##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2025-11-19 14:38:22 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS27831
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2025-11-08 16:58:38","http://sitioseguroswpersonasapp.duckdns.org/Nueva%20carpeta/VmDocumentos.txt","online","malware_download","ascii|AsyncRAT|encoded|RAT","sitioseguroswpersonasapp.duckdns.org","181.206.158.190","27831","CO"
"2025-10-28 07:01:35","http://hostphpwindowsdriversappssapo.duckdns.org/Nueva%20carpeta/WMIEventLogs.txt","offline","malware_download","rev-base64-loader","hostphpwindowsdriversappssapo.duckdns.org","181.206.158.190","27831","CO"
"2025-10-28 07:01:28","http://hostphpwindowsdriversappssapo.duckdns.org/Nueva%20carpeta/copi.txt","offline","malware_download","RemcosRAT|rev-base64-loader","hostphpwindowsdriversappssapo.duckdns.org","181.206.158.190","27831","CO"
"2025-08-06 18:27:15","http://181.206.158.190/CopilotDriver.js","offline","malware_download","RemcosRAT","181.206.158.190","181.206.158.190","27831","CO"
"2025-08-06 18:27:11","http://181.206.158.190/CopilotDrivers.js","online","malware_download","PureLogsStealer|RemcosRAT","181.206.158.190","181.206.158.190","27831","CO"
"2025-08-06 18:27:11","http://181.206.158.190/WMIEventLogs.js","online","malware_download","AsyncRAT|CaminhoLoader|DCRat|PureLogsStealer","181.206.158.190","181.206.158.190","27831","CO"
"2025-06-17 21:22:58","http://191.93.118.254/SecurityHealthSystray.vbs","offline","malware_download","AsyncRAT|opendir","191.93.118.254","191.93.118.254","27831","CO"
"2025-06-17 21:22:57","http://191.93.118.254/HealthUpdateCore.vbs","offline","malware_download","AsyncRAT|DCRat|opendir","191.93.118.254","191.93.118.254","27831","CO"
"2025-06-13 01:27:26","https://191.93.117.96/SecurityHealthSystray.vbs","offline","malware_download","opendir","191.93.117.96","191.93.117.96","27831","CO"
"2025-06-13 01:27:13","https://191.93.117.96/HealthUpdateCore.vbs","offline","malware_download","opendir","191.93.117.96","191.93.117.96","27831","CO"
"2025-06-09 17:48:46","https://181.206.158.190/Update.vbs","offline","malware_download","censys|opendir|PureLogsStealer|RemcosRAT|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-06-09 17:48:01","https://181.206.158.190/CopilotDriver.vbs","offline","malware_download","censys|opendir|PureLogsStealer|RemcosRAT|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-06-09 17:47:38","http://181.206.158.190/WMIEventLog.vbs","offline","malware_download","AsyncRAT|censys|opendir|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-06-09 17:46:49","https://181.206.158.190/WMIEventLog.vbs","offline","malware_download","AsyncRAT|censys|opendir|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-06-09 17:46:40","http://181.206.158.190/CopilotDriver.vbs","offline","malware_download","censys|opendir|PureLogsStealer|RemcosRAT|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-06-09 17:46:05","http://181.206.158.190/WindowsUpdate.vbs","offline","malware_download","censys|opendir|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-06-09 17:46:04","http://181.206.158.190/ActWindowsUpdate.vbs","offline","malware_download","censys|opendir|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-06-09 17:46:04","https://181.206.158.190/ActWindowsUpdate.vbs","offline","malware_download","censys|opendir|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-06-09 17:46:04","https://181.206.158.190/WindowsUpdate.vbs","offline","malware_download","censys|opendir|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-04-18 17:04:49","http://181.206.158.190/12345.vbs","offline","malware_download","opendir|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-04-18 17:04:06","http://181.206.158.190/defender.vbs","offline","malware_download","opendir|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-04-18 17:04:04","http://181.206.158.190/programa.vbs","offline","malware_download","opendir|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-04-18 17:04:02","http://181.206.158.190/ups.vbs","offline","malware_download","opendir|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-04-18 16:23:08","http://181.71.28.19:55469/i","offline","malware_download","censys|elf|hajime","181.71.28.19","181.71.28.19","27831","CO"
