##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2025-12-26 21:04:53 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS19527
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2024-05-16 14:45:15","http://35.208.99.65:8000/Exploit.class","offline","malware_download","CVE-2021-44228|java-bytecode|log4j|log4shell","35.208.99.65","35.208.99.65","19527","US"
"2024-05-16 14:44:10","http://35.208.99.65:8000/log4j-shell-poc/Exploit.class","offline","malware_download","CVE-2021-44228|java-bytecode|log4j|log4shell","35.208.99.65","35.208.99.65","19527","US"
"2024-02-24 18:30:15","http://primalbrainhacks.com/download/redtail.arm7","offline","malware_download","CoinMiner|elf|mirai","primalbrainhacks.com","35.209.99.96","19527","US"
"2024-02-24 18:30:15","http://primalbrainhacks.com/download/redtail.i686","offline","malware_download","elf|mirai","primalbrainhacks.com","35.209.99.96","19527","US"
"2023-05-31 01:28:12","https://allcleaner.ca/vfshayqyog/rentfree.zip","offline","malware_download","geofenced|js|Obama265|Qakbot|Quakbot|USA|zip","allcleaner.ca","35.209.232.50","19527","US"
"2023-05-23 13:07:26","https://boardroomeducation.com/elmr/?1","offline","malware_download","geofenced|js|Pikabot|Qakbot|Quakbot|USA","boardroomeducation.com","35.219.200.13","19527","US"
"2023-05-22 14:53:51","https://houseot.com/um/?1","offline","malware_download","geofenced|js|Pikabot|Qakbot|Quakbot|USA","houseot.com","35.208.208.20","19527","US"
"2022-12-23 18:19:16","http://nivezainvestments.com/blog/Cancellation_181657_Dec23.zip","offline","malware_download","10900|geofenced|ISO|obama233|Qakbot|Qbot|Quakbot|USA|zip","nivezainvestments.com","35.209.4.189","19527","US"
"2022-11-02 01:56:38","https://mnhmongchamber.org/evs/qbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","mnhmongchamber.org","35.209.127.90","19527","US"
"2022-11-01 13:08:21","https://mnhmongchamber.org/evs/qakbot.zip","offline","malware_download","qbot","mnhmongchamber.org","35.209.127.90","19527","US"
"2022-11-01 10:07:26","https://mnhmongchamber.org/evs/allianz","offline","malware_download","bb|qbot|tr","mnhmongchamber.org","35.209.127.90","19527","US"
"2022-11-01 10:06:30","https://mnhmongchamber.org/evs/zueblin","offline","malware_download","bb|qbot|tr","mnhmongchamber.org","35.209.127.90","19527","US"
"2022-10-11 22:50:11","https://universeety.com/tm/nantuo","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","universeety.com","35.208.174.148","19527","US"
"2022-10-11 22:50:03","https://universeety.com/tm/teeds","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","universeety.com","35.208.174.148","19527","US"
"2022-10-11 22:50:01","https://universeety.com/tm/offerVankadari","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","universeety.com","35.208.174.148","19527","US"
"2022-10-11 22:50:00","https://universeety.com/tm/tatlasumiseo","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","universeety.com","35.208.174.148","19527","US"
"2022-10-11 22:49:59","https://universeety.com/tm/tsiumlli","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","universeety.com","35.208.174.148","19527","US"
"2022-10-11 22:49:43","https://universeety.com/tm/mbnaiia","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","universeety.com","35.208.174.148","19527","US"
"2022-10-11 22:49:15","https://universeety.com/tm/snetust","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","universeety.com","35.208.174.148","19527","US"
"2022-10-11 22:49:14","https://universeety.com/tm/iooefedirrrspcsnepr","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","universeety.com","35.208.174.148","19527","US"
