##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2025-06-09 05:03:55 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS8075
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2025-06-01 09:33:09","http://4.233.216.36:8000/t_vnc.exe","online","malware_download","","4.233.216.36","4.233.216.36","8075","FR"
"2025-06-01 09:33:07","http://4.233.216.36:8000/esp.exe","online","malware_download","Metasploit","4.233.216.36","4.233.216.36","8075","FR"
"2025-06-01 09:33:07","http://4.233.216.36:8000/esp32.exe","online","malware_download","Metasploit","4.233.216.36","4.233.216.36","8075","FR"
"2025-06-01 09:33:07","http://4.233.216.36:8000/macreverse","online","malware_download","","4.233.216.36","4.233.216.36","8075","FR"
"2025-06-01 09:33:07","http://4.233.216.36:8000/vnc_server.exe","online","malware_download","","4.233.216.36","4.233.216.36","8075","FR"
"2025-06-01 09:33:07","http://4.233.216.36:8000/windowsupdatetimer.exe","online","malware_download","Metasploit","4.233.216.36","4.233.216.36","8075","FR"
"2025-06-01 09:33:07","http://4.233.216.36:8000/winxclient.exe","online","malware_download","Metasploit","4.233.216.36","4.233.216.36","8075","FR"
"2025-06-01 09:33:06","http://4.233.216.36:8000/a.ps1","online","malware_download","","4.233.216.36","4.233.216.36","8075","FR"
"2025-06-01 09:33:06","http://4.233.216.36:8000/b.ps1","online","malware_download","","4.233.216.36","4.233.216.36","8075","FR"
"2025-06-01 09:33:06","http://4.233.216.36:8000/beacon.bin","online","malware_download","","4.233.216.36","4.233.216.36","8075","FR"
"2025-06-01 09:33:06","http://4.233.216.36:8000/mert.bin","online","malware_download","","4.233.216.36","4.233.216.36","8075","FR"
"2025-06-01 09:33:04","http://4.233.216.36:8000/rs.ps1","offline","malware_download","","4.233.216.36","4.233.216.36","8075","FR"
"2025-06-01 09:33:04","http://4.233.216.36:8000/server.py","offline","malware_download","","4.233.216.36","4.233.216.36","8075","FR"
"2025-05-10 03:01:08","http://13.71.2.244/.x/pax.txt","online","malware_download","","13.71.2.244","13.71.2.244","8075","IN"
"2025-05-03 21:53:11","http://20.169.41.5:2086/02.08.2022.exe","offline","malware_download","censys|CobaltStrike","20.169.41.5","20.169.41.5","8075","US"
"2025-05-02 11:02:07","http://20.107.17.32/beacon_x64.exe","offline","malware_download","CobaltStrike|exe|ua-wget","20.107.17.32","20.107.17.32","8075","NL"
"2025-04-30 11:06:05","http://172.187.180.205/02.08.2022.exe","offline","malware_download","censys|CobaltStrike","172.187.180.205","172.187.180.205","8075","GB"
"2025-04-27 23:59:10","http://172.170.254.193:8181/firmware/TS2_0001.bin","online","malware_download","","172.170.254.193","172.170.254.193","8075","US"
"2025-04-26 18:58:09","https://msoftdatastore.z22.web.core.windows.net/verify-sec","online","malware_download","clickfix|exe","msoftdatastore.z22.web.core.windows.net","20.60.81.110","8075","US"
"2025-04-20 07:59:10","https://amssh.co/file.exe","offline","malware_download","Stealc|Vidar","amssh.co","172.172.168.240","8075","US"
"2025-04-17 17:07:30","https://4.234.110.221/02.08.2022.exe","offline","malware_download","censys|CobaltStrike|shellcode","4.234.110.221","4.234.110.221","8075","GB"
"2025-04-17 17:07:15","https://52.255.166.103:8080/02.08.2022.exe","offline","malware_download","censys|CobaltStrike|shellcode","52.255.166.103","52.255.166.103","8075","US"
"2025-04-17 17:07:14","https://20.74.209.192:8081/02.08.2022.exe","online","malware_download","censys|CobaltStrike|shellcode","20.74.209.192","20.74.209.192","8075","AE"
"2025-04-17 17:07:09","https://20.74.209.192:8080/02.08.2022.exe","online","malware_download","censys|CobaltStrike|shellcode","20.74.209.192","20.74.209.192","8075","AE"
"2025-04-11 06:24:33","http://20.55.49.145/mimikatz.exe","offline","malware_download","","20.55.49.145","20.55.49.145","8075","US"
"2025-04-09 18:25:06","http://20.169.41.5:8086/02.08.2022.exe","offline","malware_download","censys|CobaltStrike","20.169.41.5","20.169.41.5","8075","US"
"2025-04-08 08:05:07","https://myluxurybathrooms2.screenconnect.com/Bin/ScreenConnect.ClientSetup.exe","offline","malware_download","ConnectWise","myluxurybathrooms2.screenconnect.com","104.45.153.136","8075","US"
"2025-04-01 02:59:03","http://microsoft.securedmicrosoft365.com/recaptcha-verify","offline","malware_download","clickfix|fakecaptcha|hta","microsoft.securedmicrosoft365.com","20.217.17.201","8075","IL"
"2025-04-01 02:59:03","http://outlook.securedmicrosoft365.com/recaptcha-verify","offline","malware_download","clickfix|fakecaptcha|hta","outlook.securedmicrosoft365.com","20.217.17.201","8075","IL"
"2025-03-27 21:52:04","http://account.securedmicrosoft365.com/recaptcha-verify","offline","malware_download","Clickfix|FakeCaptcha|hta","account.securedmicrosoft365.com","20.217.17.201","8075","IL"
"2025-03-21 19:30:31","http://20.83.148.22/02.08.2022.exe","offline","malware_download","censys|CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2025-03-21 19:29:47","http://40.81.23.3:23898/02.08.2022.exe","offline","malware_download","censys|CobaltStrike","40.81.23.3","40.81.23.3","8075","HK"
"2025-03-14 18:58:03","https://steelrivertechs.sherpadesk.com/bin/support.client.exe?i=&e=Support&y=Guest&r=","offline","malware_download","","steelrivertechs.sherpadesk.com","168.62.48.183","8075","US"
"2025-03-07 20:30:35","http://20.229.103.183/nioxclient.exe","offline","malware_download","AsyncRAT|exe|opendir","20.229.103.183","20.229.103.183","8075","NL"
"2025-03-07 20:30:35","https://20.229.103.183/niox.exe","offline","malware_download","BlankGrabber|exe|opendir","20.229.103.183","20.229.103.183","8075","NL"
"2025-03-07 20:30:35","https://20.229.103.183/nioxxy.exe","offline","malware_download","AsyncRAT|exe|opendir","20.229.103.183","20.229.103.183","8075","NL"
"2025-03-07 20:30:18","https://20.229.103.183/nioxclient.exe","offline","malware_download","AsyncRAT|exe|opendir","20.229.103.183","20.229.103.183","8075","NL"
"2025-03-06 22:20:33","http://20.229.103.183/nioxxy.exe","offline","malware_download","AsyncRAT|exe|opendir","20.229.103.183","20.229.103.183","8075","NL"
"2025-03-06 22:20:08","http://20.229.103.183/niox.exe","offline","malware_download","BlankGrabber|exe|opendir","20.229.103.183","20.229.103.183","8075","NL"
"2025-03-02 00:03:33","http://172.168.120.196:32823/Mozi.m","offline","malware_download","Mozi","172.168.120.196","172.168.120.196","8075","US"
"2025-02-27 12:04:33","http://172.168.120.187:39824/Mozi.m","offline","malware_download","Mozi","172.168.120.187","172.168.120.187","8075","US"
"2025-02-26 19:22:01","http://storage.securedmicrosoft365.com/recaptcha-verify","offline","malware_download","ClickFix|FakeCaptcha|hta","storage.securedmicrosoft365.com","20.217.17.201","8075","IL"
"2025-02-26 18:38:33","http://135.237.137.54:4444/02.08.2022.exe","offline","malware_download","CobaltStrike|shellcode","135.237.137.54","135.237.137.54","8075","US"
"2025-02-26 18:38:04","http://20.2.165.150/02.08.2022.exe","offline","malware_download","CobaltStrike|shellcode","20.2.165.150","20.2.165.150","8075","HK"
"2025-02-23 16:48:04","http://login.securedmicrosoft365.com/recaptcha-verify","offline","malware_download","Clickfix|FakeCaptcha","login.securedmicrosoft365.com","20.217.17.201","8075","IL"
"2025-02-23 16:48:03","http://www.securedmicrosoft365.com/recaptcha-verify","offline","malware_download","Clickfix|FakeCaptcha","www.securedmicrosoft365.com","20.217.17.201","8075","IL"
"2025-02-22 00:03:33","http://172.168.120.199:58706/Mozi.m","offline","malware_download","Mozi","172.168.120.199","172.168.120.199","8075","US"
"2025-02-21 18:59:06","http://20.40.99.133:8080/02.08.2022.exe","offline","malware_download","CobaltStrike|Shellcode","20.40.99.133","20.40.99.133","8075","JP"
"2025-02-20 18:42:03","http://20.217.17.201/recaptcha-verify","offline","malware_download","ClickFix|FakeCaptcha|hta","20.217.17.201","20.217.17.201","8075","IL"
"2025-02-19 19:08:08","https://hotelembuguacu.blob.core.windows.net/data/0e8f9459-4bf2-4d1a-acdf-4231893acaea.pdf","offline","malware_download","ascii","hotelembuguacu.blob.core.windows.net","191.235.249.171","8075","BR"
"2025-02-19 19:08:08","https://hotelembuguacu.blob.core.windows.net/data/aabe2ac6-f694-464d-8be2-042ad8702ca2.pdf","offline","malware_download","ascii","hotelembuguacu.blob.core.windows.net","191.235.249.171","8075","BR"
"2025-02-19 19:08:07","https://hotelembuguacu.blob.core.windows.net/data/958555c7-c7a4-4e12-bd3b-3d3069e7fc1b.pdf","offline","malware_download","ascii","hotelembuguacu.blob.core.windows.net","191.235.249.171","8075","BR"
"2025-02-19 19:08:07","https://hotelembuguacu.blob.core.windows.net/data/b3c60c35-2eed-41a7-a6e1-ccfb91a90726.pdf","offline","malware_download","ascii","hotelembuguacu.blob.core.windows.net","191.235.249.171","8075","BR"
