##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2025-11-17 19:24:52 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS212136
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2024-12-04 12:05:36","http://176.111.174.138:8000/payload1.bat","offline","malware_download","payload","176.111.174.138","176.111.174.138","212136","RU"
"2024-11-27 10:29:05","http://176.111.174.138:8000/cmd.cmd","offline","malware_download","malware|opendir","176.111.174.138","176.111.174.138","212136","RU"
"2024-11-27 10:29:04","http://176.111.174.138:8000/ON.bat","offline","malware_download","malware|opendir","176.111.174.138","176.111.174.138","212136","RU"
"2024-11-11 08:06:09","http://176.111.174.140/MJPVgHw.exe","offline","malware_download","exe|RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-11-09 12:53:07","https://176.111.174.71/1.jar","offline","malware_download","jar|LummaStealer","176.111.174.71","176.111.174.71","212136","RU"
"2024-11-07 11:51:14","http://176.111.174.138:8000/ngrok.exe","offline","malware_download","opendir","176.111.174.138","176.111.174.138","212136","RU"
"2024-11-07 11:51:09","http://176.111.174.138:8000/NG1.bat","offline","malware_download","opendir","176.111.174.138","176.111.174.138","212136","RU"
"2024-11-07 11:51:09","http://176.111.174.138:8000/NG2.bat","offline","malware_download","opendir","176.111.174.138","176.111.174.138","212136","RU"
"2024-11-07 11:51:09","http://176.111.174.138:8000/VmManagedSetup.exe","offline","malware_download","opendir|SystemBC","176.111.174.138","176.111.174.138","212136","RU"
"2024-11-06 07:58:07","https://176.111.174.140/api/loader.bin","offline","malware_download","","176.111.174.140","176.111.174.140","212136","RU"
"2024-11-06 07:58:07","https://176.111.174.140/osupdater.exe","offline","malware_download","RedLineStealer|ReflectiveLoader","176.111.174.140","176.111.174.140","212136","RU"
"2024-11-04 07:05:06","http://176.111.174.140/Diamotrix.exe","offline","malware_download","64|exe|RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-11-02 17:03:06","http://176.111.174.140/zcc.exe","offline","malware_download","pe|RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-11-01 05:23:05","http://176.111.174.140/dropper64.exe","offline","malware_download","64|exe|RedLineStealer|ReflectiveLoader","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-31 20:58:06","http://176.111.174.140/dropper.zip","offline","malware_download","RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-27 11:53:07","http://176.111.174.140/osupdater.exe","offline","malware_download","RedLineStealer|ReflectiveLoader","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-27 11:53:07","http://176.111.174.140/zx.zip","offline","malware_download","","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-27 11:53:06","http://176.111.174.140/nova.exe","offline","malware_download","","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-25 06:52:06","http://176.111.174.140/api/xbot64.bin","offline","malware_download","bin","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-25 06:52:06","http://176.111.174.140/api/xstealer.bin","offline","malware_download","bin","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-25 06:52:05","http://176.111.174.140/api/xloader.bin","offline","malware_download","bin","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-19 19:35:05","http://176.111.174.140/abx.exe","offline","malware_download","exe","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-19 17:16:05","http://176.111.174.140/api/bot.bin","offline","malware_download","bin|TinyNuke","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-19 12:06:05","http://176.111.174.140/x.exe","offline","malware_download","exe|RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-19 08:58:04","http://176.111.174.140/Sniffthem.exe","offline","malware_download","exe|RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-19 