URLhaus Database

You are currently viewing the URLhaus database entry for http://avbrands.co.zw/Img/CIC.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry


ID:83867
URL:http://avbrands.co.zw/Img/CIC.exe
URL Status:Offline
Host:avbrands.co.zw
Date added:2018-11-22 20:40:06 UTC
Threat:Malware download Malware download
Google Safe Browsing:Clean
Spamhaus DBL:Not listed
SURBL:Not listed
Reporter:@zbetcheckin
Abuse complaint sent (?): Yes (2018-11-22 20:42:02 UTC to abuse{at}hetzner[dot]co[dot]za)
Takedown time:12 days, 11 hours, 47 minutes Bad
Tags:exe NanoCore

Payload delivery


The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTSignature
2018-12-04n/aexe7f2470177caf90e687a63db9ed61f20851cab3c8a7969c91f4e491c86f696631n/aNanoCore
2018-12-04n/aexeb62b1c9ddd17ac754913cba67ec02536b898b84b12c75a87ac537cb42c436e18Virustotal results 8 / 69 (11.59)NanoCore
2018-12-02n/aexe48fbab35d99c65d33ab581b55e98f0cff8d31301eda86bc318444b5cd78ba454n/aNanoCore
2018-11-30n/aexeb10e9bd7cbf82bf2f19d85fb2b4b4ae71e6e62882fc4b9151e496bd0e4e8b602Virustotal results 8 / 70 (11.43)NanoCore
2018-11-29n/aexe445055fb0df5d69d4a39c152e33a4958d62ebbe13ff72701358681c1d90135f1n/aNanoCore
2018-11-29n/aexe2452b09ad54f12f0e97fcbbaffa3bbc6eec4bdde706e69b9804330408c5ded10Virustotal results 18 / 69 (26.09)NanoCore
2018-11-22n/aexe5dd583f82ba9033af59e2aa87b3e9d7eee0ed99ea78e8972a6c489dd70a93c51Virustotal results 15 / 68 (22.06)NanoCore