############################################################################## # URLhaus ASN CSV Feed # # Generated on 2025-11-18 23:27:11 UTC # # # # For questions please refer to: # # https://urlhaus.abuse.ch/feeds/ # ############################################################################## # # Feed generated for AS136052 # # Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country "2025-02-16 20:16:06","http://103.146.202.41:22533/build.apk","online","malware_download","AhMyth|apk|censys|L3mon","103.146.202.41","103.146.202.41","136052","ID" "2024-09-15 18:00:25","https://envimos.id/vfdjg.exe","offline","malware_download","vidar","envimos.id","103.55.39.243","136052","ID" "2024-09-15 18:00:18","https://envimos.id/sntmr.exe","offline","malware_download","MarsStealer|stealc","envimos.id","103.55.39.243","136052","ID" "2024-05-03 10:04:10","http://103.146.202.41:22533/build.s.apk","online","malware_download","apk|c2|L3mon|Manager","103.146.202.41","103.146.202.41","136052","ID" "2023-12-20 14:57:35","https://karyasolusi.com/zk55/","offline","malware_download","Pikabot|TA577|TR|zip","karyasolusi.com","103.55.39.181","136052","ID" "2023-12-20 12:54:20","https://arrahmanschool.sch.id/dltt/","offline","malware_download","Pikabot|TA577|TR|zip","arrahmanschool.sch.id","103.55.39.194","136052","ID" "2023-12-19 15:07:20","https://pm-law.co/wzo7e/","offline","malware_download","TR","pm-law.co","103.55.39.180","136052","ID" "2023-12-19 15:06:36","https://budiutomo.my.id/zy6x/","offline","malware_download","TR","budiutomo.my.id","103.55.39.182","136052","ID" "2023-12-19 15:05:47","https://arfaktech.my.id/woa/","offline","malware_download","TR","arfaktech.my.id","103.55.39.181","136052","ID" "2023-09-04 11:18:06","http://103.123.63.199/hiddenbin/boatnet.spc","offline","malware_download","32|elf|mirai|sparc","103.123.63.199","103.123.63.199","136052","ID" "2023-09-04 10:22:06","http://103.123.63.199/hiddenbin/boatnet.arm","offline","malware_download","elf|mirai","103.123.63.199","103.123.63.199","136052","ID" "2023-09-04 10:22:06","http://103.123.63.199/hiddenbin/boatnet.arm5","offline","malware_download","elf|mirai","103.123.63.199","103.123.63.199","136052","ID" "2023-09-04 10:22:06","http://103.123.63.199/hiddenbin/boatnet.arm6","offline","malware_download","elf|mirai","103.123.63.199","103.123.63.199","136052","ID" "2023-09-04 10:22:06","http://103.123.63.199/hiddenbin/boatnet.arm7","offline","malware_download","elf|mirai","103.123.63.199","103.123.63.199","136052","ID" "2023-09-04 10:22:06","http://103.123.63.199/hiddenbin/boatnet.m68k","offline","malware_download","elf|Mirai","103.123.63.199","103.123.63.199","136052","ID" "2023-09-04 10:22:06","http://103.123.63.199/hiddenbin/boatnet.mips","offline","malware_download","elf|mirai","103.123.63.199","103.123.63.199","136052","ID" "2023-09-04 10:22:06","http://103.123.63.199/hiddenbin/boatnet.mpsl","offline","malware_download","elf|Mirai","103.123.63.199","103.123.63.199","136052","ID" "2023-09-04 10:22:06","http://103.123.63.199/hiddenbin/boatnet.ppc","offline","malware_download","elf|Mirai","103.123.63.199","103.123.63.199","136052","ID" "2023-09-04 10:22:06","http://103.123.63.199/hiddenbin/boatnet.sh4","offline","malware_download","elf|Mirai","103.123.63.199","103.123.63.199","136052","ID" "2023-09-04 10:22:06","http://103.123.63.199/hiddenbin/boatnet.x86","offline","malware_download","elf|mirai","103.123.63.199","103.123.63.199","136052","ID" "2023-08-30 