"2025-02-19 19:08:07","https://hotelembuguacu.blob.core.windows.net/data/c41b051f-a05e-484e-b3bc-6d62e08e3169.pdf","offline","malware_download","ascii","hotelembuguacu.blob.core.windows.net","191.235.249.171","8075","BR"
"2025-02-19 19:08:06","https://hotelembuguacu.blob.core.windows.net/data/48977420-d106-4187-9348-4dee5b7be933.pdf","offline","malware_download","ascii","hotelembuguacu.blob.core.windows.net","191.235.249.171","8075","BR"
"2025-02-19 19:08:06","https://hotelembuguacu.blob.core.windows.net/data/91404dfd-5145-44d8-b7e8-85a5b1cfd6fa.pdf","offline","malware_download","ascii","hotelembuguacu.blob.core.windows.net","191.235.249.171","8075","BR"
"2025-02-19 19:08:06","https://hotelembuguacu.blob.core.windows.net/data/df4a3196-accc-423a-a43b-6768f1aafd3e.pdf","online","malware_download","ascii","hotelembuguacu.blob.core.windows.net","191.235.249.171","8075","BR"
"2025-02-19 19:08:06","https://hotelembuguacu.blob.core.windows.net/data/e648c877-f3f6-4dcd-a5aa-d140b8efbfc0.pdf","offline","malware_download","ascii","hotelembuguacu.blob.core.windows.net","191.235.249.171","8075","BR"
"2025-02-19 19:08:06","https://hotelembuguacu.blob.core.windows.net/data/f6416fd0-71f3-45de-8c79-3d0e7281f124.pdf","online","malware_download","ascii","hotelembuguacu.blob.core.windows.net","191.235.249.171","8075","BR"
"2025-02-19 19:08:06","https://hotelembuguacu.blob.core.windows.net/data/fd082585-3ba0-48aa-8345-52c71676f343.pdf","offline","malware_download","ascii","hotelembuguacu.blob.core.windows.net","191.235.249.171","8075","BR"
"2025-02-19 19:08:05","https://hotelembuguacu.blob.core.windows.net/data/0cb9a8ea-bce2-492d-996c-30b7af1f4474.pdf","offline","malware_download","ascii","hotelembuguacu.blob.core.windows.net","191.235.249.171","8075","BR"
"2025-02-16 19:40:05","http://20.74.209.192:81/artifact_moh.exe","offline","malware_download","censys|CobaltStrike|exe|opendir","20.74.209.192","20.74.209.192","8075","AE"
"2025-02-16 19:40:05","http://20.74.209.192:81/artifact_x64_test2.exe","offline","malware_download","censys|CobaltStrike|exe|opendir","20.74.209.192","20.74.209.192","8075","AE"
"2025-02-16 19:40:05","http://20.74.209.192:81/artifact_x64_testing.exe","offline","malware_download","censys|CobaltStrike|exe|opendir","20.74.209.192","20.74.209.192","8075","AE"
"2025-02-16 19:40:05","http://20.74.209.192:81/bea.exe","offline","malware_download","censys|CobaltStrike|exe|opendir","20.74.209.192","20.74.209.192","8075","AE"
"2025-02-16 19:40:05","http://20.74.209.192:81/beacon.exe","offline","malware_download","censys|CobaltStrike|exe|opendir","20.74.209.192","20.74.209.192","8075","AE"
"2025-02-16 19:40:05","http://20.74.209.192:81/beacon_x64.exe","offline","malware_download","censys|CobaltStrike|exe|opendir","20.74.209.192","20.74.209.192","8075","AE"
"2025-02-16 19:35:05","http://50.85.82.218:8080/Banderas.exe","offline","malware_download","censys|exe|opendir","50.85.82.218","50.85.82.218","8075","NL"
"2025-02-16 19:34:04","http://50.85.82.218:8080/drx64.bin","offline","malware_download","Havoc|opendir","50.85.82.218","50.85.82.218","8075","NL"
"2025-02-15 12:33:06","http://40.112.213.212/02.08.2022.exe","offline","malware_download","CobaltStrike|shellcode","40.112.213.212","40.112.213.212","8075","US"
"2025-02-15 00:04:33","http://172.168.120.188:48061/Mozi.m","offline","malware_download","Mozi","172.168.120.188","172.168.120.188","8075","US"
"2025-02-13 18:13:06","http://20.254.98.64/02.08.2022.exe","offline","malware_download","censys|CobaltStrike|shellcode","20.254.98.64","20.254.98.64","8075","GB"
"2025-02-05 11:08:07","https://cdn-media.azureedge.net/resources/logo.mp4","offline","malware_download","","cdn-media.azureedge.net","13.107.253.45","8075","US"
"2025-01-31 06:59:04","http://20.210.245.1/Document_838929.txt.scr","offline","malware_download","Phorpiex","20.210.245.1","20.210.245.1","8075","JP"
"2025-01-31 06:59:04","http://20.210.245.1/Passwords.txt.scr","offline","malware_download","Phorpiex","20.210.245.1","20.210.245.1","8075","JP"
"2025-01-31 06:59:03","http://20.210.245.1/Document.txt.scr","offline","malware_download","Phorpiex","20.210.245.1","20.210.245.1","8075","JP"
"2025-01-31 06:59:03","http://20.210.245.1/Me.jpg.scr","offline","malware_download","Phorpiex","20.210.245.1","20.210.245.1","8075","JP"
"2025-01-31 06:59:03","http://20.210.245.1/Porn.mp4.scr","offline","malware_download","Phorpiex","20.210.245.1","20.210.245.1","8075","JP"
"2025-01-31 06:59:03","http://20.210.245.1/Private.txt.scr","offline","malware_download","Phorpiex","20.210.245.1","20.210.245.1","8075","JP"
"2025-01-29 23:56:04","https://x41-dzb3auczdsbugyet.z02.azurefd.net/crimson.exe","offline","malware_download","Clickfix|exe|FakeCaptcha","x41-dzb3auczdsbugyet.z02.azurefd.net","13.107.246.45","8075","US"
"2025-01-25 15:03:33","http://172.168.120.198:41556/Mozi.m","offline","malware_download","Mozi","172.168.120.198","172.168.120.198","8075","US"
"2025-01-25 12:03:33","http://172.168.120.186:44946/Mozi.m","offline","malware_download","Mozi","172.168.120.186","172.168.120.186","8075","US"
"2025-01-23 18:04:32","http://172.168.120.196:58184/Mozi.m","offline","malware_download","Mozi","172.168.120.196","172.168.120.196","8075","US"
"2025-01-22 23:25:06","http://20.124.90.24/02.08.2022.exe","offline","malware_download","censys|CobaltStrike|shellcode","20.124.90.24","20.124.90.24","8075","US"
"2025-01-22 08:09:07","http://login-main.bigwnet.com/attachment/view/Msgxo0.hta","offline","malware_download","hta","login-main.bigwnet.com","52.177.14.24","8075","US"
"2025-01-16 00:24:08","http://20.189.117.246:1132/02.08.2022.exe","offline","malware_download","CobaltStrike|shellcode","20.189.117.246","20.189.117.246","8075","HK"
"2025-01-11 12:03:35","http://172.168.120.200:59294/Mozi.m","offline","malware_download","Mozi","172.168.120.200","172.168.120.200","8075","US"
"2025-01-11 09:03:34","http://172.168.120.183:52291/Mozi.m","offline","malware_download","Mozi","172.168.120.183","172.168.120.183","8075","US"
"2025-01-02 08:31:06","http://20.117.118.95/loader.bin","offline","malware_download","DonutLoader","20.117.118.95","20.117.118.95","8075","GB"
"2025-01-01 13:50:08","http://52.150.237.12/v/arm","offline","malware_download","elf|Mirai|MooBot|opendir","52.150.237.12","52.150.237.12","8075","US"
"2025-01-01 13:50:08","http://52.150.237.12/v/arm5","offline","malware_download","elf|Mirai|MooBot|opendir","52.150.237.12","52.150.237.12","8075","US"
"2025-01-01 13:50:08","http://52.150.237.12/v/arm6","offline","malware_download","elf|Mirai|MooBot|opendir","52.150.237.12","52.150.237.12","8075","US"
"2025-01-01 13:50:08","http://52.150.237.12/v/arm7","offline","malware_download","elf|Mirai|MooBot|opendir","52.150.237.12","52.150.237.12","8075","US"
"2024-12-31 06:01:12","http://168.62.178.160/aminer.gz","offline","malware_download","","168.62.178.160","168.62.178.160","8075","US"
"2024-12-31 06:01:10","http://168.62.178.160/ns1.jpg","offline","malware_download","","168.62.178.160","168.62.178.160","8075","US"
"2024-12-31 06:01:09","http://168.62.178.160/ns3.jpg","offline","malware_download","","168.62.178.160","168.62.178.160","8075","US"
"2024-12-31 06:01:07","http://168.62.178.160/install.tgz","offline","malware_download","","168.62.178.160","168.62.178.160","8075","US"
"2024-12-31 06:01:06","http://168.62.178.160/oto","offline","malware_download","","168.62.178.160","168.62.178.160","8075","US"
"2024-12-18 10:52:06","http://20.221.64.23/lmaoWTF/loligang.arm6","offline","malware_download","elf|Mirai|ua-wget","20.221.64.23","20.221.64.23","8075","US"
"2024-12-18 10:51:06","http://20.221.64.23/lmaoWTF/loligang.x86","offline","malware_download","elf|Mirai|ua-wget","20.221.64.23","20.221.64.23","8075","US"
"2024-12-18 10:50:07","http://20.221.64.23/lmaoWTF/loligang.ppc","offline","malware_download","elf|Mirai|ua-wget","20.221.64.23","20.221.64.23","8075","US"
"2024-12-18 10:50:07","http://20.221.64.23/lmaoWTF/loligang.spc","offline","malware_download","elf|Mirai|ua-wget","20.221.64.23","20.221.64.23","8075","US"
"2024-12-18 10:49:07","http://20.221.64.23/lmaoWTF/loligang.arm","offline","malware_download","elf|Mirai|ua-wget","20.221.64.23","20.221.64.23","8075","US"
"2024-12-18 10:49:07","http://20.221.64.23/lmaoWTF/loligang.arm5","offline","malware_download","elf|Mirai|ua-wget","20.221.64.23","20.221.64.23","8075","US"
"2024-12-18 10:49:07","http://20.221.64.23/lmaoWTF/loligang.arm7","offline","malware_download","elf|Mirai|ua-wget","20.221.64.23","20.221.64.23","8075","US"
"2024-12-18 10:49:07","http://20.221.64.23/lmaoWTF/loligang.m68k","offline","malware_download","elf|Mirai|ua-wget","20.221.64.23","20.221.64.23","8075","US"
"2024-12-18 10:49:07","http://20.221.64.23/lmaoWTF/loligang.mips","offline","malware_download","elf|Mirai|ua-wget","20.221.64.23","20.221.64.23","8075","US"
