##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2025-12-25 13:30:29 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS42708
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2025-12-11 23:26:07","http://46.246.86.9/envifa.vbs","offline","malware_download","vbs","46.246.86.9","46.246.86.9","42708","SE"
"2025-12-11 23:26:07","http://46.246.86.9/sostener2.vbs","offline","malware_download","vbs","46.246.86.9","46.246.86.9","42708","SE"
"2025-10-24 22:56:10","http://46.246.12.14/envifa.vbs","offline","malware_download","opendir|rat","46.246.12.14","46.246.12.14","42708","SE"
"2025-10-24 22:56:07","http://46.246.12.14/sostener2.vbs","offline","malware_download","opendir|rat","46.246.12.14","46.246.12.14","42708","SE"
"2025-10-04 15:46:34","http://46.246.86.6/sosten.vbs","offline","malware_download","huntio|opendir","46.246.86.6","46.246.86.6","42708","SE"
"2025-10-04 15:46:20","http://46.246.86.6/proceso.vbs","offline","malware_download","huntio|opendir","46.246.86.6","46.246.86.6","42708","SE"
"2025-10-04 15:46:20","http://46.246.86.6/sostener.vbs","offline","malware_download","huntio|opendir","46.246.86.6","46.246.86.6","42708","SE"
"2025-10-04 02:47:29","http://2seguro2025.duckdns.org/envifa.vbs","offline","malware_download","opendir|RemcosRAT","2seguro2025.duckdns.org","46.246.82.4","42708","SE"
"2025-10-04 02:47:29","http://2seguro2025.duckdns.org/sostener2.vbs","offline","malware_download","opendir","2seguro2025.duckdns.org","46.246.82.4","42708","SE"
"2025-10-04 02:35:27","http://46.246.86.6/envifa.vbs","offline","malware_download","huntio|RemcosRAT","46.246.86.6","46.246.86.6","42708","SE"
"2025-09-28 07:24:05","http://46.246.86.6/sostener2.vbs","offline","malware_download","RemcosRAT","46.246.86.6","46.246.86.6","42708","SE"
"2025-06-16 18:54:34","http://46.246.84.18/incrustado.vbs","offline","malware_download","opendir|vbs","46.246.84.18","46.246.84.18","42708","SE"
"2025-06-16 18:54:34","http://46.246.84.18/sostener.vbs","offline","malware_download","opendir|vbs","46.246.84.18","46.246.84.18","42708","SE"
"2025-06-16 18:54:34","https://46.246.84.18/incrustado.vbs","offline","malware_download","opendir|vbs","46.246.84.18","46.246.84.18","42708","SE"
"2025-06-16 18:54:34","https://46.246.84.18/sostener.vbs","offline","malware_download","opendir|vbs","46.246.84.18","46.246.84.18","42708","SE"
"2025-06-13 23:21:14","http://46.246.6.4/incrustado.vbs","offline","malware_download","opendir","46.246.6.4","46.246.6.4","42708","SE"
"2025-06-13 23:20:06","http://46.246.6.4/sostener.vbs","offline","malware_download","opendir|XWorm","46.246.6.4","46.246.6.4","42708","SE"
"2025-06-13 01:39:44","https://af252586-b8bc-483a-8746-8f15528289b9.random.patria.duckdns.org/ncrustado.vbs","offline","malware_download","opendir|vbs","af252586-b8bc-483a-8746-8f15528289b9.random.patria.duckdns.org","46.246.80.11","42708","SE"
"2025-06-13 01:39:32","https://038d159d-b3bc-44dd-a0c4-bec68c0c4123.random.bb2023.duckdns.org/sostener2.vbs","offline","malware_download","opendir|vbs","038d159d-b3bc-44dd-a0c4-bec68c0c4123.random.bb2023.duckdns.org","178.73.192.9","42708","SE"
"2025-06-13 01:39:28","https://038d159d-b3bc-44dd-a0c4-bec68c0c4123.random.bb2023.duckdns.org/envifa.vbs","offline","malware_download","opendir|vbs","038d159d-b3bc-44dd-a0c4-bec68c0c4123.random.bb2023.duckdns.org","178.73.192.9","42708","SE"
"2025-06-13 01:29:44","https://nueva2024.duckdns.org/envifa.vbs","offline","malware_download","opendir|vbs","nueva2024.duckdns.org","178.73.192.9","42708","SE"
"2025-06-13 01:29:14","https://nueva2024.duckdns.org/sostener2.vbs","offline","malware_download","opendir|vbs","nueva2024.duckdns.org","178.73.192.9","42708","SE"
"2025-06-13 01:26:32","https://46.246.6.20/ncrustado.vbs","offline","malware_download","opendir","46.246.6.20","46.246.6.20","42708","SE"
"2025-06-13 01:25:33","https://46.246.82.25/reporting.vbs","offline","malware_download","opendir","46.246.82.25","46.246.82.25","42708","SE"
"2025-06-13 01:14:33","https://46.246.14.14/reporting.vbs","offline","malware_download","opendir","46.246.14.14","46.246.14.14","42708","SE"
"2025-06-13 01:11:06","http://46.246.84.8/reporting.vbs","offline","malware_download","AsyncRAT|opendir","46.246.84.8","46.246.84.8","42708","SE"
"2025-06-13 01:10:15","http://178.73.192.9/sostener2.vbs","offline","malware_download","opendir","178.73.192.9","178.73.192.9","42708","SE"