08:54:05","http://176.111.174.140/t9bdjZsL2/Plugins/clip.dll","offline","malware_download","Amadey","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-19 08:54:05","http://176.111.174.140/t9bdjZsL2/Plugins/clip64.dll","offline","malware_download","Amadey","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-19 08:54:05","http://176.111.174.140/t9bdjZsL2/Plugins/cred.dll","offline","malware_download","Amadey","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-19 08:45:06","http://176.111.174.140/x.zip","offline","malware_download","RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-18 09:56:07","http://176.111.174.140/drp.exe","offline","malware_download","64|exe","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-18 08:48:34","http://176.111.174.140//zx.exe","offline","malware_download","exe","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-18 00:24:34","http://176.111.174.140/t9bdjZsL2/Plugins/cred64.dll","offline","malware_download","64|Amadey|exe","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-17 22:33:35","http://176.111.174.140/nuke.exe","offline","malware_download","exe|RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-17 17:47:32","http://176.111.174.140/api/bot64.bin","offline","malware_download","amadey|Meterpreter|opendir|stealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-17 17:47:32","http://176.111.174.140/s.exe","offline","malware_download","amadey|opendir|stealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-17 17:47:32","http://176.111.174.140/ywx.exe","offline","malware_download","amadey|opendir|stealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-15 17:55:35","http://176.111.174.140/api/loader.bin","offline","malware_download","bin","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-03 06:40:06","http://176.111.174.140/2/api/bot64.bin","offline","malware_download","","176.111.174.140","176.111.174.140","212136","RU"
"2024-10-03 06:40:06","http://176.111.174.140/2/api/loader.bin","offline","malware_download","","176.111.174.140","176.111.174.140","212136","RU"
"2024-09-23 18:11:08","http://176.111.174.140/wsd.exe","offline","malware_download","","176.111.174.140","176.111.174.140","212136","RU"
"2024-09-21 19:28:33","http://176.111.174.140/api/diamotrix.pack","offline","malware_download","","176.111.174.140","176.111.174.140","212136","RU"
"2024-09-21 19:28:33","http://176.111.174.140/api/nuSjygs.pack","offline","malware_download","DiamotrixClipper","176.111.174.140","176.111.174.140","212136","RU"
"2024-09-21 19:28:33","http://176.111.174.140/fck.exe","offline","malware_download","","176.111.174.140","176.111.174.140","212136","RU"
"2024-09-21 19:28:33","http://176.111.174.140/psfod.exe","offline","malware_download","RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-09-21 19:28:33","http://176.111.174.140/tyh.exe","offline","malware_download","AsyncRAT","176.111.174.140","176.111.174.140","212136","RU"
"2024-09-21 19:28:08","http://176.111.174.140/xx.exe","offline","malware_download","","176.111.174.140","176.111.174.140","212136","RU"
"2024-09-21 10:58:05","http://176.111.174.109/kurwa","offline","malware_download","dropped-by-PrivateLoader|encrypted|Tofsee","176.111.174.109","176.111.174.109","212136","RU"
"2024-09-03 14:00:07","http://176.111.174.109/bobr","offline","malware_download","dropped-by-PrivateLoader|encrypted|exe|Tofsee","176.111.174.109","176.111.174.109","212136","RU"
