URLhaus Database

You are currently viewing the URLhaus database entry for http://www.textnook.com/fonts/personal-disk/rP0wXv2n-7c3RVmaeSSfXi-portal/geD4LBt2d-hKu5qilHa7/ which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

You are viewing an historical record

While the URL referenced below has been used by bad actors to spread malware in the past, the malicious content has obviously been removed around 2022-12-20. Hence the the URL / website should no longer represent a threat. As a result, URLhaus considers this record as historical. This database entry has not impact on the reputation of the website / domain nor does it appear in any of our blocklists anymore.

ID:	435927
URL:	http://www.textnook.com/fonts/personal-disk/rP0wXv2n-7c3RVmaeSSfXi-portal/geD4LBt2d-hKu5qilHa7/
URL Status:	Offline
Host:	www.textnook.com
Date added:	2020-08-18 17:32:04 UTC
Last online:	2020-08-25 14:XX:XX UTC
Threat:	Malware download
URLhaus blocklist:	Not blocked
Spamhaus DBL :	Not blocked
SURBL :	Not blocked
Quad9 :	Not blocked
AdGuard :	Not blocked
Cloudflare :	Blocked
dns0.eu :	Not blocked
ProtonDNS :	Not blocked
OpenBLD :	Not blocked
DNS4EU :	Not blocked
Reporter:	Cryptolaemus1
Abuse complaint sent (?):	Yes (Ticket DCU002874212 created on 2020-08-18 17:34:05 UTC)
Takedown time:	6 days, 21 hours, 25 minutes (down since 2020-08-25 14:59:50 UTC)
Tags:	doc emotet epoch1 heodo