"2022-10-11 22:49:14","https://universeety.com/tm/offerSchaff","offline","malware_download","BB|iso|L875|qakbot|qbot|quakbot|TR|zip","universeety.com","35.208.174.148","19527","US"
"2022-09-28 18:19:53","https://universeety.com/pns/moruboqalu","offline","malware_download","BB|H322|H436|qakbot|qbot|quakbot|TR|U425|zip","universeety.com","35.208.174.148","19527","US"
"2022-09-28 18:19:47","https://universeety.com/pns/ettuaqa","offline","malware_download","BB|H322|H436|qakbot|qbot|quakbot|TR|U425|zip","universeety.com","35.208.174.148","19527","US"
"2022-09-28 18:19:44","https://universeety.com/pns/nnsomion","offline","malware_download","BB|H322|H436|qakbot|qbot|quakbot|TR|U425|zip","universeety.com","35.208.174.148","19527","US"
"2022-09-28 18:19:42","https://universeety.com/pns/psivetcusli","offline","malware_download","BB|H322|H436|qakbot|qbot|quakbot|TR|U425|zip","universeety.com","35.208.174.148","19527","US"
"2022-09-28 18:19:37","https://universeety.com/pns/eidt","offline","malware_download","BB|H322|H436|qakbot|qbot|quakbot|TR|U425|zip","universeety.com","35.208.174.148","19527","US"
"2022-09-28 18:19:32","https://universeety.com/pns/miinuntidcqedu","offline","malware_download","BB|H322|H436|qakbot|qbot|quakbot|TR|U425|zip","universeety.com","35.208.174.148","19527","US"
"2022-09-28 18:09:56","https://polarismanagementindianapolis.com/esip/qnisbiaou","offline","malware_download","BB|H322|H436|qakbot|qbot|quakbot|TR|U425|zip","polarismanagementindianapolis.com","35.209.185.200","19527","US"
"2022-09-28 18:09:41","https://polarismanagementindianapolis.com/esip/ndeoonolrs","offline","malware_download","BB|H322|H436|qakbot|qbot|quakbot|TR|U425|zip","polarismanagementindianapolis.com","35.209.185.200","19527","US"
"2022-09-28 18:09:33","https://polarismanagementindianapolis.com/esip/txpebaumulovaoptlic","offline","malware_download","BB|H322|H436|qakbot|qbot|quakbot|TR|U425|zip","polarismanagementindianapolis.com","35.209.185.200","19527","US"
"2022-09-28 18:09:31","https://polarismanagementindianapolis.com/esip/udeeesrtnt","offline","malware_download","BB|H322|H436|qakbot|qbot|quakbot|TR|U425|zip","polarismanagementindianapolis.com","35.209.185.200","19527","US"
"2022-09-28 18:09:17","https://polarismanagementindianapolis.com/esip/tuoes","offline","malware_download","BB|H322|H436|qakbot|qbot|quakbot|TR|U425|zip","polarismanagementindianapolis.com","35.209.185.200","19527","US"
"2022-04-28 03:43:15","https://grupoiamsa.mx/ork/ZIf/cYH/z73/YRabwZN.zip","offline","malware_download","b-TDS|obama180|Qakbot|qbot|Quakbot|zip","grupoiamsa.mx","35.209.14.10","19527","US"
"2022-04-28 03:43:09","https://grupoiamsa.mx/ork/MWXd4Z6GYA.zip","offline","malware_download","b-TDS|obama180|Qakbot|qbot|Quakbot|zip","grupoiamsa.mx","35.209.14.10","19527","US"
"2022-04-28 03:43:06","https://grupoiamsa.mx/ork/RiqNcN5g5r.zip","offline","malware_download","b-TDS|obama180|Qakbot|qbot|Quakbot|zip","grupoiamsa.mx","35.209.14.10","19527","US"
"2022-04-28 03:43:05","https://grupoiamsa.mx/ork/EUqzfKj0Zm.zip","offline","malware_download","b-TDS|obama180|Qakbot|qbot|Quakbot|zip","grupoiamsa.mx","35.209.14.10","19527","US"
"2022-04-28 03:43:02","https://grupoiamsa.mx/ork/vf/04/Ml2Fy2gE.zip","offline","malware_download","b-TDS|obama180|Qakbot|qbot|Quakbot|zip","grupoiamsa.mx","35.209.14.10","19527","US"
"2022-04-28 03:42:59","https://grupoiamsa.mx/ork/0x/IQ/C9RbeHTT.zip","offline","malware_download","b-TDS|obama180|Qakbot|qbot|Quakbot|zip","grupoiamsa.mx","35.209.14.10","19527","US"
"2022-04-28 03:42:41","https://grupoiamsa.mx/ork/UusnpF42H5.zip","offline","malware_download","b-TDS|obama180|Qakbot|qbot|Quakbot|zip","grupoiamsa.mx","35.209.14.10","19527","US"
