URLhaus Database

You are currently viewing the URLhaus database entry for https://book4noon.com/on/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

ID:	2650309
URL:	https://book4noon.com/on/
URL Status:	Offline
Host:	book4noon.com
Date added:	2023-06-02 15:37:11 UTC
Last online:	2023-06-05 04:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Not blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (2023-06-02 15:38:40 UTC to abuse{at}bluehost[dot]com)
Takedown time:	2 days, 12 hours, 44 minutes (down since 2023-06-05 04:22:54 UTC)
Tags:	BB30 geofenced js Qakbot TR USA zip

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Bazaar	Signature
2023-06-04	document_A154_Jun_2.zip	zip	ad27069214194e91986ad23533587ffb3d0e3363efa99efab09c62441feeabb0	21.31%
2023-06-04	document_C981_Jun_2.zip	zip	e18f6bb93fe69569bebfa652ba3643be8e6aa31ea9be32687dffac41082a2278	22.95%
2023-06-03	document_D945_Jun_2.zip	zip	a4fa96ad3d28e57dc21e497449edbe44de025a3ef963e19f1bc0f06893c59ef1	18.64%
2023-06-03	document_C936_Jun_2.zip	zip	2196f784d2d3b56dba1cdcf5bf600fb72def308fbaae7f4973ad4e38dd14e8e4	17.74%
2023-06-02	document_A813_Jun_2.zip	zip	57ea480db124bfe0179ffee4ed055c9bf5578cd51642209c5a2aa5de32257614	n/a
2023-06-02	document_F128_Jun_2.zip	zip	3eaa34ba08933231b9c5d5dcd6f81d4df04b67de47a00306fa2445e90dac7d50	n/a