##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2021-06-15 06:55:51 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS7489
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2021-03-24 01:27:04","http://185.234.72.61/images/redbutton.png","offline","malware_download","exe|TrickBot","185.234.72.61","185.234.72.61","7489","DE"
"2020-08-26 21:26:31","http://wininin.com/oauth/w/","offline","malware_download","emotet|epoch1|exe|Heodo","wininin.com","160.119.66.37","7489","ZA"
"2020-08-18 14:25:35","http://bethagroup.com.au/3GrPP0533/","offline","malware_download","emotet|epoch1|exe|Heodo","bethagroup.com.au","104.128.237.195","7489","US"
"2020-08-12 02:51:04","http://bethagroup.com.au/wp-admin/Scan/n49z8qgpg6j1/","offline","malware_download","doc|emotet|epoch2|heodo","bethagroup.com.au","104.128.237.195","7489","US"
"2020-08-06 23:01:03","http://bethagroup.com.au/wp-admin/Reporting/tj7vfbm7f7x/","offline","malware_download","doc|emotet|epoch2|heodo|QuakBot","bethagroup.com.au","104.128.237.195","7489","US"
"2020-08-03 18:23:03","http://185.234.72.77/images/ocxfutur.dll","offline","malware_download","chil84|dll|TrickBot","185.234.72.77","185.234.72.77","7489","DE"
"2020-07-31 18:08:04","http://bethagroup.com.au/wp-admin/statement/b08606781504310601hzhj3az0fagq0/","offline","malware_download","doc|emotet|epoch2|heodo","bethagroup.com.au","104.128.237.195","7489","US"
"2020-07-23 19:34:06","http://bethagroup.com.au/wp-admin/4126445-72SMD3Z1kG6-array/verified-kbxvgkvk-ub5m61njwm/2fwrw03dhg1-vtx0y7sztv50zw/","offline","malware_download","doc|emotet|epoch1|heodo","bethagroup.com.au","104.128.237.195","7489","US"
"2020-05-22 19:46:08","http://www.deayoungkiki.com/wp-content/themes/twentynineteen/template-parts/content/da3_2020-05-20_18-57.exe","offline","malware_download","exe|gtag: da3|Trickbot","www.deayoungkiki.com","202.5.16.47","7489","US"
"2020-03-06 10:07:03","http://216.189.145.11/DETAILS%20OF%20OFFERS.doc","offline","malware_download","doc","216.189.145.11","216.189.145.11","7489","US"
"2020-02-06 21:18:06","http://sangokythuat.com.vn/wp-includes/Document/","offline","malware_download","doc|emotet|epoch2|Heodo","sangokythuat.com.vn","45.124.64.229","7489","HK"
"2019-12-18 13:50:05","http://besoul8.com/home/Reporting/nsvr5999l9d/","offline","malware_download","doc|emotet|epoch2|heodo","besoul8.com","45.124.64.229","7489","HK"
"2019-07-09 07:52:15","http://89.190.159.189/Demon.x86","offline","malware_download","bashlite|elf|gafgyt","89.190.159.189","89.190.159.189","7489","NL"
"2019-07-09 07:52:14","http://89.190.159.189/Demon.arm6","offline","malware_download","bashlite|elf|gafgyt","89.190.159.189","89.190.159.189","7489","NL"
"2019-07-09 07:52:14","http://89.190.159.189/Demon.sparc","offline","malware_download","bashlite|elf|gafgyt","89.190.159.189","89.190.159.189","7489","NL"
"2019-07-09 07:52:07","http://89.190.159.189/Demon.i586","offline","malware_download","bashlite|elf|gafgyt","89.190.159.189","89.190.159.189","7489","NL"
"2019-07-09 07:52:06","http://89.190.159.189/Demon.i686","offline","malware_download","bashlite|elf|gafgyt","89.190.159.189","89.190.159.189","7489","NL"
"2019-07-09 07:52:05","http://89.190.159.189/Demon.arm5","offline","malware_download","bashlite|elf|gafgyt","89.190.159.189","89.190.159.189","7489","NL"
"2019-07-09 07:52:05","http://89.190.159.189/Demon.m68k","offline","malware_download","bashlite|elf|gafgyt","89.190.159.189","89.190.159.189","7489","NL"