"2025-06-13 01:10:06","http://178.73.192.9/envifa.vbs","offline","malware_download","opendir","178.73.192.9","178.73.192.9","42708","SE"
"2025-06-12 22:19:05","http://46.246.6.13/sostener.vbs","offline","malware_download","xworm","46.246.6.13","46.246.6.13","42708","SE"
"2025-06-12 22:18:33","http://46.246.6.20/incrustado.vbs","offline","malware_download","xworm","46.246.6.20","46.246.6.20","42708","SE"
"2025-06-12 22:18:33","http://46.246.6.20/sostener.vbs","offline","malware_download","xworm","46.246.6.20","46.246.6.20","42708","SE"
"2025-06-12 22:18:05","http://46.246.6.13/incrustado.vbs","offline","malware_download","xworm","46.246.6.13","46.246.6.13","42708","SE"
"2025-06-12 22:16:36","http://46.246.82.16/incrustado.vbs","offline","malware_download","xworm","46.246.82.16","46.246.82.16","42708","SE"
"2025-06-12 22:16:33","http://46.246.82.16/sostener.vbs","offline","malware_download","xworm","46.246.82.16","46.246.82.16","42708","SE"
"2025-04-14 20:34:06","http://46.246.86.16/incrustado.vbs","offline","malware_download","opendir|vbs","46.246.86.16","46.246.86.16","42708","SE"
"2025-04-14 20:34:06","http://46.246.86.16/sostener.vbs","offline","malware_download","opendir|vbs","46.246.86.16","46.246.86.16","42708","SE"
"2025-04-12 18:48:16","http://188.126.90.2/sostener.vbs","offline","malware_download","opendir|ua-wget|vbs","188.126.90.2","188.126.90.2","42708","SE"
"2025-04-12 18:48:14","http://af252586-b8bc-483a-8746-8f15528289b9.random.exelnj.duckdns.org/sosten.vbs","offline","malware_download","opendir|ua-wget|vbs","af252586-b8bc-483a-8746-8f15528289b9.random.exelnj.duckdns.org","46.246.86.10","42708","SE"
"2025-04-12 18:48:10","http://random.exelnj.duckdns.org/sosten.vbs","offline","malware_download","opendir|ua-wget|vbs","random.exelnj.duckdns.org","46.246.86.10","42708","SE"
"2025-04-12 18:48:08","http://random.exelnj.duckdns.org/sostener.vbs","offline","malware_download","opendir|ua-wget|vbs","random.exelnj.duckdns.org","46.246.86.10","42708","SE"
"2025-04-12 18:48:06","http://188.126.90.2/incrustado.vbs","offline","malware_download","opendir|ua-wget|vbs","188.126.90.2","188.126.90.2","42708","SE"
"2025-04-09 21:17:06","http://46.246.82.10/envifa.vbs","offline","malware_download","opendir|vbs","46.246.82.10","46.246.82.10","42708","SE"
"2025-04-09 21:17:06","http://46.246.82.10/sostener2.vbs","offline","malware_download","opendir|vbs","46.246.82.10","46.246.82.10","42708","SE"
"2025-02-12 19:54:33","http://178.73.218.6/envifa.vbs","offline","malware_download","opendir","178.73.218.6","178.73.218.6","42708","SE"
"2025-02-12 19:54:32","http://178.73.218.6/sostener2.vbs","offline","malware_download","opendir","178.73.218.6","178.73.218.6","42708","SE"
"2025-02-12 19:54:16","http://46.246.14.17/sostener.vbs","offline","malware_download","opendir","46.246.14.17","46.246.14.17","42708","SE"
"2025-01-30 23:06:05","http://46.246.14.24/sostener.vbs","offline","malware_download","ascii|opendir|vbs","46.246.14.24","46.246.14.24","42708","SE"
"2025-01-12 23:51:05","http://vinijr27.duckdns.org:2023/Vre","offline","malware_download","VjW0rm","vinijr27.duckdns.org","46.246.12.16","42708","SE"
"2024-12-09 22:09:20","http://af252586-b8bc-483a-8746-8f15528289b9.random.exelnj.duckdns.org/sostener.vbs","offline","malware_download","ascii|ua-wget|vbs","af252586-b8bc-483a-8746-8f15528289b9.random.exelnj.duckdns.org","46.246.86.10","42708","SE"
"2024-12-09 22:09:14","http://46.246.82.5/sostener.vbs","offline","malware_download","ascii|ua-wget|vbs","46.246.82.5","46.246.82.5","42708","SE"
"2024-12-04 23:49:26","http://46.246.6.19/sostener.vbs","offline","malware_download","ascii|opendir|ua-wget|vbs","46.246.6.19","46.246.6.19","42708","SE"
"2024-11-22 22:26:38","http://46.246.6.25/sostener.vbs","offline","malware_download","Remcos|RemcosRAT|vbs","46.246.6.25","46.246.6.25","42708","SE"
"2024-11-21 00:00:09","http://46.246.12.5/sostener.vbs","offline","malware_download","opendir|vbs","46.246.12.5","46.246.12.5","42708","SE"
"2024-10-04 20:50:36","http://46.246.14.22/sostener.vbs","offline","malware_download","opendir|vbs","46.246.14.22","46.246.14.22","42708","SE"
"2024-10-04 20:26:29","http://46.246.14.13/sostener.vbs","offline","malware_download","opendir|vbs","46.246.14.13","46.246.14.13","42708","SE"
"2024-10-03 05:08:46","http://46.246.14.3/sostener.vbs","offline","malware_download","asyncrat","46.246.14.3","46.246.14.3","42708","SE"
