URLhaus Database

You are currently viewing the URLhaus database entry for http://185.81.68.156/zx.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	3423151
URL:	http://185.81.68.156/zx.exe
URL Status:	Offline
Host:	185.81.68.156
Date added:	2025-02-01 15:23:06 UTC
Last online:	2025-04-13 18:XX:XX UTC
Threat:	Malware download
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2025-02-01 15:24:07 UTC to abuse{at}changway[dot]hk)
Takedown time:	2 months, 11 days, 3 hours, 26 minutes (down since 2025-04-13 18:50:12 UTC)
Tags:	exe

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT
2025-04-13	zx.exe	exe	5b3f80a131093ce9edc36c7f73362c4fcba4e2ef3c2fa11ebe3448a3507a1de6	n/a
2025-03-29	n/a	exe	631190fc83321193d8cb31f592b33919c9e3fbfa19ce0c29f9e86c1a4c2e5892	38.36%
2025-03-24	n/a	exe	ce3ee2149f50c1a0f4bea26023fe6e2de72f10409b1859ac7231edf2c9d19d55	n/a
2025-03-06	n/a	exe	ba46ef7f955ed66b07f0a030e34bd9fd9a61144a6fb6f3314a42f8b7f7ad8890	34.72%
2025-03-03	n/a	exe	f6bb2348bfefb8f96e47f2195e42c3b49bbab0ebded99a1d030eb7ed1ed8c738	34.72%
2025-03-03	n/a	exe	50a9102a8d182f68dd17a942b6539ad8fd9a4e67ca2f9bc33bbfabc762a95145	n/a
2025-03-02	n/a	exe	83fc66ef3b1f81e9eb9fedf13781face99f2aaf0359798bfa5dcc39965493dfd	n/a
2025-02-28	n/a	exe	4c2f06caf9f35dcb13a945ed87486ec31453dd4adbeff83448f1c60b9fd3f62e	37.50%
2025-02-26	n/a	exe	d29f12ad00ae702fb9d2fd8518e6aa996e15e0c57136611967fc18088d55a886	n/a
2025-02-22	n/a	exe	1f395cab0a3b9b64c474b511d728e3526217ac020d523b451bd2a41d4958fac3	n/a
2025-02-21	n/a	exe	eb2b16950a3471855082311180a572818d104562b853bd74c560afa860ccc9dd	n/a
2025-02-16	n/a	exe	f1e4f39d6aaa558e332dcf5193d787a707cce8a0c496e98f228022cb92546ed0	n/a
2025-02-14	n/a	exe	e08a6628f91c5a4065cbee2a0d8560d7143fab0d0cf61289a99be57922ce922d	22.22%
2025-02-10	n/a	exe	d6ff7410c29ea5eed5917a230b4073bbac2ad4dca8ef33e3de536fbfaac2a60c	25.00%
2025-02-08	n/a	exe	57a25c67a9e7e376669e63979fc881cf334ff2410ac688dc4e48def5131b1080	n/a
2025-02-06	n/a	exe	4bb719bf9432e41dba0ff290c05074e762bb9d2ecbef18c907df33051e1c4a2a	n/a
2025-02-05	n/a	exe	248399d81ff60c4b7355c60024180e10345aab8a5fb362232488c003b0afb4e4	n/a
2025-02-01	n/a	exe	53babd8d0f76a4aa63d21f75d88f0c9bbab93a4bdc70f9f0f0cbe31c3dc87c76	20.83%
2025-02-01	n/a	exe	d8fba42b1c9081449a01c5aad038c4dd7c08e7dd08f1c0582b1d537092c36720	43.66%