"2024-08-26 06:14:17","http://176.111.174.140/test.exe","offline","malware_download","ASYNCRAT|PythonStealer|rat","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-26 06:14:16","http://176.111.174.140/zx.exe","offline","malware_download","ASYNCRAT|rat","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-26 06:14:07","http://176.111.174.140/nikmok1.exe","offline","malware_download","ASYNCRAT|rat|RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-26 06:14:06","http://176.111.174.140/nikmok2.exe","offline","malware_download","ASYNCRAT|rat|RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-16 15:40:07","http://176.111.174.140/sss.exe","offline","malware_download","AsyncRAT|exe|njrat","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-10 14:50:10","https://176.111.174.140/nikzbi.exe","offline","malware_download","exe|LucaStealer|RustyStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-10 14:50:08","https://176.111.174.140/event.php","offline","malware_download","AsyncRAT|exe|RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-10 14:50:08","https://176.111.174.140/Setup.exe","offline","malware_download","BlackMatter|exe|LockBit|RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-10 14:50:07","https://176.111.174.140/Ice.exe","offline","malware_download","exe|KeyzetsuClipper","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-10 14:50:07","https://176.111.174.140/nmi.exe","offline","malware_download","AsyncRAT|exe","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-10 14:50:07","https://176.111.174.140/ppgcgnyw.exe","offline","malware_download","AsyncRAT|exe","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-10 14:50:07","https://176.111.174.140/PwHnaA.exe","offline","malware_download","exe|StormKitty","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-10 14:50:07","https://176.111.174.140/uiztaux.exe","offline","malware_download","exe|RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-10 14:50:06","http://176.111.174.140/api.php","offline","malware_download","","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-10 14:50:05","https://176.111.174.140/svchac.exe","offline","malware_download","exe","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-10 14:50:05","https://176.111.174.140/zbi.exe","offline","malware_download","BlackMatter|exe","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-10 14:49:24","https://176.111.174.140/sahyu.exe","offline","malware_download","exe|PythonStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-10 14:49:06","http://176.111.174.140/Ice.exe","offline","malware_download","exe|KeyzetsuClipper","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-10 14:49:06","http://176.111.174.140/Setup.exe","offline","malware_download","BlackMatter|DiamotrixClipper|exe|LockBit|RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-10 14:49:06","https://176.111.174.140/svchost.exe","offline","malware_download","exe","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-04 13:38:04","http://176.111.174.140/nmi.exe","offline","malware_download","32|AsyncRAT|exe","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-04 12:11:06","http://176.111.174.140/server.exe","offline","malware_download","AsyncRAT|exe|njrat","176.111.174.140","176.111.174.140","212136","RU"
"2024-08-01 06:26:10","http://176.111.174.140/nikzbi.exe","offline","malware_download","64|exe|LucaStealer|RustyStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-07-31 05:06:34","http://176.111.174.140/PwHnaA.exe","offline","malware_download","32|exe|StormKitty","176.111.174.140","176.111.174.140","212136","RU"
"2024-07-31 05:02:07","http://176.111.174.140/schuste.exe","offline","malware_download","64|exe","176.111.174.140","176.111.174.140","212136","RU"
"2024-07-29 13:01:35","http://176.111.174.140/api/update2.pack","offline","malware_download","","176.111.174.140","176.111.174.140","212136","RU"
"2024-07-29 13:01:05","http://176.111.174.140/api/update.pack","offline","malware_download","Meterpreter","176.111.174.140","176.111.174.140","212136","RU"
"2024-07-29 07:50:35","http://176.111.174.140/svchost.exe","offline","malware_download","32|BlackMatter|exe|upx","176.111.174.140","176.111.174.140","212136","RU"
"2024-07-29 07:03:05","http://176.111.174.140/PPGcgnyW.exe","offline","malware_download","32|AsyncRAT|exe","176.111.174.140","176.111.174.140","212136","RU"
