##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2025-11-19 07:16:24 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS56309
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2025-06-07 21:26:20","http://45.91.133.130/launcher/client/CabalMain.exe","offline","malware_download","exe","45.91.133.130","45.91.133.130","56309","TH"
"2025-06-07 21:26:13","http://43.229.135.199/cmd/services.exe","online","malware_download","AgentTesla|exe","43.229.135.199","43.229.135.199","56309","TH"
"2025-06-07 21:26:08","http://45.91.133.130/launcher/client/cabal.exe","offline","malware_download","exe","45.91.133.130","45.91.133.130","56309","TH"
"2025-04-20 08:00:04","http://45.91.133.59/client/CabalMain.exe","offline","malware_download","","45.91.133.59","45.91.133.59","56309","TH"
"2025-04-20 07:58:21","http://45.91.133.59/client/update.exe","online","malware_download","","45.91.133.59","45.91.133.59","56309","TH"
"2024-12-07 14:43:17","https://jobcity.com/img/RM0XpX/","online","malware_download","Emotet|Heodo","jobcity.com","103.253.75.46","56309","TH"
"2024-11-08 10:54:06","http://45.154.24.11/main_m68k","offline","malware_download","elf|fbi.gov|Mirai|MooBot","45.154.24.11","45.154.24.11","56309","TH"
"2024-11-08 10:53:06","http://45.154.24.11/main_arm5","offline","malware_download","elf|fbi.gov|Mirai|MooBot","45.154.24.11","45.154.24.11","56309","TH"
"2024-11-08 10:53:06","http://45.154.24.11/main_arm6","offline","malware_download","elf|fbi.gov|Mirai|MooBot","45.154.24.11","45.154.24.11","56309","TH"
"2024-11-08 10:53:06","http://45.154.24.11/main_mips","offline","malware_download","elf|fbi.gov|Mirai|MooBot","45.154.24.11","45.154.24.11","56309","TH"
"2024-11-08 10:52:09","http://45.154.24.11/main_arm","offline","malware_download","elf|fbi.gov|Mirai|MooBot","45.154.24.11","45.154.24.11","56309","TH"
"2024-11-08 10:52:09","http://45.154.24.11/main_mpsl","offline","malware_download","elf|fbi.gov|Mirai|MooBot","45.154.24.11","45.154.24.11","56309","TH"
"2024-11-08 10:52:08","http://45.154.24.11/main_arm7","offline","malware_download","elf|fbi.gov|Mirai|MooBot","45.154.24.11","45.154.24.11","56309","TH"
"2024-11-08 10:52:08","http://45.154.24.11/main_ppc","offline","malware_download","elf|fbi.gov|Mirai|MooBot","45.154.24.11","45.154.24.11","56309","TH"
"2024-11-08 10:52:08","http://45.154.24.11/main_sh4","offline","malware_download","elf|fbi.gov|Mirai|MooBot","45.154.24.11","45.154.24.11","56309","TH"
"2024-11-08 10:52:08","http://45.154.24.11/main_x86_64","offline","malware_download","elf|fbi.gov|Mirai|MooBot","45.154.24.11","45.154.24.11","56309","TH"
"2024-03-14 12:08:10","http://45.144.165.227/a-r.m-7.SNOOPY","offline","malware_download","elf|Gafgyt|mirai","45.144.165.227","45.144.165.227","56309","TH"
"2024-03-14 12:08:09","http://45.144.165.227/a-r.m-4.SNOOPY","offline","malware_download","elf|Gafgyt|mirai","45.144.165.227","45.144.165.227","56309","TH"
"2024-03-14 12:08:09","http://45.144.165.227/a-r.m-5.SNOOPY","offline","malware_download","elf|Gafgyt|mirai","45.144.165.227","45.144.165.227","56309","TH"
"2024-03-14 12:08:09","http://45.144.165.227/a-r.m-6.SNOOPY","offline","malware_download","elf|Gafgyt|mirai","45.144.165.227","45.144.165.227","56309","TH"
"2024-03-14 12:08:09","http://45.144.165.227/m-6.8-k.SNOOPY","offline","malware_download","elf|Gafgyt|mirai","45.144.165.227","45.144.165.227","56309","TH"
"2024-03-14 12:08:09","http://45.144.165.227/m-p.s-l.SNOOPY","offline","malware_download","elf|Gafgyt|mirai","45.144.165.227","45.144.165.227","56309","TH"
"2024-03-14 12:08:09","http://45.144.165.227/p-p.c-.SNOOPY","offline","malware_download","elf|Gafgyt|mirai","45.144.165.227","45.144.165.227","56309","TH"
"2024-03-14 12:08:09","http://45.144.165.227/x-3.2-.SNOOPY","offline","malware_download","elf|Gafgyt|mirai","45.144.165.227","45.144.165.227","56309","TH"
"2024-03-14 12:08:08","http://45.144.165.227/i-5.8-6.SNOOPY","offline","malware_download","elf|Gafgyt|mirai","45.144.165.227","45.144.165.227","56309","TH"
"2024-03-14 12:08:08","http://45.144.165.227/m-i.p-s.SNOOPY","offline","malware_download","elf|Gafgyt|mirai","45.144.165.227","45.144.165.227","56309","TH"
