URLhaus Database

You are currently viewing the URLhaus database entry for http://hos365llc.com/hci0xn0.zip which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:786035
URL: http://hos365llc.com/hci0xn0.zip
URL Status:Offline
Host: hos365llc.com
Date added:2020-11-04 11:18:02 UTC
Last online:2021-02-03 10:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Blocked
Reporter: JAMESWT_MHT
Abuse complaint sent (?): Yes (2020-11-04 11:20:18 UTC to google-cloud-compliance{at}google[dot]com)
Takedown time:3 months, 0 days, 22 hours, 45 minutes Bad (down since 2021-02-03 10:05:49 UTC)
Tags:Zeppelin Buran Ransomware Zeppelin

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2021-02-02n/aexe 7cdc6404d068618bd5e2590c08391e8895b9e80cdef8190532823e44f87ad69en/a 
2021-02-02n/aexe 67803e6e4318407a5a22333eb4e1f5b2e32d428ba1a271ee8451a96072f36fb2n/a
2021-01-31n/aexe 494d2ee46af076b53a10f6aafb7a750d178ecd9a1a6634249cb2ad445fbbc859n/a 
2021-01-30n/aexe 8a4f42463b9944187256d9d0ca4f3570264c4165db9a8772ce773c99ec2be16fn/a 
2021-01-28n/aexe bea02a99750b49a0a5d12de47989239435c24de12d6f478cdbae91cc653ff1e5n/a 
2021-01-25n/aexe 90918cff10a04baf32d372c0001b2f854834d2cd135c1d64dbff263ead7565b5n/a 
2021-01-24n/aexe 439d41e0503faa31a9c56c9159ce2412fc4c85bd4def1ead592ec76354008c30n/a 
2021-01-22n/aexe 476db92bdde34cc6c163960d5c35b1d0ddce8381dd19427ef4f244ceb4d8b855n/a 
2021-01-14n/aexe d01feeb9056113cbb58859bb74c19fb5de96931ed7786bd58261e30929da0e4en/a 
2021-01-14n/aexe 060ebb720f2a3352d3c72d03d298342a9a8d43d4353ce67cc4417543ad229281n/a 
2021-01-08n/aexe 9c5315c700cf4c0bc51bc3ad504ea3bd788bb57460dc0d8819bad7a5c738879dn/a 
2021-01-01n/aexe 2842fd8deea325b33f08c22399a258a0e005197624883c5e9449fdbd3d58fd51n/a 
2021-01-01n/aexe fee24d1098b534bdfb3c77d51b6083f8cd17ea72874bf13a5cd327697539301an/a 
2020-12-24n/aexe 7b2d751481434c9091c7c95677f7fe4d229780101dca3d78c324f8898116a339n/a 
2020-12-17n/aexe 00d0ffff3ba536edf5ced6aa251ca976242921c4eaa3df526a5656ba69b5c29dn/a 
2020-12-07n/aexe 74bcc667de940584450c97774ee8076be42d619e5846fb6f1c3c5cd2aacb3a4dn/a 
2020-11-28n/aexe 546f49fb326dc92716d794cf40be8009c6d8d5ad7704af27328fcee828cec256n/a 
2020-11-19n/aexe 83be586c9875de0d3efb0a0da1df0e7791b2e5a56499d7185a3fc45c52bc89a8n/a 
2020-11-17n/aexe 082d90e07d5f7d0424209ba313d25dbf7ee1b16a4f594024731256dc7fb2ecf1n/a 
2020-11-15n/aexe 42c1038697f7d98667db67cd5a32c18497c91a674506185264aa8acee2b63756n/a 
2020-11-09n/aexe c859c798096b162066a1c7a0cc13555ce40fb82242d8123239c4073e477b1c9en/a 
2020-11-07n/aexe 51badde14b3082e8e0116b36de47918884319f8139123016aa7712afa2e7b77dn/a 
2020-11-06n/aexe bb991064c830e0b6ff8921f0adcf8d3957bf7b2c92a594cae055f3f4d2dbeeaen/a 
2020-11-04n/aexe 4e0d1edb76747fd945b87dd18299298f0df719edbea946119d91db59a9b6527aVirustotal results 20.83%Zeppelin