"2022-04-28 03:42:19","https://grupoiamsa.mx/ork/n/E9JYqqgzb.zip","offline","malware_download","b-TDS|obama180|Qakbot|qbot|Quakbot|zip","grupoiamsa.mx","35.209.14.10","19527","US"
"2022-04-14 01:35:17","https://ibrra.com.br/ufw/MkEKPfeQOQ.zip","offline","malware_download","b-TDS|obama175|Qakbot|qbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-14 01:35:08","https://ibrra.com.br/ufw/XaH/9O7/kvg/XREF0tu.zip","offline","malware_download","b-TDS|obama175|Qakbot|qbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-14 01:35:06","https://ibrra.com.br/ufw/u/laEB0gazt.zip","offline","malware_download","b-TDS|obama175|Qakbot|qbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-14 01:33:36","http://ibrra.com.br/ufw/zot/sum/0bt/yydytng.zip","offline","malware_download","b-TDS|obama175|Qakbot|qbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-14 01:33:34","http://ibrra.com.br/ufw/vmd/w4x/6xb/pgbudtz.zip","offline","malware_download","b-TDS|obama175|Qakbot|qbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-14 01:33:29","http://ibrra.com.br/ufw/y2p/ztc/uoe/wpzdvpt.zip","offline","malware_download","b-TDS|obama175|Qakbot|qbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-14 01:33:23","http://ibrra.com.br/ufw/lm/6d/90rwo84m.zip","offline","malware_download","b-TDS|obama175|Qakbot|qbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-14 01:33:19","http://ibrra.com.br/ufw/xah/9o7/kvg/xref0tu.zip","offline","malware_download","b-TDS|obama175|Qakbot|qbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-14 01:33:13","http://ibrra.com.br/ufw/u/laeb0gazt.zip","offline","malware_download","b-TDS|obama175|Qakbot|qbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-07 01:23:19","http://ibrra.com.br/ufw/XhmZpCG0vx.zip","offline","malware_download","b-TDS|obama174|Qakbot|qbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-07 01:23:06","http://ibrra.com.br/ufw/gEk7Me4fDn.zip","offline","malware_download","b-TDS|obama174|Qakbot|qbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-07 01:23:05","http://ibrra.com.br/ufw/m2hlICYoyI.zip","offline","malware_download","b-TDS|obama174|Qakbot|qbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-07 01:23:04","http://ibrra.com.br/ufw/9/f05ag6aH1.zip","offline","malware_download","b-TDS|obama174|Qakbot|qbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-06 21:30:18","https://ibrra.com.br/ufw/gEk7Me4fDn.zip","offline","malware_download","b-TDS|obama174|Qakbot|qbot|Quakbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-06 21:30:16","https://ibrra.com.br/ufw/6JX1ekelTK.zip","offline","malware_download","b-TDS|obama174|Qakbot|qbot|Quakbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-06 21:30:13","http://ibrra.com.br/ufw/6JX1ekelTK.zip","offline","malware_download","b-TDS|obama174|Qakbot|qbot|Quakbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-06 21:30:06","http://ibrra.com.br:443/ufw/6JX1ekelTK.zip","offline","malware_download","b-TDS|obama174|Qakbot|qbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-06 18:34:24","https://ibrra.com.br/ufw/9/f05ag6aH1.zip","offline","malware_download","b-TDS|Dridex|obama174|Qakbot|qbot|Quakbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-06 18:34:23","https://ibrra.com.br/ufw/m2hlICYoyI.zip","offline","malware_download","b-TDS|Dridex|obama174|Qakbot|qbot|Quakbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-06 18:34:16","https://ibrra.com.br/ufw/XhmZpCG0vx.zip","offline","malware_download","b-TDS|Dridex|obama174|Qakbot|qbot|Quakbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-06 18:33:57","https://ibrra.com.br/ufw/zOT/SUM/0BT/yydytNG.zip","offline","malware_download","b-TDS|Dridex|obama174|Qakbot|qbot|Quakbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2022-04-06 18:33:41","https://ibrra.com.br/ufw/LM/6D/90RWo84M.zip","offline","malware_download","b-TDS|obama174|Qakbot|qbot|Quakbot|zip","ibrra.com.br","35.208.232.71","19527","US"