"2024-03-14 12:08:08","http://45.144.165.227/s-h.4-.SNOOPY","offline","malware_download","elf|Gafgyt|mirai","45.144.165.227","45.144.165.227","56309","TH"
"2024-03-14 12:08:08","http://45.144.165.227/x-8.6-.SNOOPY","offline","malware_download","elf|Gafgyt|mirai","45.144.165.227","45.144.165.227","56309","TH"
"2023-10-02 15:47:07","http://141.98.16.185/bins/sora.arm5","offline","malware_download","elf|Mirai","141.98.16.185","141.98.16.185","56309","TH"
"2023-10-02 15:47:07","http://141.98.16.185/bins/sora.arm6","offline","malware_download","elf|Mirai","141.98.16.185","141.98.16.185","56309","TH"
"2023-10-02 15:47:07","http://141.98.16.185/bins/sora.arm7","offline","malware_download","elf|Mirai","141.98.16.185","141.98.16.185","56309","TH"
"2023-10-02 15:47:07","http://141.98.16.185/bins/sora.m68k","offline","malware_download","elf|Mirai","141.98.16.185","141.98.16.185","56309","TH"
"2023-10-02 15:47:07","http://141.98.16.185/bins/sora.mpsl","offline","malware_download","elf|Mirai","141.98.16.185","141.98.16.185","56309","TH"
"2023-10-02 15:47:07","http://141.98.16.185/bins/sora.ppc","offline","malware_download","elf|Mirai","141.98.16.185","141.98.16.185","56309","TH"
"2023-10-02 15:47:07","http://141.98.16.185/bins/sora.sh4","offline","malware_download","elf|Mirai","141.98.16.185","141.98.16.185","56309","TH"
"2023-10-02 15:47:07","http://141.98.16.185/bins/sora.x86_64","offline","malware_download","elf|Mirai","141.98.16.185","141.98.16.185","56309","TH"
"2023-10-02 15:47:06","http://141.98.16.185/bins/sora.arm","offline","malware_download","elf|mirai","141.98.16.185","141.98.16.185","56309","TH"
"2023-10-02 15:47:06","http://141.98.16.185/bins/sora.i686","offline","malware_download","elf|Mirai","141.98.16.185","141.98.16.185","56309","TH"
"2023-10-02 15:47:06","http://141.98.16.185/bins/sora.mips","offline","malware_download","elf","141.98.16.185","141.98.16.185","56309","TH"
"2023-10-02 15:47:06","http://141.98.16.185/bins/sora.x86","offline","malware_download","elf|mirai","141.98.16.185","141.98.16.185","56309","TH"
"2023-05-31 01:28:22","https://hcsasia.co.th/txqkafexar/rentfree.zip","offline","malware_download","geofenced|js|Obama265|Qakbot|Quakbot|USA|zip","hcsasia.co.th","43.229.149.178","56309","TH"
"2023-04-26 07:24:28","http://45.150.128.182/fuckjewishpeople.arm4","offline","malware_download","elf|gafgyt","45.150.128.182","45.150.128.182","56309","TH"
"2023-04-26 07:24:28","http://45.150.128.182/fuckjewishpeople.arm5","offline","malware_download","elf|gafgyt","45.150.128.182","45.150.128.182","56309","TH"
"2023-04-26 07:24:28","http://45.150.128.182/fuckjewishpeople.arm6","offline","malware_download","elf|gafgyt","45.150.128.182","45.150.128.182","56309","TH"
"2023-04-26 07:24:28","http://45.150.128.182/fuckjewishpeople.arm7","offline","malware_download","elf|gafgyt","45.150.128.182","45.150.128.182","56309","TH"
"2023-04-26 07:24:28","http://45.150.128.182/fuckjewishpeople.mips","offline","malware_download","elf|gafgyt","45.150.128.182","45.150.128.182","56309","TH"
"2023-04-26 07:24:28","http://45.150.128.182/fuckjewishpeople.mpsl","offline","malware_download","elf|gafgyt","45.150.128.182","45.150.128.182","56309","TH"
"2023-04-26 07:24:28","http://45.150.128.182/fuckjewishpeople.ppc","offline","malware_download","elf|gafgyt","45.150.128.182","45.150.128.182","56309","TH"
"2023-04-26 07:24:28","http://45.150.128.182/fuckjewishpeople.sparc","offline","malware_download","elf|gafgyt","45.150.128.182","45.150.128.182","56309","TH"
"2023-03-14 19:03:48","https://www.ppkhosp.go.th/scarica/","offline","malware_download","250255|7710|geofenced|Gozi|ISFB|ITA|redir-302|Ursnif","www.ppkhosp.go.th","43.229.79.183","56309","TH"
"2023-03-14 19:00:22","https://www.ppkhosp.go.th/connect/","offline","malware_download","250255|7710|geofenced|Gozi|ISFB|ITA|redir-302|Ursnif","www.ppkhosp.go.th","43.229.79.183","56309","TH"
"2023-03-14 19:00:20","https://www.ppkhosp.go.th/agenzia/","offline","malware_download","250255|7710|geofenced|Gozi|ISFB|ITA|redir-302|Ursnif","www.ppkhosp.go.th","43.229.79.183","56309","TH"
"2022-10-19 00:19:15","http://103.114.201.214:40450/Mozi.m","offline","malware_download","elf|Mozi","103.114.201.214","103.114.201.214","56309","TH"