"2024-07-29 06:17:34","http://176.111.174.140/sahyu.exe","offline","malware_download","64|exe|PythonStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-07-29 06:17:33","http://176.111.174.140/event.php","offline","malware_download","64|AsyncRAT|DiamotrixClipper|exe|RedLineStealer|StormKitty","176.111.174.140","176.111.174.140","212136","RU"
"2024-07-29 05:32:14","http://176.111.174.140/svchac.exe","offline","malware_download","64|exe","176.111.174.140","176.111.174.140","212136","RU"
"2024-07-29 05:31:13","http://176.111.174.140/zbi.exe","offline","malware_download","64|BlackMatter|exe|LockBit|LucaStealer|RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-07-29 05:31:08","http://176.111.174.140/uIZtAux.exe","offline","malware_download","32|exe|RedLineStealer","176.111.174.140","176.111.174.140","212136","RU"
"2024-07-08 10:29:08","http://176.111.174.109/psyzh","offline","malware_download","exe|Payloads|PrivateLoader|Tofsee","176.111.174.109","176.111.174.109","212136","RU"
"2024-06-14 15:49:05","http://176.111.174.109/psyzh/","offline","malware_download","32|exe","176.111.174.109","176.111.174.109","212136","RU"
"2024-05-21 02:39:04","http://176.111.174.109/pelikan/","offline","malware_download","32|exe","176.111.174.109","176.111.174.109","212136","RU"
"2021-07-15 12:46:04","http://176.111.174.69/updatetes.exe","offline","malware_download","exe|RedLineStealer","176.111.174.69","176.111.174.69","212136","RU"
"2021-07-08 07:02:06","http://176.111.174.107/clienthost.exe","offline","malware_download","32|exe|RedLineStealer","176.111.174.107","176.111.174.107","212136","RU"
"2021-06-24 03:55:04","http://176.111.174.74/plot-mod0.exe","offline","malware_download","32|exe|RemcosRAT","176.111.174.74","176.111.174.74","212136","RU"
"2021-06-22 07:38:03","http://176.111.174.107/Api/GetFile?id=needbild/","offline","malware_download","32|exe","176.111.174.107","176.111.174.107","212136","RU"
"2021-05-25 08:55:03","http://176.111.174.74/AD-3389.exe","offline","malware_download","exe","176.111.174.74","176.111.174.74","212136","RU"
"2021-05-25 07:21:18","http://176.111.174.74/lot.exe","offline","malware_download","exe|RemcosRAT","176.111.174.74","176.111.174.74","212136","RU"
"2021-05-24 23:55:05","http://176.111.174.74/ACC.exe","offline","malware_download","exe|Maoloa|RedLineStealer|Stop","176.111.174.74","176.111.174.74","212136","RU"
"2021-05-24 21:47:03","http://176.111.174.55/hrqubt1jg5rbojf.exe","offline","malware_download","agenttelsa","176.111.174.55","176.111.174.55","212136","RU"
"2021-05-24 21:47:03","http://176.111.174.55/hx8mjsnhyhdkmaz.exe","offline","malware_download","agenttelsa","176.111.174.55","176.111.174.55","212136","RU"
"2021-05-24 21:42:04","http://176.111.174.74/1.exe","offline","malware_download","exe","176.111.174.74","176.111.174.74","212136","RU"
"2021-05-24 21:42:04","http://176.111.174.74/host.exe","offline","malware_download","exe","176.111.174.74","176.111.174.74","212136","RU"
"2021-05-05 11:35:04","http://176.111.174.114/Hnq8vS/plugins/scr.dll","offline","malware_download","exe","176.111.174.114","176.111.174.114","212136","RU"
"2021-05-04 19:43:03","http://176.111.174.59/uploads/files/krerb.exe","offline","malware_download","BazaLoader|bazarcall|bazarloader|exe|openfield","176.111.174.59","176.111.174.59","212136","RU"
"2021-05-04 17:57:03","http://176.111.174.59/uploads/files/teret.exe","offline","malware_download","BazaLoader|bazarcall|bazarloader|exe|openfield","176.111.174.59","176.111.174.59","212136","RU"
"2021-05-04 17:57:02","http://176.111.174.59/campo/go/go","offline","malware_download","bazarcall|bazarloader|exe|openfield","176.111.174.59","176.111.174.59","212136","RU"
"2021-05-03 05:46:04","http://176.111.174.114/Hnq8vS/plugins/cred.dll","offline","malware_download","Amadey|exe","176.111.174.114","176.111.174.114","212136","RU"
"2021-03-26 03:24:33","http://176.111.174.117/connector.exe","offline","malware_download","exe","176.111.174.117","176.111.174.117","212136","RU"
"2021-03-26 03:22:02","http://176.111.174.14/x.exe","offline","malware_download","exe","176.111.174.14","176.111.174.14","212136","RU"
