##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2025-11-19 21:16:24 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS24768
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2025-09-12 09:04:06","https://serralux.pt/Fagforeningskomiteerne.aca","offline","malware_download","GuLoader","serralux.pt","94.46.14.80","24768","PT"
"2025-09-11 08:51:09","https://serralux.pt/Janikas.chm","offline","malware_download","GuLoader","serralux.pt","94.46.14.80","24768","PT"
"2025-09-04 14:08:06","https://serralux.pt/Carkingly.toc","offline","malware_download","ascii|encoded|GuLoader|RAT|RemcosRAT","serralux.pt","94.46.14.80","24768","PT"
"2025-09-03 10:22:09","https://serralux.pt/Enersfranc.jpb","offline","malware_download","ascii|encoded|GuLoader","serralux.pt","94.46.14.80","24768","PT"
"2024-12-05 16:57:19","https://maxximbrasil.com/themes/config_20.ps1","offline","malware_download","koiloader","maxximbrasil.com","130.185.83.242","24768","PT"
"2024-12-05 16:57:09","http://maxximbrasil.com/themes/config_20.ps1","offline","malware_download","koiloader","maxximbrasil.com","130.185.83.242","24768","PT"
"2023-12-21 16:04:20","https://sifpos.com/arf/","offline","malware_download","Pikabot|TA577|TR|zip","sifpos.com","94.46.180.1","24768","PT"
"2023-12-19 15:06:53","https://cicol.pt/dca9/","offline","malware_download","TR","cicol.pt","109.71.43.243","24768","PT"
"2023-12-19 15:06:28","https://valebarqueiros.pt/n2ki9w/","offline","malware_download","TR","valebarqueiros.pt","94.46.181.141","24768","PT"
"2023-12-19 15:06:22","https://boaboca.pt/ubmc/","offline","malware_download","TR","boaboca.pt","109.71.40.72","24768","PT"
"2023-12-19 15:06:17","https://naturalfa.pt/yf3fn/","offline","malware_download","TR","naturalfa.pt","94.46.181.247","24768","PT"
"2023-12-19 15:06:01","https://ortoneves.pt/uhfs/","offline","malware_download","TR","ortoneves.pt","94.46.181.142","24768","PT"
"2023-12-13 15:40:14","https://quintadospinheirais.pt/nve/","offline","malware_download","js|PDF|Pikabot|TA577|TR|zip","quintadospinheirais.pt","94.46.167.185","24768","PT"
"2023-12-11 13:30:17","https://quintadospinheirais.pt/qal/","offline","malware_download","js|PDF|Pikabot|TA577|TR|zip","quintadospinheirais.pt","94.46.167.185","24768","PT"
"2023-11-02 14:28:21","https://quintadospinheirais.pt/oml/","offline","malware_download","Pikabot|TA577|TR|zip","quintadospinheirais.pt","94.46.167.185","24768","PT"
"2023-10-23 15:49:59","https://quintadospinheirais.pt/ilde/","offline","malware_download","TA577|TR","quintadospinheirais.pt","94.46.167.185","24768","PT"
"2023-06-20 20:36:10","http://masterforum-seguros.com/uhyovxkqlw/vodka.gif","offline","malware_download","geofenced|js|Obama269|Qakbot|TR|USA|zip","masterforum-seguros.com","130.185.84.81","24768","PT"
"2023-06-20 17:00:13","http://masterforum-seguros.com/uhyovxkqlw/uhyovxkqlw.gif","offline","malware_download","geofenced|js|Obama269|Qakbot|TR|USA|zip","masterforum-seguros.com","130.185.84.81","24768","PT"
"2023-06-15 16:15:27","https://procivlamego.pt/ci/?1","offline","malware_download","BB32|geofenced|js|Qakbot|USA","procivlamego.pt","94.46.180.247","24768","PT"
"2023-06-15 16:14:11","https://morcode.pt/eti/?1","offline","malware_download","BB32|geofenced|js|Qakbot|USA","morcode.pt","5.253.183.20","24768","PT"
"2023-06-15 11:03:52","https://morcode.pt/eti/?","offline","malware_download","BB32|geofenced|js|Qakbot|Quakbot|USA","morcode.pt","5.253.183.20","24768","PT"
"2023-05-15 17:22:09","https://hamiltonconte.com/mise/?1","offline","malware_download","BB28|geofenced|js|Qakbot|Quakbot|USA","hamiltonconte.com","94.46.25.188","24768","PT"
"2023-05-15 14:49:08","https://hamiltonconte.com/isio/?1","offline","malware_download","BB28|geofenced|js|Qakbot|Quakbot|USA","hamiltonconte.com","94.46.25.188","24768","PT"
"2023-03-08 12:15:18","https://tornomoita.com/RoMunITrLKUraN4728294.exe","offline","malware_download","exe|RedLineStealer","tornomoita.com","130.185.84.99","24768","PT"
"2023-03-06 14:38:10","https://rollsbeer.com/mise/Normativa.zip","offline","malware_download","gozi|ITA|mef|MISE|ursnif","rollsbeer.com","130.185.84.235","24768","PT"
"2023-03-06 11:39:10","https://rollsbeer.com/mise/Contratto.zip","offline","malware_download","gozi|ITA|MEF|MISE|ursnif","rollsbeer.com","130.185.84.235","24768","PT"
"2023-03-06 11:39:10","https://rollsbeer.com/mise/Gestione.zip","offline","malware_download","gozi|ITA|MEF|MISE|ursnif","rollsbeer.com","130.185.84.235","24768","PT"