"2024-09-25 05:22:34","http://178.73.192.19/sostener.vbs","offline","malware_download","","178.73.192.19","178.73.192.19","42708","SE"
"2024-06-24 19:42:36","http://lennonjhon27.duckdns.org:2021/Vre","offline","malware_download","VjW0rm","lennonjhon27.duckdns.org","46.246.14.20","42708","SE"
"2023-11-09 07:19:08","http://178.73.192.19/envifa.vbs","offline","malware_download","vbs","178.73.192.19","178.73.192.19","42708","SE"
"2023-09-18 06:24:08","http://45.155.250.218/92bfcbf4e12ebf6e/nss3.dll","offline","malware_download","dll|Stealc","45.155.250.218","45.155.250.218","42708","SE"
"2023-09-18 06:24:08","http://45.155.250.218/92bfcbf4e12ebf6e/sqlite3.dll","offline","malware_download","dll|Stealc","45.155.250.218","45.155.250.218","42708","SE"
"2023-09-18 06:24:07","http://45.155.250.218/92bfcbf4e12ebf6e/freebl3.dll","offline","malware_download","dll|Stealc","45.155.250.218","45.155.250.218","42708","SE"
"2023-09-18 06:24:07","http://45.155.250.218/92bfcbf4e12ebf6e/mozglue.dll","offline","malware_download","dll|Stealc","45.155.250.218","45.155.250.218","42708","SE"
"2023-09-18 06:24:07","http://45.155.250.218/92bfcbf4e12ebf6e/msvcp140.dll","offline","malware_download","dll|Stealc","45.155.250.218","45.155.250.218","42708","SE"
"2023-09-18 06:24:06","http://45.155.250.218/92bfcbf4e12ebf6e/softokn3.dll","offline","malware_download","dll|Stealc","45.155.250.218","45.155.250.218","42708","SE"
"2023-09-18 06:24:06","http://45.155.250.218/92bfcbf4e12ebf6e/vcruntime140.dll","offline","malware_download","dll|Stealc","45.155.250.218","45.155.250.218","42708","SE"
"2023-07-14 07:23:04","http://45.11.182.118","offline","malware_download","IcedID","45.11.182.118","45.11.182.118","42708","SE"
"2023-02-04 06:42:09","http://45.11.182.208/microsoft32.zip","offline","malware_download","encrypted|Gozi|ISFB|malvertising|Ursnif","45.11.182.208","45.11.182.208","42708","SE"
"2023-02-04 06:42:09","http://45.11.182.208/microsoft64.zip","offline","malware_download","encrypted|Gozi|ISFB|malvertising|Ursnif","45.11.182.208","45.11.182.208","42708","SE"
"2022-10-19 01:11:38","https://mooseisloose.com/uvot/amaruqiuh","offline","malware_download","BB03|FYN09|iso|qakbot|qbot|quakbot|TR|zip","mooseisloose.com","188.126.77.170","42708","SE"
"2022-10-19 01:11:31","https://joinwlfm.com/umtm/oetrlomesdi","offline","malware_download","BB03|FYN09|iso|qakbot|qbot|quakbot|TR|zip","joinwlfm.com","188.126.77.170","42708","SE"
"2022-07-29 14:06:04","http://109.230.199.79/doc32.rar","offline","malware_download","encrypted|Gozi|ISFB","109.230.199.79","109.230.199.79","42708","SE"
"2022-07-29 14:06:04","http://109.230.199.79/doc64.rar","offline","malware_download","encrypted|Gozi|ISFB","109.230.199.79","109.230.199.79","42708","SE"
"2022-07-29 14:06:04","http://109.230.199.79/stilak32.rar","offline","malware_download","encrypted|Gozi|ISFB","109.230.199.79","109.230.199.79","42708","SE"
"2022-07-29 14:06:04","http://109.230.199.79/stilak64.rar","offline","malware_download","encrypted|Gozi|ISFB","109.230.199.79","109.230.199.79","42708","SE"
"2022-04-26 12:12:59","https://kalvinknatet.se/esm/temporibuseveniet","offline","malware_download","qakbot|qbot|Quakbot|tr","kalvinknatet.se","46.21.97.212","42708","SE"
"2022-04-26 12:11:41","https://kalvinknatet.se/esm/similiqueaccusantium","offline","malware_download","qakbot|qbot|Quakbot|tr","kalvinknatet.se","46.21.97.212","42708","SE"
"2022-04-19 18:28:05","http://gandhitoday.org/video/6JvA8/","offline","malware_download","dll|emotet|epoch4|Heodo","gandhitoday.org","46.246.119.42","42708","NL"
"2022-04-14 14:03:51","https://knatteknatet.se/aom/insadtneuc","offline","malware_download","qakbot|qbot|Quakbot|tr","knatteknatet.se","46.21.97.212","42708","SE"
"2022-03-30 19:34:08","http://gandhitoday.org/video/tciTHleuwlagM6dsS9AFBHBSb1u/?i=1","offline","malware_download","c8fc17ff030feb3383d8889f69abbb|doc|emotet|epoch4|Heodo|SilentBuilder","gandhitoday.org","46.246.119.42","42708","NL"
"2022-03-30 19:34:05","http://gandhitoday.org/video/tciTHleuwlagM6dsS9AFBHBSb1u/","offline","malware_download","c8fc17ff030feb3383d8889f69abbb|emotet|epoch4|Heodo|redir-doc|SilentBuilder|xls","gandhitoday.org","46.246.119.42","42708","NL"
"2022-02-05 06:53:05","http://109.230.199.106/service/support/telemetry","offline","malware_download","BazaLoader|BazarBackdoor|BazarLoader|geofenced|USA","109.230.199.106","109.230.199.106","42708","SE"