"2021-12-06 23:52:12","http://bostonavenue.org/debitiscorporis/repudiandaenemo-8720036","offline","malware_download","chaserldr|Qakbot|Quakbot|TR|zip","bostonavenue.org","35.208.84.171","19527","US"
"2021-12-06 20:28:12","http://bostonavenue.org/debitiscorporis/utomnis-8582611","offline","malware_download","chaserldr|Qakbot|Quakbot|TR|zip","bostonavenue.org","35.208.84.171","19527","US"
"2021-12-06 13:16:21","http://bostonavenue.org/debitiscorporis/quaeratnostrum-8794223","offline","malware_download","qbot|Quakbot|tr","bostonavenue.org","35.208.84.171","19527","US"
"2021-12-04 05:23:15","http://bostonavenue.org/debitiscorporis/ethic-8761100","offline","malware_download","chaserldr|Qakbot|Quakbot|TR|zip","bostonavenue.org","35.208.84.171","19527","US"
"2021-12-04 00:14:12","http://bostonavenue.org/debitiscorporis/autemlaborum-8490054","offline","malware_download","chaserldr|Qakbot|Quakbot|TR|zip","bostonavenue.org","35.208.84.171","19527","US"
"2021-12-04 00:14:12","http://bostonavenue.org/debitiscorporis/autrepellendus-8610213","offline","malware_download","chaserldr|Qakbot|Quakbot|TR|zip","bostonavenue.org","35.208.84.171","19527","US"
"2021-12-03 18:42:13","http://bostonavenue.org/debitiscorporis/numquamid-8633174","offline","malware_download","chaserldr|Qakbot|Quakbot|TR|zip","bostonavenue.org","35.208.84.171","19527","US"
"2021-12-03 17:58:37","http://bostonavenue.org/debitiscorporis/autaut-9687529","offline","malware_download","chaserldr|Qakbot|Quakbot|TR|zip","bostonavenue.org","35.208.84.171","19527","US"
"2021-12-03 17:58:35","http://bostonavenue.org/debitiscorporis/eaducimus-9137893","offline","malware_download","chaserldr|Qakbot|Quakbot|TR|zip","bostonavenue.org","35.208.84.171","19527","US"
"2021-09-24 18:35:46","https://hvacsupportservices.com/ipsam-incidunt/documents.zip","offline","malware_download","squirrelwaffle|TR|zip","hvacsupportservices.com","35.209.222.54","19527","US"
"2021-09-17 13:42:05","https://cablingpoint.com/ByH5NDoE3kQA/pt.html","offline","malware_download","dll|SquirrelWaffle|TR","cablingpoint.com","35.208.104.210","19527","US"
"2021-06-17 17:57:04","https://bostonavenue.org/dereck-doyle/Olivia.Brown-91.zip","offline","malware_download","html|Qakbot|Qbot|SilentBuilder|TR|zip","bostonavenue.org","35.208.84.171","19527","US"
"2021-06-17 17:49:03","http://bostonavenue.org/dereck-doyle/sales-29.zip","offline","malware_download","qakbot|qbot","bostonavenue.org","35.208.84.171","19527","US"
"2021-06-16 18:46:05","https://bostonavenue.org/katelynn-shields/NoahWilliams-10.zip","offline","malware_download","html|Qakbot|Qbot|SilentBuilder|TR|zip","bostonavenue.org","35.208.84.171","19527","US"
"2021-06-16 17:00:05","https://bostonavenue.org/katelynn-shields/William.Jones-49.zip","offline","malware_download","html|Qakbot|Qbot|SilentBuilder|TR|zip","bostonavenue.org","35.208.84.171","19527","US"
"2021-06-09 16:25:16","https://bostonavenue.org/freddie-runte/Oliver.Garcia-86.zip","offline","malware_download","html|Qakbot|Qbot|SilentBuilder|TR|zip","bostonavenue.org","35.208.84.171","19527","US"
"2021-05-24 16:55:13","https://salvadorstore.com/terrence-gaylord/LiamJohnson-33.zip","offline","malware_download","b-TDS|html|Qakbot|Qbot|SilentBuilder|TR|zip","salvadorstore.com","35.209.232.50","19527","US"
"2021-05-20 16:12:05","https://dmclinicalresearch.com/carleton-kulas/OliverGarcia-4.zip","offline","malware_download","b-TDS|html|Qakbot|Qbot|SilentBuilder|TR|zip","dmclinicalresearch.com","35.208.123.143","19527","US"
