URLhaus Database

You are currently viewing the URLhaus database entry for http://kuvk07l2dzj6wfc.com/gg88wyaftcxr7gu/wo0zz.php?l=sfzs5.cab which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	368746
URL:	http://kuvk07l2dzj6wfc.com/gg88wyaftcxr7gu/wo0zz.php?l=sfzs5.cab
URL Status:	Offline
Host:	kuvk07l2dzj6wfc.com
Date added:	2020-05-26 08:10:34 UTC
Last online:	2020-05-26 19:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Status unknown
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Status unknown
ProtonDNS :	Status unknown
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	abuse_ch
Abuse complaint sent (?):	Yes (2020-05-26 08:32:08 UTC to abuse{at}cloudlite[dot]ru)
Takedown time:	11 hours, 8 minutes (down since 2020-05-26 19:40:17 UTC)
Tags:	DEU geofenced Valak

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT
2020-05-26	sfzs5.cab	exe	e3341779bcf16d7c15a49927f53692aad9fc8aff7373ad4a7c0061b7a666e92c	n/a
2020-05-26	sfzs5.cab	exe	672352ab90e5f1523cca7bae8fc2f4f10109631afa08b1cc5f835a2d9a1c592e	n/a
2020-05-26	sfzs5.cab	exe	2cc0b9cfa56205d7e4c85e598aa09364485ff05af4c843f72e204bb8f76bf6cc	n/a
2020-05-26	sfzs5.cab	exe	d0790f4444fd2708d76f67197bed61c4e9f693ad32f23e0dfe5832518e17ad04	n/a
2020-05-26	sfzs5.cab	exe	fa68cf78ec9059188f45cc7e29f39798abc80911686189c12c74bb627be05148	n/a
2020-05-26	sfzs5.cab	exe	8bfa6c44fb77c40a896047a8423f280ff92c39f3645c23d90307fe73675b77b8	n/a
2020-05-26	sfzs5.cab	exe	11cabfee807cd26b1b586bdebddd822a26647c99137e0d243814867279fac027	n/a
2020-05-26	sfzs5.cab	exe	4d5c8d14efcd420c68d54e794ce71d0e9779a53ade1515632434104ea6679cf3	n/a
2020-05-26	sfzs5.cab	exe	5301d0534a4b922e5ee5f4aa789bc322372136784799589f39e4379fe6cf7e6f	n/a
2020-05-26	sfzs5.cab	exe	ac87382e9f64e206843b100f2f1023e4f7db53282a6b54a8aaf42ca9bad5e56d	n/a
2020-05-26	sfzs5.cab	exe	778330701e38da16bfb320b38c78afd5a8db2e1688c3cc6c32990d6541cc2b90	n/a
2020-05-26	sfzs5.cab	exe	a2fa1c848147c2e22ca2a0b154657be8edad0ea4db1aad4faaf3be3c0dee7ab5	n/a
2020-05-26	sfzs5.cab	exe	f6490894cd0ef77ff028d0497aa2580c3cd12e8a72835b6a1a0f1c06d971d6e7	n/a
2020-05-26	sfzs5.cab	exe	ef6b9e3998d037c1e4ca0778ae0a3e5b7c8cb06f96baa10288684a941617d2e8	n/a
2020-05-26	sfzs5.cab	exe	6648e018e689acb9d3066a50ea6cc923ee6f7c84ca3bccd96e376a13e06dbf8b	n/a
2020-05-26	sfzs5.cab	exe	17ef4c6b9db1bee4dd5337e745905d2039336782334ce3a57fb3e8944c4c6cab	n/a
2020-05-26	sfzs5.cab	exe	7c74345c6df70392159aebb04ea0c81b37a4f22b70d609b89edee7ae0be27381	n/a
2020-05-26	sfzs5.cab	exe	045788dee44bbc25bc2c91ca087108dcd1f265c7ce4431aa57cc36c1bd814987	n/a
2020-05-26	sfzs5.cab	exe	08408047d7042b6dd4735d4037d882f04b4c931a6d2c9b92532afa45a699c473	n/a
2020-05-26	sfzs5.cab	exe	8d6b9622624cd70b06e66291bcc27de61ef12aef1a8423ac5af77a9ae33456b0	n/a