"2024-12-18 10:49:07","http://20.221.64.23/lmaoWTF/loligang.mpsl","offline","malware_download","elf|Mirai|ua-wget","20.221.64.23","20.221.64.23","8075","US"
"2024-12-18 10:49:07","http://20.221.64.23/lmaoWTF/loligang.sh4","offline","malware_download","elf|Mirai|ua-wget","20.221.64.23","20.221.64.23","8075","US"
"2024-12-16 23:48:13","http://20.151.75.185/Invoice_Final.exe","offline","malware_download","Emotet|Heodo","20.151.75.185","20.151.75.185","8075","CA"
"2024-12-16 23:48:09","http://20.151.75.185/svchost.exe","offline","malware_download","Emotet|Heodo","20.151.75.185","20.151.75.185","8075","CA"
"2024-12-16 23:48:04","http://20.151.75.185/v2dvwa.py","offline","malware_download","","20.151.75.185","20.151.75.185","8075","CA"
"2024-12-16 17:37:15","http://172.206.240.91/02.08.2022.exe","offline","malware_download","censys|CobaltStrike|shellcode","172.206.240.91","172.206.240.91","8075","US"
"2024-12-16 17:37:13","https://52.166.123.20/02.08.2022.exe","offline","malware_download","censys|CobaltStrike|shellcode","52.166.123.20","52.166.123.20","8075","NL"
"2024-12-16 17:37:08","https://20.126.128.120/02.08.2022.exe","offline","malware_download","censys|CobaltStrike|shellcode","20.126.128.120","20.126.128.120","8075","NL"
"2024-12-12 06:45:10","http://20.83.148.22:8080/test30.exe","offline","malware_download","Cobalt Strike|CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-12-09 16:26:52","https://worksafevictoria.com/02.08.2022.exe","offline","malware_download","censys|CobaltStrike|shellcode","worksafevictoria.com","4.200.9.84","8075","AU"
"2024-12-09 16:26:45","https://4.200.9.84/02.08.2022.exe","offline","malware_download","censys|CobaltStrike|shellcode","4.200.9.84","4.200.9.84","8075","AU"
"2024-12-09 16:26:39","https://20.189.79.97:8614/02.08.2022.exe","offline","malware_download","censys|CobaltStrike|shellcode","20.189.79.97","20.189.79.97","8075","HK"
"2024-12-09 16:26:14","https://52.238.29.163/02.08.2022.exe","offline","malware_download","censys|CobaltStrike|shellcode","52.238.29.163","52.238.29.163","8075","US"
"2024-12-06 14:45:53","http://20.151.75.185/Invoice.exe","offline","malware_download","Emotet|Heodo|pyinstaller","20.151.75.185","20.151.75.185","8075","CA"
"2024-12-05 16:48:05","http://4.180.120.64:8000/powercat.ps1.edited","offline","malware_download","powercat","4.180.120.64","4.180.120.64","8075","NL"
"2024-12-04 12:05:26","http://48.210.82.64:8000/02.08.2022.exe","offline","malware_download","Cobaltstrike|shellcode","48.210.82.64","48.210.82.64","8075","JP"
"2024-12-04 12:05:24","http://20.234.48.174:8080/02.08.2022.exe","offline","malware_download","Cobaltstrike|shellcode","20.234.48.174","20.234.48.174","8075","IE"
"2024-12-04 12:05:07","http://74.176.58.86:8000/02.08.2022.exe","offline","malware_download","Cobaltstrike|shellcode","74.176.58.86","74.176.58.86","8075","JP"
"2024-12-03 18:36:12","http://20.189.79.97:3352/02.08.2022.exe","offline","malware_download","CobaltStrike|shellcode","20.189.79.97","20.189.79.97","8075","HK"
"2024-11-27 19:44:14","http://48.218.144.53:8000/02.08.2022.exe","offline","malware_download","censys|CobaltStrike|shellcode","48.218.144.53","48.218.144.53","8075","JP"
"2024-11-27 19:44:14","http://52.231.10.139:8080/02.08.2022.exe","offline","malware_download","censys|CobaltStrike|shellcode","52.231.10.139","52.231.10.139","8075","KR"
"2024-11-27 10:30:11","http://20.83.148.22:8080/test26.exe","offline","malware_download","CobaltStrike|exe|opendir","20.83.148.22","20.83.148.22","8075","US"
"2024-11-27 10:30:11","http://20.83.148.22:8080/test27.exe","offline","malware_download","Cobalt Strike|CobaltStrike|exe|opendir","20.83.148.22","20.83.148.22","8075","US"
"2024-11-27 10:30:11","http://20.83.148.22:8080/test28.exe","offline","malware_download","CobaltStrike|exe|opendir","20.83.148.22","20.83.148.22","8075","US"
"2024-11-27 10:30:11","http://20.83.148.22:8080/test29.exe","offline","malware_download","Cobalt Strike|CobaltStrike|exe|opendir","20.83.148.22","20.83.148.22","8075","US"
"2024-11-27 10:29:06","http://20.83.148.22:8080/test24.exe","offline","malware_download","CobaltStrike|exe|opendir","20.83.148.22","20.83.148.22","8075","US"
"2024-11-27 10:29:06","http://20.83.148.22:8080/test25.exe","offline","malware_download","CobaltStrike|exe|opendir","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:55:30","http://20.83.148.22:8080/test12.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:55:29","http://20.83.148.22:8080/test6.exe","offline","malware_download","Cobalt Strike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/pantest.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test-again.exe","offline","malware_download","Cobalt Strike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test10-29.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test10.exe","offline","malware_download","Cobalt Strike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test11.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test13.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test14.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test15.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test16.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test17.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test18.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test19.exe","offline","malware_download","Cobalt Strike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test20.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test21.exe","offline","malware_download","Cobalt Strike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test22.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test23.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test5.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test7.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test8.exe","offline","malware_download","Cobalt Strike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test9.exe","offline","malware_download","Cobalt Strike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test_again2.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test_again3.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-26 11:54:10","http://20.83.148.22:8080/test_again4.exe","offline","malware_download","CobaltStrike","20.83.148.22","20.83.148.22","8075","US"
"2024-11-25 13:28:05","http://51.120.244.179/lmaoWTF/loligang.m68k","offline","malware_download","elf|Mirai","51.120.244.179","51.120.244.179","8075","NO"
"2024-11-25 13:27:06","http://51.120.244.179/lmaoWTF/loligang.arm","offline","malware_download","elf|Mirai","51.120.244.179","51.120.244.179","8075","NO"
"2024-11-25 13:27:06","http://51.120.244.179/lmaoWTF/loligang.arm7","offline","malware_download","elf|Mirai","51.120.244.179","51.120.244.179","8075","NO"
"2024-11-25 13:27:06","http://51.120.244.179/lmaoWTF/loligang.mips","offline","malware_download","elf|Mirai","51.120.244.179","51.120.244.179","8075","NO"
"2024-11-25 13:27:06","http://51.120.244.179/lmaoWTF/loligang.mpsl","offline","malware_download","elf|Mirai","51.120.244.179","51.120.244.179","8075","NO"
"2024-11-25 13:27:06","http://51.120.244.179/lmaoWTF/loligang.ppc","offline","malware_download","elf|Mirai","51.120.244.179","51.120.244.179","8075","NO"
"2024-11-25 13:27:06","http://51.120.244.179/lmaoWTF/loligang.spc","offline","malware_download","elf|Mirai","51.120.244.179","51.120.244.179","8075","NO"
"2024-11-25 13:27:06","http://51.120.244.179/lmaoWTF/loligang.x86","offline","malware_download","elf|Mirai","51.120.244.179","51.120.244.179","8075","NO"
"2024-11-25 13:26:12","http://51.120.244.179/lmaoWTF/loligang.arm6","offline","malware_download","elf|Mirai","51.120.244.179","51.120.244.179","8075","NO"
"2024-11-25 13:26:10","http://51.120.244.179/lmaoWTF/loligang.sh4","offline","malware_download","elf|Mirai","51.120.244.179","51.120.244.179","8075","NO"
"2024-11-25 13:26:08","http://51.120.244.179/lmaoWTF/loligang.arm5","offline","malware_download","elf|Mirai","51.120.244.179","51.120.244.179","8075","NO"
"2024-11-20 23:54:10","http://74.163.80.53/ttl.exe","offline","malware_download","exe|opendir|pyinstaller","74.163.80.53","74.163.80.53","8075","BR"
"2024-11-15 19:55:12","http://20.0.145.51/windows_update/windows_update.dll","offline","malware_download","dll|ReverseShell","20.0.145.51","20.0.145.51","8075","GB"
"2024-11-12 11:33:22","http://20.6.130.111/main_arm","offline","malware_download","elf|Mirai|moobot","20.6.130.111","20.6.130.111","8075","HK"
"2024-11-12 11:33:22","http://20.6.130.111/main_arm7","offline","malware_download","elf|Mirai|moobot","20.6.130.111","20.6.130.111","8075","HK"
"2024-11-12 11:33:22","http://20.6.130.111/main_mips","offline","malware_download","elf|Mirai|moobot","20.6.130.111","20.6.130.111","8075","HK"
"2024-11-12 11:33:21","http://20.6.130.111/main_arm5","offline","malware_download","elf|Mirai|moobot","20.6.130.111","20.6.130.111","8075","HK"