"2020-12-30 22:26:05","http://wcpaherrin.net/q/jg/","offline","malware_download","emotet|epoch2|exe|heodo","wcpaherrin.net","35.209.159.244","19527","US"
"2020-12-21 17:04:07","http://azraktours.com/wp-content/NWF9jC/","offline","malware_download","emotet|epoch1|exe|heodo","azraktours.com","35.209.122.3","19527","US"
"2020-12-16 21:02:19","http://luciabarrueta.com/ffvhfx/55555555555.jpg","offline","malware_download","Emotet|Heodo|qakbot|QuakBot","luciabarrueta.com","35.209.61.18","19527","US"
"2020-11-24 18:23:07","http://cpsirx.com/b824vo9.pdf","offline","malware_download","dridex","cpsirx.com","35.209.13.219","19527","US"
"2020-11-23 15:30:07","https://cpsirx.com/b824vo9.pdf","offline","malware_download","Dridex|Smoke Loader|SmokeLoader","cpsirx.com","35.209.13.219","19527","US"
"2020-10-21 20:37:05","https://marketcentsinc.com/_backup/Categorymap/Document/","offline","malware_download","doc|emotet|epoch2|Heodo","marketcentsinc.com","35.208.110.95","19527","US"
"2020-10-20 19:54:04","http://balancingelephants.com/copying-and/invoice/bpus8k1psksnz6kg3f00ckpibu1t3ry2/","offline","malware_download","doc|emotet|epoch2|Heodo","balancingelephants.com","35.208.202.169","19527","US"
"2020-10-19 12:09:04","https://marketcentsinc.com/_backup/cMf/","offline","malware_download","emotet|epoch1|exe|Heodo","marketcentsinc.com","35.208.110.95","19527","US"
"2020-10-17 06:35:08","http://balancingelephants.com/wp-content/kH/","offline","malware_download","emotet|epoch2|exe|Heodo","balancingelephants.com","35.208.202.169","19527","US"
"2020-10-16 17:47:05","http://creditadvisorsfl.com/wp-admin/DOC/9u6OYZ6jEYEOc3qqi6/","offline","malware_download","doc|emotet|epoch1|Heodo","creditadvisorsfl.com","35.209.150.36","19527","US"
"2020-09-18 05:33:07","http://azraktours.com/wp-admin/report/motd7bv2/z605589857747512g1863dmgmp9su5c0/","offline","malware_download","doc|emotet|epoch2|Heodo","azraktours.com","35.209.122.3","19527","US"
"2020-08-28 22:05:50","http://stepsprogram.ca/wp-admin/3830573164753/113812114818/b5eqgylhm-2363/","offline","malware_download","doc|emotet|epoch3|Heodo","stepsprogram.ca","35.208.236.147","19527","US"
"2020-08-26 17:06:08","http://azraktours.com/wp-admin/h/","offline","malware_download","emotet|epoch1|exe|Heodo","azraktours.com","35.209.122.3","19527","US"
"2020-08-24 07:24:08","http://azraktours.com/wp-admin/INC/iprx8mhgo7ye-000979508//","offline","malware_download","doc|Emotet|epoch3|Heodo","azraktours.com","35.209.122.3","19527","US"
"2020-08-21 15:43:07","http://azraktours.com/wp-admin/INC/iprx8mhgo7ye-000979508///","offline","malware_download","doc|emotet|epoch3|Heodo","azraktours.com","35.209.122.3","19527","US"
"2020-08-21 14:08:03","http://azraktours.com/wp-admin/INC/iprx8mhgo7ye-000979508/","offline","malware_download","doc|emotet|epoch3|Heodo","azraktours.com","35.209.122.3","19527","US"
"2020-08-11 11:38:07","http://azraktours.com/wp-admin/FRyQpDplD/","offline","malware_download","doc|emotet|epoch3|Heodo","azraktours.com","35.209.122.3","19527","US"
"2020-08-09 22:34:07","http://knightlycomputing.com/wp-content/includes/parts_service/tb5r0epqp9d/","offline","malware_download","doc|emotet|epoch2","knightlycomputing.com","35.209.204.224","19527","US"
"2020-08-07 00:12:04","https://www.knightlycomputing.com/wp-content/includes/parts_service/tb5r0epqp9d/","offline","malware_download","doc|emotet|epoch2|heodo|QuakBot","www.knightlycomputing.com","35.209.204.224","19527","US"
"2020-08-06 23:35:13","https://maximedge.com/cgi-bin/886309-oroSikz-section/verifiable-warehouse/yTVj6m5xHG7-wjjLIKNKJ3a/","offline","malware_download","doc|emotet|epoch1|Heodo|QuakBot","maximedge.com","35.208.95.108","19527","US"
