URLhaus Database

You are currently viewing the URLhaus database entry for http://shagua.name/fonts/pxdbI-teFb9IStGLrRMz_riJxYBbg-EZ9/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	179266
URL:	http://shagua.name/fonts/pxdbI-teFb9IStGLrRMz_riJxYBbg-EZ9/
URL Status:	Offline
Host:	shagua.name
Date added:	2019-04-17 05:32:16 UTC
Last online:	2019-04-21 17:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Blocked
Reporter:	spamhaus
Abuse complaint sent (?):	Yes (2019-04-17 05:34:03 UTC to ipas{at}cnnic[dot]cn)
Takedown time:	4 days, 11 hours, 56 minutes (down since 2019-04-21 17:30:48 UTC)
Tags:	emotet heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2019-04-18	Document_5443802837US_Apr_18_2019.zip	zip	e401afe1fee011d01418b642e45ca5cf518baa027e93d134f8d39c9607a379e3	n/a
2019-04-18	INC_30654260604US_Apr_18_2019.zip	zip	01f807e4c8c1cf18ddc4c0ef3f81eaba858c65f5dd388e01cd1b48eecabf9e38	n/a
2019-04-18	INC_03520769144US_Apr_18_2019.zip	zip	298b48ce9512981ee6e7697b26d34e5c10f17910faae73c6c83edc049db83a05	n/a
2019-04-18	Document_34750968846US_Apr_18_2019.zip	zip	2fb3a05cc2e29542bbb7ec2f8622812df098c8f4d20fa8d65c6e8a15efaf1a93	n/a
2019-04-18	LLC_032943013000US_Apr_18_2019.zip	zip	1ab3911784fd15a4764706e30da429326391fda865e68b697e725b469ce10522	n/a
2019-04-18	Document_8884527618US_Apr_18_2019.zip	zip	fa9a4f128c2b86291a5d2d394a6cdf002ceb06a0638fd4185538f2e749ddc72a	n/a
2019-04-18	LLC_008405129778US_Apr_18_2019.zip	zip	5c7e391c42f21b04c7b2594e7ee10b31d96e6b51ceb9fa4afe650f65a265bb1e	n/a
2019-04-18	DOC_0814212343US_Apr_18_2019.zip	zip	e8146f29f4abf6a4c2bfdfcf135fc9ec135e91b579707077a82e4606f1f2f285	n/a
2019-04-18	INC_5244595945US_Apr_18_2019.zip	zip	510c512f5d9f215b295ad294b3aa69f5d5100c055d75cb2a055b6c2e2090a751	n/a
2019-04-18	INC_7403776456US_Apr_18_2019.zip	zip	c3dbb506123ac3d3a7ac329534639de96eb774885a616cdea132d93331f11c34	n/a
2019-04-18	LLC_03100444750US_Apr_18_2019.zip	zip	16c9700ab485819e2b9b538141ea7da07d2f035c13799fb3e31d2cecb818fdd7	n/a
2019-04-18	DOC_0433155966US_Apr_18_2019.zip	zip	c58f14f8bbe609fb406a83297865e15890c45959d798caa79a3e1b43edbdc4d1	n/a
2019-04-18	Scan_5170165508US_Apr_18_2019.zip	zip	f8401431474758e149858c4f0a9d1d370fc299c09c46cdeaef25541ea669e443	n/a
2019-04-18	Document_43859754470US_Apr_18_2019.zip	zip	252ca6feaa947ed86fe0cf0369a0c07097f24c3ba252f81c8a8c82297db227d4	n/a
2019-04-18	DOC_4725361267US_Apr_18_2019.zip	zip	ec69cbe30bcfa23d982aba1946ff24bb83cb857effd395687f26bb0c90c8cf64	n/a
2019-04-18	Document_94070437940US_Apr_18_2019.zip	zip	f3925b04495f032fe924fe13ac6c7a36d79a993241315eb79a20702117e713b0	n/a
2019-04-18	LLC_5450323224US_Apr_18_2019.zip	zip	368e33226e27a1248bbb409d3f6edeab276ff0000fb5385eef3a1a43d623c45f	n/a
2019-04-18	INC_31239639423US_Apr_18_2019.zip	zip	78f627ad3930975d496263ffc646069290a4e35dda01c12028314a5a73c257aa	n/a
2019-04-18	INC_19212351740US_Apr_18_2019.zip	zip	1285ef67339dbb90e7c5ae068cc544893832d99d8317127ebe0d72773759217b	n/a
2019-04-18	INC_3545188759US_Apr_18_2019.zip	zip	160c07543bcd84644334bddbb021824083ad859711cbfdc9409398b21e01ccb0	n/a
2019-04-18	INC_1354557300US_Apr_18_2019.zip	zip	d3fdb3b0e9b613d6a6f5601837caeb2ffef90119a83f4a8150f00768e9e2c6e9	n/a
2019-04-18	Document_16823864808US_Apr_18_2019.zip	zip	e94a73ee717729449b40d6811a354ab76699760cb619012389b7edc7736ec97c	n/a
2019-04-18	LLC_235895752111US_Apr_18_2019.zip	zip	10c470e54a17630881872a98abb6d6cb58cd2a8a949e45a571e0e1653b2a03cb	n/a