"2023-03-06 10:40:08","https://rollsbeer.com/mise/Cliente.zip","offline","malware_download","gozi|ITA|MEF|MISE|ursnif","rollsbeer.com","130.185.84.235","24768","PT"
"2023-03-06 10:40:07","https://rollsbeer.com/mise/Disposizioni.zip","offline","malware_download","gozi|ITA|MEF|MISE|ursnif","rollsbeer.com","130.185.84.235","24768","PT"
"2023-03-06 10:40:07","https://rollsbeer.com/mise/Servizi.zip","offline","malware_download","gozi|ITA|MEF|MISE|ursnif","rollsbeer.com","130.185.84.235","24768","PT"
"2023-03-02 12:38:27","https://rollsbeer.com/impresa/Agenzia_Entrate.zip","offline","malware_download","agenziaentrate|BIG|Gozi|ITA|malware|stealer","rollsbeer.com","130.185.84.235","24768","PT"
"2023-02-02 23:15:29","https://orcinus.pt/RPI.php","offline","malware_download","BB12|ONE|Qakbot|Qbot|Quakbot|TR|zip","orcinus.pt","94.46.25.19","24768","PT"
"2023-02-02 23:12:22","https://istoesic.gmk.pt/EIB.php","offline","malware_download","BB12|ONE|Qakbot|Qbot|Quakbot|TR|zip","istoesic.gmk.pt","94.46.25.19","24768","PT"
"2023-01-31 16:20:44","https://ieet.pt/AD.php?","offline","malware_download","BB12|Qakbot|qbot|TR","ieet.pt","5.253.181.160","24768","PT"
"2023-01-03 11:47:12","https://studentkeep.org/download/Install_pass1234.zip","offline","malware_download","1234|password-protected|zip","studentkeep.org","94.46.168.83","24768","PT"
"2022-12-13 20:34:42","https://luarimagem.pt/nis/index.php?qbot.zip","offline","malware_download","675|BB10|ISO|nt005|qakbot|qbot|quakbot|TR|zip","luarimagem.pt","94.46.173.69","24768","PT"
"2022-11-29 06:08:12","https://soprocerto.pt/index1/Qoxao.jpeg","offline","malware_download","exe","soprocerto.pt","130.185.83.232","24768","PT"
"2022-11-29 06:08:09","https://soprocerto.pt/index1/Gaqejfx.exe","offline","malware_download",".NET|AgentTesla|exe|MSIL","soprocerto.pt","130.185.83.232","24768","PT"
"2022-11-21 18:07:11","https://staging.cls.pt/gtet/index.php?qbot.zip","offline","malware_download","BB07|iso|qakbot|qbot|quakbot|TR|XP11|zip","staging.cls.pt","94.46.25.121","24768","PT"
"2022-11-18 23:17:52","https://soprocerto.pt/index1/Lxkoliq.png","offline","malware_download","encrypted","soprocerto.pt","130.185.83.232","24768","PT"
"2022-11-18 23:02:46","https://soprocerto.pt/index1/Vsbzkhbjuaa.exe","offline","malware_download","AgentTesla|exe","soprocerto.pt","130.185.83.232","24768","PT"
"2022-11-17 19:25:22","https://staging.cls.pt/nqi/index.php?qbot.zip","offline","malware_download","BB06|iso|qakbot|qbot|quakbot|SK16|TR|zip","staging.cls.pt","94.46.25.121","24768","PT"
"2022-11-17 16:13:31","https://clyes.pt/idio/index.php?qbot.zip","offline","malware_download","BB06|iso|qakbot|qbot|quakbot|SK16|TR|zip","clyes.pt","94.46.25.121","24768","PT"
"2022-11-17 16:13:31","https://coelhostexteis.pt/essa/index.php?qbot.zip","offline","malware_download","BB06|iso|qakbot|qbot|quakbot|SK16|TR|zip","coelhostexteis.pt","94.46.25.121","24768","PT"
"2022-11-14 18:23:05","https://fluxportugal.pt/js/vendor/config_20.ps1","offline","malware_download","LgoogLoader|Nymaim|ps1|Smoke Loader|SmokeLoader|Socelars|Vidar","fluxportugal.pt","130.185.83.242","24768","PT"
"2022-11-14 09:41:05","https://maxximbrasil.com/themes/ab3.exe","offline","malware_download","","maxximbrasil.com","130.185.83.242","24768","PT"
"2022-11-14 09:41:05","https://maxximbrasil.com/themes/ab4.exe","offline","malware_download","","maxximbrasil.com","130.185.83.242","24768","PT"
"2022-11-14 09:41:05","https://maxximbrasil.com/themes/ab5.exe","offline","malware_download","","maxximbrasil.com","130.185.83.242","24768","PT"
"2022-11-14 09:41:05","https://maxximbrasil.com/themes/ab6.exe","offline","malware_download","","maxximbrasil.com","130.185.83.242","24768","PT"
"2022-11-13 05:01:10","http://maxximbrasil.com/themes/file.exe","offline","malware_download","32|exe","maxximbrasil.com","130.185.83.242","24768","PT"
"2022-11-11 06:00:18","http://fluxportugal.pt/js/vendor/file.exe","offline","malware_download","exe","fluxportugal.pt","130.185.83.242","24768","PT"
"2022-10-31 16:15:24","https://thebright.me/eolt/qakbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","thebright.me","109.71.40.130","24768","PT"
"2022-10-31 16:14:12","https://primeplay.pt/itin/qakbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","primeplay.pt","94.46.22.18","24768","PT"
