############################################################################## # URLhaus ASN CSV Feed # # Generated on 2025-11-20 03:12:25 UTC # # # # For questions please refer to: # # https://urlhaus.abuse.ch/feeds/ # ############################################################################## # # Feed generated for AS148981 # # Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country "2025-06-07 20:57:16","http://121.62.63.223:90/lv.exe","offline","malware_download","exe|opendir","121.62.63.223","121.62.63.223","148981","CN" "2025-06-07 20:57:15","http://121.62.63.223:90/lvjs.exe","offline","malware_download","exe|opendir","121.62.63.223","121.62.63.223","148981","CN" "2025-04-27 18:30:35","http://111.173.104.176:8888/02.08.2022.exe","offline","malware_download","censys|CobaltStrike","111.173.104.176","111.173.104.176","148981","CN" "2025-02-02 17:14:06","http://111.173.104.246/02.08.2022.exe","offline","malware_download","censys|CobaltStrike|shellcode","111.173.104.246","111.173.104.246","148981","CN" "2024-12-09 16:26:13","http://111.173.118.193:81/02.08.2022.exe","offline","malware_download","censys|CobaltStrike|shellcode","111.173.118.193","111.173.118.193","148981","CN" "2024-12-06 14:47:07","http://121.62.21.150:6854/hbgfcvg.exe","offline","malware_download","CoinMiner|exe","121.62.21.150","121.62.21.150","148981","CN" "2024-12-06 14:46:08","http://121.62.21.150:6854/l64","offline","malware_download","billgates|CoinMiner","121.62.21.150","121.62.21.150","148981","CN" "2024-12-06 14:45:51","http://121.62.21.150:6854/jdgcfh.exe","offline","malware_download","CoinMiner|exe","121.62.21.150","121.62.21.150","148981","CN" "2024-12-06 14:45:13","http://121.62.21.150:6854/ghcgfc.exe","offline","malware_download","exe","121.62.21.150","121.62.21.150","148981","CN" "2024-11-11 07:47:08","http://121.62.18.25:6889/925.bin","offline","malware_download","donutloader","121.62.18.25","121.62.18.25","148981","CN" "2024-11-11 07:47:08","http://121.62.18.34:6881/927.bin","offline","malware_download","donutloader","121.62.18.34","121.62.18.34","148981","CN" "2024-10-20 19:08:18","http://111.173.104.246:8888/02.08.2022.exe","offline","malware_download","cobaltstrike","111.173.104.246","111.173.104.246","148981","CN" "2024-10-18 05:32:07","http://121.62.21.150:25896/jkvgv.exe","offline","malware_download","coinminer|exe","121.62.21.150","121.62.21.150","148981","CN" "2024-10-01 18:09:06","http://121.62.61.237:2024/test1/1-1/SPOOF.exe","offline","malware_download","exe|ua-wget","121.62.61.237","121.62.61.237","148981","CN" "2024-08-25 09:27:11","http://27.25.151.236:8080/fscan","offline","malware_download","fscan|opendir","27.25.151.236","27.25.151.236","148981","CN" "2024-08-25 09:27:04","http://27.25.151.236:8080/shell/reverse.elf","offline","malware_download","","27.25.151.236","27.25.151.236","148981","CN" "2024-08-25 09:26:19","http://27.25.151.236:8080/gost/gost","offline","malware_download","","27.25.151.236","27.25.151.236","148981","CN" "2024-08-25 09:25:07","http://27.25.151.236:8080/reverse.elf","offline","malware_download","elf","27.25.151.236","27.25.151.236","148981","CN" "2024-08-16 15:17:36","http://111.173.117.170:23333/02.08.2022.exe","offline","malware_download","cobaltstrike|shellcode","111.173.117.170","111.173.117.170","148981","CN" "2024-08-16 15:17:33","http://27.25.151.34:10001/02.08.2022.exe","offline","malware_download","cobaltstrike|shellcode","27.25.151.34","27.25.151.34","148981","CN" "2024-08-16 15:17:33","http://27.25.151.34:10002/02.08.2022.exe","offline","malware_download","cobaltstrike|shellcode","27.25.151.34","27.25.151.34","148981","CN" "2024-06-14 09:01:43","https://111.180.190.195/help.scr","offline","malware_download","coinminer|ransomware|TellYouThePass ","111.180.190.195","111.180.190.195","148981","CN" "2024-06-14 