URLhaus Database

You are currently viewing the URLhaus database entry for http://abass.ir/kingx/kingx.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:373327
URL: http://abass.ir/kingx/kingx.exe
URL Status:Offline
Host: abass.ir
Date added:2020-06-01 13:32:21 UTC
Last online:2020-10-23 13:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: gorimpthon
Abuse complaint sent (?): Yes (2020-06-01 13:34:06 UTC to mehmet{at}vitaminbilisim[dot]com)
Takedown time:4 months, 23 days, 23 hours, 39 minutes Bad (down since 2020-10-23 13:13:47 UTC)
Tags:AgentTesla link exe Formbook link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2020-09-07n/aexe 33500d82b580ebcc34521dd70217ba0cf976d4708f6d9d413388aae64317b43dn/aFormbook
2020-09-05n/aexe b94f2120feddecd101a629c20a7f4f86c9a705e148415e0ed1d57fbaccf321a8Virustotal results 26.09% 
2020-09-04n/aexe 6612e640d15ed26414fc5c288b9bb7050db90517febb11d4b5145fb8d84441b9n/aFormbook
2020-09-04n/aexe cddef48cbafa5561f43fd788cfc08215af2c8c4d700bbad363c467e60ad0eda1n/aFormbook
2020-09-02n/aexe 68be0fe6927bba670e864a97d094c2d1bcb4d4e5be1eb9b15d9dea7b59291bb7n/a 
2020-09-02n/aexe b2a437bec36856a90558f9f54873096e6d1324cf487cc265038dbe82e5b03788n/aFormbook
2020-08-31n/aexe 2b2eb47daff1708595329820e7f6be77f074e4b7608c932d47e81e9e05891a73n/a 
2020-08-31n/aexe ad660d774f78137622d038976557c8782211dbfd39d2ff9a7a4bcc9279ba0f41n/aFormbook
2020-08-28n/aexe 86504f40929741c12351dd8b3df56ce6948aaa7cc585028f966011de5d469a02n/a 
2020-08-27n/aexe 2696fbbd0d85503941f914fc0a62cde8a5f4162dc4dc4f950af0b136a7432587n/a 
2020-08-26n/aexe 01b37f128376ca32154d6117dfcd772537855e421033d058e8cc11feeb4be367n/a 
2020-08-20n/aexe 7b6a9c9881086ff21f1bceab34412d8298a7b68cca3623dd7d2a1b2fa23d898fn/a 
2020-08-19n/aexe b0beffb72387ff34c63df4e6d6199517edf610b28e55c8a87eb2c6cf91e021acn/a 
2020-08-19n/aexe 4cf0ce348f6155fc265a4819379f8d70d41344b61b0427b6fd751ccbec3d35b1n/a 
2020-08-18n/aexe 72700625166d32f8379fecd97ce77a944be809c60cbc85131721ae925ef146c0n/a 
2020-08-17n/aexe 4569a1983f341175d37bde2d3b0b25fc77b3b64d83802078c04dc2881c038089n/a 
2020-08-17n/aexe 88f209425464d8e29d3c140017ecf033f4bbf17cf64359fabbd535586655cfd6n/a 
2020-08-12n/aexe 9eda77a9b914fd80b415780d09eaeaeb1f7b4528116a0be2548a26de6ff2483cn/a 
2020-08-11n/aexe fa6e1c3704d0a45e6f1f1a3daa15cf0d1188d11b4d44dbf92c7ab1f48c1a5783n/a 
2020-08-11n/aexe de9858b43be1e5a48081bc555fc3401b077ef17df68a0b39a5e6952b82c83a56n/a 
2020-07-08n/aexe 831668084e4e31182be4eac843bc696286e74dd7d1607789909df8b0a283a393n/a 
2020-07-06n/aexe 388a383a6d1fc0ceaad092429946e3b6b2dd17e13fedd276700f96e7d3fe8057n/a 
2020-06-08n/aexe 5dd4ce47e282ef174b47b0fe99ecbe45c041610d654884cffa960e2ddb143b70n/aAgentTesla
2020-06-04n/aexe 2240c11ab9505ff6c17ea4b7d03ccb3b072e19d94357ead07116ba108c9d900dn/aAgentTesla
2020-06-03n/aexe c506e03e2ef24d1a95ff314bb7f9470e87cc27281570cf606d2a408097e82757n/aAgentTesla
2020-06-03n/aexe b00945cd0c4c0ec8a60178147f75757ceeb27574d8edad11f435ed7105a92e33n/aAgentTesla
2020-06-02n/aexe 5c2be89f4ae2a9cb4f80b264b98026986b76c1f971a5ee7bfe138fcfdb196430n/aAgentTesla
2020-06-02n/aexe 0dcad313d0c0ad403c57b04cd891b567516bed9407c985f998e3190258ba916an/aAgentTesla
2020-06-01n/aexe e2a39496eb374c40af43d4e21ec63e98186c36d6f0bf8ebd1b25619a234dd9b5n/aAgentTesla