"2022-10-31 16:05:28","https://amicalekarate.com/step/qakbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","amicalekarate.com","109.71.40.14","24768","PT"
"2022-07-19 18:17:03","https://a2p2pulsepower.org/wp-content/plugins/index.html","offline","malware_download","ascii|PowerShell|ps","a2p2pulsepower.org","130.185.83.189","24768","PT"
"2022-06-21 11:21:04","http://soprocerto.pt/mon/win.txt","offline","malware_download","AgentTesla|exe|opendir","soprocerto.pt","130.185.83.232","24768","PT"
"2022-06-21 11:21:04","http://soprocerto.pt/new/Gtmsm_Hpfrpuej.jpg","offline","malware_download","AgentTesla|encrypted","soprocerto.pt","130.185.83.232","24768","PT"
"2022-06-21 02:19:05","http://soprocerto.pt/new/Kwrgc_Tggqeres.jpg","offline","malware_download","LLDLoader","soprocerto.pt","130.185.83.232","24768","PT"
"2022-06-10 12:13:05","http://soprocerto.pt/new/bestseller_Ixckhsdg.jpg","offline","malware_download","exe","soprocerto.pt","130.185.83.232","24768","PT"
"2022-05-26 12:40:16","https://soprocerto.pt/updates/Frhxjwonl_Felaeaop.png","offline","malware_download",".net|Downloader|Generic|Malware","soprocerto.pt","130.185.83.232","24768","PT"
"2022-05-26 12:40:16","https://soprocerto.pt/updates/Kigbuc_Oitcqzab.bmp","offline","malware_download",".net|Downloader|Generic|Malware","soprocerto.pt","130.185.83.232","24768","PT"
"2022-05-26 12:40:06","https://soprocerto.pt/updates/Dfzxu_Swzalbtn.jpg","offline","malware_download",".net|Downloader|Generic|Malware","soprocerto.pt","130.185.83.232","24768","PT"
"2022-05-26 12:40:06","https://soprocerto.pt/updates/Firefox_Yfhqbtct.png","offline","malware_download",".net|Downloader|Generic|Malware","soprocerto.pt","130.185.83.232","24768","PT"
"2022-05-26 12:40:06","https://soprocerto.pt/updates/Fygvyy_Wahnaknv.png","offline","malware_download",".net|Downloader|Generic|Malware","soprocerto.pt","130.185.83.232","24768","PT"
"2022-05-26 12:40:06","https://soprocerto.pt/updates/Hjcaawkq_Urfwhodo.png","offline","malware_download",".net|Downloader|Generic|Malware","soprocerto.pt","130.185.83.232","24768","PT"
"2022-05-26 12:40:06","https://soprocerto.pt/updates/Kgqfkut_Tzmtfktq.png","offline","malware_download",".net|Downloader|Generic|Malware","soprocerto.pt","130.185.83.232","24768","PT"
"2022-05-26 12:40:06","https://soprocerto.pt/updates/Nreoyfqx_Oqqbizrc.png","offline","malware_download",".net|Downloader|Generic|Malware","soprocerto.pt","130.185.83.232","24768","PT"
"2022-05-26 12:40:06","https://soprocerto.pt/updates/Pydgqr_Shgoysly.png","offline","malware_download",".net|Downloader|Generic|Malware","soprocerto.pt","130.185.83.232","24768","PT"
"2022-02-28 15:32:05","http://caetano.work/dev/Wz/tI/3v62QJcV.zip","offline","malware_download","Qakbot|qbot|Quakbot","caetano.work","109.71.43.216","24768","PT"
"2021-12-09 18:13:10","https://renatalaranjo.com/wp-admin/waieCCXtlGt/","offline","malware_download","emotet|epoch4|redir-doc","renatalaranjo.com","94.46.14.215","24768","PT"
"2021-12-07 09:29:20","http://upwportugal.com/veroest/earumsequiqui","offline","malware_download","qbot|Quakbot|tr","upwportugal.com","94.46.15.223","24768","PT"
"2021-12-07 09:29:13","http://upwportugal.com/veroest/mollitiaeligendiqui","offline","malware_download","qbot|Quakbot|tr","upwportugal.com","94.46.15.223","24768","PT"
"2021-12-07 09:29:13","http://upwportugal.com/veroest/praesentiumdolorumenim","offline","malware_download","qbot|Quakbot|tr","upwportugal.com","94.46.15.223","24768","PT"
"2021-12-07 09:29:12","http://upwportugal.com/veroest/sittemporamollitia","offline","malware_download","qbot|Quakbot|tr","upwportugal.com","94.46.15.223","24768","PT"
"2021-12-07 09:29:11","http://upwportugal.com/veroest/sapienteimpeditut","offline","malware_download","qbot|Quakbot|tr","upwportugal.com","94.46.15.223","24768","PT"
"2021-06-18 12:28:12","https://facirc.pt/verdie-stoltenberg/OliviaGarcia-68.zip","offline","malware_download","html|Qakbot|Qbot|SilentBuilder|TR|zip","facirc.pt","94.46.169.84","24768","PT"
"2021-06-18 12:27:05","https://facirc.pt/verdie-stoltenberg/SophiaJones-31.zip","offline","malware_download","html|Qakbot|Qbot|SilentBuilder|TR|zip","facirc.pt","94.46.169.84","24768","PT"
"2021-05-14 12:38:14","https://britefil.com/ysSpi/Oliver.Jones-84.zip","offline","malware_download","b-TDS|html|Qakbot|Qbot|SilentBuilder|TR|zip","britefil.com","130.185.83.205","24768","PT"