"2022-01-20 10:59:34","http://utah.tims.se/cmxxd2z/uogprt_57547/","offline","malware_download","emotet|epoch5|redir-doc|xls","utah.tims.se","159.253.28.229","42708","GB"
"2022-01-20 10:03:09","http://group.tims.se/4qj3vg/BB-64345/","offline","malware_download","emotet|epoch5|redir-doc|xls","group.tims.se","159.253.28.229","42708","GB"
"2022-01-20 10:03:04","http://group.tims.se/4qj3vg/BB-64345/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","group.tims.se","159.253.28.229","42708","GB"
"2022-01-20 09:55:04","http://kansas.tims.se/iagvr1/HgRhFwR4khwtdfwGmu1VODveKh/","offline","malware_download","emotet|epoch4|redir-doc|xls","kansas.tims.se","159.253.28.229","42708","GB"
"2022-01-20 09:21:04","http://drives.tims.se/78bac4t/qMozKSNwwVp4TUrXGUzD/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","drives.tims.se","159.253.28.229","42708","GB"
"2022-01-20 09:21:04","http://ram.tims.se/5jeyud/GZi5BqPzBI2MMU/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo","ram.tims.se","159.253.28.229","42708","GB"
"2022-01-20 09:06:04","http://parkways.tims.se/hrmxjmq/jeophs_78894/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","parkways.tims.se","159.253.28.229","42708","GB"
"2022-01-20 09:06:03","http://parkways.tims.se/hrmxjmq/jeophs_78894/","offline","malware_download","emotet|epoch5|redir-doc|xls","parkways.tims.se","159.253.28.229","42708","GB"
"2022-01-20 08:55:04","http://drives.tims.se/78bac4t/qMozKSNwwVp4TUrXGUzD/","offline","malware_download","emotet|epoch4|redir-doc|xls","drives.tims.se","159.253.28.229","42708","GB"
"2022-01-20 08:50:04","http://ram.tims.se/5jeyud/GZi5BqPzBI2MMU/","offline","malware_download","emotet|epoch4|redir-doc|xls","ram.tims.se","159.253.28.229","42708","GB"
"2022-01-19 17:03:04","http://mobility.tims.se/-/823352328_371/","offline","malware_download","emotet|epoch5|redir-doc|xls","mobility.tims.se","159.253.28.229","42708","GB"
"2022-01-19 17:03:04","http://mobility.tims.se/-/823352328_371/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","mobility.tims.se","159.253.28.229","42708","GB"
"2022-01-19 16:56:04","http://drives.tims.se/78bac4t/gPMwC4n5WnraULnbGHpOetvWB2SEc4/","offline","malware_download","emotet|epoch4|redir-doc","drives.tims.se","159.253.28.229","42708","GB"
"2022-01-19 16:56:04","http://drives.tims.se/78bac4t/gPMwC4n5WnraULnbGHpOetvWB2SEc4/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","drives.tims.se","159.253.28.229","42708","GB"
"2022-01-19 16:51:03","http://parkways.tims.se/hrmxjmq/LSqJLYE18bdbsID9Df7gaL7m/","offline","malware_download","emotet|epoch4|redir-doc","parkways.tims.se","159.253.28.229","42708","GB"
"2022-01-19 16:51:03","http://parkways.tims.se/hrmxjmq/LSqJLYE18bdbsID9Df7gaL7m/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","parkways.tims.se","159.253.28.229","42708","GB"
"2022-01-19 16:48:04","http://nicaragua.tims.se/-/VG-162891/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","nicaragua.tims.se","159.253.28.229","42708","GB"
"2022-01-19 16:48:03","http://nicaragua.tims.se/-/VG-162891/","offline","malware_download","emotet|epoch5|redir-doc|xls","nicaragua.tims.se","159.253.28.229","42708","GB"
"2022-01-19 16:40:05","http://ram.tims.se/5jeyud/Q0H8Nm/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","ram.tims.se","159.253.28.229","42708","GB"
"2022-01-19 16:40:04","http://ram.tims.se/5jeyud/Q0H8Nm/","offline","malware_download","emotet|epoch4|redir-doc","ram.tims.se","159.253.28.229","42708","GB"
"2022-01-19 14:44:04","http://integration.tims.se/ofj73/4143_507/","offline","malware_download","emotet|epoch5|redir-doc|xls","integration.tims.se","159.253.28.229","42708","GB"
"2022-01-19 14:44:04","http://integration.tims.se/ofj73/4143_507/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","integration.tims.se","159.253.28.229","42708","GB"
"2022-01-19 14:08:04","http://mississippi.tims.se/-/01390-072/","offline","malware_download","emotet|epoch5|redir-doc|xls","mississippi.tims.se","159.253.28.229","42708","GB"
"2022-01-19 14:08:04","http://mississippi.tims.se/-/01390-072/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","mississippi.tims.se","159.253.28.229","42708","GB"
"2022-01-19 12:44:04","http://pci.tims.se/gx0otd/FDI-832392/","offline","malware_download","emotet|epoch5|redir-doc|xls","pci.tims.se","159.253.28.229","42708","GB"