"2024-11-12 11:33:21","http://20.6.130.111/main_arm6","offline","malware_download","elf|Mirai|moobot","20.6.130.111","20.6.130.111","8075","HK"
"2024-11-12 11:33:21","http://20.6.130.111/main_m68k","offline","malware_download","elf|Mirai|moobot","20.6.130.111","20.6.130.111","8075","HK"
"2024-11-12 11:33:21","http://20.6.130.111/main_mpsl","offline","malware_download","elf|Mirai|moobot","20.6.130.111","20.6.130.111","8075","HK"
"2024-11-12 11:33:21","http://20.6.130.111/main_ppc","offline","malware_download","elf|Mirai|moobot","20.6.130.111","20.6.130.111","8075","HK"
"2024-11-12 11:33:21","http://20.6.130.111/main_sh4","offline","malware_download","elf|Mirai|moobot","20.6.130.111","20.6.130.111","8075","HK"
"2024-11-12 11:33:21","http://20.6.130.111/main_x86","offline","malware_download","elf|Mirai|moobot","20.6.130.111","20.6.130.111","8075","HK"
"2024-11-12 11:33:21","http://20.6.130.111/main_x86_64","offline","malware_download","elf|Mirai|moobot","20.6.130.111","20.6.130.111","8075","HK"
"2024-11-07 08:12:19","http://40.124.112.232/02.08.2022.exe","offline","malware_download","cobaltstrike","40.124.112.232","40.124.112.232","8075","US"
"2024-11-02 06:03:39","http://172.168.120.191:58039/Mozi.m","offline","malware_download","Mozi","172.168.120.191","172.168.120.191","8075","US"
"2024-10-25 06:47:05","http://13.77.91.236:8080/staged.exe","offline","malware_download","exe|metasploit|Meterpreter","13.77.91.236","13.77.91.236","8075","US"
"2024-10-21 12:04:34","http://172.168.120.196:50014/Mozi.m","offline","malware_download","Mozi","172.168.120.196","172.168.120.196","8075","US"
"2024-10-19 15:37:07","http://20.2.22.42/filez/System.zip","offline","malware_download","opendir|QuasarRAT","20.2.22.42","20.2.22.42","8075","HK"
"2024-10-19 15:37:06","http://20.2.22.42/filez/1.zip","offline","malware_download","opendir","20.2.22.42","20.2.22.42","8075","HK"
"2024-10-19 15:37:05","http://20.2.22.42/filez/31.bat","offline","malware_download","opendir","20.2.22.42","20.2.22.42","8075","HK"
"2024-10-19 15:03:41","http://172.168.120.192:51394/Mozi.m","offline","malware_download","Mozi","172.168.120.192","172.168.120.192","8075","US"
"2024-10-18 12:58:23","http://4.234.110.221/02.08.2022.exe","offline","malware_download","cobaltstrike|shellcode","4.234.110.221","4.234.110.221","8075","GB"
"2024-10-18 12:58:17","http://20.189.79.97:55411/02.08.2022.exe","offline","malware_download","cobaltstrike|shellcode","20.189.79.97","20.189.79.97","8075","HK"
"2024-10-15 14:24:36","http://4.154.172.127/iobj/testingProtected.exe","offline","malware_download","exe|Formbook","4.154.172.127","4.154.172.127","8075","US"
"2024-10-15 14:03:10","http://20.210.245.1/actives.exe","offline","malware_download","CoinMiner","20.210.245.1","20.210.245.1","8075","JP"
"2024-10-15 14:03:09","http://20.210.245.1/README_FOR_RESTORE_FILES.txt","offline","malware_download","","20.210.245.1","20.210.245.1","8075","JP"
"2024-10-06 11:16:08","http://20.5.43.62/i","offline","malware_download","","20.5.43.62","20.5.43.62","8075","AU"
"2024-10-06 10:55:11","http://20.2.223.147:8888/supershell/compile/download/test","offline","malware_download","Supershell|supershell-c2","20.2.223.147","20.2.223.147","8075","HK"
"2024-10-05 14:07:14","http://20.189.76.133:5000/02.08.2022.exe","offline","malware_download","Cobaltstrike","20.189.76.133","20.189.76.133","8075","HK"
"2024-10-03 10:38:04","https://172.208.31.144/02.08.2022.exe","offline","malware_download","CobaltStrike|shellcode","172.208.31.144","172.208.31.144","8075","US"
"2024-09-28 16:23:09","http://20.42.100.142:8080/test.txt","offline","malware_download","","20.42.100.142","20.42.100.142","8075","US"
"2024-09-28 16:23:09","http://20.42.100.142:8080/testbyp.ps1","offline","malware_download","","20.42.100.142","20.42.100.142","8075","US"
"2024-09-28 16:16:06","http://74.235.207.80:8000/enc.bin","offline","malware_download","","74.235.207.80","74.235.207.80","8075","US"
"2024-09-28 16:16:06","http://74.235.207.80:8000/teste.bin","offline","malware_download","","74.235.207.80","74.235.207.80","8075","US"
"2024-09-28 16:16:04","http://74.235.207.80:8000/client.c","offline","malware_download","","74.235.207.80","74.235.207.80","8075","US"
"2024-09-28 13:00:14","http://74.235.207.80:8000/teste1.exe","offline","malware_download","c2|Metasploit|opendir","74.235.207.80","74.235.207.80","8075","US"
"2024-09-26 10:24:09","http://4.210.154.233:8082/getfile.php?download=YXBwLXJlbGVhc2UtMS5hcGs=","offline","malware_download","hookbot","4.210.154.233","4.210.154.233","8075","NL"
"2024-09-20 20:29:04","http://52.169.233.237/bins.sh","offline","malware_download","Gafgyt|opendir|sh|Yakuza","52.169.233.237","52.169.233.237","8075","IE"
"2024-09-20 20:28:06","http://52.169.233.237/yakuza.arm4","offline","malware_download","elf|Gafgyt|opendir|Yakuza","52.169.233.237","52.169.233.237","8075","IE"
"2024-09-20 20:28:06","http://52.169.233.237/yakuza.arm5","offline","malware_download","elf|Gafgyt|opendir|Yakuza","52.169.233.237","52.169.233.237","8075","IE"
"2024-09-20 20:28:06","http://52.169.233.237/yakuza.arm6","offline","malware_download","elf|Gafgyt|opendir|Yakuza","52.169.233.237","52.169.233.237","8075","IE"
"2024-09-20 20:28:06","http://52.169.233.237/yakuza.m68k","offline","malware_download","elf|Gafgyt|opendir|Yakuza","52.169.233.237","52.169.233.237","8075","IE"
"2024-09-20 20:28:06","http://52.169.233.237/yakuza.mips","offline","malware_download","elf|Gafgyt|opendir|Yakuza","52.169.233.237","52.169.233.237","8075","IE"
"2024-09-20 20:28:06","http://52.169.233.237/yakuza.mpsl","offline","malware_download","elf|Gafgyt|opendir|Yakuza","52.169.233.237","52.169.233.237","8075","IE"
"2024-09-20 20:28:06","http://52.169.233.237/yakuza.ppc","offline","malware_download","elf|Gafgyt|opendir|Yakuza","52.169.233.237","52.169.233.237","8075","IE"
"2024-09-20 20:28:06","http://52.169.233.237/yakuza.x32","offline","malware_download","elf|Gafgyt|opendir|Yakuza","52.169.233.237","52.169.233.237","8075","IE"
"2024-09-20 20:28:06","http://52.169.233.237/yakuza.x86","offline","malware_download","elf|Gafgyt|opendir|Yakuza","52.169.233.237","52.169.233.237","8075","IE"
"2024-09-20 20:28:05","http://52.169.233.237/yakuza.i586","offline","malware_download","elf|Gafgyt|opendir|Yakuza","52.169.233.237","52.169.233.237","8075","IE"
"2024-09-20 20:28:05","http://52.169.233.237/yakuza.sh4","offline","malware_download","elf|Gafgyt|opendir|Yakuza","52.169.233.237","52.169.233.237","8075","IE"
"2024-09-19 13:54:34","http://20.201.119.30/c/c.cmd","offline","malware_download","CarnavalHeist","20.201.119.30","20.201.119.30","8075","BR"
"2024-09-15 17:22:19","https://20.102.28.136/02.08.2022.exe","offline","malware_download","CobaltStrike|shellcode","20.102.28.136","20.102.28.136","8075","US"
"2024-09-15 17:22:11","https://20.0.145.155/02.08.2022.exe","offline","malware_download","CobaltStrike|shellcode","20.0.145.155","20.0.145.155","8075","GB"
"2024-09-15 09:55:06","http://20.243.255.185/nc.exe","offline","malware_download","exe|NetCat","20.243.255.185","20.243.255.185","8075","JP"
"2024-09-09 18:22:40","http://102.133.144.251/download/arquivos.zip","offline","malware_download","zip","102.133.144.251","102.133.144.251","8075","ZA"
"2024-09-09 16:32:07","http://102.133.144.251/download/file4.txt","offline","malware_download","","102.133.144.251","102.133.144.251","8075","ZA"
"2024-09-04 17:28:06","http://172.211.76.132/02.08.2022.exe","offline","malware_download","CobaltStrike|shellcode","172.211.76.132","172.211.76.132","8075","NL"
"2024-08-30 08:14:07","http://20.40.101.136/m-6.8-k.Sakura","offline","malware_download","ELF","20.40.101.136","20.40.101.136","8075","JP"
"2024-08-30 08:14:06","http://20.40.101.136/i-5.8-6.Sakura","offline","malware_download","ELF","20.40.101.136","20.40.101.136","8075","JP"
"2024-08-30 08:14:06","http://20.40.101.136/m-i.p-s.Sakura","offline","malware_download","ELF","20.40.101.136","20.40.101.136","8075","JP"
"2024-08-30 08:14:06","http://20.40.101.136/m-p.s-l.Sakura","offline","malware_download","ELF","20.40.101.136","20.40.101.136","8075","JP"
"2024-08-30 07:45:08","http://20.40.101.136/a-r.m-5.Sakura","offline","malware_download","elf","20.40.101.136","20.40.101.136","8075","JP"
"2024-08-30 07:45:08","http://20.40.101.136/a-r.m-6.Sakura","offline","malware_download","elf","20.40.101.136","20.40.101.136","8075","JP"
"2024-08-30 07:45:08","http://20.40.101.136/a-r.m-7.Sakura","offline","malware_download","elf","20.40.101.136","20.40.101.136","8075","JP"
"2024-08-30 07:45:07","http://20.40.101.136/a-r.m-4.Sakura","offline","malware_download","elf","20.40.101.136","20.40.101.136","8075","JP"
"2024-08-29 06:14:05","https://al-hayyat.com/SthtMoYxhFNes56.bin","offline","malware_download","encrypted|GuLoader","al-hayyat.com","20.174.8.122","8075","AE"
