##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2025-11-19 20:52:24 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS4811
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2025-11-18 16:34:16","http://106.75.215.96:8081/02.08.2022.exe","online","malware_download","censys|CobaltStrike","106.75.215.96","106.75.215.96","4811","CN"
"2025-07-31 17:35:10","http://106.75.214.122/02.08.2022.exe","offline","malware_download","censys|CobaltStrike","106.75.214.122","106.75.214.122","4811","CN"
"2025-07-01 23:51:36","http://14.103.154.84:6661/02.08.2022.exe","offline","malware_download","censys|CobaltStrike","14.103.154.84","14.103.154.84","4811","CN"
"2025-06-18 14:44:14","http://14.103.238.166:8081/02.08.2022.exe","offline","malware_download","censys|CobaltStrike","14.103.238.166","14.103.238.166","4811","CN"
"2025-06-16 15:05:34","http://14.103.145.211/rondo.x86","offline","malware_download","elf|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:04:35","http://14.103.145.211/rondo.sh","offline","malware_download","Mirai|sh|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:40","http://14.103.145.211/rondo.armv4l","offline","malware_download","elf|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:40","http://14.103.145.211/rondo.fbsdi386","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:40","http://14.103.145.211/rondo.i486","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:40","http://14.103.145.211/rondo.i586","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:40","http://14.103.145.211/rondo.x86_64","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:36","http://14.103.145.211/rondo.powerpc","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:35","http://14.103.145.211/rondo.arc700","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:35","http://14.103.145.211/rondo.armv5l","offline","malware_download","elf|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:35","http://14.103.145.211/rondo.armv6l","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:35","http://14.103.145.211/rondo.armv7l","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:35","http://14.103.145.211/rondo.fbsdamd64","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:35","http://14.103.145.211/rondo.fbsdarm64","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:35","http://14.103.145.211/rondo.fbsdpowerpc","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:35","http://14.103.145.211/rondo.i686","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:35","http://14.103.145.211/rondo.m68k","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:35","http://14.103.145.211/rondo.mipsel","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:35","http://14.103.145.211/rondo.powerpc-440fp","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:35","http://14.103.145.211/rondo.sh4","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-06-16 15:03:27","http://14.103.145.211/rondo.mips","offline","malware_download","elf|Mirai|ua-wget","14.103.145.211","14.103.145.211","4811","CN"
"2025-05-26 21:44:08","http://14.103.242.218:8888/02.08.2022.exe","offline","malware_download","censys|CobaltStrike","14.103.242.218","14.103.242.218","4811","CN"
"2025-04-25 18:23:34","http://106.75.210.106/02.08.2022.exe","offline","malware_download","censys|CobaltStrike","106.75.210.106","106.75.210.106","4811","CN"
"2025-04-20 07:59:22","http://neirong.funshion.com/airportbeta/files/foam.zip","online","malware_download","","neirong.funshion.com","218.78.212.112","4811","CN"
"2025-01-10 06:48:05","http://113.31.111.76/1.c","offline","malware_download","shellcode","113.31.111.76","113.31.111.76","4811","CN"
"2025-01-08 11:42:12","http://113.31.111.76/1.exe","online","malware_download","","113.31.111.76","113.31.111.76","4811","CN"
"2024-10-11 15:55:15","http://113.31.113.209/02.08.2022.exe","offline","malware_download","","113.31.113.209","113.31.113.209","4811","CN"
"2024-10-06 11:29:13","http://14.103.48.107/i","offline","malware_download","","14.103.48.107","14.103.48.107","4811","CN"
"2024-09-15 17:22:21","http://14.103.48.107/02.08.2022.exe","offline","malware_download","CobaltStrike|shellcode","14.103.48.107","14.103.48.107","4811","CN"