"2021-05-13 18:05:19","https://britefil.com/ysSpi/Sophia.Jones-10.zip","offline","malware_download","b-TDS|html|Qakbot|Qbot|SilentBuilder|TR|zip","britefil.com","130.185.83.205","24768","PT"
"2021-05-13 16:32:20","http://britefil.com/ysSpi/nelsonp-34.zip","offline","malware_download","qbot","britefil.com","130.185.83.205","24768","PT"
"2021-05-13 16:31:27","http://britefil.com/ysSpi/rhall-69.zip","offline","malware_download","qbot","britefil.com","130.185.83.205","24768","PT"
"2021-05-13 16:31:24","http://britefil.com/ysSpi/fr_richard_gorman-52.zip","offline","malware_download","qbot","britefil.com","130.185.83.205","24768","PT"
"2021-05-13 16:31:23","http://britefil.com/ysSpi/rose_sanchez-13.zip","offline","malware_download","qbot","britefil.com","130.185.83.205","24768","PT"
"2021-05-13 16:31:07","http://britefil.com/ysSpi/lwood5-78.zip","offline","malware_download","qbot","britefil.com","130.185.83.205","24768","PT"
"2021-05-13 16:30:22","http://britefil.com/ysSpi/kbuher-12.zip","offline","malware_download","qbot","britefil.com","130.185.83.205","24768","PT"
"2021-05-13 16:30:15","http://britefil.com/ysSpi/jfaieta-87.zip","offline","malware_download","qbot","britefil.com","130.185.83.205","24768","PT"
"2021-05-13 16:30:08","http://britefil.com/ysSpi/deshaun_barfield-32.zip","offline","malware_download","qbot","britefil.com","130.185.83.205","24768","PT"
"2021-05-13 16:29:26","http://britefil.com/ysSpi/danl-39.zip","offline","malware_download","qbot","britefil.com","130.185.83.205","24768","PT"
"2021-05-13 13:40:26","https://britefil.com/ysSpi/Olivia.Williams-48.zip","offline","malware_download","b-TDS|html|Qakbot|Qbot|SilentBuilder|TR|zip","britefil.com","130.185.83.205","24768","PT"
"2021-05-12 19:38:42","https://britefil.com/ysSpi/Liam.Williams-54.zip","offline","malware_download","b-TDS|html|Qakbot|Qbot|SilentBuilder|TR|zip","britefil.com","130.185.83.205","24768","PT"
"2021-04-28 18:00:12","https://restauranteoprado.pt/zCJJC/LiamSmith-76.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","restauranteoprado.pt","94.46.15.223","24768","PT"
"2021-04-28 15:55:15","https://marioneves.com/dividend.php","offline","malware_download","doc|hancitor","marioneves.com","94.46.27.31","24768","PT"
"2021-04-28 15:55:15","https://marioneves.com/puree.php","offline","malware_download","doc|hancitor","marioneves.com","94.46.27.31","24768","PT"
"2021-04-28 14:11:56","https://viveirosdoprado.pt/p3EL2/EmmaGarcia-95.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","viveirosdoprado.pt","94.46.15.223","24768","PT"
"2021-04-28 14:11:54","https://ambitus.pt/S3KeY/OliviaSmith-38.zip","offline","malware_download","b-TDS|Qakbot|Qbot|SilentBuilder|TR|zip","ambitus.pt","94.46.14.80","24768","PT"
"2021-03-29 19:27:03","http://archive-admin.museubandasfilarmonicas.pt/assets/plugins/jquery-file-upload/server/php/files/tidings.php","offline","malware_download","doc|Hancitor","archive-admin.museubandasfilarmonicas.pt","94.46.180.78","24768","PT"
"2021-03-24 19:15:05","http://archive-admin.museubandasfilarmonicas.pt/assets/plugins/jquery-file-upload/server/php/files/brahman.php","offline","malware_download","doc|Hancitor","archive-admin.museubandasfilarmonicas.pt","94.46.180.78","24768","PT"
"2021-03-24 19:15:04","http://archive-admin.museubandasfilarmonicas.pt/assets/plugins/jquery-file-upload/server/php/files/coalesce.php","offline","malware_download","doc|Hancitor","archive-admin.museubandasfilarmonicas.pt","94.46.180.78","24768","PT"
"2021-03-01 15:58:10","https://news-theguestofhonour.com/qx1wvm9r.rar","offline","malware_download","Dridex","news-theguestofhonour.com","94.46.15.240","24768","PT"
"2021-03-01 15:58:07","https://news-ingolf.pt/vwkayli.tar","offline","malware_download","Dridex","news-ingolf.pt","94.46.15.240","24768","PT"
"2021-02-16 06:32:10","http://www.guardarunners.pt/wp-content/Host_IkaBCwUo229.bin","offline","malware_download","encrypted|GuLoader","www.guardarunners.pt","94.46.15.180","24768","PT"
"2020-12-03 02:15:06","https://archive.museubandasfilarmonicas.pt/mogvnzflk.rar","offline","malware_download","dll|dridex","archive.museubandasfilarmonicas.pt","94.46.180.78","24768","PT"
"2020-11-23 14:05:07","http://estruturas.metalpark.pt/auztym.jpg","offline","malware_download","Dridex","estruturas.metalpark.pt","94.46.180.78","24768","PT"
"2020-10-23 00:11:05","https://orlandasampaio.pt/wp-includes/Rbpz1P7/","offline","malware_download","doc|emotet|epoch2|Heodo","orlandasampaio.pt","130.185.83.205","24768","PT"