"2020-07-31 16:00:34","http://knightlycomputing.com/old/wp-content/cache/minify/m_m9_mj/","offline","malware_download","emotet|epoch2|exe","knightlycomputing.com","35.209.204.224","19527","US"
"2020-07-30 22:25:26","https://maximedge.com/cgi-bin/protected_zone/verified_portal/3BKQ86C_72bytN3zIJ/","offline","malware_download","doc|emotet|epoch1|Heodo","maximedge.com","35.208.95.108","19527","US"
"2020-07-30 15:12:44","https://www.knightlycomputing.com/old/wp-content/cache/minify/m_m9_mj/","offline","malware_download","emotet|epoch2|exe|heodo","www.knightlycomputing.com","35.209.204.224","19527","US"
"2020-06-23 19:57:13","https://sonnysautomotivefayetteville.com/vijdgit/U6/d2/q9ei9ygn.zip","offline","malware_download","Qakbot|Quakbot|zip","sonnysautomotivefayetteville.com","35.209.53.85","19527","US"
"2020-06-23 19:52:04","https://sonnysautomotivefayetteville.com/vijdgit/C/8mnfwlQRV.zip","offline","malware_download","Qakbot|Quakbot|zip","sonnysautomotivefayetteville.com","35.209.53.85","19527","US"
"2020-06-23 16:34:18","https://sonnysautomotivefayetteville.com/sbztgmsdulp/7G/yT/I64OPHIs.zip","offline","malware_download","Qakbot|Quakbot|zip","sonnysautomotivefayetteville.com","35.209.53.85","19527","US"
"2020-06-12 18:14:15","http://bsaleasing.com/nkpcnfwgyjf/W/QZNKTad2D.zip","offline","malware_download","Qakbot|Quakbot|zip","bsaleasing.com","35.209.53.85","19527","US"
"2020-06-12 18:07:14","http://bsaleasing.com/nkpcnfwgyjf/tjk9is9Xni.zip","offline","malware_download","Qakbot|Quakbot|zip","bsaleasing.com","35.209.53.85","19527","US"
"2020-06-12 18:02:19","http://bsaleasing.com/nkpcnfwgyjf/EvXbWfpBOi.zip","offline","malware_download","Qakbot|Quakbot|zip","bsaleasing.com","35.209.53.85","19527","US"
"2020-06-12 17:43:14","http://bsaleasing.com/nkpcnfwgyjf/m/VfEJzS4CS.zip","offline","malware_download","Qakbot|Quakbot|zip","bsaleasing.com","35.209.53.85","19527","US"
"2020-06-12 16:02:31","http://bsaleasing.com/nkpcnfwgyjf/mF55WHPgpY.zip","offline","malware_download","Qakbot|Quakbot|zip","bsaleasing.com","35.209.53.85","19527","US"
"2020-06-11 22:30:23","http://bsaleasing.com/eypkeok/r/R2pYrISCg.zip","offline","malware_download","Qakbot|Quakbot|zip","bsaleasing.com","35.209.53.85","19527","US"
"2020-06-11 21:09:16","http://bsaleasing.com/eypkeok/A/AAvC509rT.zip","offline","malware_download","Qakbot|Quakbot|zip","bsaleasing.com","35.209.53.85","19527","US"
"2020-06-11 19:37:09","http://bsaleasing.com/eypkeok/47vQ9zFcer.zip","offline","malware_download","Qakbot|Quakbot|zip","bsaleasing.com","35.209.53.85","19527","US"
"2020-06-11 18:22:08","http://bsaleasing.com/eypkeok/FE/bz/jmWn0PEM.zip","offline","malware_download","Qakbot|Quakbot|zip","bsaleasing.com","35.209.53.85","19527","US"
"2020-06-11 18:06:36","http://bsaleasing.com/eypkeok/WGDJ5htKNN.zip","offline","malware_download","Qakbot|Quakbot|zip","bsaleasing.com","35.209.53.85","19527","US"
"2020-06-11 18:04:38","http://bsaleasing.com/eypkeok/FUCT18sQ1E.zip","offline","malware_download","Qakbot|Quakbot|zip","bsaleasing.com","35.209.53.85","19527","US"
"2020-06-11 17:36:37","http://bsaleasing.com/eypkeok/xdGi3nBWXP.zip","offline","malware_download","Qakbot|Quakbot|zip","bsaleasing.com","35.209.53.85","19527","US"
"2020-06-11 17:03:04","http://bsaleasing.com/nmoqdso/PAO3mTOFE4.zip","offline","malware_download","Qakbot|Quakbot|zip","bsaleasing.com","35.209.53.85","19527","US"
"2020-06-11 16:03:18","http://bsaleasing.com/nmoqdso/6/WCAt0IPGI.zip","offline","malware_download","Qakbot|Quakbot|zip","bsaleasing.com","35.209.53.85","19527","US"
"2020-06-11 15:58:32","http://bsaleasing.com/eypkeok/krxV4nHZmh.zip","offline","malware_download","Qakbot|Quakbot|zip","bsaleasing.com","35.209.53.85","19527","US"
