bloxholder.com

detection icon

Short bio

The domain bloxholder.com was blocked by Malwarebytes because it is associated with a Trojan.

Malicious behavior

The domain bloxholder.com is a fake clone of a legitimate cryptocurrency trading website. Visitors are encouraged to download and install a Trojanized cryptotrading tool. The threat actor behind the domain was identified as the Lazarus group aka APT38.

Protection

Malwarebytes blocks the domain bloxholder.com because it is associated with a Trojan.

Malwarebytes blocks bloxholder.com
Malwarebytes blocks bloxholder.com

Exclusion

Should users wish to visit a blocked Domain and exclude it from being blocked, they can add it to the exclusions list. Here’s how to do it.

  • Open Malwarebytes for Windows.
  • Click the Detection History
  • Click the Allow List
  • To add an item to the Allow List, click Add.
  • Select Allow a website.
  • Select Add a URL and enter the domain that you wish to exclude.
  • Click on Done and the domain should appear in your Allow List.