10:02:34","http://103.123.63.118/bins/sora.mips","offline","malware_download","elf|mirai","103.123.63.118","103.123.63.118","136052","ID" "2023-08-30 10:02:07","http://103.123.63.118/bins/sora.arm5","offline","malware_download","elf|mirai","103.123.63.118","103.123.63.118","136052","ID" "2023-08-30 10:02:06","http://103.123.63.118/bins/sora.arm","offline","malware_download","elf|mirai","103.123.63.118","103.123.63.118","136052","ID" "2023-08-30 10:02:06","http://103.123.63.118/bins/sora.arm6","offline","malware_download","elf|mirai","103.123.63.118","103.123.63.118","136052","ID" "2023-08-30 10:02:06","http://103.123.63.118/bins/sora.arm7","offline","malware_download","elf|mirai","103.123.63.118","103.123.63.118","136052","ID" "2023-08-30 10:02:06","http://103.123.63.118/bins/sora.i686","offline","malware_download","elf","103.123.63.118","103.123.63.118","136052","ID" "2023-08-30 10:02:06","http://103.123.63.118/bins/sora.m68k","offline","malware_download","elf","103.123.63.118","103.123.63.118","136052","ID" "2023-08-30 10:02:06","http://103.123.63.118/bins/sora.mpsl","offline","malware_download","elf","103.123.63.118","103.123.63.118","136052","ID" "2023-08-30 10:02:06","http://103.123.63.118/bins/sora.ppc","offline","malware_download","elf","103.123.63.118","103.123.63.118","136052","ID" "2023-08-30 10:02:06","http://103.123.63.118/bins/sora.sh4","offline","malware_download","elf","103.123.63.118","103.123.63.118","136052","ID" "2023-08-30 10:02:06","http://103.123.63.118/bins/sora.x86","offline","malware_download","elf|mirai","103.123.63.118","103.123.63.118","136052","ID" "2023-08-30 10:02:06","http://103.123.63.118/bins/sora.x86_64","offline","malware_download","elf|mirai","103.123.63.118","103.123.63.118","136052","ID" "2023-06-21 15:07:26","https://bantuindigital.id/xzknhupeeg/vodka.gif","offline","malware_download","geofenced|js|Obama270|Qakbot|TR|USA|zip","bantuindigital.id","103.28.53.75","136052","ID" "2023-02-27 19:43:26","https://medeqmandiri.com/TAP.php","offline","malware_download","BB17|img|pw764|Qakbot|Qbot|Quakbot|tr|zip","medeqmandiri.com","116.193.190.29","136052","ID" "2023-02-27 19:39:46","https://gajipro.com/LV.php","offline","malware_download","BB17|img|pw764|Qakbot|Qbot|Quakbot|tr|zip","gajipro.com","116.193.190.29","136052","ID" "2023-01-26 15:10:12","http://103.214.112.73/linux.sh","offline","malware_download","shellscript","103.214.112.73","103.214.112.73","136052","ID" "2022-11-02 23:50:47","https://masmiftahululapematangcengal.sch.id/lpu/qbot.zip","offline","malware_download","BB05|iso|qakbot|qbot|quakbot|TR|W19|zip","masmiftahululapematangcengal.sch.id","103.55.39.194","136052","ID" "2022-11-02 23:50:46","https://misarridwan.sch.id/eap/qbot.zip","offline","malware_download","BB05|iso|qakbot|qbot|quakbot|TR|W19|zip","misarridwan.sch.id","103.55.39.194","136052","ID" "2022-11-02 23:49:38","https://mtsalikhlaspangkalansusu.sch.id/sqm/qbot.zip","offline","malware_download","BB05|iso|qakbot|qbot|quakbot|TR|W19|zip","mtsalikhlaspangkalansusu.sch.id","103.55.39.194","136052","ID" "2022-10-31 16:58:17","https://azadinanharlangkat.sch.id/ca/qakbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","azadinanharlangkat.sch.id","103.55.39.194","136052","ID" "2022-10-31 16:09:51","https://hnf-rental.com/aee/qakbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","hnf-rental.com","103.55.39.44","136052","ID" "2022-10-31 16:06:20","https://bahanamahasiswa.co/au/qakbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","bahanamahasiswa.co","103.28.53.75","136052","ID" "2022-10-11 