"2022-10-03 06:05:26","http://103.114.201.214:50026/Mozi.m","offline","malware_download","Mozi","103.114.201.214","103.114.201.214","56309","TH"
"2022-08-29 00:04:08","http://103.114.201.6:40184/Mozi.m","offline","malware_download","elf|Mozi","103.114.201.6","103.114.201.6","56309","TH"
"2022-06-06 21:04:08","http://jobcity.com/img/RM0XpX/","online","malware_download","dll|emotet|epoch4|heodo","jobcity.com","103.253.75.46","56309","TH"
"2022-06-03 08:56:08","https://www.suddedx.com/jokerslot/mb2Eadbdssh/","offline","malware_download","emotet|epoch5|exe|heodo","www.suddedx.com","43.229.79.173","56309","TH"
"2022-05-08 00:04:10","http://103.114.201.36:38211/Mozi.m","offline","malware_download","elf|Mozi","103.114.201.36","103.114.201.36","56309","TH"
"2022-04-24 18:14:08","http://203.159.92.128/beastmode/b3astmode.spc","offline","malware_download","32|elf|mirai|sparc","203.159.92.128","203.159.92.128","56309","TH"
"2022-04-24 17:12:17","http://203.159.92.128/beastmode/b3astmode.m68k","offline","malware_download","elf|Mirai","203.159.92.128","203.159.92.128","56309","TH"
"2022-04-24 17:12:16","http://203.159.92.128/beastmode/b3astmode.arm","offline","malware_download","elf|Mirai","203.159.92.128","203.159.92.128","56309","TH"
"2022-04-24 17:12:14","http://203.159.92.128/beastmode/b3astmode.arm5","offline","malware_download","elf|Mirai","203.159.92.128","203.159.92.128","56309","TH"
"2022-04-24 17:12:14","http://203.159.92.128/beastmode/b3astmode.arm6","offline","malware_download","elf|Mirai","203.159.92.128","203.159.92.128","56309","TH"
"2022-04-24 17:12:14","http://203.159.92.128/beastmode/b3astmode.arm7","offline","malware_download","elf|Mirai","203.159.92.128","203.159.92.128","56309","TH"
"2022-04-24 17:12:14","http://203.159.92.128/beastmode/b3astmode.mips","offline","malware_download","elf|Mirai","203.159.92.128","203.159.92.128","56309","TH"
"2022-04-24 17:12:14","http://203.159.92.128/beastmode/b3astmode.mpsl","offline","malware_download","elf|Mirai","203.159.92.128","203.159.92.128","56309","TH"
"2022-04-24 17:12:14","http://203.159.92.128/beastmode/b3astmode.ppc","offline","malware_download","elf","203.159.92.128","203.159.92.128","56309","TH"
"2022-04-24 17:12:14","http://203.159.92.128/beastmode/b3astmode.sh4","offline","malware_download","elf|Mirai","203.159.92.128","203.159.92.128","56309","TH"
"2022-04-24 17:12:14","http://203.159.92.128/beastmode/b3astmode.x86","offline","malware_download","elf|Mirai","203.159.92.128","203.159.92.128","56309","TH"
"2022-03-17 16:39:14","https://banrai.ac.th/website/IHI0iNLLWDh9P/","offline","malware_download","dll|emotet|epoch5|heodo","banrai.ac.th","43.229.149.99","56309","TH"
"2022-01-26 23:09:11","https://thaireportchannel.com/wp-includes/KaWZp0odkEO/","offline","malware_download","dll|emotet|epoch5|heodo","thaireportchannel.com","203.159.94.145","56309","TH"
"2021-10-16 16:49:07","http://103.107.55.225:40234/Mozi.a","offline","malware_download","elf|Mirai|Mozi","103.107.55.225","103.107.55.225","56309","TH"
"2021-10-11 11:20:13","https://gwcrresearch.org/js/SMKMBT-00000789-2021-10-90340-PDF.zip","offline","malware_download","nanocore","gwcrresearch.org","45.91.134.18","56309","TH"
"2021-10-11 11:19:08","https://gwcrresearch.org/js/DOC_00000231320349-PDF.zip","offline","malware_download","nanocore","gwcrresearch.org","45.91.134.18","56309","TH"
"2021-10-10 16:12:05","http://103.107.55.225:51067/Mozi.a","offline","malware_download","Mozi","103.107.55.225","103.107.55.225","56309","TH"
"2021-10-09 17:25:35","http://103.107.55.225:57207/mozi.a","offline","malware_download","","103.107.55.225","103.107.55.225","56309","TH"
"2021-10-03 12:05:35","http://103.107.55.89:45173/mozi.m","offline","malware_download","","103.107.55.89","103.107.55.89","56309","TH"
"2021-09-15 06:19:09","http://103.107.55.123:42880/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.107.55.123","103.107.55.123","56309","TH"
"2021-09-12 08:04:20","http://103.107.55.123:43927/Mozi.a","offline","malware_download","elf|Mirai|Mozi","103.107.55.123","103.107.55.123","56309","TH"
"2021-09-10 06:49:13","http://103.107.55.123:33337/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.107.55.123","103.107.55.123","56309","TH"