"2020-08-06 04:29:04","http://toursedestinos.pt/pdf/public/91fhrz4/","offline","malware_download","doc|emotet|epoch2|heodo|QuakBot","toursedestinos.pt","94.46.25.65","24768","PT"
"2020-07-28 19:06:03","http://www.famaval.pt/admin/9789631261_zPZ7I_sector/interior_area/009305713_QTysrR2/","offline","malware_download","doc|emotet|epoch1|heodo","www.famaval.pt","94.46.22.5","24768","PT"
"2020-07-21 18:55:27","http://gasamado.pt/ovnz/docs/","offline","malware_download","doc|emotet|epoch2|Heodo","gasamado.pt","130.185.83.197","24768","PT"
"2020-01-27 20:10:05","https://www.cachapuz.com/wp-admin/personal_section/additional_portal/108651327_5TLooQMmRFg/","offline","malware_download","doc|emotet|epoch1|Heodo","www.cachapuz.com","94.46.135.151","24768","PT"
"2020-01-24 20:43:14","https://pedoc.pt/images/kdXIGJR/","offline","malware_download","doc|emotet|epoch3|heodo","pedoc.pt","94.46.135.139","24768","PT"
"2020-01-24 14:48:41","https://www.cachapuz.com/8rbyz0/m77xt7/","offline","malware_download","emotet|epoch2|exe|Heodo","www.cachapuz.com","94.46.135.151","24768","PT"
"2020-01-13 15:32:03","http://anpnlimpezas.pt/trackback/private_disk/individual_forum/1589152606_Qw4ABrRMgYPSRd9/","offline","malware_download","doc|emotet|epoch1|Heodo","anpnlimpezas.pt","94.46.176.177","24768","PT"
"2019-11-05 08:30:06","http://www.pensaresaber.com/wp-content/uploads/7402s/","offline","malware_download","emotet|epoch2|exe|Heodo","www.pensaresaber.com","94.46.183.99","24768","PT"
"2019-10-31 15:35:23","http://dev.edit.work/wp-admin/5z427/","offline","malware_download","emotet|epoch1|exe|Heodo","dev.edit.work","94.46.170.84","24768","PT"
"2019-10-13 05:48:04","http://csprequiao.pt/wp-admin/RFQ34/RFQ36252oct.exe","offline","malware_download","AgentTesla|exe","csprequiao.pt","94.46.175.78","24768","PT"
"2019-07-01 03:32:05","http://frademetalurgica.pt/wp-content/uploads/2016/05/whee.exe","offline","malware_download","AgentTesla|exe","frademetalurgica.pt","130.185.84.204","24768","PT"
"2019-07-01 03:28:04","http://frademetalurgica.pt/wp-content/uploads/2016/05/ma.exe","offline","malware_download","AgentTesla|exe","frademetalurgica.pt","130.185.84.204","24768","PT"
"2019-07-01 03:20:05","http://frademetalurgica.pt/wp-content/uploads/2016/05/tur.exe","offline","malware_download","AgentTesla|exe","frademetalurgica.pt","130.185.84.204","24768","PT"
"2019-06-27 16:08:04","http://frademetalurgica.pt/wp-content/uploads/2016/05/obi.exe","offline","malware_download","AgentTesla|exe","frademetalurgica.pt","130.185.84.204","24768","PT"
"2019-06-27 16:04:04","http://frademetalurgica.pt/wp-content//uploads/2016/05/frn.exe","offline","malware_download","AgentTesla|exe","frademetalurgica.pt","130.185.84.204","24768","PT"
"2019-06-27 16:04:03","http://frademetalurgica.pt/wp-content//uploads/2016/05/jiz.exe","offline","malware_download","AgentTesla|exe","frademetalurgica.pt","130.185.84.204","24768","PT"
"2019-06-27 16:04:02","http://frademetalurgica.pt/wp-content//uploads/2016/05/obii.exe","offline","malware_download","AgentTesla|exe","frademetalurgica.pt","130.185.84.204","24768","PT"
"2019-06-27 14:08:04","http://frademetalurgica.pt/wp-content/uploads/2016/05/obii.exe","offline","malware_download","AgentTesla|exe","frademetalurgica.pt","130.185.84.204","24768","PT"
"2019-06-27 14:08:03","http://frademetalurgica.pt/wp-content/uploads/2016/05/frn.exe","offline","malware_download","AgentTesla|exe","frademetalurgica.pt","130.185.84.204","24768","PT"
"2019-06-27 14:08:03","http://frademetalurgica.pt/wp-content/uploads/2016/05/jiz.exe","offline","malware_download","AgentTesla|exe","frademetalurgica.pt","130.185.84.204","24768","PT"
"2019-06-27 14:07:05","http://frademetalurgica.pt/wp-content//uploads/2016/05/obi.exe","offline","malware_download","AgentTesla|exe","frademetalurgica.pt","130.185.84.204","24768","PT"
"2019-05-31 15:00:03","https://moveiscunhas.pt/wp-includes/sites/lykun01w7_ca7nh4v-328985992/","offline","malware_download","doc|emotet|epoch2|Heodo","moveiscunhas.pt","94.46.135.145","24768","PT"
"2019-04-26 22:58:03","http://brunocastanheira.com/wp-includes/Scan/KgqtLjuwL/","offline","malware_download","doc|emotet|epoch2","brunocastanheira.com","94.46.22.60","24768","PT"
"2019-04-23 07:52:03","http://brunocastanheira.com/wp-includes/legale/Frage/201904/","offline","malware_download","doc|emotet|epoch1|Heodo","brunocastanheira.com","94.46.22.60","24768","PT"