"2021-03-26 03:12:04","http://176.111.174.249/j7csltegf/plugins/cred.dll","offline","malware_download","Amadey","176.111.174.249","176.111.174.249","212136","RU"
"2021-03-26 03:12:04","http://176.111.174.249/j7csltegf/plugins/scr.dll","offline","malware_download","","176.111.174.249","176.111.174.249","212136","RU"
"2021-03-26 03:11:35","http://176.111.174.67/Ra32.exe","offline","malware_download","exe|remcosrat","176.111.174.67","176.111.174.67","212136","RU"
"2021-03-24 15:01:04","http://176.111.174.66/cmd.exe","offline","malware_download","Amadey","176.111.174.66","176.111.174.66","212136","RU"
"2021-03-19 10:01:04","http://176.111.174.35/fO0r5se3dW/plugins/scr.dll","offline","malware_download","exe","176.111.174.35","176.111.174.35","212136","RU"
"2021-03-19 02:33:04","http://176.111.174.72/uploads/files/152.dll","offline","malware_download","dll|mon152|openfield|Trickbot","176.111.174.72","176.111.174.72","212136","RU"
"2021-03-19 02:33:03","http://176.111.174.72/uploads/files/151.dll","offline","malware_download","dll|mon151|openfield|trickbot","176.111.174.72","176.111.174.72","212136","RU"
"2021-03-18 21:01:03","http://176.111.174.35/fO0r5se3dW/plugins/cred.dll","offline","malware_download","Amadey|exe","176.111.174.35","176.111.174.35","212136","RU"
"2021-03-18 06:34:11","http://176.111.174.72/uploads/files/rev3.dll","offline","malware_download","dll|openfield|rev3|Trickbot","176.111.174.72","176.111.174.72","212136","RU"
"2021-03-16 23:39:05","http://176.111.174.72/uploads/files/142.dll","offline","malware_download","dll|mon142|Trickbot","176.111.174.72","176.111.174.72","212136","RU"
"2021-03-16 02:14:03","http://176.111.174.67/Ra27.exe","offline","malware_download","exe|RemcosRAT","176.111.174.67","176.111.174.67","212136","RU"
"2021-03-13 21:39:03","http://176.111.174.67/Ra24.exe","offline","malware_download","exe|RemcosRAT","176.111.174.67","176.111.174.67","212136","RU"
"2021-03-12 07:34:11","http://176.111.174.67/Ra21.exe","offline","malware_download","exe|RemcosRAT","176.111.174.67","176.111.174.67","212136","RU"
"2021-03-03 22:42:05","http://176.111.174.66/Hq13Vdsv2W/plugins/scr.dll","offline","malware_download","exe","176.111.174.66","176.111.174.66","212136","RU"
"2021-03-03 15:52:05","http://176.111.174.66/Hq13Vdsv2W/plugins/cred.dll","offline","malware_download","Amadey|exe","176.111.174.66","176.111.174.66","212136","RU"
"2021-03-01 06:54:05","http://176.111.174.63/download.php","offline","malware_download","exe","176.111.174.63","176.111.174.63","212136","RU"
"2021-02-26 08:01:07","http://176.111.174.67/Ch6.exe","offline","malware_download","exe|RemcosRAT","176.111.174.67","176.111.174.67","212136","RU"
"2021-02-13 13:06:04","http://176.111.174.67/7Ndd3SnW/plugins/scr.dll","offline","malware_download","exe","176.111.174.67","176.111.174.67","212136","RU"
"2021-02-12 12:00:06","http://176.111.174.14/1.exe","offline","malware_download","4444|exe|GlobeImposter|RedLineStealer|RemcosRAT","176.111.174.14","176.111.174.14","212136","RU"
"2021-02-12 12:00:06","http://176.111.174.14/2.exe","offline","malware_download","exe|RemcosRAT","176.111.174.14","176.111.174.14","212136","RU"
"2021-02-12 12:00:06","http://176.111.174.14/cr.exe","offline","malware_download","4444|exe","176.111.174.14","176.111.174.14","212136","RU"
"2021-02-12 08:45:05","http://176.111.174.14/ER.exe","offline","malware_download","exe","176.111.174.14","176.111.174.14","212136","RU"
"2021-02-11 12:52:03","http://176.111.174.67/7Ndd3SnW/plugins/cred.dll","offline","malware_download","Amadey|exe","176.111.174.67","176.111.174.67","212136","RU"
"2021-02-03 08:58:03","http://176.111.174.35/Fn39vld2cS/plugins/cred.dll","offline","malware_download","Amadey|exe","176.111.174.35","176.111.174.35","212136","RU"
"2021-02-02 22:43:04","http://176.111.174.35/Fn39vld2cS/plugins/scr.dll","offline","malware_download","exe","176.111.174.35","176.111.174.35","212136","RU"
# of entries: 128