bloxholder.com
![detection icon](https://www.malwarebytes.com/wp-content/themes/malwarebytes/assets/src/images/malware-detection.png)
Short bio
The domain bloxholder.com was blocked by Malwarebytes because it is associated with a Trojan.
Malicious behavior
The domain bloxholder.com is a fake clone of a legitimate cryptocurrency trading website. Visitors are encouraged to download and install a Trojanized cryptotrading tool. The threat actor behind the domain was identified as the Lazarus group aka APT38.
Protection
Malwarebytes blocks the domain bloxholder.com because it is associated with a Trojan.
![Malwarebytes blocks bloxholder.com](https://www.malwarebytes.com/wp-content/uploads/sites/2/2023/08/easset_upload_file69545_252025_e.png)
Exclusion
Should users wish to visit a blocked Domain and exclude it from being blocked, they can add it to the exclusions list. Here’s how to do it.
- Open Malwarebytes for Windows.
- Click the Detection History
- Click the Allow List
- To add an item to the Allow List, click Add.
- Select Allow a website.
- Select Add a URL and enter the domain that you wish to exclude.
- Click on Done and the domain should appear in your Allow List.