"2024-08-29 01:31:06","http://al-hayyat.com/umgDMMsanR160.bin","offline","malware_download","encrypted|FormBook|GuLoader","al-hayyat.com","20.174.8.122","8075","AE"
"2024-08-29 01:30:11","https://al-hayyat.com/umgDMMsanR160.bin","offline","malware_download","encrypted|FormBook|GuLoader","al-hayyat.com","20.174.8.122","8075","AE"
"2024-08-24 14:10:36","https://20.243.255.185/CVE-2021-3156.zip","online","malware_download","BruteForce|CVE-2021-3156|opendir|zip","20.243.255.185","20.243.255.185","8075","JP"
"2024-08-24 14:10:12","http://20.243.255.185/CVE-2021-3156.zip","online","malware_download","BruteForce|CVE-2021-3156|opendir|zip","20.243.255.185","20.243.255.185","8075","JP"
"2024-08-23 07:32:10","http://74.235.106.69/Onedrive.exe","offline","malware_download","exe|Metasploit|opendir","74.235.106.69","74.235.106.69","8075","US"
"2024-08-23 07:32:08","http://74.235.106.69/shell.elf","offline","malware_download","elf|GetShell|opendir","74.235.106.69","74.235.106.69","8075","US"
"2024-08-16 15:17:33","http://13.75.93.92:40000/02.08.2022.exe","offline","malware_download","cobaltstrike|shellcode","13.75.93.92","13.75.93.92","8075","HK"
"2024-08-16 08:37:06","http://40.89.179.195:8080/getfile.php?download=YXBwLXJlbGVhc2UtMg==&id=63a9f0ea7bb98050796b649e85481845","offline","malware_download","hookbot|spyware","40.89.179.195","40.89.179.195","8075","FR"
"2024-08-06 19:26:33","http://104.208.65.22/02.08.2022.exe","offline","malware_download","cobaltstrike|exe|This_exe_triggers_specifically_to_cobaltstrike_c2","104.208.65.22","104.208.65.22","8075","HK"
"2024-08-06 19:26:32","http://20.5.43.62/02.08.2022.exe","offline","malware_download","cobaltstrike|exe|This_exe_triggers_specifically_to_cobaltstrike_c2","20.5.43.62","20.5.43.62","8075","AU"
"2024-08-06 19:26:09","http://20.102.28.136/02.08.2022.exe","offline","malware_download","cobaltstrike|exe|This_exe_triggers_specifically_to_cobaltstrike_c2","20.102.28.136","20.102.28.136","8075","US"
"2024-08-04 18:37:05","http://20.199.84.103/Client.exe","offline","malware_download","AsyncRAT|c2|opendir","20.199.84.103","20.199.84.103","8075","FR"
"2024-08-04 18:37:05","http://20.199.84.103/sasa.bat","offline","malware_download","AsyncRAT|c2|opendir","20.199.84.103","20.199.84.103","8075","FR"
"2024-08-03 08:26:18","http://13.64.156.254:8888/supershell/compile/download/Invoice.exe","offline","malware_download","ReverseSSH|supershell-c2","13.64.156.254","13.64.156.254","8075","US"
"2024-08-02 14:13:03","http://4.180.120.64:8000/powercat.ps1","offline","malware_download","netcat|ps","4.180.120.64","4.180.120.64","8075","NL"
"2024-08-02 14:12:15","http://4.180.120.64:8000/chisel.exe","offline","malware_download","chisel|exe|Gh0stRAT|opendir","4.180.120.64","4.180.120.64","8075","NL"
"2024-08-02 09:48:09","http://98.66.160.121/Built.exe","offline","malware_download","BlankGrabber|exe","98.66.160.121","98.66.160.121","8075","FR"
"2024-07-26 05:31:11","http://20.201.125.111/d/c.cmd","offline","malware_download","allasenha|payload","20.201.125.111","20.201.125.111","8075","BR"
"2024-07-24 06:40:13","https://crowndstrikeoffice365.blob.core.windows.net/update/office365crowndStrike.zip","offline","malware_download","LummaStealer","crowndstrikeoffice365.blob.core.windows.net","57.150.107.225","8075","US"
"2024-07-24 06:40:13","https://msoffice365updater.blob.core.windows.net/safe/office365crowndStrike.rar","offline","malware_download","LummaStealer","msoffice365updater.blob.core.windows.net","20.209.227.97","8075","US"
"2024-07-24 06:40:13","https://office365updatter.blob.core.windows.net/faile/msoffice365update.zip","offline","malware_download","LummaStealer","office365updatter.blob.core.windows.net","57.150.1.33","8075","US"
"2024-07-24 06:40:13","https://systemwidowsupdate.blob.core.windows.net/portal/msoffice365update.rar","offline","malware_download","LummaStealer","systemwidowsupdate.blob.core.windows.net","57.150.1.33","8075","US"
"2024-07-24 06:40:13","https://updatemsoffice365.blob.core.windows.net/local/WidowsSystem-update.zip","offline","malware_download","LummaStealer","updatemsoffice365.blob.core.windows.net","20.209.227.97","8075","US"
"2024-07-24 06:40:12","https://msofflce365ypdate.blob.core.windows.net/overview/office365crowndStrike.msi","offline","malware_download","LummaStealer","msofflce365ypdate.blob.core.windows.net","20.209.227.97","8075","US"
"2024-07-19 17:51:03","https://20.251.161.157/api/kysc/psscript","offline","malware_download","PoshKeylogger|ps1","20.251.161.157","20.251.161.157","8075","NO"
"2024-07-16 05:19:12","http://191.232.181.180/tv.exe","offline","malware_download","exe|Metasploit|opendir","191.232.181.180","191.232.181.180","8075","BR"
"2024-07-16 05:19:11","http://191.232.181.180/-f","offline","malware_download","opendir","191.232.181.180","191.232.181.180","8075","BR"
"2024-07-16 05:19:11","http://191.232.181.180/d3l.ps1","offline","malware_download","opendir|ps1","191.232.181.180","191.232.181.180","8075","BR"
"2024-07-16 05:19:11","http://191.232.181.180/peekaboo.exe","offline","malware_download","exe|opendir","191.232.181.180","191.232.181.180","8075","BR"
"2024-07-16 05:19:11","http://191.232.181.180/shell.bat","offline","malware_download","opendir|ps1","191.232.181.180","191.232.181.180","8075","BR"
"2024-07-16 05:19:11","http://191.232.181.180/tv2.exe","offline","malware_download","exe|Meterpreter|opendir","191.232.181.180","191.232.181.180","8075","BR"
"2024-07-02 15:24:18","http://172.214.219.5/peggavisao/ready.apk","offline","malware_download","apk|ready.apk|SpyNote","172.214.219.5","172.214.219.5","8075","US"
"2024-07-02 15:24:18","https://172.214.219.5/peggavisao/ready.apk","offline","malware_download","apk|ready.apk|SpyNote","172.214.219.5","172.214.219.5","8075","US"
"2024-07-02 05:58:08","http://40.86.87.10/b13597c85f807692/nss3.dll","offline","malware_download","dll|Stealc","40.86.87.10","40.86.87.10","8075","US"
"2024-07-02 05:58:08","http://40.86.87.10/b13597c85f807692/softokn3.dll","offline","malware_download","dll|Stealc","40.86.87.10","40.86.87.10","8075","US"
"2024-07-02 05:58:07","http://40.86.87.10/b13597c85f807692/freebl3.dll","offline","malware_download","dll|Stealc","40.86.87.10","40.86.87.10","8075","US"
"2024-07-02 05:58:07","http://40.86.87.10/b13597c85f807692/mozglue.dll","offline","malware_download","dll|Stealc","40.86.87.10","40.86.87.10","8075","US"
"2024-07-02 05:58:07","http://40.86.87.10/b13597c85f807692/msvcp140.dll","offline","malware_download","dll|Stealc","40.86.87.10","40.86.87.10","8075","US"
"2024-07-02 05:58:07","http://40.86.87.10/b13597c85f807692/sqlite3.dll","offline","malware_download","dll|Stealc","40.86.87.10","40.86.87.10","8075","US"
"2024-07-02 05:58:06","http://40.86.87.10/b13597c85f807692/vcruntime140.dll","offline","malware_download","dll|Stealc","40.86.87.10","40.86.87.10","8075","US"
"2024-06-17 08:32:42","http://20.169.80.41/winXray-v3.7.rar","offline","malware_download","rar","20.169.80.41","20.169.80.41","8075","US"
"2024-06-06 17:45:11","http://20.197.248.195/Client-built.exe","offline","malware_download","quasarrat","20.197.248.195","20.197.248.195","8075","BR"
"2024-05-29 12:26:07","http://20.117.96.101:8000/reverse.exe","offline","malware_download","metasploit|Meterpreter","20.117.96.101","20.117.96.101","8075","GB"
"2024-05-23 18:37:12","http://20.86.128.223/room/rooma.exe","offline","malware_download","exe|Formbook|opendir","20.86.128.223","20.86.128.223","8075","NL"
"2024-05-23 18:37:11","http://20.86.128.223/room/room4.hta","offline","malware_download","Formbook|hta|opendir","20.86.128.223","20.86.128.223","8075","NL"
"2024-05-23 15:54:39","http://20.163.176.155/update.hta","offline","malware_download","443|hta|PowerShellEmpire","20.163.176.155","20.163.176.155","8075","US"
"2024-05-23 15:54:39","http://20.163.176.155/update2.hta","offline","malware_download","443|hta|PowerShellEmpire","20.163.176.155","20.163.176.155","8075","US"
"2024-05-23 15:54:38","http://20.163.176.155/ps-updater.exe","offline","malware_download","443|exe|PowerShellEmpire","20.163.176.155","20.163.176.155","8075","US"
"2024-05-23 15:54:37","http://20.163.176.155/update.ps1","offline","malware_download","443|PowerShellEmpire|ps1","20.163.176.155","20.163.176.155","8075","US"
"2024-05-23 15:54:37","http://20.163.176.155/update.ps1~","offline","malware_download","443|PowerShellEmpire|ps1","20.163.176.155","20.163.176.155","8075","US"
"2024-05-23 15:54:37","http://powershell.skype-api.co.uk/ps-updater.exe","offline","malware_download","443|exe|PowerShellEmpire","powershell.skype-api.co.uk","20.163.176.155","8075","US"
"2024-05-23 15:54:37","http://powershell.skype-api.co.uk/update.hta","offline","malware_download","443|hta|PowerShellEmpire","powershell.skype-api.co.uk","20.163.176.155","8075","US"