"2022-01-19 12:44:04","http://pci.tims.se/gx0otd/FDI-832392/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","pci.tims.se","159.253.28.229","42708","GB"
"2022-01-19 12:29:04","http://ranch.tims.se/46prxxd6/9210928_11/","offline","malware_download","emotet|epoch5|redir-doc|xls","ranch.tims.se","159.253.28.229","42708","GB"
"2022-01-19 12:29:04","http://ranch.tims.se/46prxxd6/9210928_11/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","ranch.tims.se","159.253.28.229","42708","GB"
"2022-01-19 11:26:05","http://senior.tims.se/-/457770_3/","offline","malware_download","emotet|epoch5|redir-doc|xls","senior.tims.se","159.253.28.229","42708","GB"
"2022-01-19 11:26:05","http://senior.tims.se/-/457770_3/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","senior.tims.se","159.253.28.229","42708","GB"
"2022-01-19 10:37:04","http://towels.tims.se/wvwhu7/PXL40/","offline","malware_download","emotet|epoch5|redir-doc|xls","towels.tims.se","159.253.28.229","42708","GB"
"2022-01-19 10:37:04","http://towels.tims.se/wvwhu7/PXL40/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","towels.tims.se","159.253.28.229","42708","GB"
"2022-01-19 10:23:05","http://utah.tims.se/cmxxd2z/326-26/","offline","malware_download","emotet|epoch5|redir-doc|xls","utah.tims.se","159.253.28.229","42708","GB"
"2022-01-19 10:23:05","http://utah.tims.se/cmxxd2z/326-26/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","utah.tims.se","159.253.28.229","42708","GB"
"2022-01-19 09:48:05","http://tasty.tims.se/1acfh9l/32522860VKUJTMZ535128033/","offline","malware_download","emotet|epoch5|redir-doc|xls","tasty.tims.se","159.253.28.229","42708","GB"
"2022-01-19 09:48:05","http://tasty.tims.se/1acfh9l/32522860VKUJTMZ535128033/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","tasty.tims.se","159.253.28.229","42708","GB"
"2022-01-18 14:12:06","http://integration.tims.se/ofj73/GHiacHZX6K3es/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","integration.tims.se","159.253.28.229","42708","GB"
"2022-01-18 14:12:04","http://integration.tims.se/ofj73/GHiacHZX6K3es/","offline","malware_download","emotet|epoch4|redir-doc","integration.tims.se","159.253.28.229","42708","GB"
"2022-01-18 13:36:05","http://mississippi.tims.se/-/BdS6Vu2vk1yXtKe/","offline","malware_download","emotet|epoch4|redir-doc","mississippi.tims.se","159.253.28.229","42708","GB"
"2022-01-18 13:36:04","http://mississippi.tims.se/-/BdS6Vu2vk1yXtKe/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","mississippi.tims.se","159.253.28.229","42708","GB"
"2022-01-18 13:21:05","http://drives.tims.se/78bac4t/0YbomXr2e3PMCeEhuRT/","offline","malware_download","emotet|epoch4|redir-doc","drives.tims.se","159.253.28.229","42708","GB"
"2022-01-18 13:21:05","http://drives.tims.se/78bac4t/0YbomXr2e3PMCeEhuRT/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","drives.tims.se","159.253.28.229","42708","GB"
"2022-01-18 13:16:04","http://mobility.tims.se/-/xJs1SPko1uLLNuZ4NnfCegoJtPMPWX/","offline","malware_download","emotet|epoch4|redir-doc","mobility.tims.se","159.253.28.229","42708","GB"
"2022-01-18 13:16:04","http://mobility.tims.se/-/xJs1SPko1uLLNuZ4NnfCegoJtPMPWX/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","mobility.tims.se","159.253.28.229","42708","GB"
"2022-01-18 13:01:04","http://parkways.tims.se/hrmxjmq/pBA5bb68xhcJdYcyI2nl/","offline","malware_download","emotet|epoch4|redir-doc","parkways.tims.se","159.253.28.229","42708","GB"
"2022-01-18 13:01:04","http://parkways.tims.se/hrmxjmq/pBA5bb68xhcJdYcyI2nl/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","parkways.tims.se","159.253.28.229","42708","GB"
"2022-01-18 12:30:05","http://nicaragua.tims.se/-/PGvUJUZ5G5cU5rqP57ax9NmoNZ/","offline","malware_download","emotet|epoch4|redir-doc|xls","nicaragua.tims.se","159.253.28.229","42708","GB"
"2022-01-18 12:30:05","http://nicaragua.tims.se/-/PGvUJUZ5G5cU5rqP57ax9NmoNZ/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","nicaragua.tims.se","159.253.28.229","42708","GB"
"2022-01-18 12:10:07","http://pci.tims.se/gx0otd/ymf1g1lP/","offline","malware_download","emotet|epoch4|redir-doc|xls","pci.tims.se","159.253.28.229","42708","GB"
"2022-01-18 12:10:05","http://pci.tims.se/gx0otd/ymf1g1lP/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","pci.tims.se","159.253.28.229","42708","GB"
