URLhaus Database

You are currently viewing the URLhaus database entry for http://ziscvhneqwfwehif.com/KOMIT/testv.php?l=pasasing2.class which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:2848
URL:http://ziscvhneqwfwehif.com/KOMIT/testv.php?l=pasasing2.class
URL Status:Offline
Host:ziscvhneqwfwehif.com
Date added:2018-04-05 06:49:08 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@abuse_ch
Abuse complaint sent (?):No
Tags:exe Gozi

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2018-04-05pasasing2.classexe9c21141f2c4c341c36206f5d191e5db0b34d2440be2fec271027a3a81e9a6bd5Virustotal results 13 / 66 (19.70)Gozi
2018-04-05pasasing2.classexe1ea659fad8f228a74ac7ec8833a6a7ab1c06794e98c9fc992e7a4370b9c3ff23Virustotal results 7 / 66 (10.61)Gozi