09:01:32","https://111.180.190.195/ade4f437.exe","offline","malware_download","ransomware|TellYouThePass ","111.180.190.195","111.180.190.195","148981","CN" "2024-06-14 09:00:21","https://111.180.190.195/Asusdebug.exe","offline","malware_download","ransomware|TellYouThePass ","111.180.190.195","111.180.190.195","148981","CN" "2024-06-14 09:00:15","https://111.180.190.195/READ_ME11.html","offline","malware_download","coinminer|ransomware|TellYouThePass ","111.180.190.195","111.180.190.195","148981","CN" "2024-06-14 09:00:14","https://111.180.190.195/123123.ps1","offline","malware_download","ransomware|TellYouThePass ","111.180.190.195","111.180.190.195","148981","CN" "2023-04-07 01:19:11","http://111.173.117.71:5566/server.exe","offline","malware_download","32|exe|YoungLotus","111.173.117.71","111.173.117.71","148981","CN" "2022-03-21 14:20:14","https://dnvqqk.cn/about/fW4aBbnaoOIDwjmpuqf/","offline","malware_download","dll|emotet|epoch5","dnvqqk.cn","111.180.192.140","148981","CN" "2021-09-30 14:14:10","http://yellowbo.cn/fast/faba50s4e01t22barcode.exe","offline","malware_download","","yellowbo.cn","27.25.152.241","148981","CN" "2021-09-30 14:14:10","http://yellowbo.cn/fast/facc50s8101t72barcode.ex","offline","malware_download","","yellowbo.cn","27.25.152.241","148981","CN" "2020-01-31 08:04:26","http://121.62.19.19:41303/Mozi.m","offline","malware_download","elf|Mirai|Mozi","121.62.19.19","121.62.19.19","148981","CN" "2020-01-15 23:05:21","http://111.173.81.193:48720/Mozi.m","offline","malware_download","elf|Mirai|Mozi","111.173.81.193","111.173.81.193","148981","CN" "2020-01-15 23:04:05","http://111.180.194.42:32850/Mozi.m","offline","malware_download","elf|Mirai|Mozi","111.180.194.42","111.180.194.42","148981","CN" "2019-12-29 19:12:07","http://111.180.194.39:45393/Mozi.m","offline","malware_download","elf|Mirai","111.180.194.39","111.180.194.39","148981","CN" "2019-12-23 13:25:38","http://121.62.22.129:45508/Mozi.m","offline","malware_download","elf|Mirai","121.62.22.129","121.62.22.129","148981","CN" "2018-08-10 04:24:05","http://www.51wh.top/10XPAYMENT/UH63790YHDB/77500/FDI-OUQS-Aug-10-2018/","offline","malware_download","doc|emotet","www.51wh.top","27.25.152.241","148981","CN" "2018-08-09 23:34:21","http://www.51wh.top/10XPAYMENT/UH63790YHDB/77500/FDI-OUQS-Aug-10-2018","offline","malware_download","doc|emotet|Heodo","www.51wh.top","27.25.152.241","148981","CN" "2018-08-08 05:54:22","http://www.51wh.top/ACH/MQI848277138YBQQQZ/5991937/TYA-KLMEG/","offline","malware_download","doc|emotet|Heodo","www.51wh.top","27.25.152.241","148981","CN" "2018-08-08 05:04:29","http://www.51wh.top/ACH/MQI848277138YBQQQZ/5991937/TYA-KLMEG","offline","malware_download","doc|emotet|Heodo","www.51wh.top","27.25.152.241","148981","CN" "2018-08-06 04:49:09","http://www.51wh.top/ewV4/","offline","malware_download","Heodo","www.51wh.top","27.25.152.241","148981","CN" "2018-08-03 12:01:30","http://www.51wh.top/ewV4","offline","malware_download","emotet|exe|Heodo","www.51wh.top","27.25.152.241","148981","CN" "2018-08-01 16:15:48","http://www.51wh.top/X7GsEzZVfJm/","offline","malware_download","doc|emotet|epoch2|Heodo","www.51wh.top","27.25.152.241","148981","CN" "2018-07-24 05:35:31","http://www.51wh.top/doc/EN_en/Jul2018/ACCOUNT61226449/","offline","malware_download","doc|emotet|epoch2|Heodo","www.51wh.top","27.25.152.241","148981","CN" "2018-07-24 04:12:44","http://www.51wh.top/doc/EN_en/Jul2018/ACCOUNT61226449","offline","malware_download","doc|emotet|heodo","www.51wh.top","27.25.152.241","148981","CN" "2018-07-16 06:57:51","http://www.51wh.top/doc/de/DETAILS/Rechnungszahlung-WR-81-86969/","offline","malware_download","doc|emotet|heodo","www.51wh.top","27.25.152.241","148981","CN" "2018-07-13 14:10:05","http://www.51wh.top/pdf/EN_en/FILE/Order-33253366135/","offline","malware_download","doc|emotet|Heodo","www.51wh.top","27.25.152.241","148981","CN" # of entries: 46