"2024-05-23 15:54:37","http://powershell.skype-api.co.uk/update.ps1","offline","malware_download","443|PowerShellEmpire|ps1","powershell.skype-api.co.uk","20.163.176.155","8075","US"
"2024-05-23 15:54:37","http://powershell.skype-api.co.uk/update.ps1~","offline","malware_download","443|PowerShellEmpire|ps1","powershell.skype-api.co.uk","20.163.176.155","8075","US"
"2024-05-23 15:54:37","http://powershell.skype-api.co.uk/update2.hta","offline","malware_download","443|hta|PowerShellEmpire","powershell.skype-api.co.uk","20.163.176.155","8075","US"
"2024-05-18 16:02:15","http://20.151.70.137/hidakibest.arm5","offline","malware_download","elf|Gafgyt","20.151.70.137","20.151.70.137","8075","CA"
"2024-05-18 16:02:15","http://20.151.70.137/hidakibest.arm6","offline","malware_download","elf|Gafgyt","20.151.70.137","20.151.70.137","8075","CA"
"2024-05-18 16:02:14","http://20.151.70.137/hidakibest.arm4","offline","malware_download","elf","20.151.70.137","20.151.70.137","8075","CA"
"2024-05-18 16:02:14","http://20.151.70.137/hidakibest.sparc","offline","malware_download","elf","20.151.70.137","20.151.70.137","8075","CA"
"2024-05-18 16:02:13","http://20.151.70.137/hidakibest.mips","offline","malware_download","elf|Gafgyt","20.151.70.137","20.151.70.137","8075","CA"
"2024-05-18 16:02:13","http://20.151.70.137/hidakibest.mpsl","offline","malware_download","elf|Gafgyt","20.151.70.137","20.151.70.137","8075","CA"
"2024-05-18 16:02:13","http://20.151.70.137/hidakibest.ppc","offline","malware_download","elf|Gafgyt","20.151.70.137","20.151.70.137","8075","CA"
"2024-05-18 16:02:13","http://20.151.70.137/hidakibest.x86","offline","malware_download","elf|Gafgyt","20.151.70.137","20.151.70.137","8075","CA"
"2024-05-18 16:02:09","http://20.151.70.137/hidakibest.sh","offline","malware_download","elf|shellscript","20.151.70.137","20.151.70.137","8075","CA"
"2024-05-13 07:05:14","http://4.194.25.153:8080/Kavach.apk","offline","malware_download","spynote","4.194.25.153","4.194.25.153","8075","SG"
"2024-05-13 07:05:13","http://4.194.25.153:8080/Foody.apk","offline","malware_download","spynote","4.194.25.153","4.194.25.153","8075","SG"
"2024-05-13 07:05:13","http://4.194.25.153:8080/Hidden.apk","offline","malware_download","spynote","4.194.25.153","4.194.25.153","8075","SG"
"2024-05-13 07:05:13","http://4.194.25.153:8080/Whatsapp%20%282%29.apk","offline","malware_download","spynote","4.194.25.153","4.194.25.153","8075","SG"
"2024-05-13 07:05:12","http://4.194.25.153:8080/WhatsApp.apk","offline","malware_download","spynote","4.194.25.153","4.194.25.153","8075","SG"
"2024-05-03 10:04:06","http://20.15.225.122/build.s.apk","offline","malware_download","apk|c2|geofenced|L3mon|Manager|ua-wget|usa","20.15.225.122","20.15.225.122","8075","US"
"2024-04-30 04:52:06","https://karamelitses.gr/wp-content/plugins/share-private-fls/shared","offline","malware_download","Latrodectus","karamelitses.gr","20.79.184.130","8075","DE"
"2024-04-26 15:32:52","https://20.214.163.70/feixiaohao_latest.apk","offline","malware_download","Bad-Package|FakeWallet","20.214.163.70","20.214.163.70","8075","KR"
"2024-04-26 12:33:12","http://20.2.148.240/mpsl","offline","malware_download","elf","20.2.148.240","20.2.148.240","8075","HK"
"2024-04-13 15:56:05","http://191.239.116.217/Documentos/NotaFiscal.pdf.lnk","offline","malware_download","BRA|fraud|geo|python|rat|trojan","191.239.116.217","191.239.116.217","8075","BR"
"2024-04-13 15:56:04","http://191.239.116.217/Documentos/files/a3.cmd","offline","malware_download","BRA|fraud|geo|python|rat","191.239.116.217","191.239.116.217","8075","BR"
"2024-04-06 19:48:09","http://52.143.157.84/84bad7132df89fd7/nss3.dll","offline","malware_download","exe","52.143.157.84","52.143.157.84","8075","FR"
"2024-04-06 19:48:08","http://52.143.157.84/84bad7132df89fd7/freebl3.dll","offline","malware_download","exe","52.143.157.84","52.143.157.84","8075","FR"
"2024-04-06 19:48:08","http://52.143.157.84/84bad7132df89fd7/sqlite3.dll","offline","malware_download","exe","52.143.157.84","52.143.157.84","8075","FR"
"2024-04-06 19:48:07","http://52.143.157.84/84bad7132df89fd7/mozglue.dll","offline","malware_download","exe","52.143.157.84","52.143.157.84","8075","FR"
"2024-04-06 19:48:07","http://52.143.157.84/84bad7132df89fd7/msvcp140.dll","offline","malware_download","exe","52.143.157.84","52.143.157.84","8075","FR"
"2024-04-06 19:48:07","http://52.143.157.84/84bad7132df89fd7/softokn3.dll","offline","malware_download","exe","52.143.157.84","52.143.157.84","8075","FR"
"2024-04-06 19:48:07","http://52.143.157.84/84bad7132df89fd7/vcruntime140.dll","offline","malware_download","exe","52.143.157.84","52.143.157.84","8075","FR"
"2024-03-15 07:31:30","http://20.205.11.156/d/test","offline","malware_download","elf|Mirai","20.205.11.156","20.205.11.156","8075","HK"
"2024-03-04 18:54:09","http://20.205.11.156/d/xd.arm","offline","malware_download","elf|mirai","20.205.11.156","20.205.11.156","8075","HK"
"2024-03-04 18:54:09","http://20.205.11.156/d/xd.arm5","offline","malware_download","elf|mirai","20.205.11.156","20.205.11.156","8075","HK"
"2024-03-04 18:54:09","http://20.205.11.156/d/xd.arm6","offline","malware_download","elf|mirai","20.205.11.156","20.205.11.156","8075","HK"
"2024-03-04 18:54:09","http://20.205.11.156/d/xd.arm7","offline","malware_download","elf|mirai","20.205.11.156","20.205.11.156","8075","HK"
"2024-03-04 18:54:09","http://20.205.11.156/d/xd.mips","offline","malware_download","elf|geofenced|mirai|usa","20.205.11.156","20.205.11.156","8075","HK"
"2024-03-04 18:54:09","http://20.205.11.156/d/xd.mips64","offline","malware_download","elf|mirai","20.205.11.156","20.205.11.156","8075","HK"
"2024-03-04 18:54:08","http://20.205.11.156/d/xd.m68k","offline","malware_download","elf|mirai","20.205.11.156","20.205.11.156","8075","HK"
"2024-03-04 18:54:08","http://20.205.11.156/d/xd.ppc","offline","malware_download","elf|mirai","20.205.11.156","20.205.11.156","8075","HK"
"2024-03-04 18:54:08","http://20.205.11.156/d/xd.sh4","offline","malware_download","elf|mirai","20.205.11.156","20.205.11.156","8075","HK"
"2024-03-04 18:54:08","http://20.205.11.156/d/xd.spc","offline","malware_download","elf|mirai","20.205.11.156","20.205.11.156","8075","HK"
"2024-03-04 18:54:08","http://20.205.11.156/d/xd.x86","offline","malware_download","elf|mirai","20.205.11.156","20.205.11.156","8075","HK"
"2024-03-04 18:54:07","http://20.205.11.156/d/xd.mpsl","offline","malware_download","elf|mirai","20.205.11.156","20.205.11.156","8075","HK"
"2024-02-23 12:51:04","http://20.2.223.147:8888/supershell/login","offline","malware_download","Supershell","20.2.223.147","20.2.223.147","8075","HK"
"2024-02-16 07:46:13","http://20.124.232.200:8080/cobaltstrike-dist.tgz","offline","malware_download","Hacktool","20.124.232.200","20.124.232.200","8075","US"
"2024-02-11 07:25:17","http://20.106.168.188:222/1x.jpg","offline","malware_download","Havoc","20.106.168.188","20.106.168.188","8075","US"
"2024-02-11 07:25:16","http://20.106.168.188:222/BR.jpg","offline","malware_download","Havoc","20.106.168.188","20.106.168.188","8075","US"
"2024-02-11 07:25:15","http://20.106.168.188:222/9X.jpg","offline","malware_download","Havoc","20.106.168.188","20.106.168.188","8075","US"
"2024-02-11 07:25:14","http://20.106.168.188:222/2x.jpg","offline","malware_download","Havoc","20.106.168.188","20.106.168.188","8075","US"
"2023-12-14 07:09:10","http://4.228.56.58/rat/nj.txt","offline","malware_download","njrat|VENOMRAT","4.228.56.58","4.228.56.58","8075","BR"
"2023-12-11 11:26:08","http://20.169.49.77/gpupdate.exe","offline","malware_download","CobaltStrike","20.169.49.77","20.169.49.77","8075","US"
"2023-12-11 11:26:07","http://20.169.49.77/Item30.pdf","offline","malware_download","","20.169.49.77","20.169.49.77","8075","US"
"2023-12-11 11:26:07","http://20.169.49.77/wallpaper.png","offline","malware_download","","20.169.49.77","20.169.49.77","8075","US"
"2023-11-20 16:32:10","https://churchinmanila.org/wp-content/uploads/cabs/no-87BA93.url","offline","malware_download","NetSupport|RAT|url","churchinmanila.org","13.75.34.162","8075","HK"
"2023-10-25 15:51:33","https://creativeartistsagencyapac-my.sharepoint.com/:x:/g/personal/woobe_chang_caa_com/EczpKkczUQ1ApZC-4QeyyBgBrxMcWbuRUV5ju1hgiLuiug","offline","malware_download","Pikabot|TA577|TR","creativeartistsagencyapac-my.sharepoint.com","52.107.243.206","8075","DE"
"2023-10-25 15:51:33","https://creativeartistsagencyapac-my.sharepoint.com/:x:/g/personal/woobe_chang_caa_com/EczpKkczUQ1ApZC-4QeyyBgBrxMcWbuRUV5ju1hgiLuiug","offline","malware_download","Pikabot|TA577|TR","creativeartistsagencyapac-my.sharepoint.com","52.107.243.220","8075","DE"
"2023-10-25 15:51:33","https://creativeartistsagencyapac-my.sharepoint.com/:x:/g/personal/woobe_chang_caa_com/EczpKkczUQ1ApZC-4QeyyBgBrxMcWbuRUV5ju1hgiLuiug","offline","malware_download","Pikabot|TA577|TR","creativeartistsagencyapac-my.sharepoint.com","52.107.243.221","8075","DE"