"2021-08-31 16:34:06","http://103.107.55.144:45187/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.107.55.144","103.107.55.144","56309","TH"
"2021-08-25 05:49:43","http://103.107.55.144:52395/Mozi.a","offline","malware_download","elf|Mozi","103.107.55.144","103.107.55.144","56309","TH"
"2021-08-22 13:04:19","http://103.107.55.144:36277/Mozi.a","offline","malware_download","elf|Mirai|Mozi","103.107.55.144","103.107.55.144","56309","TH"
"2021-08-20 08:34:07","http://103.107.55.144:39279/Mozi.a","offline","malware_download","elf|Mirai|Mozi","103.107.55.144","103.107.55.144","56309","TH"
"2021-08-14 17:19:36","http://103.107.55.113:48617/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.107.55.113","103.107.55.113","56309","TH"
"2021-08-12 03:49:06","http://103.107.55.113:39194/Mozi.a","offline","malware_download","elf|Mirai|Mozi","103.107.55.113","103.107.55.113","56309","TH"
"2021-08-11 19:34:40","http://103.107.55.113:39194/Mozi.m","offline","malware_download","elf|Mozi","103.107.55.113","103.107.55.113","56309","TH"
"2021-07-22 11:04:06","http://103.107.55.174:45708/Mozi.a","offline","malware_download","elf|Mirai|Mozi","103.107.55.174","103.107.55.174","56309","TH"
"2021-07-08 17:05:09","http://103.107.55.140:45524/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.107.55.140","103.107.55.140","56309","TH"
"2021-06-16 02:19:13","http://103.107.55.66:50512/Mozi.a","offline","malware_download","elf|Mirai|Mozi","103.107.55.66","103.107.55.66","56309","TH"
"2021-06-15 12:34:15","http://103.107.55.66:38954/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.107.55.66","103.107.55.66","56309","TH"
"2021-05-26 00:03:34","http://103.107.55.248:44893/Mozi.m","offline","malware_download","Mozi","103.107.55.248","103.107.55.248","56309","TH"
"2021-05-23 18:19:07","http://103.107.55.247:39437/Mozi.a","offline","malware_download","elf|Mirai|Mozi","103.107.55.247","103.107.55.247","56309","TH"
"2021-04-21 15:04:10","http://103.107.55.182:42532/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.107.55.182","103.107.55.182","56309","TH"
"2021-04-14 05:34:06","http://103.107.54.140:58248/Mozi.a","offline","malware_download","elf|Mirai|Mozi","103.107.54.140","103.107.54.140","56309","TH"
"2021-02-19 21:04:34","http://103.107.55.250:35040/Mozi.m","offline","malware_download","Mirai|Mozi","103.107.55.250","103.107.55.250","56309","TH"
"2021-02-13 00:03:16","http://103.107.55.250:60104/Mozi.m","offline","malware_download","Mirai|Mozi","103.107.55.250","103.107.55.250","56309","TH"
"2021-02-12 03:04:35","http://103.107.55.251:52356/Mozi.m","offline","malware_download","Mozi","103.107.55.251","103.107.55.251","56309","TH"
"2020-12-27 00:04:32","http://103.107.55.36:60857/Mozi.m","offline","malware_download","Mozi","103.107.55.36","103.107.55.36","56309","TH"
"2020-11-16 16:19:05","http://103.107.55.82:40321/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.107.55.82","103.107.55.82","56309","TH"
"2020-11-05 11:34:09","http://103.99.11.61:42740/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.99.11.61","103.99.11.61","56309","TH"
"2020-10-31 13:04:04","http://103.99.11.61:50267/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.99.11.61","103.99.11.61","56309","TH"
"2020-10-31 12:49:05","http://103.99.11.61:50267/Mozi.a","offline","malware_download","elf|Mirai|Mozi","103.99.11.61","103.99.11.61","56309","TH"
"2020-10-20 20:49:05","http://103.99.11.61:47152/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.99.11.61","103.99.11.61","56309","TH"
"2020-10-18 08:49:06","http://103.99.11.61:59848/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.99.11.61","103.99.11.61","56309","TH"
"2020-10-17 01:19:05","http://103.99.11.61:41497/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.99.11.61","103.99.11.61","56309","TH"
"2020-10-16 20:34:09","http://103.107.55.240:56252/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.107.55.240","103.107.55.240","56309","TH"
"2020-10-15 09:34:05","http://103.99.11.61:38438/Mozi.a","offline","malware_download","elf|Mirai|Mozi","103.99.11.61","103.99.11.61","56309","TH"
"2020-10-15 09:19:05","http://103.99.11.61:38438/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.99.11.61","103.99.11.61","56309","TH"
