##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2025-07-05 19:14:36 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS18779
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2023-05-23 13:07:09","https://preneticsresearchind.com/mnso/?1","offline","malware_download","geofenced|js|Pikabot|Qakbot|USA","preneticsresearchind.com","45.39.160.4","18779","US"
"2023-03-02 12:38:36","http://www.nipunpharmaskill.com/impresa/Agenzia_Entrate.zip","offline","malware_download","agenziaentrate|BIG|Gozi|ITA|malware|stealer","www.nipunpharmaskill.com","203.160.126.42","18779","US"
"2022-11-07 21:36:10","http://www.nipunpharmaskill.com/fonts/jHAVDcbRKKHP24FAf/","offline","malware_download","emotet|epoch5|exe|heodo","www.nipunpharmaskill.com","203.160.126.42","18779","US"
"2022-11-03 12:10:13","http://www.nipunpharmaskill.com/fonts/CgI1tduJfA/","offline","malware_download","dll|emotet|epoch5|Heodo","www.nipunpharmaskill.com","203.160.126.42","18779","US"
"2022-03-14 08:57:07","https://www.nipunpharmaskill.com/css/xm17DssGXjChcmm/","offline","malware_download","dll|emotet|epoch4|Heodo","www.nipunpharmaskill.com","203.160.126.42","18779","US"
"2021-10-17 06:35:12","https://www.plug2field.com/b/msoffices.bin","offline","malware_download","encrypted|GuLoader","www.plug2field.com","104.165.144.156","18779","IT"
"2021-10-15 11:25:04","https://lypaka.com/rerumqui/incupiditate-143263255","offline","malware_download","qbot","lypaka.com","104.143.156.11","18779","US"
"2021-10-15 11:24:12","https://lypaka.com/rerumqui/adconsectetur-143476727","offline","malware_download","qbot","lypaka.com","104.143.156.11","18779","US"
"2021-10-15 11:24:12","https://lypaka.com/rerumqui/involuptas-143326858","offline","malware_download","qbot","lypaka.com","104.143.156.11","18779","US"
"2021-10-15 11:24:12","https://lypaka.com/rerumqui/quiavoluptatem-143348836","offline","malware_download","qbot","lypaka.com","104.143.156.11","18779","US"
"2021-10-15 11:24:12","https://lypaka.com/rerumqui/quisoluta-143183245","offline","malware_download","qbot","lypaka.com","104.143.156.11","18779","US"
"2021-10-15 11:24:12","https://lypaka.com/rerumqui/voluptasfugit-143442331","offline","malware_download","qbot","lypaka.com","104.143.156.11","18779","US"
"2021-02-18 09:18:06","http://zhuoxinwei.com/work.exe","offline","malware_download","exe|njrat","zhuoxinwei.com","104.165.254.230","18779","US"
"2021-02-18 09:08:35","http://zhuoxinwei.com/bb.exe","offline","malware_download","exe|njrat","zhuoxinwei.com","104.165.254.230","18779","US"
"2021-02-18 06:27:04","http://www.zhuoxinwei.com/bb.exe","offline","malware_download","exe|NjRAT|RAT","www.zhuoxinwei.com","104.165.254.230","18779","US"
"2021-02-16 14:06:07","http://www.zhuoxinwei.com/work.exe","offline","malware_download","AveMariaRAT|exe|NjRAT|RAT","www.zhuoxinwei.com","104.165.254.230","18779","US"
"2021-01-05 11:02:05","http://becodofotografo.com/wp-includes/L7IA3kxpasPIjYc2IvVxlu06sMygAvvdDOK3wUO6rGjV6aCLL2eRNJ/","offline","malware_download","doc|emotet|epoch2|Heodo","becodofotografo.com","172.120.150.66","18779","US"
"2020-12-15 14:03:06","https://richardsilk.com/wp-content/plugins/updraftplus/images/addons-images/Zk8Iv9hirxx0i.php","offline","malware_download","dll|Dridex|php","richardsilk.com","45.39.60.94","18779","US"
"2020-11-24 02:25:04","http://142.252.253.149/bns/gang123isgodloluaintgettingthesebinslikedammwtf.x86","offline","malware_download","32-bit|ELF|x86-32","142.252.253.149","142.252.253.149","18779","US"
"2020-10-26 11:32:04","https://thepremiumplace.com/wp-content/5/","offline","malware_download","emotet|epoch1|exe|Heodo","thepremiumplace.com","172.120.150.71","18779","US"
"2020-10-19 11:05:07","https://shoeslifts.com/tempEP/a8Uq29itv44v6lT/","offline","malware_download","doc|emotet|epoch1|Heodo","shoeslifts.com","136.143.247.41","18779","US"
"2020-09-21 15:59:11","http://aizhanseo.com/wp-includes/OCT/NOOG1JsMU0g/","offline","malware_download","doc|emotet|epoch1|Heodo","aizhanseo.com","45.38.148.20","18779","US"
"2019-12-19 21:17:29","https://www.jwtrubber.com/wp-content/73LYb/","offline","malware_download","emotet|epoch1|exe|Heodo","www.jwtrubber.com","104.164.84.127","18779","US"
"2019-12-17 10:02:07","https://www.jwtrubber.com/wp-content/DOC/rcrhoc-81687-28-0fo9t-utp30k27l7/","offline","malware_download","doc|emotet|epoch2|heodo","www.jwtrubber.com","104.164.84.127","18779","US"