"2019-07-09 07:52:05","http://89.190.159.189/Demon.ppc","offline","malware_download","bashlite|elf|gafgyt","89.190.159.189","89.190.159.189","7489","NL"
"2019-07-09 07:52:04","http://89.190.159.189/Demon.arm4","offline","malware_download","bashlite|elf|gafgyt","89.190.159.189","89.190.159.189","7489","NL"
"2019-07-09 07:52:04","http://89.190.159.189/Demon.arm7","offline","malware_download","bashlite|elf|gafgyt","89.190.159.189","89.190.159.189","7489","NL"
"2019-07-09 07:52:03","http://89.190.159.189/Demon.mips","offline","malware_download","bashlite|elf|gafgyt","89.190.159.189","89.190.159.189","7489","NL"
"2019-07-09 07:52:03","http://89.190.159.189/Demon.mpsl","offline","malware_download","bashlite|elf|gafgyt","89.190.159.189","89.190.159.189","7489","NL"
"2019-05-17 23:15:11","http://185.234.73.4/02_2019_TT-BNG.doc?id=ZWR3YXJkdnUyN0BnbWFpbC5jb20=","offline","malware_download","rtf","185.234.73.4","185.234.73.4","7489","PL"
"2019-05-17 22:58:03","http://185.234.73.4/02_2019_TT-BNG.doc?id=bmd1eWVucXVvY21hbmguYnFwQGdtYWlsLmNvbQ==","offline","malware_download","rtf","185.234.73.4","185.234.73.4","7489","PL"
"2019-05-17 19:42:13","http://185.234.73.4/02_2019_TT-BNG.doc","offline","malware_download","rtf","185.234.73.4","185.234.73.4","7489","PL"
"2019-01-24 00:35:29","http://wasobd.net/tIeVA-MdeZ_rkTvCcy-3t/7434213/SurveyQuestionsEN_en/Sales-Invoice/","offline","malware_download","doc|emotet|epoch2|Heodo","wasobd.net","104.128.226.6","7489","US"
"2018-11-19 19:45:43","http://decozspring.com/doc/En/Invoice-for-sent/invoice/","offline","malware_download","emotet|heodo","decozspring.com","104.128.233.139","7489","US"
"2018-09-21 15:20:10","http://172.106.32.205/e819dai230.exe","offline","malware_download","exe|Gozi|ursnif","172.106.32.205","172.106.32.205","7489","US"
"2018-08-14 14:48:48","http://decozspring.com/doc/En/Invoice-for-sent/invoice","offline","malware_download","doc|emotet|Heodo","decozspring.com","104.128.233.139","7489","US"
"2018-07-06 18:28:02","http://cofancio.com/fred.exe","offline","malware_download","AgentTesla","cofancio.com","208.87.103.200","7489","US"
"2018-06-18 13:59:03","http://www.cncdoctor.com/Rechnungs-scan/","offline","malware_download","doc|emotet|heodo","www.cncdoctor.com","45.58.51.51","7489","US"
"2018-06-15 17:23:23","http://cncdoctor.com/VIN1Uyetqb/","offline","malware_download","Heodo","cncdoctor.com","45.58.51.51","7489","US"
"2018-06-15 15:55:05","http://www.cncdoctor.com/VIN1Uyetqb/","offline","malware_download","emotet|epoch2|Heodo|payload","www.cncdoctor.com","45.58.51.51","7489","US"
"2018-05-28 04:45:23","http://cofancio.com/today.exe","offline","malware_download","AgentTesla|downloader|exe","cofancio.com","208.87.103.200","7489","US"
"2018-05-26 10:44:18","http://cofancio.com/file1.exe","offline","malware_download","AgentTesla|downloader|exe","cofancio.com","208.87.103.200","7489","US"
"2018-05-21 16:47:57","http://cofancio.com/caleb.exe","offline","malware_download","downloader|exe","cofancio.com","208.87.103.200","7489","US"
"2018-05-20 16:44:26","http://cofancio.com/favr.exe","offline","malware_download","downloader|exe","cofancio.com","208.87.103.200","7489","US"
"2018-04-09 18:03:13","http://104.128.228.134/taheni123659/Mar-16-08-20-03/Tracking-Number-8L34007056446740/","offline","malware_download","doc|emotet|heodo","104.128.228.134","104.128.228.134","7489","US"
# of entries: 40