"2024-08-16 15:17:20","http://14.103.92.68:8081/02.08.2022.exe","offline","malware_download","cobaltstrike|shellcode","14.103.92.68","14.103.92.68","4811","CN"
"2024-08-16 15:17:18","http://14.103.92.68:90/02.08.2022.exe","offline","malware_download","cobaltstrike|shellcode","14.103.92.68","14.103.92.68","4811","CN"
"2024-08-06 19:26:26","http://14.103.92.68/02.08.2022.exe","offline","malware_download","cobaltstrike|exe|This_exe_triggers_specifically_to_cobaltstrike_c2","14.103.92.68","14.103.92.68","4811","CN"
"2021-10-16 13:42:34","http://118.196.73.23:57260/mozi.m","offline","malware_download","","118.196.73.23","118.196.73.23","4811","CN"
"2021-08-11 05:34:34","http://118.196.91.230:42628/mozi.m","offline","malware_download","","118.196.91.230","118.196.91.230","4811","CN"
"2020-09-17 09:49:09","http://114.67.65.35:88/Linux","offline","malware_download","elf|mrblack","114.67.65.35","114.67.65.35","4811","CN"
"2019-12-24 10:55:40","http://dstang.com/cf2/software/vb6-s.exe","offline","malware_download","exe","dstang.com","218.83.155.184","4811","CN"
"2019-12-24 10:55:13","http://dstang.com/cf2/software/vb6mousewheel.exe","offline","malware_download","exe","dstang.com","218.83.155.184","4811","CN"
"2019-01-25 00:48:06","http://shly.fsygroup.com/wp-admin/css/sserv.jpg","offline","malware_download","exe","shly.fsygroup.com","120.133.239.160","4811","CN"
"2019-01-25 00:45:21","http://shly.fsygroup.com/flvplayer/sserv.jpg","offline","malware_download","exe|Ransomware.Troldesh|Troldesh","shly.fsygroup.com","120.133.239.160","4811","CN"
"2019-01-25 00:45:10","http://shly.fsygroup.com/aspnet_client/system_web/4_0_30319/ssj.jpg","offline","malware_download","exe|Ransomware.Troldesh|Troldesh","shly.fsygroup.com","120.133.239.160","4811","CN"
"2019-01-25 00:24:08","http://shly.fsygroup.com/wp-content/themes/whiteangel/css/sserv.jpg","offline","malware_download","exe|Ransomware.Troldesh|Troldesh","shly.fsygroup.com","120.133.239.160","4811","CN"
"2019-01-25 00:18:09","http://shly.fsygroup.com/mysql_backup/sserv.jpg","offline","malware_download","exe|Ransomware.Troldesh|Troldesh","shly.fsygroup.com","120.133.239.160","4811","CN"
"2019-01-25 00:18:05","http://shly.fsygroup.com/wp-content/themes/whiteangel/videos/sserv.jpg","offline","malware_download","exe","shly.fsygroup.com","120.133.239.160","4811","CN"
"2019-01-24 23:56:10","http://shly.fsygroup.com/mobile/config/sserv.jpg","offline","malware_download","exe|Ransomware.Troldesh|Troldesh","shly.fsygroup.com","120.133.239.160","4811","CN"
"2019-01-24 23:41:12","http://shly.fsygroup.com/wp-content/themes/whiteangel/images/zz/sserv.jpg","offline","malware_download","exe","shly.fsygroup.com","120.133.239.160","4811","CN"
"2019-01-24 23:37:22","http://shly.fsygroup.com/wp-content/languages/themes/zinf.jpg","offline","malware_download","exe","shly.fsygroup.com","120.133.239.160","4811","CN"
"2019-01-24 23:21:11","http://shly.fsygroup.com/aspnet_client/system_web/4_0_30319/sserv.jpg","offline","malware_download","exe|Ransomware.Troldesh|Troldesh","shly.fsygroup.com","120.133.239.160","4811","CN"
"2019-01-24 23:12:10","http://shly.fsygroup.com/wp-content/languages/themes/sserv.jpg","offline","malware_download","exe","shly.fsygroup.com","120.133.239.160","4811","CN"
"2019-01-24 19:12:07","http://shly.fsygroup.com/wp-admin/css/mxr.pdf","offline","malware_download","Ransomware.Troldesh|Troldesh","shly.fsygroup.com","120.133.239.160","4811","CN"
"2019-01-24 19:09:40","http://shly.fsygroup.com/aspnet_client/system_web/4_0_30319/mxr.pdf","offline","malware_download","Ransomware.Shade|Troldesh","shly.fsygroup.com","120.133.239.160","4811","CN"
"2019-01-24 19:09:04","http://shly.fsygroup.com/wp-admin/css/ssj.jpg","offline","malware_download","Ransomware.Troldesh|Troldesh","shly.fsygroup.com","120.133.239.160","4811","CN"
"2018-06-04 16:09:44","http://whystudio.cn/DETAILS/Rechnung-fur-Zahlung-0242-5509/","offline","malware_download","doc|emotet|Heodo","whystudio.cn","210.16.190.24","4811","CN"
"2018-06-01 15:22:07","http://whystudio.cn/fact/","offline","malware_download","doc|emotet|Heodo","whystudio.cn","210.16.190.24","4811","CN"
# of entries: 57