2019-04-18	DOC_552555044843US_Apr_18_2019.zip	zip	381331d1f52b2a281fd0e5d91c21fd2fad8f066e2da83f9c9099be34c846ca02	n/a
2019-04-18	INC_13187601087US_Apr_18_2019.zip	zip	9087e376dd8bbaf07619af736d4ba8896eeebe795b8bb0500cab02892619459f	n/a
2019-04-18	FILE_043818356036US_Apr_18_2019.zip	zip	3176b5ac56fe39d518b373d25b90959b4d9992d9e9025cc0bd74b6fd2b8f3934	n/a
2019-04-17	Scan_68619103672US_Apr_18_2019.zip	zip	59205541a52c33d4bfefdedd8c36da711e1e7f6896758ca7246c40f89f022e5f	n/a
2019-04-17	INC_09348737506US_Apr_18_2019.zip	zip	b549c60b7d573d8f1e588292829b8c29ed04824a97040fd0c329a43a4c7e5699	n/a
2019-04-17	Scan_16785557632US_Apr_18_2019.zip	zip	5ba84f8c265aa950fc936ad45fcbca055c0d05fba21d65ba14815441652e850a	n/a
2019-04-17	Document_005297393887US_Apr_17_2019.zip	zip	302d21e4e731257d7dcdd80ecb006b3f036b763ffcf6c40ef55d68d9f3c82f1c	n/a
2019-04-17	FILE_357722253207US_Apr_17_2019.zip	zip	0a44054c2554e2e95111e1b0b76d17078456213ea8efd1e7516dcca11d146b81	n/a
2019-04-17	Document_61550065176US_Apr_17_2019.zip	zip	d7c14044a0ab9a15dd4eeae0126b1670f558dfa88bb241fb845c363b099f9bf6	n/a
2019-04-17	FILE_23986569446US_Apr_17_2019.zip	zip	5bfe81e3e8fd1b1c6e1fb09e14aeeba537489224dda798450571dbf286b0f64d	n/a
2019-04-17	LLC_891573173012US_Apr_17_2019.zip	zip	4c8f15f0d2094ef1315863a868e34de6402ae2884aa2072bcc4914cc478ac337	n/a
2019-04-17	DOC_6628422519US_Apr_17_2019.zip	zip	701c8cf9a3b9f883b52c42933fae9c446f83ec7c35b484271851cb1d55148d8f	n/a
2019-04-17	6610688337_Apr_17_2019.doc	doc	dfd14cdee37ce2e553ccccff81916d88857b9fef88abe657911e59c39d9bce4d	22.41%	Heodo
2019-04-17	13276924749_Apr_17_2019.doc	doc	a5c7ef873c4dff06978f874ee497b2fd958b56e263244febc3b7e53eaa27517b	22.81%	Heodo
2019-04-17	0988529718_Apr_17_2019.doc	doc	71da59481ca34680c6459f5947bd9e90fc7ecb570e040045c5d200bf313d5e12	22.03%	Heodo
2019-04-17	30892785549_Apr_17_2019.doc	doc	d2dee2a2478d2b039f9fc00f0d980f67a52f9ae8fe542e991d94f53a6f274473	22.41%	Heodo
2019-04-17	8441149965_Apr_17_2019.doc	doc	566c79acc5b6aca21ec8ad0859b2f53a1f0d4a00e793b4e6cba5fdb53cb2bafa	22.41%
2019-04-17	24204104183_Apr_17_2019.doc	doc	de05a81b032326fc39700039304035f207e806048aa3ac35707e297ae623cf2c	22.81%	Heodo
2019-04-17	809529868101_Apr_17_2019.zip	zip	270b82c4a36bb6789c366f2441b12329c489b1a57c97878256e95bcaa143a7fd	n/a
2019-04-17	240555357647_Apr_17_2019.zip	zip	d9a649503a195b81db8b8b39110ab17cb253270db4cbe2c822a317021d3c768b	n/a
2019-04-17	36756038285_Apr_17_2019.zip	zip	da01234e9d804afce8149584af8a7653f4c7d59aa813c1ae93e42574f110a60d	n/a
2019-04-17	55274763723_Apr_17_2019.zip	zip	88a4ddcf3ef98ca97ae6ac17ac831fb13a36ba2064076bc6f41b5dc9d06cdcf5	n/a
2019-04-17	2139948767_Apr_17_2019.zip	zip	18b6746a7bfc67b581b41720cd956e1bb882c22f4cafac890bf2c29b2627c7a6	n/a
2019-04-17	498646383298_Apr_17_2019.zip	zip	5474a65201459beb0469f115a6399d02ec1894f21495eb16d975e9627f0f9992	n/a
2019-04-17	243001007379_Apr_17_2019.zip	zip	cc1b704875bb8f23091962360967c8303e411dd09e48c769642745de54e2b1ea	n/a
2019-04-17	1503124633_Apr_17_2019.zip	zip	869f8a67fdc49c7963e0346b237f33e83b172761558806acf8c0f1457fae4a57	n/a
2019-04-17	25616996613_Apr_17_2019.zip	zip	dd0d97bb7a50148e2db492e01916b6da82475dea43de21e6657aaa5d4de55cb9	n/a
2019-04-17	90344440659_Apr_17_2019.zip	zip	234b79e839152582b6cf4cf07fcf40c55a1cf9e025601fe93c64146368b30703	n/a
2019-04-17	67213257333_Apr_17_2019.zip	zip	69d8533f4033f6cdb92beb8bacfff6260d0af65eb060fed6dedda86a23e3b5dd	n/a