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

Firstseen	Filename	File Type	Payload (SHA256)	VT	Signature
2020-08-20	DAT_20200820.doc	doc	788a6214e334b44cf8c8bba7364d3bb9d99f6e05b9826dcb25152b5c48b8932e	25.00%	Heodo
2020-08-20	Inf-20200820-EIH86904.doc	doc	f5be70e882f02bf751e015d8c9556ea178965de2e4970ecba123aabd8a83e636	22.03%	Heodo
2020-08-20	INF-2020_08_20-1585.doc	doc	352c1ef29ac574fdf89bfcdbbb5f78b4cca4553a8945ab3cd57a1bcd9909da27	21.67%	Heodo
2020-08-20	dat S86605.doc	doc	ff2219bf2a6e79b513db9d0cf17c1ba49ab9b6b9b64ccc86662e2a8090a54b13	41.67%	Heodo
2020-08-19	Mes-2020_08_20.doc	doc	3209a90ec70f3c389ad600fad212afe06d4d60c9ebf4535af52b590f95c642d5	27.12%	Heodo
2020-08-19	DAT-20200819-80637.doc	doc	a914138cab6d64aaf2c57366a13ebfe0ad1cb2f1821402a26a4c03e8ac8d2781	27.12%	Heodo
2020-08-19	REP_20200819_027.doc	doc	7c2fd9efa308be75d919032ea14df78aa0f9020fec7077fd3c4f80ae17285a76	20.34%	Heodo
2020-08-19	File 20200819 PR132.doc	doc	96145efbcc291c15996cc347115acf0458e734937681b16fc1a262f739b27518	18.33%	Heodo
2020-08-19	Dat HV17139.doc	doc	99fac49e296895c2ca6a405eaf09152400df0b7f4793df9f84e618d127657aa2	18.33%	Heodo
2020-08-19	doc_2020_08_19_BXZ8012.doc	doc	06f924f51874c7df81f49a607dddc6e977b700d5ce712232c7e962d77150bb01	18.33%	Heodo
2020-08-19	DAT NA357.doc	doc	06a4431e2a5467fd8f9c297a6a25e670ee44231c92dd38d8f998a3a93115f0c9	18.33%	Heodo
2020-08-19	Arc CA90216.doc	doc	e539186195154e173115f68e790dac9a32909a8c4344a387ce25fba6fbf55d27	18.33%	Heodo
2020-08-19	Rep_ARL945.doc	doc	e6cfec7c5e5016b798a2d0838321003cab29be4fd7d6311ccb69c0be740618c7	18.33%	Heodo
2020-08-19	FILE-20200819-H1447.doc	doc	3399e67ca5bc2ba980f608d742babbf889c3a0486bd791934b8f779022b262ed	n/a	Heodo
2020-08-19	FILE_G83298.doc	doc	82b2463c462ac62073f95ada6f8aa70c265d0d7ca216a36322994f2d464bda58	20.00%	Heodo
2020-08-19	list_20200819_TK272.doc	doc	6409ea14c150741b3551828dcbbc20e14505bdad2f9a8eee4f450a80878f6519	18.33%	Heodo
2020-08-19	Arc_20200819_2787646.doc	doc	2dea73b6391db01c0900ef660c75b0841dcb9fd8fd91c892a5faee2e9701606e	48.28%	Heodo
2020-08-19	Rep_2020_08_19_M132739.doc	doc	a09fb497ce5738081489fafa343ed354128eba16cc5f8f6bfbb26ff79e19ceeb	47.46%	Heodo
2020-08-19	dat_162578.doc	doc	1c98753feb43790bf0b2979ae0d73c4760638ab1d9c5d6b6336ce2241ba31aa4	45.76%	Heodo
2020-08-19	dat-LK989005.doc	doc	305d205cdb3c030f05543db463c783753137d91a3d8c2721189a94fb36e4f7c6	47.46%	Heodo
2020-08-19	Arc_UZB727616.doc	doc	7065577cfc7f1d2a71a9044c23838d7703f1a1e02b2c222ab507407a778aae24	47.46%	Heodo
2020-08-19	Arc_2020_08_19.doc	doc	f6feee3a8137cb0cab6667842f06e07f96e54fc2f15ebe079dc30b4060d52452	46.67%	Heodo
2020-08-19	inf-2020_08_19-TE94079.doc	doc	af3f70492545cd6391ad67cedb9347c9e78980d2462b1b1a6b656113d246e010	46.67%	Heodo
2020-08-19	Inf 20200819 P0827.doc	doc	8ecfd0e0dbd4257b0b0f97f99517f9d1d825e32d7862b1ceb1b6bfdc67b205a0	45.76%	Heodo
2020-08-19	inf 20200819.doc	doc	9f95680d93e52258b33600da99d066d953f0aa373f991d850e83ae0e050fdb4e	45.76%	Heodo
2020-08-19	ARC 2020_08_19 0950.doc	doc	7916fa0619bd4a976c48a8b068040591dd8f78f9eb5b2bd3abafc019ec1f0dad	n/a	Heodo
2020-08-19	DAT-VIR644947.doc	doc	5a63ce9de6a721eaabedc5a95a579a3eee404a94034db171f646e24517fed367	47.54%	Heodo
2020-08-19	doc_20200819.doc	doc	682cb4ff880f1a6a000f5a227f8dba42abd73d836308162dc519644d9dae94ef	45.76%	Heodo
2020-08-19	mes-HMK39129.doc	doc	45a1dbdb6b372ed28b9806469cbe031baa76035067cb69b5e936960e53988a80	44.83%	Heodo
2020-08-19	File_2020_08_19_GWN3163.doc	doc	7833c0d39d11142241550af1fa9cb743026dc00c841f79a52d695fd8e9bfdd43	46.67%	Heodo
2020-08-19	DAT-2020_08_19.doc	doc	eb36ddd9edb9f64c1d10743135f87875826990fee2cde8abfcc653b1045c9061	46.67%	Heodo
2020-08-19	ARC_20200819_HC438.doc	doc	b4109096624dd29f07d9e5c328637c66396a4c0ba53760b48905a4d81e829027	n/a	Heodo
2020-08-18	Rep_20200819_01336.doc	doc	eba02aeb5ab35694f34f8048ad03accea87abc6915db54d0905d905a155901ff	n/a	Heodo
2020-08-18	dat_2020_08_19_XOF679.doc	doc	85d051184c78737bf858c74a6fe5cbf9d30ed82b3ace8cad4b7555c5132cb11e	n/a	Heodo
2020-08-18	Arc-2020_08_19-248.doc	doc	f7f2b55cdbf9f24f6e1850b32aa87b859717f840d46caff776674a973d28d51c	43.33%	Heodo
2020-08-18	Dat_LIT9141.doc	doc	91abaab1b3daa4a4dfe3d6c8adf5c5c8f0ec0551c271417fffd61444cbf47346	44.26%	Heodo
2020-08-18	Mes-KO912.doc	doc	68184e955d9a5e852a40b7c215d5654f9172d35c4e7a50e24b0080bb14c6ce0a	43.33%	Heodo
2020-08-18	rep_20200818_PMQ645.doc	doc	17300227be521550f2f2047dc5be4dcad326b59b87378c8a1372dbc867fb29c8	n/a	Heodo
2020-08-18	Inf_2020_08_18_TWA229765.doc	doc	2df5b20d8f749d1edb14c16c6c1c1ce78165354f3d038a23ac8d4d99188391bf	44.26%	Heodo
2020-08-18	LIST AWD49194.doc	doc	c998c60111b424a9eee08cff17b0f146045209d21d312a0b6b0ca71095697c8f	n/a	Heodo
2020-08-18	Doc_1538.doc	doc	de7d72e073b61d24137abfd27fe66238449d71dc609887dcb78cca6b90ffe2b6	43.33%	Heodo
2020-08-18	arc-20200818-IE431595.doc	doc	52386a3f4ed721abc491a22e4d08ba4497e8392249b04e5fbcdcff39502cb314	n/a	Heodo
2020-08-18	Arc-2020_08_18-AS714356.doc	doc	6259d1ed66e6b71f212718ec498a456d163ad694e8a059bb80e06aecccec4696	38.33%	Heodo
2020-08-18	Mes_KQ093780.doc	doc	44833b6e9ebcdb76ab589effbf62a6054d524d128d7bff56f7ce303d511c9d3c	n/a	Heodo