##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2025-11-24 09:41:52 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS147176
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2025-10-22 06:28:18","http://45.201.0.201:8000/poc.py","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:18","http://45.201.0.201:8000/poc3.py","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:18","http://45.201.0.201:8000/screen.sh","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:05","http://45.201.0.201:8000/cPanel.bin","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:05","http://45.201.0.201:8000/dbus-daemon.bin","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:05","http://45.201.0.201:8000/linpeas.sh/linpeas.sh","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:05","http://45.201.0.201:8000/mimikatz.exe","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:05","http://45.201.0.201:8000/poc2.py","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:05","http://45.201.0.201:8000/svchost.exe","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:05","http://45.201.0.201:8000/workdata_e/CONDEMNED_BANQUETTE","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:05","http://45.201.0.201:8000/workdata_e/LUCKY_ISSUE","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:05","http://45.201.0.201:8000/workdata_e/sysdb","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:05","http://45.201.0.201:8000/workdata_e/x","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:05","http://45.201.0.201:8000/workdata_f/server","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:05","http://45.201.0.201:8000/workdata_lc/agent","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:05","http://45.201.0.201:8000/workdata_lc/proxy","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:05","http://45.201.0.201:8000/workdata_lc/systemd.bin","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 06:28:05","http://45.201.0.201:8000/workdata_lc/Winnit.exe","offline","malware_download","KH Nightmare|opendir","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 05:51:09","http://45.201.0.201/sl/x","online","malware_download","KH Nightmare","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 05:51:09","http://45.201.0.201/sl/y","online","malware_download","KH Nightmare","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 05:51:05","http://45.201.0.201:8000/workdata_my/payload.exe","offline","malware_download","KH Nightmare","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 05:51:05","http://45.201.0.201:8000/workdata_my/setup.exe","offline","malware_download","KH Nightmare","45.201.0.201","45.201.0.201","147176","TH"
"2025-10-22 05:51:05","http://45.201.0.201:8000/workdata_my/thesetup.exe","offline","malware_download","KH Nightmare","45.201.0.201","45.201.0.201","147176","TH"
"2025-09-20 04:40:18","http://45.201.0.239/release/hanoi.x86","offline","malware_download","32-bit|ELF|Mirai|x86-32","45.201.0.239","45.201.0.239","147176","TH"
"2025-05-12 10:49:06","http://154.197.69.150/upto.exe","offline","malware_download","AsyncRAT","154.197.69.150","154.197.69.150","147176","TH"
"2025-01-31 10:13:04","http://154.84.153.46/WANNACRY.exe","offline","malware_download","exe","154.84.153.46","154.84.153.46","147176","TH"
"2025-01-30 06:43:04","http://154.84.153.46/home.exe","offline","malware_download","exe","154.84.153.46","154.84.153.46","147176","TH"
"2025-01-23 18:44:14","http://154.16.66.225/Photo.scr","offline","malware_download","CoinMiner|scr","154.16.66.225","154.16.66.225","147176","TH"
"2025-01-23 18:44:11","http://154.16.66.225/AV.scr","offline","malware_download","CoinMiner|scr","154.16.66.225","154.16.66.225","147176","TH"
"2025-01-23 18:44:04","http://154.16.66.225/Video.scr","offline","malware_download","CoinMiner|scr","154.16.66.225","154.16.66.225","147176","TH"