"2023-10-25 06:40:36","http://20.92.164.32/20/a/n/m.zip","offline","malware_download","MetaMorfo|spybanker|TelegramLogin","20.92.164.32","20.92.164.32","8075","AU"
"2023-10-23 15:45:09","http://media.ebby.com/iabs/","offline","malware_download","TA577|TR","media.ebby.com","13.89.142.250","8075","US"
"2023-10-22 15:22:12","https://parencyivf.com/news.php","offline","malware_download","","parencyivf.com","52.173.139.99","8075","US"
"2023-10-22 15:22:08","https://shop.roseofsharon.hk/save.php","offline","malware_download","","shop.roseofsharon.hk","20.2.232.53","8075","HK"
"2023-10-13 19:47:15","https://adamantium.network/erm/?wp=9148543","offline","malware_download","DarkGate|TA577|TR","adamantium.network","20.75.91.15","8075","US"
"2023-10-10 12:17:07","https://hbionline.live/ed/","offline","malware_download","DarkGate|PDF|TA577|TR","hbionline.live","4.224.62.153","8075","IN"
"2023-10-10 08:56:40","https://hbionline.live/vifl/","offline","malware_download","DarkGate|TA577|tr","hbionline.live","4.224.62.153","8075","IN"
"2023-09-22 07:40:08","http://172.200.176.88/kitlouco.php","offline","malware_download","172-200-176-88|metamorfo|Ousaban|spy","172.200.176.88","172.200.176.88","8075","US"
"2023-09-22 05:58:07","https://ed-ta.itsaol.com/app.apk","offline","malware_download","android|apk|IRATA","ed-ta.itsaol.com","172.172.236.36","8075","US"
"2023-09-21 16:38:12","https://hmas.mx/relo/","offline","malware_download","Darkgate|pdf|USA|xll","hmas.mx","40.99.149.216","8075","DE"
"2023-09-21 16:38:12","https://hmas.mx/relo/","offline","malware_download","Darkgate|pdf|USA|xll","hmas.mx","40.99.150.40","8075","DE"
"2023-09-21 16:38:12","https://hmas.mx/relo/","offline","malware_download","Darkgate|pdf|USA|xll","hmas.mx","40.99.150.72","8075","DE"
"2023-09-21 16:38:12","https://hmas.mx/relo/","offline","malware_download","Darkgate|pdf|USA|xll","hmas.mx","40.99.150.88","8075","DE"
"2023-09-21 16:38:12","https://hmas.mx/relo/","offline","malware_download","Darkgate|pdf|USA|xll","hmas.mx","52.98.152.168","8075","DE"
"2023-09-21 16:38:12","https://hmas.mx/relo/","offline","malware_download","Darkgate|pdf|USA|xll","hmas.mx","52.98.179.72","8075","DE"
"2023-09-21 16:38:12","https://hmas.mx/relo/","offline","malware_download","Darkgate|pdf|USA|xll","hmas.mx","52.98.241.200","8075","DE"
"2023-09-21 16:38:12","https://hmas.mx/relo/","offline","malware_download","Darkgate|pdf|USA|xll","hmas.mx","52.98.243.56","8075","DE"
"2023-09-21 10:34:16","https://adlgh.mefound.com/app.apk","offline","malware_download","android|apk|IRATA","adlgh.mefound.com","172.172.236.36","8075","US"
"2023-09-19 05:51:04","http://172.172.222.164/ratlanbu.exe","offline","malware_download","exe|redlinestealer|stealer|trojan","172.172.222.164","172.172.222.164","8075","US"
"2023-09-13 17:42:05","https://imas.uk.com/blog.php","offline","malware_download","gating|gootloader","imas.uk.com","13.92.2.251","8075","US"
"2023-09-13 08:05:27","http://20.150.193.101/v/modelo.zip","offline","malware_download","Metamorfo","20.150.193.101","20.150.193.101","8075","US"
"2023-09-13 08:05:19","http://20.150.193.101/w/modulo1.zip","offline","malware_download","Metamorfo","20.150.193.101","20.150.193.101","8075","US"
"2023-09-02 10:11:10","https://allclop.duckdns.org","offline","malware_download","AgentTesla","allclop.duckdns.org","52.255.194.54","8075","US"
"2023-08-25 18:22:11","https://emailbuilder.a6uat.co.uk/download.php","offline","malware_download","gating|gootloader","emailbuilder.a6uat.co.uk","13.82.108.252","8075","US"
"2023-08-21 14:20:32","https://accountingnj.blob.core.windows.net/test/Helper.exe","offline","malware_download","dropped-by-SmokeLoader|RedLineStealer","accountingnj.blob.core.windows.net","52.239.222.100","8075","US"
"2023-08-09 18:42:04","http://74.234.59.120/bins/mirai.arm","offline","malware_download","elf|mirai","74.234.59.120","74.234.59.120","8075","IE"
"2023-08-09 18:42:04","http://74.234.59.120/bins/mirai.arm7","offline","malware_download","elf|mirai","74.234.59.120","74.234.59.120","8075","IE"
"2023-07-31 23:45:07","http://20.234.58.62/xClient.html","offline","malware_download","AsyncRAT|exe","20.234.58.62","20.234.58.62","8075","IE"
"2023-07-31 23:43:04","http://20.234.58.62/sd.exe","offline","malware_download","AsyncRAT|exe","20.234.58.62","20.234.58.62","8075","IE"
"2023-07-31 12:48:05","http://20.234.58.62/xx.exe","offline","malware_download","32|AsyncRAT|exe","20.234.58.62","20.234.58.62","8075","IE"
"2023-07-31 12:37:08","http://20.234.58.62/x.exe","offline","malware_download","exe|InvictaStealer","20.234.58.62","20.234.58.62","8075","IE"
"2023-07-27 05:07:05","http://52.152.223.228/test/jesus.exe","offline","malware_download","32|AsyncRAT|exe","52.152.223.228","52.152.223.228","8075","US"
"2023-07-26 03:45:08","http://104.208.85.234/code.exe","offline","malware_download","64|CobaltStrike|exe","104.208.85.234","104.208.85.234","8075","HK"
"2023-07-26 03:45:08","http://104.208.85.234/explore.exe","offline","malware_download","64|exe","104.208.85.234","104.208.85.234","8075","HK"
"2023-07-11 07:31:31","http://20.206.241.68/MercadoLivre.zip","offline","malware_download","opendir|Ousaban|zip","20.206.241.68","20.206.241.68","8075","BR"
"2023-07-05 07:17:07","http://20.226.11.48/spain/marcador.php","offline","malware_download","ESP|geofenced|msi","20.226.11.48","20.226.11.48","8075","BR"
"2023-06-29 07:34:04","http://20.22.239.93/Info.exe","offline","malware_download","64|exe","20.22.239.93","20.22.239.93","8075","US"
"2023-06-26 07:02:07","http://20.22.239.93/Info.iso","offline","malware_download","exe|opendir","20.22.239.93","20.22.239.93","8075","US"
"2023-06-26 07:02:07","http://20.22.239.93/Info2.dll","offline","malware_download","dll|Havoc|opendir","20.22.239.93","20.22.239.93","8075","US"
"2023-06-26 07:02:07","http://20.22.239.93/TeamsUpdate.dll","offline","malware_download","dll|Havoc|opendir","20.22.239.93","20.22.239.93","8075","US"
"2023-06-26 07:02:07","http://20.22.239.93/Update.exe","offline","malware_download","exe|opendir","20.22.239.93","20.22.239.93","8075","US"
"2023-06-26 07:02:06","http://20.22.239.93/demon.x64.dll","offline","malware_download","dll|Havoc|opendir","20.22.239.93","20.22.239.93","8075","US"
"2023-06-25 16:21:05","http://20.239.180.4/localn","offline","malware_download","shellscript","20.239.180.4","20.239.180.4","8075","HK"
"2023-06-16 11:05:14","http://20.245.14.191:8090/installab_test.exe","offline","malware_download","dropped-by-SmokeLoader|MedusaStealer","20.245.14.191","20.245.14.191","8075","US"
"2023-06-15 16:16:15","https://ahg.com.sa/oms/?1","offline","malware_download","BB32|geofenced|js|Qakbot|USA","ahg.com.sa","20.55.103.191","8075","US"
"2023-06-15 11:04:26","https://ahg.com.sa/oms/?","offline","malware_download","BB32|geofenced|js|Qakbot|USA","ahg.com.sa","20.55.103.191","8075","US"
"2023-06-13 06:37:17","http://20.197.192.48/PDF.rar","offline","malware_download","banker|BRA|geofenced|msi|trojan","20.197.192.48","20.197.192.48","8075","BR"
"2023-05-12 13:09:22","https://bikexiner.lotieneconisiore.com/file1.ps1","offline","malware_download","NetSupport","bikexiner.lotieneconisiore.com","104.43.162.125","8075","US"
"2023-05-10 15:37:27","https://earningadvice.com/dor/","offline","malware_download","BB27|geofenced|js|Qakbot|Quakbot|USA","earningadvice.com","104.42.224.43","8075","US"
"2023-05-05 14:13:59","https://addmail.com/dmv/","offline","malware_download","BB26|geofenced|js|Qakbot|Quakbot|USA|zip","addmail.com","20.74.192.0","8075","AE"
"2023-05-05 14:13:55","https://earningadvice.com/atos/","offline","malware_download","BB26|geofenced|js|Qakbot|Quakbot|USA|zip","earningadvice.com","104.42.224.43","8075","US"
"2023-05-05 12:13:06","http://172.174.176.153/dll/new_rump_vb.net.txt","offline","malware_download","","172.174.176.153","172.174.176.153","8075","US"
"2023-04-30 01:49:21","http://20.239.163.237/sysnew.mpsl","offline","malware_download","32|elf|mips|mirai","20.239.163.237","20.239.163.237","8075","HK"
"2023-04-30 01:48:21","http://20.239.163.237/sysnew.arm5","offline","malware_download","32|arm|elf|mirai","20.239.163.237","20.239.163.237","8075","HK"
"2023-04-30 01:48:21","http://20.239.163.237/sysnew.mips","offline","malware_download","32|elf|mips|mirai","20.239.163.237","20.239.163.237","8075","HK"
"2023-04-30 01:48:21","http://20.239.163.237/sysnew.sh4","offline","malware_download","32|elf|mirai|renesas","20.239.163.237","20.239.163.237","8075","HK"
"2023-04-29 08:02:20","http://20.239.163.237/sysnew.arm","offline","malware_download","elf|Moobot","20.239.163.237","20.239.163.237","8075","HK"
"2023-04-29 08:02:20","http://20.239.163.237/sysnew.arm7","offline","malware_download","elf|Moobot","20.239.163.237","20.239.163.237","8075","HK"
"2023-04-28 06:03:34","http://172.169.1.99:43987/Mozi.m","offline","malware_download","Mozi","172.169.1.99","172.169.1.99","8075","US"