22:31:48","https://kejarikabgorontalo.co.id/ir/tiehc","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","kejarikabgorontalo.co.id","103.55.39.194","136052","ID" "2022-10-11 22:31:35","https://kejarikabgorontalo.co.id/ir/psumtui","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","kejarikabgorontalo.co.id","103.55.39.194","136052","ID" "2022-10-11 22:31:30","https://kejarikabgorontalo.co.id/ir/nemimgaqucu","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","kejarikabgorontalo.co.id","103.55.39.194","136052","ID" "2022-10-11 22:31:22","https://kejarikabgorontalo.co.id/ir/offerLoPresti","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","kejarikabgorontalo.co.id","103.55.39.194","136052","ID" "2022-10-11 22:31:04","https://kejarikabgorontalo.co.id/ir/eurqitsncunsota","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","kejarikabgorontalo.co.id","103.55.39.194","136052","ID" "2022-09-28 17:40:24","https://anekatukang.com/ev/rrurmbopietesro","offline","malware_download","BB|H322|H436|qakbot|qbot|quakbot|TR|U425|zip","anekatukang.com","103.55.39.194","136052","ID" "2022-09-28 17:40:18","https://anekatukang.com/ev/teet","offline","malware_download","BB|H322|H436|qakbot|qbot|quakbot|TR|U425|zip","anekatukang.com","103.55.39.194","136052","ID" "2022-09-01 01:43:06","http://ameis.andalanmutuenergi.com/home/Microsoft365_OneDrive_ManualUpdate.exe","offline","malware_download","exe|RedLineStealer","ameis.andalanmutuenergi.com","103.52.115.209","136052","TW" "2022-08-31 12:56:12","http://ameis.andalanmutuenergi.com/home/Payment_Details.exe","offline","malware_download","exe|RedLineStealer","ameis.andalanmutuenergi.com","103.52.115.209","136052","TW" "2022-01-24 16:07:34","http://sekolahfundraising.pirac.org/unsun/uCEjCXKQkpnD3NOA/","offline","malware_download","emotet|epoch4|exe|Heodo","sekolahfundraising.pirac.org","103.63.24.141","136052","ID" "2020-10-27 09:15:06","http://kbppp.ilmci.com/wp-includes/z/","offline","malware_download","emotet|epoch1|exe|Heodo","kbppp.ilmci.com","103.176.78.41","136052","ID" "2020-10-22 02:42:09","https://balibreezetours.com/wp-content/swift/3u9lkh1jcm4i9x/r1v2sqlx4mwrxmyplxga6aorrj5blplu/","offline","malware_download","doc|emotet|epoch2|Heodo","balibreezetours.com","103.63.24.139","136052","ID" "2020-10-20 19:10:06","http://kbppp.ilmci.com/wp-includes/Scan/aohduoa2cqg16c/kgh3n9yiirzxbsa3xfpfe/","offline","malware_download","doc|emotet|epoch2|Heodo","kbppp.ilmci.com","103.176.78.41","136052","ID" "2020-09-24 23:07:02","https://balibreezetours.com/wp-content/OCT/mJzGx0iyPQ8QXj/","offline","malware_download","doc|emotet|epoch1|Heodo","balibreezetours.com","103.63.24.139","136052","ID" "2020-09-23 23:28:04","https://balibreezetours.com/wp-content/Documentation/ogajb5ecxj0o/ajfuk382258408850159t2xye4nj3ecto24bvo/","offline","malware_download","doc|emotet|epoch2|Heodo","balibreezetours.com","103.63.24.139","136052","ID" "2020-09-18 13:32:17","https://balibreezetours.com/wp-content/statement/1pitt9371342170c0dtvivlb/","offline","malware_download","doc|emotet|epoch2|Heodo","balibreezetours.com","103.63.24.139","136052","ID" "2020-08-19 23:38:05","https://balibreezetours.com/wp-content/2xh89bj5/r7tv1j93750956423787rrquoyg83rgqjije99lf/","offline","malware_download","doc|emotet|epoch2|heodo","balibreezetours.com","103.63.24.139","136052","ID" "2020-05-01 01:12:11","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/224253/ServiceContractAgreement_224253_04292020.zip","offline","malware_download","Qakbot|qbot|spx109|zip","www.dotpay.id","103.176.79.191","136052","ID" "2020-05-01 