"2025-01-23 18:44:03","http://154.16.66.225/AV.lnk","offline","malware_download","lnk","154.16.66.225","154.16.66.225","147176","TH"
"2025-01-23 18:44:03","http://154.16.66.225/Photo.lnk","offline","malware_download","lnk","154.16.66.225","154.16.66.225","147176","TH"
"2025-01-23 18:44:03","http://154.16.66.225/Video.lnk","offline","malware_download","lnk","154.16.66.225","154.16.66.225","147176","TH"
"2024-12-17 07:01:14","https://154.197.69.165//xclient.exe","offline","malware_download","XWorm","154.197.69.165","154.197.69.165","147176","TH"
"2024-12-17 07:01:12","https://154.197.69.165//crss.exe","offline","malware_download","AsyncRAT","154.197.69.165","154.197.69.165","147176","TH"
"2024-11-08 07:10:19","http://103.174.191.145:88/maxz/update/Client/Client.exe.zip","online","malware_download","zip","103.174.191.145","103.174.191.145","147176","TH"
"2024-11-08 07:10:18","http://103.174.191.145:88/maxz/update/Client/DSETUP.dll.zip","online","malware_download","zip","103.174.191.145","103.174.191.145","147176","TH"
"2024-11-02 17:03:09","https://154.197.69.165/System.exe","offline","malware_download","pe","154.197.69.165","154.197.69.165","147176","TH"
"2024-11-01 16:38:11","https://154.197.69.165/XClient.exe","offline","malware_download","xworm","154.197.69.165","154.197.69.165","147176","TH"
"2024-10-29 15:22:34","http://154.197.69.149/hiddenbin/boatnet.arm","offline","malware_download","elf|ua-wget","154.197.69.149","154.197.69.149","147176","TH"
"2024-10-16 16:55:10","http://154.197.69.165/System.exe","offline","malware_download","autoIT","154.197.69.165","154.197.69.165","147176","TH"
"2024-09-30 19:39:07","http://154.197.69.149/bins/sora.spc","offline","malware_download","elf|ua-wget","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-30 19:38:15","http://154.197.69.149/bins/sora.arm","offline","malware_download","elf|ua-wget","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-25 05:24:06","http://154.197.69.149/d/xd.arm5","offline","malware_download","","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-25 05:24:06","http://154.197.69.149/d/xd.arm6","offline","malware_download","","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-25 05:24:06","http://154.197.69.149/d/xd.arm7","offline","malware_download","","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-25 05:24:06","http://154.197.69.149/d/xd.m68k","offline","malware_download","","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-25 05:24:06","http://154.197.69.149/d/xd.mips","offline","malware_download","","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-25 05:24:06","http://154.197.69.149/d/xd.mpsl","offline","malware_download","","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-25 05:24:06","http://154.197.69.149/d/xd.ppc","offline","malware_download","","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-25 05:24:06","http://154.197.69.149/d/xd.sh4","offline","malware_download","","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-25 05:24:06","http://154.197.69.149/d/xd.x86","offline","malware_download","","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-25 05:24:06","http://154.197.69.149/sensi.sh","offline","malware_download","","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-13 13:57:33","http://154.197.69.149/bins/sora.arm5","offline","malware_download","elf","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-13 13:57:33","http://154.197.69.149/bins/sora.arm6","offline","malware_download","elf","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-13 13:57:33","http://154.197.69.149/bins/sora.arm7","offline","malware_download","elf","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-13 13:57:33","http://154.197.69.149/bins/sora.m68k","offline","malware_download","elf","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-13 13:57:33","http://154.197.69.149/bins/sora.mpsl","offline","malware_download","elf","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-13 13:57:33","http://154.197.69.149/bins/sora.sh4","offline","malware_download","elf","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-13 13:57:33","http://154.197.69.149/bins/sora.x86","offline","malware_download","elf","154.197.69.149","154.197.69.149","147176","TH"