"2019-11-22 11:00:06","http://jobs.agraminfotech.com/cache/g2/","offline","malware_download","emotet|epoch2|exe|Heodo","jobs.agraminfotech.com","158.140.193.157","18779","US"
"2019-11-06 09:38:47","http://guard-your-health.com/wp-content/uploads/2019/09/fct.php","offline","malware_download","CZE|DOC|Dreambot","guard-your-health.com","45.39.160.74","18779","US"
"2019-09-30 08:50:33","https://firstfinancesllc.com/wp-content/ImhOFBzE/","offline","malware_download","emotet|epoch2|exe|Heodo","firstfinancesllc.com","158.140.193.88","18779","US"
"2019-07-01 07:24:15","http://www.kbubu.com/wp-includes/random_compat/ELPAY01PPG_pdf.jar","offline","malware_download","jar|stealer","www.kbubu.com","45.38.180.220","18779","US"
"2019-05-22 01:12:30","http://209.73.153.68/java8000","offline","malware_download","elf","209.73.153.68","209.73.153.68","18779","US"
"2019-04-29 08:28:21","http://stateunico.com/wp-content/SH/","offline","malware_download","emotet|epoch1|exe|Heodo","stateunico.com","104.164.229.72","18779","US"
"2019-04-23 06:46:03","http://stateunico.com/wp-content/vs7ghh-jgtpo-umypn/","offline","malware_download","doc|emotet|epoch2|Heodo","stateunico.com","104.164.229.72","18779","US"
"2019-04-17 13:35:04","http://stateunico.com/wp-content/WBqUi-VB3e5LiNBwDd4a_UOWihdXBs-REv/","offline","malware_download","Emotet|Heodo","stateunico.com","104.164.229.72","18779","US"
"2019-04-11 10:35:03","http://stateunico.com/wp-content/lwZY-KA7oxL9lilkDxD_eKyaOkis-gdh/","offline","malware_download","doc|emotet|epoch1|Heodo","stateunico.com","104.164.229.72","18779","US"
"2019-03-22 23:45:08","http://180-degree.com/jde/file/wMuac-R85HU_moUqo-DYu/","offline","malware_download","doc|emotet|epoch2|Heodo","180-degree.com","172.120.150.68","18779","US"
"2019-02-25 19:10:24","http://facebookmarketpro.com/neworder/Invoice.zip","offline","malware_download","Adwind|compressed|jar|java|jSocket|rat|zip","facebookmarketpro.com","104.164.229.203","18779","US"
"2019-01-21 18:11:25","http://aierswatch.com/wp-content/themes/baiila/fonts/ssj.jpg","offline","malware_download","exe|Ransomware.Troldesh","aierswatch.com","136.143.242.223","18779","US"
"2019-01-21 17:54:17","http://www.aierswatch.com/wp-content/themes/baiila/genericons/ssj.jpg","offline","malware_download","exe|Ransomware.Troldesh|Troldesh","www.aierswatch.com","136.143.242.223","18779","US"
"2019-01-21 17:12:27","http://aierswatch.com/wp-content/themes/baiila/genericons/ssj.jpg","offline","malware_download","exe|Ransomware.Troldesh|Troldesh","aierswatch.com","136.143.242.223","18779","US"
"2019-01-15 00:02:03","http://www.rome-apartments-it.com/JFyM-8G_q-Rg/PaymentStatus/US/Open-Past-Due-Orders","offline","malware_download","doc","www.rome-apartments-it.com","45.39.136.137","18779","US"
"2019-01-14 23:10:04","http://www.rome-apartments-it.com/JFyM-8G_q-Rg/PaymentStatus/US/Open-Past-Due-Orders/","offline","malware_download","doc|emotet|epoch2|Heodo","www.rome-apartments-it.com","45.39.136.137","18779","US"
"2018-12-17 16:49:38","http://medpatchrx.com/NaLk-gvrXlMXZMSk25e_MhjNsVOmB-Z2/","offline","malware_download","doc|emotet|heodo","medpatchrx.com","104.164.229.16","18779","US"
"2018-12-14 12:23:12","http://medpatchrx.com/6Fqd47epBFymYjzq/de_DE/Firmenkunden/","offline","malware_download","emotet|epoch2|Heodo","medpatchrx.com","104.164.229.16","18779","US"
"2018-12-12 09:28:13","http://medpatchrx.com/Telekom/Rechnung/112018/","offline","malware_download","emotet|epoch1|Heodo","medpatchrx.com","104.164.229.16","18779","US"
"2018-12-07 00:52:12","http://medpatchrx.com/Document/En/Important-Please-Read/","offline","malware_download","doc|emotet|epoch2|Heodo","medpatchrx.com","104.164.229.16","18779","US"
"2018-12-07 00:52:11","http://medpatchrx.com/Document/En/Important-Please-Read","offline","malware_download","doc|emotet|epoch2|Heodo","medpatchrx.com","104.164.229.16","18779","US"
"2018-12-05 07:49:06","http://166.88.102.90/ps23e","offline","malware_download","elf","166.88.102.90","166.88.102.90","18779","US"
"2018-12-05 00:53:03","http://medpatchrx.com/files/US/Invoice-for-h/z-11/30/2018","offline","malware_download","doc|Heodo","medpatchrx.com","104.164.229.16","18779","US"
"2018-11-28 04:10:48","http://medpatchrx.com/245PPS/BIZ/Personal/","offline","malware_download","doc|emotet|epoch2|Gozi|Heodo","medpatchrx.com","104.164.229.16","18779","US"
"2018-11-27 09:51:06","http://medpatchrx.com/245PPS/BIZ/Personal","offline","malware_download","doc|emotet|Gozi|heodo","medpatchrx.com","104.164.229.16","18779","US"
# of entries: 49