"2025-04-12 18:48:36","http://grennoj.duckdns.org/WinlogonService.js","offline","malware_download","js|obfuscated|stego","grennoj.duckdns.org","191.93.113.197","27831","CO"
"2025-04-09 21:19:32","http://191.93.113.197/sostener.vbs","offline","malware_download","opendir|vbs","191.93.113.197","191.93.113.197","27831","CO"
"2025-04-09 21:15:04","http://181.206.158.190/ActDefender.vbs","offline","malware_download","opendir|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-04-09 21:15:04","http://181.206.158.190/exclusion.vbs","offline","malware_download","opendir|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-03-22 01:26:17","http://191.93.113.197/Winlogon.vbs","offline","malware_download","AsyncRAT|opendir|vbs","191.93.113.197","191.93.113.197","27831","CO"
"2025-01-30 22:59:14","http://181.206.158.190/Update.vbs","offline","malware_download","ascii|opendir|PureLogsStealer|RemcosRAT|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-01-30 22:59:08","http://181.206.158.190/DriverW.vbs","offline","malware_download","ascii|opendir|vbs","181.206.158.190","181.206.158.190","27831","CO"
"2025-01-25 19:53:06","http://181.204.218.147:4548/i","offline","malware_download","censys|elf|hajime","181.204.218.147","181.204.218.147","27831","CO"
"2025-01-17 22:32:15","http://191.93.113.197/Drivers.vbs","offline","malware_download","ascii|opendir|vbs","191.93.113.197","191.93.113.197","27831","CO"
"2025-01-17 22:32:13","http://grennoj.duckdns.org/Drivers.vbs","offline","malware_download","ascii|opendir|vbs","grennoj.duckdns.org","191.93.113.197","27831","CO"
"2025-01-15 08:07:06","http://181.206.158.190/Windows.vbs","offline","malware_download","","181.206.158.190","181.206.158.190","27831","CO"
"2024-12-22 17:49:11","http://181.205.84.211:56632/i","offline","malware_download","elf|Hajime","181.205.84.211","181.205.84.211","27831","CO"
"2024-12-16 21:54:10","http://191.93.117.49/Drivers.vbs","offline","malware_download","ascii|opendir|ua-wget|vbs","191.93.117.49","191.93.117.49","27831","CO"
"2024-12-09 17:34:12","http://181.205.84.211:56632/.i","offline","malware_download","censys|elf|Hajime","181.205.84.211","181.205.84.211","27831","CO"
"2024-10-18 14:26:33","http://179.14.9.145/sostener.vbs","offline","malware_download","c2|opendir","179.14.9.145","179.14.9.145","27831","CO"
"2024-10-18 14:26:09","http://179.14.9.145/andre.vbs","offline","malware_download","c2|opendir","179.14.9.145","179.14.9.145","27831","CO"
"2024-10-18 14:26:07","http://179.14.9.145/envio.js","offline","malware_download","c2|opendir","179.14.9.145","179.14.9.145","27831","CO"
"2024-10-06 12:54:04","http://186.97.185.91:31376/Mozi.m","offline","malware_download","elf|Hajime","186.97.185.91","186.97.185.91","27831","CO"
"2024-10-06 12:54:03","http://186.97.185.94:31376/Mozi.m","offline","malware_download","elf|Hajime","186.97.185.94","186.97.185.94","27831","CO"
"2024-10-06 12:53:48","http://186.97.185.92:31376/Mozi.m","offline","malware_download","elf|Hajime","186.97.185.92","186.97.185.92","27831","CO"
"2024-10-06 12:53:34","http://181.204.218.148:4548/Mozi.m","offline","malware_download","elf|Hajime","181.204.218.148","181.204.218.148","27831","CO"
"2024-10-06 09:40:20","http://186.97.185.93:31376/i","offline","malware_download","elf|Hajime","186.97.185.93","186.97.185.93","27831","CO"
"2024-10-06 09:19:28","http://186.97.185.92:31376/i","offline","malware_download","elf|Hajime","186.97.185.92","186.97.185.92","27831","CO"
"2024-10-06 09:19:27","http://186.97.185.94:31376/i","offline","malware_download","elf|Hajime","186.97.185.94","186.97.185.94","27831","CO"