"2024-09-10 23:03:05","http://154.197.69.149/bins/sora.ppc","offline","malware_download","32-bit|elf","154.197.69.149","154.197.69.149","147176","TH"
"2024-08-29 06:07:10","http://154.197.69.143/1.exe","offline","malware_download","AsyncRAT|xworm","154.197.69.143","154.197.69.143","147176","TH"
"2024-08-29 06:07:10","http://154.197.69.143/XClient.exe","offline","malware_download","Formbook|xworm","154.197.69.143","154.197.69.143","147176","TH"
"2024-08-29 03:57:04","http://154.197.69.149/bins/sora.mips","offline","malware_download","32-bit|elf|Mirai","154.197.69.149","154.197.69.149","147176","TH"
"2024-08-26 09:04:08","http://154.197.69.165/XClient.exe","offline","malware_download","exe|XWorm","154.197.69.165","154.197.69.165","147176","TH"
"2024-08-26 09:04:06","http://154.197.69.165/crss.exe","offline","malware_download","AsyncRAT|exe","154.197.69.165","154.197.69.165","147176","TH"
"2024-08-15 19:05:07","http://154.197.69.149/ohshit.sh","offline","malware_download","|script","154.197.69.149","154.197.69.149","147176","TH"
"2024-08-15 08:01:06","http://154.197.69.149/Beastmode.sh","offline","malware_download","","154.197.69.149","154.197.69.149","147176","TH"
"2024-08-14 16:38:05","http://154.197.69.149/beastmode/b3astmode.spc","offline","malware_download","elf|ua-wget","154.197.69.149","154.197.69.149","147176","TH"
"2024-08-14 08:14:13","http://154.197.69.149/beastmode/b3astmode.arm5","offline","malware_download","elf","154.197.69.149","154.197.69.149","147176","TH"
"2024-08-14 08:14:13","http://154.197.69.149/beastmode/b3astmode.arm7","offline","malware_download","elf|Mirai","154.197.69.149","154.197.69.149","147176","TH"
"2024-08-14 08:14:13","http://154.197.69.149/beastmode/b3astmode.sh4","offline","malware_download","elf","154.197.69.149","154.197.69.149","147176","TH"
"2024-08-14 08:14:11","http://154.197.69.149/beastmode/b3astmode.arm6","offline","malware_download","elf","154.197.69.149","154.197.69.149","147176","TH"
"2024-08-14 08:14:11","http://154.197.69.149/beastmode/b3astmode.m68k","offline","malware_download","elf","154.197.69.149","154.197.69.149","147176","TH"
"2024-08-14 08:14:11","http://154.197.69.149/beastmode/b3astmode.mpsl","offline","malware_download","elf","154.197.69.149","154.197.69.149","147176","TH"
"2024-08-14 08:14:09","http://154.197.69.149/beastmode/b3astmode.arm","offline","malware_download","elf|mirai","154.197.69.149","154.197.69.149","147176","TH"
"2024-08-14 08:14:09","http://154.197.69.149/beastmode/b3astmode.mips","offline","malware_download","elf","154.197.69.149","154.197.69.149","147176","TH"
"2024-08-14 08:14:09","http://154.197.69.149/beastmode/b3astmode.ppc","offline","malware_download","elf","154.197.69.149","154.197.69.149","147176","TH"
"2024-08-14 08:14:09","http://154.197.69.149/beastmode/b3astmode.x86","offline","malware_download","elf|mirai","154.197.69.149","154.197.69.149","147176","TH"
"2024-08-02 09:48:11","http://154.197.69.157/select.exe","offline","malware_download","DBatLoader|modiloader","154.197.69.157","154.197.69.157","147176","TH"
"2024-08-02 09:48:11","http://154.197.69.157/XClient.exe","offline","malware_download","xworm","154.197.69.157","154.197.69.157","147176","TH"
"2024-07-22 08:36:08","http://154.197.69.155/xWorm.hta","offline","malware_download","","154.197.69.155","154.197.69.155","147176","TH"
"2024-07-22 08:36:07","http://154.197.69.155/Download.exe","offline","malware_download","","154.197.69.155","154.197.69.155","147176","TH"