"2022-01-18 11:50:15","http://ranch.tims.se/46prxxd6/MGXn7KQnPh9dTtORSvMnYX/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","ranch.tims.se","159.253.28.229","42708","GB"
"2022-01-18 11:50:05","http://ranch.tims.se/46prxxd6/MGXn7KQnPh9dTtORSvMnYX/","offline","malware_download","emotet|epoch4|redir-doc|xls","ranch.tims.se","159.253.28.229","42708","GB"
"2022-01-18 10:54:04","http://senior.tims.se/-/6s/","offline","malware_download","emotet|epoch4|redir-doc","senior.tims.se","159.253.28.229","42708","GB"
"2022-01-18 10:54:04","http://senior.tims.se/-/6s/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","senior.tims.se","159.253.28.229","42708","GB"
"2022-01-18 10:08:11","http://tunnel.tims.se/l1eczx/NKmG0bxuthPbdEhLvldBSq/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","tunnel.tims.se","159.253.28.229","42708","GB"
"2022-01-18 10:08:04","http://tunnel.tims.se/l1eczx/NKmG0bxuthPbdEhLvldBSq/","offline","malware_download","emotet|epoch4|redir-doc|xls","tunnel.tims.se","159.253.28.229","42708","GB"
"2022-01-18 10:03:04","http://towels.tims.se/wvwhu7/4OCUVTVEP/","offline","malware_download","emotet|epoch4|redir-doc|xls","towels.tims.se","159.253.28.229","42708","GB"
"2022-01-18 10:03:04","http://towels.tims.se/wvwhu7/4OCUVTVEP/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","towels.tims.se","159.253.28.229","42708","GB"
"2022-01-18 09:52:05","http://utah.tims.se/cmxxd2z/z2jDaQMhc0Huyd8WS/","offline","malware_download","emotet|epoch4|redir-doc|xls","utah.tims.se","159.253.28.229","42708","GB"
"2022-01-18 09:52:05","http://utah.tims.se/cmxxd2z/z2jDaQMhc0Huyd8WS/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","utah.tims.se","159.253.28.229","42708","GB"
"2022-01-18 09:47:06","http://summit.tims.se/uhelp/c7s1K1sm2EudM0dWl3ZTwdMnZ/","offline","malware_download","emotet|epoch4|redir-doc|xls","summit.tims.se","159.253.28.229","42708","GB"
"2022-01-18 09:47:06","http://summit.tims.se/uhelp/c7s1K1sm2EudM0dWl3ZTwdMnZ/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","summit.tims.se","159.253.28.229","42708","GB"
"2021-07-21 11:15:37","https://46.246.84.12/cgdifn.msi","offline","malware_download","msi","46.246.84.12","46.246.84.12","42708","SE"
"2021-06-01 00:39:42","http://109.230.199.246/s-h.4-.Sakura","offline","malware_download","elf","109.230.199.246","109.230.199.246","42708","SE"
"2021-06-01 00:39:19","http://109.230.199.246/x-3.2-.Sakura","offline","malware_download","elf","109.230.199.246","109.230.199.246","42708","SE"
"2021-06-01 00:39:00","http://109.230.199.246/m-6.8-k.Sakura","offline","malware_download","elf","109.230.199.246","109.230.199.246","42708","SE"
"2021-06-01 00:38:55","http://109.230.199.246/m-p.s-l.Sakura","offline","malware_download","elf","109.230.199.246","109.230.199.246","42708","SE"
"2021-06-01 00:38:19","http://109.230.199.246/p-p.c-.Sakura","offline","malware_download","elf","109.230.199.246","109.230.199.246","42708","SE"
"2021-06-01 00:37:23","http://109.230.199.246/a-r.m-6.Sakura","offline","malware_download","elf","109.230.199.246","109.230.199.246","42708","SE"
"2021-06-01 00:37:09","http://109.230.199.246/a-r.m-4.Sakura","offline","malware_download","elf","109.230.199.246","109.230.199.246","42708","SE"
"2021-06-01 00:36:58","http://109.230.199.246/x-8.6-.Sakura","offline","malware_download","elf","109.230.199.246","109.230.199.246","42708","SE"
"2021-06-01 00:36:09","http://109.230.199.246/a-r.m-7.Sakura","offline","malware_download","elf","109.230.199.246","109.230.199.246","42708","SE"
"2021-06-01 00:36:07","http://109.230.199.246/i-5.8-6.Sakura","offline","malware_download","elf","109.230.199.246","109.230.199.246","42708","SE"
"2021-06-01 00:35:49","http://109.230.199.246/a-r.m-5.Sakura","offline","malware_download","elf","109.230.199.246","109.230.199.246","42708","SE"
"2021-06-01 00:35:20","http://109.230.199.246/m-i.p-s.Sakura","offline","malware_download","elf","109.230.199.246","109.230.199.246","42708","SE"
"2021-05-25 01:48:25","http://194.76.224.76/i-5.8-6.Sakura","offline","malware_download","elf|gafgyt","194.76.224.76","194.76.224.76","42708","SE"
"2021-05-25 01:48:20","http://194.76.224.76/m-i.p-s.Sakura","offline","malware_download","elf|gafgyt","194.76.224.76","194.76.224.76","42708","SE"
"2021-05-25 01:48:19","http://194.76.224.76/a-r.m-7.Sakura","offline","malware_download","elf|gafgyt","194.76.224.76","194.76.224.76","42708","SE"