"2024-10-06 09:19:24","http://181.204.218.148:4548/i","offline","malware_download","elf|Hajime","181.204.218.148","181.204.218.148","27831","CO"
"2024-10-06 09:19:18","http://186.97.185.91:31376/i","offline","malware_download","elf|Hajime","186.97.185.91","186.97.185.91","27831","CO"
"2024-09-23 11:57:05","https://191.93.114.27/asegurar.vbs","offline","malware_download","opendir|vbs","191.93.114.27","191.93.114.27","27831","CO"
"2024-09-23 11:57:05","https://191.93.114.27/sostener.vbs","offline","malware_download","opendir|vbs","191.93.114.27","191.93.114.27","27831","CO"
"2024-09-23 07:15:12","http://191.93.114.27/asegurar.vbs","offline","malware_download","","191.93.114.27","191.93.114.27","27831","CO"
"2024-09-23 07:15:08","http://191.93.114.27/sostener.vbs","offline","malware_download","","191.93.114.27","191.93.114.27","27831","CO"
"2024-07-09 08:46:57","https://191.93.113.10/sostener.vbs","offline","malware_download","opendir|RemcosRAT|vbs","191.93.113.10","191.93.113.10","27831","CO"
"2024-07-04 15:48:07","http://191.93.113.10/sostener.vbs","offline","malware_download","vbs","191.93.113.10","191.93.113.10","27831","CO"
"2024-04-22 09:05:47","http://181.71.191.178:27464/.i","offline","malware_download","elf|Hajime","181.71.191.178","181.71.191.178","27831","CO"
"2024-04-22 09:04:21","http://186.97.202.194:1920/.i","offline","malware_download","elf|Hajime","186.97.202.194","186.97.202.194","27831","CO"
"2024-04-22 09:03:45","http://181.204.218.149:4548/.i","offline","malware_download","elf|Hajime","181.204.218.149","181.204.218.149","27831","CO"
"2024-04-22 09:03:38","http://181.205.74.178:15726/.i","offline","malware_download","elf|Hajime","181.205.74.178","181.205.74.178","27831","CO"
"2024-04-22 09:03:37","http://186.97.143.18:16344/.i","offline","malware_download","elf|Hajime","186.97.143.18","186.97.143.18","27831","CO"
"2024-04-22 07:58:22","http://181.204.218.149:4548/i","offline","malware_download","elf|Hajime","181.204.218.149","181.204.218.149","27831","CO"
"2024-04-22 07:58:13","http://181.204.212.82:6699/i","offline","malware_download","elf|Hajime","181.204.212.82","181.204.212.82","27831","CO"
"2024-04-22 07:57:17","http://181.205.125.58:54012/i","offline","malware_download","elf|Hajime","181.205.125.58","181.205.125.58","27831","CO"
"2024-04-22 07:57:12","http://186.97.143.18:16344/i","offline","malware_download","elf|Hajime","186.97.143.18","186.97.143.18","27831","CO"
"2024-04-22 07:57:10","http://181.205.74.178:15726/i","offline","malware_download","elf|Hajime","181.205.74.178","181.205.74.178","27831","CO"
"2024-04-11 13:54:16","http://186.97.202.194:1920/i","offline","malware_download","elf|Hajime","186.97.202.194","186.97.202.194","27831","CO"
"2024-04-11 13:01:13","http://181.71.191.178:27464/i","offline","malware_download","elf|Hajime","181.71.191.178","181.71.191.178","27831","CO"
"2023-10-12 14:16:07","http://181.204.66.85:5490/.i","offline","malware_download","Hajime","181.204.66.85","181.204.66.85","27831","CO"
"2023-04-21 06:48:29","http://181.205.125.58:54012/.i","offline","malware_download","elf|Hajime","181.205.125.58","181.205.125.58","27831","CO"
"2023-04-21 06:23:29","http://181.204.212.82:6699/.i","offline","malware_download","elf|Hajime","181.204.212.82","181.204.212.82","27831","CO"
"2022-08-21 08:06:05","http://177.255.50.40:28388/.i","offline","malware_download","Hajime","177.255.50.40","177.255.50.40","27831","CO"
"2020-07-13 23:02:04","http://181.206.22.75:53054/.i","offline","malware_download","32-bit|ARM|ELF|Hajime","181.206.22.75","181.206.22.75","27831","CO"
"2019-10-10 09:10:12","http://179.14.150.9:35495/.i","offline","malware_download","hajime","179.14.150.9","179.14.150.9","27831","CO"
"2018-10-29 17:52:06","http://191.92.234.159:30085/.i","offline","malware_download","elf|Hajime","191.92.234.159","191.92.234.159","27831","CO"
# of entries: 75