"2020-06-11 15:43:04","http://bsaleasing.com/eypkeok/q/66hDgn1Ak.zip","offline","malware_download","Qakbot|Quakbot|zip","bsaleasing.com","35.209.53.85","19527","US"
"2020-01-28 23:27:04","http://richmondhenricotaxi.com/jrb/CF4t_ORdRNk7C_sector/open_forum/oq0pS_65G7u6jJJHzry/","offline","malware_download","doc|emotet|epoch1|Heodo","richmondhenricotaxi.com","35.209.143.105","19527","US"
"2020-01-28 23:11:04","http://richmondhenricotaxi.com/jrb/DOC/","offline","malware_download","doc|emotet|epoch2|Heodo","richmondhenricotaxi.com","35.209.143.105","19527","US"
"2020-01-28 10:48:04","http://langspark.com/pnhq/PLoqV56-9kKyJtarp1KOy-section/verifiable-portal/yvrir-6tv8w78763885y/","offline","malware_download","doc|emotet|epoch1|Heodo","langspark.com","35.208.4.243","19527","US"
"2019-12-18 17:06:07","http://golford.com/wp-includes/nhens61255/","offline","malware_download","emotet|epoch1|exe|Heodo","golford.com","35.208.103.86","19527","US"
"2019-10-10 07:11:47","https://saigonbowldenver.com/wp-includes/xpsxn453696/","offline","malware_download","Emotet|epoch1|exe|Heodo","saigonbowldenver.com","35.208.35.237","19527","US"
"2019-10-03 01:52:05","https://cjb-law.com/wellsfargo_online2/cDncHuJLtBKu/c16/","offline","malware_download","emotet|epoch1|Heodo","cjb-law.com","35.209.125.218","19527","US"
"2019-10-03 00:31:10","http://cjb-law.com/wellsfargo_online2/cDncHuJLtBKu/c16/","offline","malware_download","emotet|epoch1|exe","cjb-law.com","35.209.125.218","19527","US"
"2019-06-27 19:49:05","https://www.johnpaff.com/wp-content/themes/Avada/images/patterns/msg.jpg","offline","malware_download","exe|Troldesh","www.johnpaff.com","35.208.172.38","19527","US"
"2019-05-31 19:22:04","http://iglecia.com/threelittlepigsgotoyoga/lm/ZLQjJVvT/","offline","malware_download","doc|emotet|epoch2|Heodo","iglecia.com","35.209.142.169","19527","US"
"2019-05-07 09:22:05","http://surrogateparenting.com/wp-content/en8bufg-khi8q-vcvojym/","offline","malware_download","Emotet|epoch2|Heodo","surrogateparenting.com","35.208.158.154","19527","US"
"2019-05-07 00:16:04","http://iglecia.com/threelittlepigsgotoyoga/le857qcgyhkphk14_qt8cill0nl-123868710004/","offline","malware_download","Emotet|epoch2|Heodo","iglecia.com","35.209.142.169","19527","US"
"2019-04-12 06:02:23","http://iglecia.com/threelittlepigsgotoyoga/nRcy-IDcMbybkxtPZCrh_qHRteBJdS-B3r/","offline","malware_download","Emotet|Heodo","iglecia.com","35.209.142.169","19527","US"
"2019-03-13 06:57:22","http://iglecia.com/threelittlepigsgotoyoga/go16l-yg546-baojzny/","offline","malware_download","Emotet|Heodo","iglecia.com","35.209.142.169","19527","US"
"2019-03-06 09:01:04","https://asc.edu.ag/wp-admin/Invoice/P%20ORDER.exe","offline","malware_download","AgentTesla|exe","asc.edu.ag","35.208.253.55","19527","US"
"2019-03-06 06:29:42","http://asc.edu.ag/wp-admin/Invoice/P%20O.exe","offline","malware_download","","asc.edu.ag","35.208.253.55","19527","US"
"2019-02-06 22:39:06","http://iglecia.com/ATT/qPtWlRg2g_6IRgTLr_JA4WGX/","offline","malware_download","doc|emotet|epoch1|Heodo","iglecia.com","35.209.142.169","19527","US"
"2019-01-24 09:24:09","http://beyondvgt.com/MVKHNCJEMT4447348/Rechnung/Zahlungserinnerung/","offline","malware_download","doc|Emotet|Heodo","beyondvgt.com","35.208.253.55","19527","US"
"2018-12-14 12:35:13","http://iglecia.com/mF6/","offline","malware_download","emotet|epoch2|exe|Heodo","iglecia.com","35.209.142.169","19527","US"
"2018-11-08 00:56:55","http://www.remingtonarchitecture.com/wp-content/Corporation/EN_en/Paid-Invoices/","offline","malware_download","doc|emotet|epoch2","www.remingtonarchitecture.com","35.209.187.186","19527","US"