"2021-05-25 01:48:19","http://194.76.224.76/m-p.s-l.Sakura","offline","malware_download","elf|gafgyt","194.76.224.76","194.76.224.76","42708","SE"
"2021-05-25 01:48:14","http://194.76.224.76/a-r.m-4.Sakura","offline","malware_download","elf|gafgyt","194.76.224.76","194.76.224.76","42708","SE"
"2021-05-25 01:48:14","http://194.76.224.76/a-r.m-5.Sakura","offline","malware_download","elf|gafgyt","194.76.224.76","194.76.224.76","42708","SE"
"2021-05-25 01:48:14","http://194.76.224.76/a-r.m-6.Sakura","offline","malware_download","elf|gafgyt","194.76.224.76","194.76.224.76","42708","SE"
"2021-05-25 01:48:14","http://194.76.224.76/p-p.c-.Sakura","offline","malware_download","elf|gafgyt","194.76.224.76","194.76.224.76","42708","SE"
"2021-05-25 01:48:14","http://194.76.224.76/s-h.4-.Sakura","offline","malware_download","elf|gafgyt","194.76.224.76","194.76.224.76","42708","SE"
"2021-05-25 01:48:11","http://194.76.224.76/m-6.8-k.Sakura","offline","malware_download","elf|gafgyt","194.76.224.76","194.76.224.76","42708","SE"
"2021-05-25 01:48:11","http://194.76.224.76/x-3.2-.Sakura","offline","malware_download","elf|gafgyt","194.76.224.76","194.76.224.76","42708","SE"
"2021-05-10 19:10:25","http://194.76.224.236/sh","offline","malware_download","elf|gafgyt","194.76.224.236","194.76.224.236","42708","SE"
"2021-05-10 19:10:25","http://194.76.224.236/sshd","offline","malware_download","elf|gafgyt","194.76.224.236","194.76.224.236","42708","SE"
"2021-05-10 19:10:17","http://194.76.224.236/apache2","offline","malware_download","elf|gafgyt","194.76.224.236","194.76.224.236","42708","SE"
"2021-05-10 19:10:17","http://194.76.224.236/cron","offline","malware_download","elf|gafgyt","194.76.224.236","194.76.224.236","42708","SE"
"2021-05-10 19:10:16","http://194.76.224.236/ftp","offline","malware_download","elf|gafgyt","194.76.224.236","194.76.224.236","42708","SE"
"2021-05-10 19:10:16","http://194.76.224.236/nut","offline","malware_download","elf|gafgyt","194.76.224.236","194.76.224.236","42708","SE"
"2021-05-10 19:10:16","http://194.76.224.236/tftp","offline","malware_download","elf|gafgyt","194.76.224.236","194.76.224.236","42708","SE"
"2021-05-10 19:10:14","http://194.76.224.236/ntpd","offline","malware_download","elf|gafgyt","194.76.224.236","194.76.224.236","42708","SE"
"2021-05-10 19:10:14","http://194.76.224.236/openssh","offline","malware_download","elf|gafgyt","194.76.224.236","194.76.224.236","42708","SE"
"2021-05-10 19:10:14","http://194.76.224.236/pftp","offline","malware_download","elf|gafgyt","194.76.224.236","194.76.224.236","42708","SE"
"2021-05-10 19:10:14","http://194.76.224.236/wget","offline","malware_download","elf|gafgyt","194.76.224.236","194.76.224.236","42708","SE"
"2020-08-26 18:08:38","http://gothiacupchina.com/iphone/215196023/aag6x0p2gn-00015/","offline","malware_download","doc|emotet|epoch3|Heodo","gothiacupchina.com","109.74.1.203","42708","SE"
"2020-02-28 18:14:32","http://46.246.45.144/lolicore.arm7","offline","malware_download","elf","46.246.45.144","46.246.45.144","42708","SE"
"2019-12-19 07:01:22","http://bftmedia.se/Frihamnsbrand/p60lg61cv-g8w9cd5-9668099500/","offline","malware_download","emotet|epoch3|exe","bftmedia.se","46.246.119.107","42708","NL"
"2019-12-11 09:53:11","http://46.246.44.140/lolicore.mips","offline","malware_download","elf|mirai","46.246.44.140","46.246.44.140","42708","SE"
"2019-12-11 09:53:08","http://46.246.44.140/lolicore.spc","offline","malware_download","elf|mirai","46.246.44.140","46.246.44.140","42708","SE"
"2019-12-11 09:52:12","http://46.246.44.140/lolicore.m68k","offline","malware_download","elf|mirai","46.246.44.140","46.246.44.140","42708","SE"
"2019-12-11 09:52:08","http://46.246.44.140/lolicore.arm6","offline","malware_download","elf|mirai","46.246.44.140","46.246.44.140","42708","SE"
"2019-12-11 09:45:09","http://46.246.44.140/lolicore.sh4","offline","malware_download","elf|mirai","46.246.44.140","46.246.44.140","42708","SE"
"2019-12-11 09:45:05","http://46.246.44.140/lolicore.x86","offline","malware_download","elf|mirai","46.246.44.140","46.246.44.140","42708","SE"
"2019-12-11 09:37:10","http://46.246.44.140/lolicore.arm5","offline","malware_download","elf|mirai","46.246.44.140","46.246.44.140","42708","SE"
"2019-12-11 09:37:07","http://46.246.44.140/lolicore.ppc","offline","malware_download","elf|mirai","46.246.44.140","46.246.44.140","42708","SE"