"2024-07-22 08:36:07","http://154.197.69.155/xWorm.exe","offline","malware_download","","154.197.69.155","154.197.69.155","147176","TH"
"2024-06-28 19:11:06","http://154.197.69.213/client.apk","offline","malware_download","android|trojan","154.197.69.213","154.197.69.213","147176","TH"
"2024-06-28 19:10:25","http://154.197.69.213/launcher.apk","offline","malware_download","android|trojan","154.197.69.213","154.197.69.213","147176","TH"
"2024-06-28 19:07:12","http://154.212.139.112/update/Resource/itemlist.bin","offline","malware_download","","154.212.139.112","154.212.139.112","147176","TH"
"2024-06-28 19:07:10","http://154.212.139.112/UpdateSetup.exe","offline","malware_download","trojan","154.212.139.112","154.212.139.112","147176","TH"
"2024-06-28 18:50:18","http://154.197.69.131/XClient2.exe","offline","malware_download","exe|XWorm","154.197.69.131","154.197.69.131","147176","TH"
"2024-06-28 18:50:16","http://154.197.69.131/XClient.exe","offline","malware_download","AsyncRAT|exe","154.197.69.131","154.197.69.131","147176","TH"
"2024-06-28 18:50:14","http://154.197.69.131/Slovakia.exe","offline","malware_download","AsyncRAT|exe","154.197.69.131","154.197.69.131","147176","TH"
"2024-06-28 18:50:12","http://154.197.69.131/loaded28062024.exe","offline","malware_download","exe|Formbook","154.197.69.131","154.197.69.131","147176","TH"
"2024-06-28 18:50:12","http://154.197.69.131/XClientx3.exe","offline","malware_download","exe|Formbook","154.197.69.131","154.197.69.131","147176","TH"
"2023-10-22 15:32:34","http://154.197.124.195/f2q2kke5aadloo4aasdjjjfirbmw/0xh0roxxnavebusyoo.arm7","offline","malware_download","elf","154.197.124.195","154.197.124.195","147176","TH"
"2023-10-18 17:29:06","http://154.197.124.196/bins/sora.spc","offline","malware_download","32|elf|mirai|sparc","154.197.124.196","154.197.124.196","147176","TH"
"2023-10-18 16:24:33","http://154.197.124.196/bins/sora.arm7","offline","malware_download","elf|Mirai","154.197.124.196","154.197.124.196","147176","TH"
"2023-10-18 16:24:06","http://154.197.124.196/bins/sora.arm","offline","malware_download","elf|mirai","154.197.124.196","154.197.124.196","147176","TH"
"2023-10-18 16:24:06","http://154.197.124.196/bins/sora.arm5","offline","malware_download","elf|Mirai","154.197.124.196","154.197.124.196","147176","TH"
"2023-10-18 16:24:06","http://154.197.124.196/bins/sora.arm6","offline","malware_download","elf|Mirai","154.197.124.196","154.197.124.196","147176","TH"
"2023-10-18 16:24:06","http://154.197.124.196/bins/sora.i686","offline","malware_download","elf|Mirai","154.197.124.196","154.197.124.196","147176","TH"
"2023-10-18 16:24:06","http://154.197.124.196/bins/sora.m68k","offline","malware_download","elf|Mirai","154.197.124.196","154.197.124.196","147176","TH"
"2023-10-18 16:24:06","http://154.197.124.196/bins/sora.mips","offline","malware_download","elf","154.197.124.196","154.197.124.196","147176","TH"
"2023-10-18 16:24:06","http://154.197.124.196/bins/sora.mpsl","offline","malware_download","elf|Mirai","154.197.124.196","154.197.124.196","147176","TH"
"2023-10-18 16:24:06","http://154.197.124.196/bins/sora.ppc","offline","malware_download","elf|Mirai","154.197.124.196","154.197.124.196","147176","TH"
"2023-10-18 16:24:06","http://154.197.124.196/bins/sora.sh4","offline","malware_download","elf|Mirai","154.197.124.196","154.197.124.196","147176","TH"
"2023-10-18 16:24:06","http://154.197.124.196/bins/sora.x86","offline","malware_download","elf|mirai","154.197.124.196","154.197.124.196","147176","TH"
"2023-10-18 16:24:06","http://154.197.124.196/bins/sora.x86_64","offline","malware_download","elf|Mirai","154.197.124.196","154.197.124.196","147176","TH"
"2021-09-11 10:29:17","http://45.195.152.46:280/a.zip?=0","offline","malware_download","zip","45.195.152.46","45.195.152.46","147176","TH"
# of entries: 108