Malware Signature

The following table shows a list of malware samples and the corresponding botnet C&C (ip:port) associated with URLzone

Database Entry


Malware:URLzone -
First seen:2015-05-02 20:12:25 UTC
Last seen:2019-07-11 03:46:50 UTC

Malware Samples


The table below documents all malware samples associated with this malware family.

Timestamp (UTC)Malware Sample (MD5 hash)VTSignatureBotnet C&C (IP:port)
2019-07-11 03:46:50708597637a3478197a43e0f91ac100d2Virustotal results 41/70 (58.57%) URLzone64.71.166.50:443
2019-07-11 03:46:50708597637a3478197a43e0f91ac100d2Virustotal results 41/70 (58.57%) URLzone64.71.166.50:443
2018-12-22 18:35:54a4ec7d9fe6edcb012fe2dbea1ae1de8dVirustotal results 44/70 (62.86%) URLzone64.71.166.50:443
2018-12-22 18:35:54a4ec7d9fe6edcb012fe2dbea1ae1de8dVirustotal results 44/70 (62.86%) URLzone64.71.166.50:443
2017-09-04 22:41:47a4d3f0f9253f87115ef5ae00699032daVirustotal results 28/50 (56.00%) URLzone64.71.166.50:443
2017-09-04 22:41:47a4d3f0f9253f87115ef5ae00699032daVirustotal results 28/50 (56.00%) URLzone64.71.166.50:443
2017-09-02 00:28:44ff4da785be5b4e2bdef83968a3b5a1b0Virustotal results 37/57 (64.91%) URLzone64.71.166.50:443
2017-09-02 00:28:44ff4da785be5b4e2bdef83968a3b5a1b0Virustotal results 37/57 (64.91%) URLzone64.71.166.50:443
2017-08-29 07:07:14f23004ff3e158a67c2bd5d97ba155efdVirustotal results 29/50 (58.00%) URLzone64.71.166.50:443
2017-08-29 07:07:14f23004ff3e158a67c2bd5d97ba155efdVirustotal results 29/50 (58.00%) URLzone64.71.166.50:443
2017-08-29 04:49:44b8c3820709e0f75c6e85a34124348799Virustotal results 31/53 (58.49%) URLzone64.71.166.50:443
2017-08-29 04:49:44b8c3820709e0f75c6e85a34124348799Virustotal results 31/53 (58.49%) URLzone64.71.166.50:443
2017-08-28 16:44:068e3766b2df61ce5571682e17b2b91a3cVirustotal results 30/48 (62.50%) URLzone64.71.166.50:443
2017-08-28 16:44:068e3766b2df61ce5571682e17b2b91a3cVirustotal results 30/48 (62.50%) URLzone64.71.166.50:443
2017-08-26 18:00:149a693357d8539f57f91450a79e8ec174Virustotal results 31/51 (60.78%) URLzone64.71.166.50:443
2017-08-26 18:00:149a693357d8539f57f91450a79e8ec174Virustotal results 31/51 (60.78%) URLzone64.71.166.50:443
2017-08-24 16:37:34bd70beda4387a476b61d973bb7fb3f9eVirustotal results 26/57 (45.61%) URLzone64.71.166.50:443
2017-08-24 16:37:34bd70beda4387a476b61d973bb7fb3f9eVirustotal results 26/57 (45.61%) URLzone64.71.166.50:443
2015-10-15 13:04:187aca7b8110c5a14db30ec18a6ccb237eVirustotal results 10/55 (18.18%) URLzone104.130.17.100:443
2015-10-15 13:04:187aca7b8110c5a14db30ec18a6ccb237eVirustotal results 10/55 (18.18%) URLzone104.130.17.100:443
2015-06-18 00:26:103bf7b25842e6fd41a80145e7b19317f2Virustotal results 11/57 (19.30%) URLzone93.188.162.29:443
2015-06-18 00:26:103bf7b25842e6fd41a80145e7b19317f2Virustotal results 11/57 (19.30%) URLzone93.188.162.29:443
2015-05-02 20:12:256a9aa26df95f2015b294b75ffcb6a09fVirustotal results 4/55 (7.27%) URLzone176.31.128.123:443
2015-05-02 20:12:256a9aa26df95f2015b294b75ffcb6a09fVirustotal results 4/55 (7.27%) URLzone176.31.128.123:443