"2020-10-10 15:19:05","http://103.99.11.61:57449/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.99.11.61","103.99.11.61","56309","TH"
"2020-10-09 07:33:06","http://43.229.149.83/mips","offline","malware_download","bashlite|elf|gafgyt","43.229.149.83","43.229.149.83","56309","TH"
"2020-10-09 07:33:05","http://43.229.149.83/armv6l","offline","malware_download","bashlite|elf|gafgyt","43.229.149.83","43.229.149.83","56309","TH"
"2020-10-09 07:33:04","http://43.229.149.83/i586","offline","malware_download","bashlite|elf|gafgyt","43.229.149.83","43.229.149.83","56309","TH"
"2020-10-09 07:33:04","http://43.229.149.83/sh4","offline","malware_download","bashlite|elf|gafgyt","43.229.149.83","43.229.149.83","56309","TH"
"2020-10-09 07:28:05","http://43.229.149.83/i686","offline","malware_download","bashlite|elf|gafgyt","43.229.149.83","43.229.149.83","56309","TH"
"2020-10-09 07:28:04","http://43.229.149.83/powerpc","offline","malware_download","bashlite|elf|gafgyt","43.229.149.83","43.229.149.83","56309","TH"
"2020-10-09 07:21:06","http://43.229.149.83/armv5l","offline","malware_download","bashlite|elf|gafgyt","43.229.149.83","43.229.149.83","56309","TH"
"2020-10-09 07:19:10","http://43.229.149.83/m68k","offline","malware_download","bashlite|elf|gafgyt","43.229.149.83","43.229.149.83","56309","TH"
"2020-10-09 07:19:09","http://43.229.149.83/sparc","offline","malware_download","bashlite|elf|gafgyt","43.229.149.83","43.229.149.83","56309","TH"
"2020-10-09 07:19:08","http://43.229.149.83/armv4l","offline","malware_download","bashlite|elf|gafgyt","43.229.149.83","43.229.149.83","56309","TH"
"2020-10-09 07:19:04","http://43.229.149.83/x86","offline","malware_download","bashlite|elf|gafgyt","43.229.149.83","43.229.149.83","56309","TH"
"2020-10-09 07:13:06","http://43.229.149.83/mipsel","offline","malware_download","bashlite|elf|gafgyt","43.229.149.83","43.229.149.83","56309","TH"
"2020-10-09 04:54:04","http://43.229.149.83/Anon_bins.sh","offline","malware_download","shellscript","43.229.149.83","43.229.149.83","56309","TH"
"2020-10-07 12:19:06","http://103.99.11.61:39803/Mozi.a","offline","malware_download","elf|Mirai|Mozi","103.99.11.61","103.99.11.61","56309","TH"
"2020-10-04 05:34:05","http://103.99.11.61:40179/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.99.11.61","103.99.11.61","56309","TH"
"2020-10-02 14:34:05","http://103.99.11.61:45268/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.99.11.61","103.99.11.61","56309","TH"
"2020-10-02 09:19:05","http://103.107.54.26:41782/Mozi.a","offline","malware_download","elf|Mirai|Mozi","103.107.54.26","103.107.54.26","56309","TH"
"2020-09-30 20:34:05","http://103.99.11.61:51416/Mozi.m","offline","malware_download","elf|Mozi","103.99.11.61","103.99.11.61","56309","TH"
"2020-09-17 20:35:12","http://103.99.11.61:46076/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.99.11.61","103.99.11.61","56309","TH"
"2020-08-18 18:35:14","http://43.229.149.62:8080/web/se.jpg","offline","malware_download","exe","43.229.149.62","43.229.149.62","56309","TH"
"2020-08-18 18:29:13","http://43.229.149.62:8080/web/po.jpg","offline","malware_download","exe","43.229.149.62","43.229.149.62","56309","TH"
"2020-08-18 18:29:09","http://43.229.149.62:8080/web/dw.exe","offline","malware_download","exe","43.229.149.62","43.229.149.62","56309","TH"
"2020-08-18 18:18:03","http://43.229.149.62:8080/web/Add.exe","offline","malware_download","exe","43.229.149.62","43.229.149.62","56309","TH"
"2020-08-18 18:13:03","http://43.229.149.62:8080/web/AddUser.exe","offline","malware_download","exe","43.229.149.62","43.229.149.62","56309","TH"
"2020-06-14 16:26:13","http://43.229.151.135/load.vbs","offline","malware_download","vbs","43.229.151.135","43.229.151.135","56309","TH"
"2020-06-14 16:26:11","http://43.229.151.135/tj.exe","offline","malware_download","exe|njrat","43.229.151.135","43.229.151.135","56309","TH"
"2020-06-14 16:26:09","http://43.229.151.135/Shell.exe","offline","malware_download","exe","43.229.151.135","43.229.151.135","56309","TH"
"2020-06-14 16:26:07","http://43.229.151.135/123.exe","offline","malware_download","exe|njrat","43.229.151.135","43.229.151.135","56309","TH"