"2019-04-18 17:03:00","http://brunocastanheira.com/wp-includes/FILE/LFHBRqeTp2z/","offline","malware_download","doc|emotet|epoch2","brunocastanheira.com","94.46.22.60","24768","PT"
"2019-04-18 17:01:19","http://alojadossites.pt/wp-content/FILE/vOG9ra0nEKwk/","offline","malware_download","","alojadossites.pt","94.46.183.124","24768","PT"
"2019-04-16 05:59:33","http://brunocastanheira.com/wp-includes/t8zbkg-373y7-firtbx/","offline","malware_download","Emotet|Heodo","brunocastanheira.com","94.46.22.60","24768","PT"
"2019-04-10 21:37:09","http://brunocastanheira.com/wp-includes/NClw-q5hHeGt2Jf8KPc_TedNDunad-jS/","offline","malware_download","doc|emotet|epoch2|Heodo","brunocastanheira.com","94.46.22.60","24768","PT"
"2019-04-10 10:00:05","http://mxtips4you.com/wp-admin/legale/sich/De/2019-04/","offline","malware_download","Emotet|Heodo","mxtips4you.com","94.46.180.200","24768","PT"
"2019-04-08 19:50:05","http://brunocastanheira.com/wp-includes/sqhS-Gf7FsW8CfwsouaF_hybHfsvT-rVU/","offline","malware_download","doc|emotet|epoch1|Heodo","brunocastanheira.com","94.46.22.60","24768","PT"
"2019-03-26 13:06:03","http://jaramos.pt/assets/sec.myaccount.send.net/","offline","malware_download","doc|emotet|epoch1|Heodo","jaramos.pt","94.46.14.80","24768","PT"
"2019-03-26 12:52:04","http://inforshift.com/sw/secure.myaccount.send.com/","offline","malware_download","doc|emotet|epoch1|Heodo","inforshift.com","109.71.43.39","24768","PT"
"2019-03-22 18:04:05","http://casacachada.pt/cgi-bin/secure.accounts.resourses.biz/","offline","malware_download","doc|emotet|epoch1|Heodo","casacachada.pt","94.46.183.142","24768","PT"
"2019-03-13 09:11:03","https://fmmagalhaes.com/wp-admin/pxpx79-nzmh3ej-auih/","offline","malware_download","Emotet|Heodo","fmmagalhaes.com","94.46.167.106","24768","PT"
"2019-03-12 10:29:24","http://tecnimobile.com/wp-content/themes/main-repairpress-pt/repairpress-pt/vendor/composer/msg.jpg","offline","malware_download","exe|Troldesh","tecnimobile.com","94.46.183.180","24768","PT"
"2019-03-12 01:36:01","https://tecnimobile.com/wp-content/themes/main-repairpress-pt/repairpress-pt/vendor/composer/kia.zip","offline","malware_download","js|RUS|Troldesh|zip","tecnimobile.com","94.46.183.180","24768","PT"
"2019-03-05 15:43:02","http://jsantunes.pt/wp-content/9neen-f47s18-rhvq.view/","offline","malware_download","Emotet|Heodo","jsantunes.pt","94.46.175.74","24768","PT"
"2019-02-27 20:33:07","http://belgrafica.pt/5gg2a-hixf6-rtxq.view/","offline","malware_download","doc|emotet|epoch2","belgrafica.pt","94.46.169.4","24768","PT"
"2019-02-25 20:06:05","http://fundacao-algarvia.pt/corporation/Invoice_Notice/mtnNO-wcS_UXuQ-9Ne/","offline","malware_download","Heodo","fundacao-algarvia.pt","130.185.87.16","24768","PT"
"2019-02-08 14:42:04","http://jumpgear.eu/xerox/Invoice/20716753/wfFA-4K_YfFpfqJI-jo/","offline","malware_download","","jumpgear.eu","109.71.47.20","24768","PT"
"2019-02-08 07:24:28","http://scseguros.pt/ep/zi/zic.exe","offline","malware_download","exe","scseguros.pt","94.46.15.200","24768","PT"
"2019-02-08 07:24:26","http://scseguros.pt/ep/yg/gy.exe","offline","malware_download","exe","scseguros.pt","94.46.15.200","24768","PT"
"2019-02-08 07:24:25","http://scseguros.pt/ep/wz/wiz.exe","offline","malware_download","exe|HawkEye","scseguros.pt","94.46.15.200","24768","PT"
"2019-02-08 07:24:23","http://scseguros.pt/ep/ok/oki.exe","offline","malware_download","exe","scseguros.pt","94.46.15.200","24768","PT"
"2019-02-08 07:24:22","http://scseguros.pt/ep/loj/jo.exe","offline","malware_download","exe","scseguros.pt","94.46.15.200","24768","PT"
"2019-02-08 07:24:21","http://scseguros.pt/ep/lc/kc.exe","offline","malware_download","exe","scseguros.pt","94.46.15.200","24768","PT"
"2019-02-08 07:24:19","http://scseguros.pt/ep/law/Regaxms.exe","offline","malware_download","exe","scseguros.pt","94.46.15.200","24768","PT"
"2019-02-08 07:24:17","http://scseguros.pt/ep/fg/Bles.exe","offline","malware_download","exe","scseguros.pt","94.46.15.200","24768","PT"
"2019-02-08 07:24:16","http://scseguros.pt/ep/efi/deck.exe","offline","malware_download","exe","scseguros.pt","94.46.15.200","24768","PT"
"2019-02-08 07:24:15","http://scseguros.pt/ep/dj/jam.exe","offline","malware_download","exe","scseguros.pt","94.46.15.200","24768","PT"
