbb6364fdfee16905bae65202bb1577b1013700c1a7c3b985	n/a	Loki
2022-10-11	n/a	exe	a26714afb609ec0748239fe0fa8cdf4c73b24050cf6b3fdc4a84dd3c10df3822	n/a	Loki
2022-10-10	n/a	exe	775aac22a4158c70e6e457d13e637873d62eedb5602330b79746ed1499200b2f	n/a	Loki
2022-10-09	n/a	exe	09b13ee6b60bb6952717b9a291d902f806588558a6e67aa418654874e9f5a0a5	n/a	Loki
2022-10-07	n/a	exe	933bd807ec5ee30a5dc99b2d7a7b2ba4a9d68009117b6e5caca4415ad9ab38fa	16.67%	Loki
2022-10-06	n/a	exe	9971fb931ec903ae77e392cbfa56ca68c7aa8b63bf04d102c01b50e975b1d0d2	n/a	Loki
2022-10-06	n/a	exe	ad7a29304be22eded47f61be0f00d8130c32122ee4ad5317b2e4f32b32f6c2a5	29.17%	Loki
2022-10-05	n/a	exe	f78a2b1b7893329cfae8149542b417d5bd94a689f4019a58a6934421ab07a9ce	n/a	Loki
2022-10-05	n/a	exe	38a47f77600d327589d62e4d015ead4e2ae7f454f5037e4e523968961ddc16b4	n/a	Loki
2022-10-05	n/a	exe	7099be5190a44f8aa711f4a28117b1f1ae8272d7f36d26f12124f663fc523926	n/a	Loki
2022-10-04	n/a	exe	166a7ab059b6eb18c68de7bafed0bd5203cbed1836a0e0baa3b2735410569130	n/a	Loki
2022-10-04	n/a	exe	b52caedea6346141b5c469c02ececbd7ed08ea9b04ceef80dac35c6cae4e946e	n/a	Loki
2022-10-03	n/a	exe	ebe88f785d0574a69f157908e69a1f10286724f4dd358619c026712043fb23e7	n/a	Loki
2022-10-01	n/a	exe	a4f2d876d5a01b0a8e2a6a91695aeeb62521eea5e115e8013bd54d1ac02a0477	n/a	Loki
2022-09-30	n/a	exe	0c54fd3a046b8cc613dbb2d9bf898855062ff126e1a68b50115e19ea46da8779	n/a	Loki
2022-09-29	n/a	exe	cd878b623c59aa7a14aa1796a3a1dbacf38d51f270913156fd42b554d725462a	n/a	Loki
2022-09-29	n/a	exe	bd5cd322d9987b4c0375949503989dc6d94b33e02cfe9af65f01447eb3d07ac9	26.39%	Loki