"2018-11-08 00:54:55","http://remingtonarchitecture.com/wp-content/Corporation/EN_en/Paid-Invoices/","offline","malware_download","doc|emotet|epoch2","remingtonarchitecture.com","35.209.187.186","19527","US"
"2018-11-07 18:06:19","http://remingtonarchitecture.com/wp-content/Corporation/EN_en/Paid-Invoices","offline","malware_download","Heodo","remingtonarchitecture.com","35.209.187.186","19527","US"
"2018-11-07 07:44:14","http://www.remingtonarchitecture.com/wp-content/Corporation/EN_en/Paid-Invoices","offline","malware_download","doc|emotet|heodo","www.remingtonarchitecture.com","35.209.187.186","19527","US"
"2018-10-04 09:55:22","http://righttrackeducation.com/0113MBLSSXQ/SWIFT/Personal/","offline","malware_download","doc|Emotet|Heodo","righttrackeducation.com","35.209.50.128","19527","US"
"2018-10-04 09:25:15","http://righttrackeducation.com/0113MBLSSXQ/SWIFT/Personal","offline","malware_download","doc|emotet|Heodo","righttrackeducation.com","35.209.50.128","19527","US"
"2018-09-22 00:03:09","http://righttrackeducation.com/4QMVVKF/WIRE/Smallbusiness","offline","malware_download","doc|Heodo","righttrackeducation.com","35.209.50.128","19527","US"
"2018-09-13 05:41:38","http://staffingandleasing.com/7759932SH/oamo/Personal/","offline","malware_download","doc|emotet|epoch2|Heodo","staffingandleasing.com","35.208.248.4","19527","US"
"2018-09-12 14:41:57","http://staffingandleasing.com/7759932SH/oamo/Personal","offline","malware_download","doc|emotet|Heodo","staffingandleasing.com","35.208.248.4","19527","US"
"2018-09-01 12:06:57","http://nalmac.com/wp-admin/maint/69-346580-5540127583-Rechnung.zip","offline","malware_download","DEU|Nymaim","nalmac.com","35.208.99.44","19527","US"
"2018-08-30 14:05:06","http://righttrackeducation.com/doc/US_us/Inv-93181-PO-2X348108/","offline","malware_download","Heodo","righttrackeducation.com","35.209.50.128","19527","US"
"2018-08-30 09:04:25","http://righttrackeducation.com/doc/US_us/Inv-93181-PO-2X348108","offline","malware_download","doc|emotet|Heodo","righttrackeducation.com","35.209.50.128","19527","US"
"2018-08-22 22:23:21","http://righttrackeducation.com/7UHVL/SEP/Commercial/","offline","malware_download","doc|emotet|Heodo","righttrackeducation.com","35.209.50.128","19527","US"
"2018-08-21 11:12:27","http://righttrackeducation.com/7UHVL/SEP/Commercial","offline","malware_download","doc|emotet|Heodo","righttrackeducation.com","35.209.50.128","19527","US"
"2018-08-16 03:39:17","http://righttrackeducation.com/KXeUcelPMcDJcF/","offline","malware_download","doc|emotet|Heodo","righttrackeducation.com","35.209.50.128","19527","US"
"2018-08-15 02:34:04","http://righttrackeducation.com/KXeUcelPMcDJcF","offline","malware_download","doc|emotet|Heodo","righttrackeducation.com","35.209.50.128","19527","US"
"2018-06-11 19:09:03","http://fullsizechevy.com/IRS-Letters-062018-030A/23/","offline","malware_download","doc|emotet|epoch2|Heodo","fullsizechevy.com","35.208.37.12","19527","US"
"2018-06-04 21:04:23","http://fullsizechevy.com/ups.com/WebTracking/WNR-61311531662/","offline","malware_download","doc|emotet|Heodo","fullsizechevy.com","35.208.37.12","19527","US"
"2018-06-01 17:35:13","http://fullsizechevy.com/Client/Payment/","offline","malware_download","doc|emotet|Heodo","fullsizechevy.com","35.208.37.12","19527","US"
"2018-05-30 10:00:58","http://fullsizechevy.com/ups.com/WebTracking/QR-3394680/","offline","malware_download","doc|emotet|Heodo","fullsizechevy.com","35.208.37.12","19527","US"
"2018-04-26 15:32:11","http://godleyfamilyfoundation.org/kkuu8/","offline","malware_download","emotet|payload","godleyfamilyfoundation.org","35.208.11.0","19527","US"
# of entries: 161