"2019-02-08 07:24:13","http://scseguros.pt/ep/cef/jasp.exe","offline","malware_download","exe","scseguros.pt","94.46.15.200","24768","PT"
"2019-02-08 07:24:12","http://scseguros.pt/ep/bot/mor.exe","offline","malware_download","exe","scseguros.pt","94.46.15.200","24768","PT"
"2019-02-08 07:24:10","http://scseguros.pt/ep/bl/Blv.exe","offline","malware_download","exe","scseguros.pt","94.46.15.200","24768","PT"
"2019-02-08 07:24:09","http://scseguros.pt/ep/bb/bbo.exe","offline","malware_download","exe","scseguros.pt","94.46.15.200","24768","PT"
"2019-02-08 07:24:06","http://scseguros.pt/ep/bar/wene.exe","offline","malware_download","exe","scseguros.pt","94.46.15.200","24768","PT"
"2019-02-08 07:24:04","http://scseguros.pt/ep/dr/senk.exe","offline","malware_download","exe","scseguros.pt","94.46.15.200","24768","PT"
"2019-02-06 13:11:17","http://jumpgear.eu/de_DE/ZUVMWNWV0581707/Rechnungs/Rechnungsanschrift/","offline","malware_download","","jumpgear.eu","109.71.47.20","24768","PT"
"2019-01-29 22:37:20","http://imo-xis.com/lqWbq-v9_mf-J9M/ACH/PaymentAdvice/EN_en/New-order/","offline","malware_download","doc|emotet|epoch2|Heodo","imo-xis.com","94.46.183.47","24768","PT"
"2019-01-22 18:40:06","http://guimarte.com/VHnzN-MJ77q_XkU-qSg/76761/SurveyQuestionsEn_us/Invoices-Overdue/","offline","malware_download","emotet|epoch2|Heodo","guimarte.com","94.46.22.60","24768","PT"
"2018-12-18 05:20:04","http://construcaoclinicas.pt/AMAZON/Orders-details/2018-12/","offline","malware_download","doc|emotet|epoch1","construcaoclinicas.pt","94.46.22.60","24768","PT"
"2018-12-17 11:52:14","http://www.construcaoclinicas.pt/AMAZON/Orders-details/2018-12/","offline","malware_download","doc|emotet|Heodo","www.construcaoclinicas.pt","94.46.22.60","24768","PT"
"2018-12-13 16:46:10","http://issencial.net/Invoice/16352075/scan/En_us/1-Past-Due-Invoices/","offline","malware_download","emotet|epoch2|Heodo","issencial.net","109.71.40.60","24768","PT"
"2018-12-12 09:57:35","http://www.conci.pt/qC/","offline","malware_download","emotet|epoch2|exe|Heodo","www.conci.pt","94.46.183.40","24768","PT"
"2018-12-04 14:26:17","http://dev.jornalmapa.pt/sites/Rechnungs/Zahlungserinnerung/IhreRechnung-QIM-21-12632","offline","malware_download","doc|emotet|heodo","dev.jornalmapa.pt","130.185.84.151","24768","PT"
"2018-11-27 09:50:01","http://dance4u.pt/07RJNGMJ/BIZ/Smallbusiness","offline","malware_download","doc|emotet|heodo","dance4u.pt","130.185.83.32","24768","PT"
"2018-11-14 12:08:11","http://conci.pt/2752LRESK/PAYROLL/US","offline","malware_download","emotet|Heodo","conci.pt","94.46.183.40","24768","PT"
"2018-11-14 06:46:12","http://conci.pt/2752LRESK/PAYROLL/US/","offline","malware_download","Heodo","conci.pt","94.46.183.40","24768","PT"
"2018-11-13 22:36:48","http://www.conci.pt/2752LRESK/PAYROLL/US/","offline","malware_download","doc|emotet|epoch2|Heodo","www.conci.pt","94.46.183.40","24768","PT"
"2018-11-13 17:50:23","http://www.conci.pt/2752LRESK/PAYROLL/US","offline","malware_download","doc|emotet|heodo","www.conci.pt","94.46.183.40","24768","PT"
"2018-11-09 00:57:01","http://conci.pt/EN_US/Clients_transactions/112018/","offline","malware_download","doc|Heodo","conci.pt","94.46.183.40","24768","PT"
"2018-11-08 23:50:07","http://conci.pt/EN_US/Clients_transactions/112018","offline","malware_download","Heodo","conci.pt","94.46.183.40","24768","PT"
"2018-11-08 20:20:20","http://www.conci.pt/EN_US/Clients_transactions/112018/","offline","malware_download","doc|emotet|epoch1|Heodo","www.conci.pt","94.46.183.40","24768","PT"
"2018-11-08 18:41:32","http://www.conci.pt/EN_US/Clients_transactions/112018","offline","malware_download","doc|emotet|Heodo","www.conci.pt","94.46.183.40","24768","PT"
"2018-11-06 13:32:03","http://gpa.com.pt/omklzG2kK","offline","malware_download","emotet|exe|Heodo","gpa.com.pt","109.71.43.24","24768","PT"
"2018-11-06 13:27:04","http://gpa.com.pt/omklzG2kK/","offline","malware_download","emotet|Heodo","gpa.com.pt","109.71.43.24","24768","PT"
"2018-08-29 05:16:29","http://flyrent.pt/527401TFE/SWIFT/Smallbusiness/","offline","malware_download","doc|emotet|epoch2|Heodo","flyrent.pt","94.46.167.106","24768","PT"
"2018-08-28 06:35:41","http://flyrent.pt/527401TFE/SWIFT/Smallbusiness","offline","malware_download","doc|emotet|Heodo","flyrent.pt","94.46.167.106","24768","PT"
"2018-08-27 13:05:12","http://repro4.com/website/wp-content/uploads/MbO","offline","malware_download","emotet|exe|Heodo|payload","repro4.com","94.46.180.220","24768","PT"