"2020-06-13 11:14:19","http://43.229.151.135/nyan.exe","offline","malware_download","exe|njrat","43.229.151.135","43.229.151.135","56309","TH"
"2020-06-13 11:14:17","http://43.229.151.135/Server.exe","offline","malware_download","exe|njrat","43.229.151.135","43.229.151.135","56309","TH"
"2020-06-13 11:14:07","http://43.229.151.135/Loader.exe","offline","malware_download","exe|njrat","43.229.151.135","43.229.151.135","56309","TH"
"2020-06-13 11:14:04","http://43.229.151.135/asd.exe","offline","malware_download","exe|njrat","43.229.151.135","43.229.151.135","56309","TH"
"2020-06-13 11:13:04","http://43.229.151.135/44.exe","offline","malware_download","exe|njrat","43.229.151.135","43.229.151.135","56309","TH"
"2020-03-12 06:05:42","http://103.99.11.62:37552/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.99.11.62","103.99.11.62","56309","TH"
"2020-02-07 00:40:36","http://tay.batt2u.com/cgi-bin/sKobi4/","offline","malware_download","emotet|epoch2|exe|heodo","tay.batt2u.com","43.229.135.209","56309","TH"
"2020-01-29 17:04:08","http://103.99.11.61:35895/Mozi.m","offline","malware_download","elf|Mirai|Mozi","103.99.11.61","103.99.11.61","56309","TH"
"2019-12-29 11:59:57","http://103.99.11.61:45285/Mozi.m","offline","malware_download","elf|Mirai","103.99.11.61","103.99.11.61","56309","TH"
"2019-12-19 05:44:02","http://dkw-engineering.net/purchase_order_2018/verif.myaccount.resourses.biz","offline","malware_download","doc","dkw-engineering.net","45.91.135.46","56309","TH"
"2019-12-18 20:57:05","http://tongdaigroup.com/bill/r6u-kvds-04351/","offline","malware_download","doc|emotet|epoch3|heodo","tongdaigroup.com","45.91.135.46","56309","TH"
"2019-05-15 08:42:06","http://s-maruay.com/administrator/FILE/aTKnyvvbxQhUZIE/","offline","malware_download","doc|Emotet|epoch2|Heodo","s-maruay.com","203.159.94.136","56309","TH"
"2019-05-10 16:36:10","http://s-maruay.com/administrator/US/Clients/052019/","offline","malware_download","emotet|epoch1","s-maruay.com","203.159.94.136","56309","TH"
"2019-04-29 23:43:03","http://tongdaigroup.com/bill/trust.accs.resourses.net/","offline","malware_download","doc|emotet|epoch1|Heodo","tongdaigroup.com","45.91.135.46","56309","TH"
"2019-04-24 20:11:15","http://suksanhost.com/meeting/LLC/mv68l91x8No/","offline","malware_download","","suksanhost.com","203.159.94.136","56309","TH"
"2019-04-24 06:42:08","http://dkw-engineering.net/menu_2018/v13XL/","offline","malware_download","emotet|epoch1|exe|Heodo","dkw-engineering.net","45.91.135.46","56309","TH"
"2019-04-23 16:13:07","http://tongdaigroup.com/bill/TRXZ-G0yMOIETH0t3NSS_OBoOmlIv-zs/","offline","malware_download","doc|emotet|epoch1|Heodo","tongdaigroup.com","45.91.135.46","56309","TH"
"2019-04-18 21:42:04","http://dkw-engineering.net/menu_2018/QevL-JlvqUOxtcJX4HIC_vgQYMStnz-hFE/","offline","malware_download","doc|emotet|epoch1","dkw-engineering.net","45.91.135.46","56309","TH"
"2019-04-18 20:55:14","http://tongdaigroup.com/bill/Document/p1gDuH8OPIj/","offline","malware_download","","tongdaigroup.com","45.91.135.46","56309","TH"
"2019-04-18 16:12:02","http://arr.sbs-app.com/wp-content/plugins/DLua-B6HfBvtRo0x2D2q_EqrrIxca-gB/","offline","malware_download","doc|emotet|epoch1","arr.sbs-app.com","45.154.27.178","56309","TH"
"2019-04-16 12:05:14","http://dkw-engineering.net/menu_2018/c7pu81u-c4x4eqr-pmsb/","offline","malware_download","Emotet|Heodo","dkw-engineering.net","45.91.135.46","56309","TH"
"2019-04-16 10:59:16","http://tongdaigroup.com/bill/o4l2wla-exah0q-nblhy/","offline","malware_download","Emotet|Heodo","tongdaigroup.com","45.91.135.46","56309","TH"
"2019-04-15 23:57:04","http://arr.sbs-app.com/wp-content/plugins/AufrZ-3d2MPzZNeF1lta_mvdvQLBCq-zUW/","offline","malware_download","doc|emotet|epoch1|Heodo","arr.sbs-app.com","45.154.27.178","56309","TH"
"2019-04-12 06:08:02","http://dkw-engineering.net/menu_2018/QJWz-v4cTcjX6m5sMSSb_zpnebAmY-kj/","offline","malware_download","doc|emotet|epoch2|Heodo","dkw-engineering.net","45.91.135.46","56309","TH"
"2019-04-11 23:07:04","http://tongdaigroup.com/bill/DGsJl-dbCPw8iSSWaNhUi_vAZSQfzb-51/","offline","malware_download","doc|emotet|epoch1|Heodo","tongdaigroup.com","45.91.135.46","56309","TH"