"2019-12-11 09:37:05","http://46.246.44.140/lolicore.arm","offline","malware_download","elf|mirai","46.246.44.140","46.246.44.140","42708","SE"
"2019-12-11 09:37:03","http://46.246.44.140/lolicore.mpsl","offline","malware_download","elf|mirai","46.246.44.140","46.246.44.140","42708","SE"
"2019-11-15 17:10:03","http://194.76.224.167/read.exe","offline","malware_download","exe|Gozi","194.76.224.167","194.76.224.167","42708","SE"
"2019-10-23 12:40:36","https://krusebilcenter.se/wp-content/plugins/apikey/nsgjxkyt/d99a00958a6ea4ffa8bde8db8d279ada.zip","offline","malware_download","CAN|Danabot|exe|vbs|zip","krusebilcenter.se","185.157.221.45","42708","SE"
"2019-10-09 07:08:05","http://agency.heritage-insuranceagency.com//?need=aegzfej&vid=vbs3&","offline","malware_download","FtCode|Ransomware","agency.heritage-insuranceagency.com","194.76.224.185","42708","SE"
"2019-10-09 07:08:03","http://agency.heritage-insuranceagency.com/?need=streetm&vid=vbs3&79908","offline","malware_download","FtCode|Ransomware","agency.heritage-insuranceagency.com","194.76.224.185","42708","SE"
"2019-10-08 16:06:06","http://alagic.se/.well-known/acme-challenge/1c.jpg","offline","malware_download","exe|Troldesh","alagic.se","46.246.119.42","42708","NL"
"2019-10-08 08:55:03","http://mario.neonhcm.com/?need=uvehywd&vid=dpec8&98559","offline","malware_download","","mario.neonhcm.com","194.76.224.185","42708","SE"
"2019-10-05 05:55:57","http://46.246.63.60/wloli.x86","offline","malware_download","","46.246.63.60","46.246.63.60","42708","SE"
"2019-10-05 05:55:52","http://46.246.63.60/wloli.x64","offline","malware_download","elf","46.246.63.60","46.246.63.60","42708","SE"
"2019-10-05 05:55:45","http://46.246.63.60/wloli.mpsl","offline","malware_download","elf","46.246.63.60","46.246.63.60","42708","SE"
"2019-10-05 05:55:39","http://46.246.63.60/wloli.mips","offline","malware_download","elf","46.246.63.60","46.246.63.60","42708","SE"
"2019-10-05 05:55:34","http://46.246.63.60/wloli.arm","offline","malware_download","elf","46.246.63.60","46.246.63.60","42708","SE"
"2019-10-05 05:55:29","http://46.246.63.60/wloli.arm5","offline","malware_download","elf","46.246.63.60","46.246.63.60","42708","SE"
"2019-10-05 05:55:24","http://46.246.63.60/wloli.arm6","offline","malware_download","elf","46.246.63.60","46.246.63.60","42708","SE"
"2019-10-05 05:55:19","http://46.246.63.60/wloli.arm7","offline","malware_download","elf","46.246.63.60","46.246.63.60","42708","SE"
"2019-10-05 05:55:12","http://46.246.63.60/wloli.arm64","offline","malware_download","elf","46.246.63.60","46.246.63.60","42708","SE"
"2019-10-05 05:55:07","http://46.246.63.60/bin.sh","offline","malware_download","elf","46.246.63.60","46.246.63.60","42708","SE"
"2019-09-19 23:20:04","https://krusebilcenter.se/wp-content/ktn9f3fpk_9imlp3d-1179/","offline","malware_download","emotet|epoch2|exe|Heodo","krusebilcenter.se","185.157.221.45","42708","SE"
"2019-09-15 17:15:06","http://109.230.199.196/gtop.sh","offline","malware_download","","109.230.199.196","109.230.199.196","42708","SE"
"2018-07-30 15:32:12","http://nygren.nu/sites/US_us/Past-Due-Invoices/Invoices/","offline","malware_download","doc|emotet|epoch2|Heodo","nygren.nu","46.246.119.29","42708","NL"
"2018-07-24 14:10:18","http://butterbean.se/KKHaZ8Oh","offline","malware_download","emotet|exe","butterbean.se","46.246.119.114","42708","NL"
"2018-07-24 05:29:57","http://butterbean.se/doc/En/Payment-and-address/INV911392287270578/","offline","malware_download","doc|emotet|epoch2|Heodo","butterbean.se","46.246.119.114","42708","NL"
"2018-07-21 08:05:07","http://butterbean.se/doc/En/Payment-and-address/INV911392287270578","offline","malware_download","doc|emotet|heodo","butterbean.se","46.246.119.114","42708","NL"
"2018-07-17 23:07:40","http://nygren.nu/doc/EN_en/Jul2018/022819/","offline","malware_download","doc|emotet|epoch2|Heodo","nygren.nu","46.246.119.29","42708","NL"
"2018-07-17 23:07:14","http://fdrs-ltd.com/files/US/Payment-and-address/Invoice-457693/","offline","malware_download","doc|emotet|epoch2|Heodo","fdrs-ltd.com","46.246.119.88","42708","NL"
"2018-04-13 05:09:46","http://topr.se/Rechnung/","offline","malware_download","doc|emotet|heodo","topr.se","159.253.26.222","42708","SE"
"2018-04-10 14:58:46","http://maoda.se/Scan/","offline","malware_download","doc|emotet|heodo","maoda.se","46.246.119.114","42708","NL"
# of entries: 218