"2018-08-26 15:01:04","http://repro4.com/website/wp-content/uploads/Hbdsm/","offline","malware_download","exe","repro4.com","94.46.180.220","24768","PT"
"2018-08-24 14:08:19","http://repro4.com/website/wp-content/uploads/Hbdsm","offline","malware_download","emotet|exe|Fuery|Heodo","repro4.com","94.46.180.220","24768","PT"
"2018-08-24 04:49:06","http://repro4.com/website/wp-content/uploads/KMPqoZqb/","offline","malware_download","doc|Heodo","repro4.com","94.46.180.220","24768","PT"
"2018-08-22 22:23:14","http://repro4.com/website/wp-content/uploads/KMPqoZqb","offline","malware_download","doc|emotet|Heodo","repro4.com","94.46.180.220","24768","PT"
"2018-08-21 04:40:40","http://funerariaxavierneto.pt/files/En_us/Invoice-80064963/","offline","malware_download","doc|emotet|Heodo","funerariaxavierneto.pt","94.46.176.11","24768","PT"
"2018-08-20 15:37:50","http://funerariaxavierneto.pt/files/En_us/Invoice-80064963","offline","malware_download","doc|emotet|Heodo","funerariaxavierneto.pt","94.46.176.11","24768","PT"
"2018-08-20 15:35:12","http://flyrent.pt/scan/EN_en/Past-Due-Invoice","offline","malware_download","doc|emotet|Heodo","flyrent.pt","94.46.167.106","24768","PT"
"2018-08-18 04:49:26","http://repro4.com/website/wp-content/uploads/3759717YKLXRQVS/PAY/Smallbusiness","offline","malware_download","doc|emotet|Heodo","repro4.com","94.46.180.220","24768","PT"
"2018-08-17 19:06:12","http://repro4.com/website/wp-content/uploads/3759717YKLXRQVS/PAY/Smallbusiness/","offline","malware_download","Heodo","repro4.com","94.46.180.220","24768","PT"
"2018-08-14 04:28:18","http://repro4.com/website/wp-content/uploads/sites/EN_en/INVOICE-STATUS/New-Invoice-YG8391-FA-0520/","offline","malware_download","doc|emotet|Heodo","repro4.com","94.46.180.220","24768","PT"
"2018-08-13 16:00:36","http://repro4.com/website/wp-content/uploads/sites/EN_en/INVOICE-STATUS/New-Invoice-YG8391-FA-0520","offline","malware_download","doc|emotet|Heodo","repro4.com","94.46.180.220","24768","PT"
"2018-08-10 04:20:59","http://repro4.com/website/wp-content/uploads/05QPAYMENT/IS334349456B/Aug-09-2018-2566215/VSSG-RGPCD/","offline","malware_download","doc|emotet|Heodo","repro4.com","94.46.180.220","24768","PT"
"2018-08-10 04:18:15","http://gramondim.com/06ZPTDownload/MFKR67977859412JS/Aug-09-2018-002982363/WOK-QTEQV/","offline","malware_download","doc|emotet|Heodo","gramondim.com","130.185.81.98","24768","PT"
"2018-08-09 05:48:53","http://repro4.com/website/wp-content/uploads/05QPAYMENT/IS334349456B/Aug-09-2018-2566215/VSSG-RGPCD","offline","malware_download","doc|emotet|Heodo","repro4.com","94.46.180.220","24768","PT"
"2018-08-09 05:15:50","http://gramondim.com/06ZPTDownload/MFKR67977859412JS/Aug-09-2018-002982363/WOK-QTEQV","offline","malware_download","doc|emotet|Heodo","gramondim.com","130.185.81.98","24768","PT"
"2018-08-08 16:31:28","http://repro4.com/website/wp-content/uploads/LLC/VMHE96425152CM/48153886/MIVD-UBO-Aug-07-2018/","offline","malware_download","Heodo","repro4.com","94.46.180.220","24768","PT"
"2018-08-06 22:59:10","http://repro4.com/website/wp-content/uploads/LLC/VMHE96425152CM/48153886/MIVD-UBO-Aug-07-2018","offline","malware_download","doc|emotet|Heodo","repro4.com","94.46.180.220","24768","PT"
"2018-08-01 16:13:11","http://repro4.com/website/wp-content/uploads/default/DE_de/Hilfestellung/in-Rechnung-gestellt-NW-64-37502/","offline","malware_download","doc|emotet|epoch2|Heodo","repro4.com","94.46.180.220","24768","PT"
"2018-07-26 14:51:40","http://gramondim.com/xq","offline","malware_download","emotet|epoch2|Heodo|payload","gramondim.com","130.185.81.98","24768","PT"
"2018-07-21 08:09:25","http://repro4.com/website/wp-content/uploads/pdf/US_us/FILE/Invoice-912259770-072018","offline","malware_download","doc|emotet|heodo","repro4.com","94.46.180.220","24768","PT"
"2018-06-20 00:09:22","http://www.atlanticobs.pt/Jun2018/Invoice-31356/","offline","malware_download","doc|emotet|epoch1|Heodo","www.atlanticobs.pt","94.46.135.22","24768","PT"
"2018-06-14 06:01:51","http://megabyte.pt/IRS-TRANSCRIPTS-June-2018-093M/9","offline","malware_download","doc|emotet|Heodo","megabyte.pt","130.185.87.191","24768","PT"
"2018-05-04 18:18:03","http://www.camperakarting.com/tmp/","offline","malware_download","Opendir|phishing","www.camperakarting.com","94.46.23.59","24768","PT"
# of entries: 205