"2019-04-11 13:33:08","http://arr.sbs-app.com/wp-content/plugins/hSRZZ-yhUw0GUKgW54cD_uoEWXRtsz-B5/","offline","malware_download","doc|emotet|epoch1|Heodo","arr.sbs-app.com","45.154.27.178","56309","TH"
"2019-04-10 04:42:18","http://dkw-engineering.net/menu_2018/bka5v-wgruy4p-bhkoyq/","offline","malware_download","Emotet|Heodo","dkw-engineering.net","45.91.135.46","56309","TH"
"2019-04-09 19:35:03","http://tongdaigroup.com/bill/file/support/question/En_en/201904/","offline","malware_download","doc|emotet|epoch1|Heodo","tongdaigroup.com","45.91.135.46","56309","TH"
"2019-04-09 10:31:06","http://arr.sbs-app.com/wp-content/plugins/hckr-xx550wo-vvkno/","offline","malware_download","Emotet|Heodo","arr.sbs-app.com","45.154.27.178","56309","TH"
"2019-04-03 18:20:17","http://tongdaigroup.com/bill/sec.myacc.resourses.biz/","offline","malware_download","emotet|epoch1|Heodo","tongdaigroup.com","45.91.135.46","56309","TH"
"2019-03-18 23:43:03","http://tongdaigroup.com/bill/k8dsw-jzz6q2-himzbkr/","offline","malware_download","Emotet|Heodo","tongdaigroup.com","45.91.135.46","56309","TH"
"2019-03-14 00:14:23","http://dkw-engineering.net/purchase_order_2018/verif.myaccount.resourses.biz/","offline","malware_download","doc|emotet|epoch1|epoch2|Heodo","dkw-engineering.net","45.91.135.46","56309","TH"
"2019-03-11 20:18:12","http://dkw-engineering.net/purchase_order_2018/7b5i-2041j0-klyt/","offline","malware_download","Emotet|Heodo","dkw-engineering.net","45.91.135.46","56309","TH"
"2018-11-19 19:56:45","http://rayongcom.com/PAYMENT/FP552382920KZNIX/76860772/RORJ-SHQ-Aug-03-2018/","offline","malware_download","emotet|heodo","rayongcom.com","43.229.149.203","56309","TH"
"2018-10-03 19:14:11","http://seri-ki.com/wp-content/plugins/all-in-one-wp-migration/Document/US/New-order","offline","malware_download","doc|emotet|Heodo","seri-ki.com","43.229.78.140","56309","TH"
"2018-08-03 17:12:04","http://rayongcom.com/PAYMENT/FP552382920KZNIX/76860772/RORJ-SHQ-Aug-03-2018","offline","malware_download","doc|emotet|Heodo","rayongcom.com","43.229.149.203","56309","TH"
"2018-07-27 04:08:02","http://rayongcom.com/pdf/En_us/Invoice-for-sent/Invoices/","offline","malware_download","doc|emotet|epoch2|Heodo","rayongcom.com","43.229.149.203","56309","TH"
"2018-07-26 03:56:02","http://rayongcom.com/pdf/En/Open-invoices/Invoice-56870717587-07-24-2018/","offline","malware_download","doc|emotet|epoch2|Heodo","rayongcom.com","43.229.149.203","56309","TH"
"2018-07-24 05:34:14","http://rayongcom.com/doc/En_us/INVOICE-STATUS/Invoice-836121/","offline","malware_download","doc|emotet|epoch2","rayongcom.com","43.229.149.203","56309","TH"
"2018-07-21 08:09:19","http://rayongcom.com/doc/En_us/INVOICE-STATUS/Invoice-836121","offline","malware_download","doc|emotet|heodo","rayongcom.com","43.229.149.203","56309","TH"
"2018-05-15 08:36:34","http://www.xn--12clak1l9a8b4c5cvdd.com/update.php","offline","malware_download","gandcrab|ransomware|Ransomware.GandCrab","www.xn--12clak1l9a8b4c5cvdd.com","141.98.19.32","56309","TH"
"2018-05-15 08:27:41","http://www.xn--12c3bbfl6bxf7a4e8cydd.com/update.php","offline","malware_download","Ransomware.GandCrab","www.xn--12c3bbfl6bxf7a4e8cydd.com","141.98.19.32","56309","TH"
"2018-05-15 08:24:18","http://www.xn--42c7abfl6bxf7al5owbv.com/update.php","offline","malware_download","gandcrab|ransomware|Ransomware.GandCrab","www.xn--42c7abfl6bxf7al5owbv.com","141.98.19.32","56309","TH"
"2018-05-14 15:53:17","http://www.xn--42cga8dvcn8ce6b7b0ftegk.com/update.php","offline","malware_download","gandcrab|ransomware|Ransomware.GandCrab","www.xn--42cga8dvcn8ce6b7b0ftegk.com","141.98.19.32","56309","TH"
"2018-05-14 15:53:17","http://www.xn--b3csehlh0a5bb7gzbxgxd5e4c.com/update.php","offline","malware_download","AgentTesla|gandcrab|Heodo|Loki|ransomware|Ransomware.GandCrab","www.xn--b3csehlh0a5bb7gzbxgxd5e4c.com","141.98.19.32","56309","TH"
"2018-05-14 15:52:15","http://www.xn--12cn2bhl5d6c7al2lna0fta.com/update.php","offline","malware_download","gandcrab|ransomware|Ransomware.GandCrab","www.xn--12cn2bhl5d6c7al2lna0fta.com","141.98.19.32","56309","TH"
"2018-05-14 15:51:24","http://www.xn--12cn2bhl2j3akb0lc2gjk.com/update.php","offline","malware_download","gandcrab|ransomware|Ransomware.GandCrab","www.xn--12cn2bhl2j3akb0lc2gjk.com","141.98.19.32","56309","TH"