01:09:22","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/ServiceContractAgreement_68752_04292020.zip","offline","malware_download","Qakbot|qbot|spx109|zip","www.dotpay.id","103.176.79.191","136052","ID" "2020-05-01 01:09:19","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/ServiceContractAgreement_581159_04292020.zip","offline","malware_download","Qakbot|qbot|spx109|zip","www.dotpay.id","103.176.79.191","136052","ID" "2020-05-01 01:09:11","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/ServiceContractAgreement_34101_04292020.zip","offline","malware_download","Qakbot|qbot|spx109|zip","www.dotpay.id","103.176.79.191","136052","ID" "2020-05-01 01:09:08","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/1186031/ServiceContractAgreement_1186031_04292020.zip","offline","malware_download","Qakbot|qbot|spx109|zip","www.dotpay.id","103.176.79.191","136052","ID" "2020-04-30 18:08:11","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/826489/ServiceContractAgreement_826489_04292020.zip","offline","malware_download","ESP|geofenced|Qakbot|Quakbot|zip","www.dotpay.id","103.176.79.191","136052","ID" "2020-04-30 15:13:06","https://www.dotpay.id/wp-content/uploads/2020/04/ckfsevy/ServiceContractAgreement_0615706_04292020.zip","offline","malware_download","ESP|geofenced|Qakbot|Quakbot|zip","www.dotpay.id","103.176.79.191","136052","ID" "2019-10-16 17:44:17","http://kuliner.ilmci.com/wp-content/27f7319/","offline","malware_download","emotet|epoch1|exe|heodo","kuliner.ilmci.com","103.176.78.41","136052","ID" "2019-05-28 00:22:03","http://parenting.ilmci.com/xekd/xIjRzHALVXchdTyBfzxd/","offline","malware_download","doc|emotet|epoch2|Heodo","parenting.ilmci.com","103.176.78.41","136052","ID" "2019-05-25 08:51:07","http://parenting.ilmci.com/xekd/fcl4577/","offline","malware_download","emotet|epoch1","parenting.ilmci.com","103.176.78.41","136052","ID" "2019-03-28 10:25:08","http://parenting.ilmci.com/wp-includes/sec.accs.docs.com/","offline","malware_download","emotet|epoch1|Heodo","parenting.ilmci.com","103.176.78.41","136052","ID" "2019-03-22 00:51:04","http://kuliner.ilmci.com/wp-content/bnla6-97kbu7-cpgsilot/","offline","malware_download","emotet|epoch2|Heodo","kuliner.ilmci.com","103.176.78.41","136052","ID" "2019-03-21 19:11:04","http://parenting.ilmci.com/wp-includes/trust.accs.send.net/","offline","malware_download","doc|emotet|epoch1|Heodo","parenting.ilmci.com","103.176.78.41","136052","ID" "2018-12-20 20:40:13","http://parenting.ilmci.com/De_de/IYOQGAI2839478/Rech/DOC/","offline","malware_download","doc|emotet|heodo","parenting.ilmci.com","103.176.78.41","136052","ID" "2018-12-13 00:23:27","http://smescoindonesia.com/invoices/87395845/Dec2018/US/Invoices-Overdue/","offline","malware_download","emotet|epoch2|Heodo","smescoindonesia.com","103.55.39.243","136052","ID" "2018-11-28 04:10:56","http://parenting.ilmci.com/4809260UAEOGD/oamo/Commercial/","offline","malware_download","doc|emotet|epoch2|Gozi|Heodo","parenting.ilmci.com","103.176.78.41","136052","ID" "2018-11-27 09:52:05","http://parenting.ilmci.com/4809260UAEOGD/oamo/Commercial","offline","malware_download","doc|emotet|Gozi|heodo","parenting.ilmci.com","103.176.78.41","136052","ID" "2018-08-28 06:56:27","http://pusatbengkellas.com/yoffiwurt/6058R/biz/Smallbusiness","offline","malware_download","doc|emotet|heodo","pusatbengkellas.com","210.79.190.252","136052","ID" # of entries: 77