"2018-05-14 15:51:16","http://www.xn--12cl3c1avo5bzcl6d0d6d.com/update.php","offline","malware_download","gandcrab|ransomware|Ransomware.GandCrab","www.xn--12cl3c1avo5bzcl6d0d6d.com","141.98.19.32","56309","TH"
"2018-05-14 15:50:36","http://www.xn--72cf8ahl2j3ad1rd.com/update.php","offline","malware_download","AgentTesla|gandcrab|Heodo|Loki|ransomware|Ransomware.GandCrab","www.xn--72cf8ahl2j3ad1rd.com","141.98.19.32","56309","TH"
"2018-05-14 15:50:14","http://www.xn--12clk8d1bic8b5f2ae8fre.com/update.php","offline","malware_download","gandcrab|ransomware|Ransomware.GandCrab","www.xn--12clk8d1bic8b5f2ae8fre.com","141.98.19.32","56309","TH"
"2018-05-14 15:50:04","http://www.xn--12clb1iek5buz9fud6d.com/update.php","offline","malware_download","gandcrab|ransomware|Ransomware.GandCrab","www.xn--12clb1iek5buz9fud6d.com","141.98.19.32","56309","TH"
"2018-05-14 15:49:27","http://www.xn--12caq2dtc2a5b7ge9df4ff.com/update.php","offline","malware_download","gandcrab|ransomware|Ransomware.GandCrab","www.xn--12caq2dtc2a5b7ge9df4ff.com","141.98.19.32","56309","TH"
"2018-05-14 15:48:21","http://www.xn--m3cdgb1h0af7ola4b.com/update.php","offline","malware_download","AgentTesla|gandcrab|Heodo|Loki|ransomware|Ransomware.GandCrab","www.xn--m3cdgb1h0af7ola4b.com","141.98.19.32","56309","TH"
"2018-05-14 15:47:37","http://xn--b3csehlh0a5bb7gzbxgxd5e4c.com/update.php","offline","malware_download","AgentTesla|gandcrab|Heodo|Loki|ransomware|Ransomware.GandCrab","xn--b3csehlh0a5bb7gzbxgxd5e4c.com","141.98.19.32","56309","TH"
"2018-05-14 15:47:27","http://www.xn--12cl1b2as4aacl5ci3k6afe6iqf.com/update.php","offline","malware_download","gandcrab|ransomware|Ransomware.GandCrab","www.xn--12cl1b2as4aacl5ci3k6afe6iqf.com","141.98.19.32","56309","TH"
"2018-05-14 15:46:46","http://www.xn--72c6a5a8bvfyb.com/update.php","offline","malware_download","AgentTesla|gandcrab|Heodo|Loki|ransomware|Ransomware.GandCrab","www.xn--72c6a5a8bvfyb.com","141.98.19.32","56309","TH"
"2018-05-14 15:46:26","http://www.xn--22cj5bhl8e6av1bp7u.com/update.php","offline","malware_download","AgentTesla|gandcrab|Heodo|Loki|ransomware|Ransomware.GandCrab","www.xn--22cj5bhl8e6av1bp7u.com","141.98.19.32","56309","TH"
"2018-05-14 06:45:52","http://www.xn--12c3bfbjn4brbb4e7a5cvab3gsn.com/update.php","offline","malware_download","gandcrab|ransomware|Ransomware.GandCrab","www.xn--12c3bfbjn4brbb4e7a5cvab3gsn.com","141.98.19.32","56309","TH"
"2018-05-14 06:44:47","http://www.xn--12c4bfj2hza1ioch.com/update.php","offline","malware_download","gandcrab|ransomware|Ransomware.GandCrab","www.xn--12c4bfj2hza1ioch.com","141.98.19.32","56309","TH"
"2018-05-11 13:55:15","http://www.xn--12cl3chah7dk7c6f5ae5gue.com/update.php","offline","malware_download","gandcrab|ransomware|Ransomware.GandCrab","www.xn--12cl3chah7dk7c6f5ae5gue.com","141.98.19.32","56309","TH"
"2018-05-11 13:54:57","http://www.xn--12caqf7l9a2cb0dwddc0gual.com/update.php","offline","malware_download","gandcrab|ransomware|Ransomware.GandCrab","www.xn--12caqf7l9a2cb0dwddc0gual.com","141.98.19.32","56309","TH"
"2018-05-11 13:54:38","http://www.xn--m3cdhe8bb0cv5ag4c8a8p.com/update.php","offline","malware_download","gandcrab|ransomware|Ransomware.GandCrab","www.xn--m3cdhe8bb0cv5ag4c8a8p.com","141.98.19.32","56309","TH"
"2018-05-11 13:54:20","http://www.xn--m3cafj0bn1czac5bza9lme7b.com/update.php","offline","malware_download","AgentTesla|gandcrab|Heodo|Loki|ransomware|Ransomware.GandCrab","www.xn--m3cafj0bn1czac5bza9lme7b.com","141.98.19.32","56309","TH"
"2018-05-11 13:53:58","http://www.xn--m3cdbhk1b5e7a7d8h.com/update.php","offline","malware_download","AgentTesla|gandcrab|Heodo|Loki|ransomware|Ransomware.GandCrab","www.xn--m3cdbhk1b5e7a7d8h.com","141.98.19.32","56309","TH"
"2018-05-10 13:50:39","http://www.xn--m3cdha3exabl1bc9a7s.com/update.php","offline","malware_download","AgentTesla|gandcrab|Heodo|Loki|ransomware|Ransomware.GandCrab","www.xn--m3cdha3exabl1bc9a7s.com","141.98.19.32","56309","TH"
"2018-05-10 09:12:41","http://www.xn--72c1afja3d9cezh4w.com/update.php","offline","malware_download","AgentTesla|gandcrab|Heodo|Loki|ransomware|Ransomware.GandCrab","www.xn--72c1afja3d9cezh4w.com","141.98.19.32","56309","TH"
# of entries: 204