"2023-04-24 13:39:12","https://manaracapital.com/vwWj/2","offline","malware_download","bb25|dll|GBR|geofenced|Qakbot|Qbot|Quakbot|ua-ps","manaracapital.com","20.8.24.149","8075","NL"
"2023-04-24 13:36:11","https://manaracapital.com/vwWj","offline","malware_download","bb25|dll|geofenced|Qakbot|Qbot|Quakbot|ua-ps|USA","manaracapital.com","20.8.24.149","8075","NL"
"2023-04-21 13:16:13","http://20.206.70.41/itau.apk","offline","malware_download","apk|SpyNote","20.206.70.41","20.206.70.41","8075","BR"
"2023-04-21 13:16:10","http://20.206.70.41/caixa.apk","offline","malware_download","apk|SpyNote","20.206.70.41","20.206.70.41","8075","BR"
"2023-04-21 13:16:08","http://20.206.70.41/bradesco.apk","offline","malware_download","apk|SpyNote","20.206.70.41","20.206.70.41","8075","BR"
"2023-04-21 13:16:08","http://20.206.70.41/leiilaosodre.apk","offline","malware_download","apk|SpyNote","20.206.70.41","20.206.70.41","8075","BR"
"2023-04-21 13:16:08","http://20.206.70.41/pix.apk","offline","malware_download","apk|SpyNote","20.206.70.41","20.206.70.41","8075","BR"
"2023-04-21 13:16:07","http://20.206.70.41/serasa.apk","offline","malware_download","apk|SpyNote","20.206.70.41","20.206.70.41","8075","BR"
"2023-04-21 13:15:20","http://20.206.70.41/Emprestimo.apk","offline","malware_download","apk|SpyNote","20.206.70.41","20.206.70.41","8075","BR"
"2023-04-21 13:15:15","http://20.206.70.41/Ambev.apk","offline","malware_download","apk|SpyNote","20.206.70.41","20.206.70.41","8075","BR"
"2023-04-21 13:15:15","http://20.206.70.41/Gps.appmaps.apk","offline","malware_download","apk|SpyNote","20.206.70.41","20.206.70.41","8075","BR"
"2023-04-21 13:15:15","http://20.206.70.41/Nubank.apk","offline","malware_download","apk|SpyNote","20.206.70.41","20.206.70.41","8075","BR"
"2023-04-21 13:15:15","http://20.206.70.41/Xp.seguranca.apk","offline","malware_download","apk|SpyNote","20.206.70.41","20.206.70.41","8075","BR"
"2023-04-20 18:30:20","https://earningadvice.com/sir/idnam.php","offline","malware_download","671|BB24|geofenced|hta|Qakbot|Qbot|Quakbot|tr|USA|zip","earningadvice.com","104.42.224.43","8075","US"
"2023-04-19 17:53:14","https://earningadvice.com/tcee/doloremamet.php","offline","malware_download","921|BB24|geofenced|Qakbot|Qbot|Quakbot|tr|USA|wsf|zip","earningadvice.com","104.42.224.43","8075","US"
"2023-04-15 23:46:15","http://20.205.3.43/bins/shadow.x86","offline","malware_download","|32-bit|ELF|Mirai|x86-32","20.205.3.43","20.205.3.43","8075","HK"
"2023-04-10 16:21:14","https://earningadvice.com/unsi/unsi.php","offline","malware_download","BB23|geofenced|Qakbot|Qbot|Quakbot|R89|tr|USA|wsf|zip","earningadvice.com","104.42.224.43","8075","US"
"2023-04-06 07:20:13","http://20.211.5.151/XBoom-Dll.exe","offline","malware_download","exe|HVNC|opendir","20.211.5.151","20.211.5.151","8075","AU"
"2023-04-06 07:20:13","http://20.211.5.151/XBoom-UpdateStage3.exe","offline","malware_download","AsyncRAT|exe|opendir","20.211.5.151","20.211.5.151","8075","AU"
"2023-04-06 07:20:12","http://20.211.5.151/XBoom-DllStage3.exe","offline","malware_download","exe|HVNC|opendir","20.211.5.151","20.211.5.151","8075","AU"
"2023-04-06 07:20:12","http://20.211.5.151/XBoom-Update.exe","offline","malware_download","exe|opendir|VenomRat","20.211.5.151","20.211.5.151","8075","AU"
"2023-04-06 07:20:12","http://20.211.5.151/XBoom-UpdateStage.exe","offline","malware_download","AsyncRAT|exe|opendir","20.211.5.151","20.211.5.151","8075","AU"
"2023-04-05 15:52:09","https://makeduconsult.com/daut/daut.php","offline","malware_download","755|BB22|geofenced|js|Qakbot|Qbot|Quakbot|tr|USA|wsf|zip","makeduconsult.com","40.87.53.102","8075","US"
"2023-04-04 16:10:39","https://earningadvice.com/dmr/dmr.php","offline","malware_download","BB22|geofenced|js|link|Qakbot|qbot|Quakbot|TR|USA","earningadvice.com","104.42.224.43","8075","US"
"2023-04-04 16:10:27","https://makeduconsult.com/um/um.php","offline","malware_download","BB22|geofenced|js|Qakbot|qbot|Quakbot|TR|USA","makeduconsult.com","40.87.53.102","8075","US"
"2023-03-30 09:13:24","http://4.204.223.50:4389/bbg27.zip?","offline","malware_download","Grandoreiro|Spy","4.204.223.50","4.204.223.50","8075","CA"
"2023-03-26 23:21:18","http://20.151.71.228/bash","offline","malware_download","64|elf|tsunami","20.151.71.228","20.151.71.228","8075","CA"
"2023-03-26 23:21:18","http://20.151.71.228/pftp","offline","malware_download","32|elf|motorola|tsunami","20.151.71.228","20.151.71.228","8075","CA"
"2023-03-26 23:21:18","http://20.151.71.228/sh","offline","malware_download","32|elf|sparc|tsunami","20.151.71.228","20.151.71.228","8075","CA"
"2023-03-26 23:21:18","http://20.151.71.228/sshd","offline","malware_download","32|elf|mips|tsunami","20.151.71.228","20.151.71.228","8075","CA"
"2023-03-26 23:21:03","http://20.151.71.228/bins.sh","offline","malware_download","shellscript","20.151.71.228","20.151.71.228","8075","CA"
"2023-03-26 23:20:22","http://20.151.71.228/apache2","offline","malware_download","32|arm|elf|tsunami","20.151.71.228","20.151.71.228","8075","CA"
"2023-03-26 23:20:22","http://20.151.71.228/ntpd","offline","malware_download","32|elf|mips|tsunami","20.151.71.228","20.151.71.228","8075","CA"
"2023-03-26 23:20:21","http://20.151.71.228/cron","offline","malware_download","32|elf|powerpc|tsunami","20.151.71.228","20.151.71.228","8075","CA"
"2023-03-26 23:20:21","http://20.151.71.228/ftp","offline","malware_download","32|elf|intel|tsunami","20.151.71.228","20.151.71.228","8075","CA"
"2023-03-26 23:20:21","http://20.151.71.228/tftp","offline","malware_download","32|arm|elf|tsunami","20.151.71.228","20.151.71.228","8075","CA"
"2023-03-26 23:20:21","http://20.151.71.228/wget","offline","malware_download","32|elf|intel|tsunami","20.151.71.228","20.151.71.228","8075","CA"
"2023-03-17 09:28:18","https://insellerate.net/doc/taskshostw.exe","offline","malware_download","exe|Formbook","insellerate.net","104.40.65.56","8075","US"
"2023-03-16 17:22:40","http://172.169.1.99:59161/mozi.a","offline","malware_download","","172.169.1.99","172.169.1.99","8075","US"
"2023-03-15 22:18:10","https://olgaperezporro.com/js/ExGBiCZdkkw0GBAuHNZ/","offline","malware_download","dll|emotet|epoch5|Heodo","olgaperezporro.com","40.115.116.248","8075","IE"
"2023-03-14 19:03:43","https://demo.omnitech.co.ug/connect/","offline","malware_download","250255|7710|geofenced|Gozi|ISFB|ITA|redir-302|Ursnif","demo.omnitech.co.ug","51.124.91.155","8075","NL"
"2023-03-14 19:03:28","https://demo.omnitech.co.ug/agenzia/","offline","malware_download","250255|7710|geofenced|Gozi|ISFB|ITA|redir-302|Ursnif","demo.omnitech.co.ug","51.124.91.155","8075","NL"
"2023-03-14 19:00:43","https://demo.omnitech.co.ug/scarica/","offline","malware_download","250255|7710|geofenced|Gozi|ISFB|ITA|redir-302|Ursnif","demo.omnitech.co.ug","51.124.91.155","8075","NL"
"2023-03-12 17:04:33","http://20.7.14.99/bug/dll_nostartup","offline","malware_download","","20.7.14.99","20.7.14.99","8075","US"
"2023-03-12 17:04:05","http://20.239.163.237/new/sysnew.arm","offline","malware_download","ddos|ddos bot|Mirai","20.239.163.237","20.239.163.237","8075","HK"
"2023-03-12 17:04:05","http://20.239.163.237/new/sysnew.arm6","offline","malware_download","ddos|ddos bot|Mirai","20.239.163.237","20.239.163.237","8075","HK"
"2023-03-12 17:04:05","http://20.239.163.237/new/sysnew.i486","offline","malware_download","ddos|ddos bot|Mirai","20.239.163.237","20.239.163.237","8075","HK"
"2023-03-12 17:04:05","http://20.239.163.237/new/sysnew.i686","offline","malware_download","ddos|ddos bot|Mirai","20.239.163.237","20.239.163.237","8075","HK"
"2023-03-12 17:04:05","http://20.239.163.237/new/sysnew.m68k","offline","malware_download","ddos|ddos bot|Mirai","20.239.163.237","20.239.163.237","8075","HK"
"2023-03-12 17:04:05","http://20.239.163.237/new/sysnew.sh4","offline","malware_download","ddos|ddos bot|Mirai","20.239.163.237","20.239.163.237","8075","HK"
"2023-03-12 17:04:05","http://20.239.163.237/new/sysnew.spc","offline","malware_download","ddos|ddos bot|Mirai","20.239.163.237","20.239.163.237","8075","HK"
"2023-03-12 17:04:05","http://20.239.163.237/new/sysnew.x86","offline","malware_download","ddos|ddos bot|Mirai","20.239.163.237","20.239.163.237","8075","HK"
"2023-03-12 17:04:05","http://20.239.163.237/new/sysnew.x86_64","offline","malware_download","ddos|ddos bot|Mirai","20.239.163.237","20.239.163.237","8075","HK"
"2023-03-12 17:04:04","http://20.239.163.237/new/sysnew.arm5","offline","malware_download","ddos|ddos bot|Mirai","20.239.163.237","20.239.163.237","8075","HK"
"2023-03-12 17:04:04","http://20.239.163.237/new/sysnew.mpsl","offline","malware_download","ddos|ddos bot|Mirai","20.239.163.237","20.239.163.237","8075","HK"
"2023-03-11 20:54:16","http://20.239.163.237/new/sysnew.mips","offline","malware_download","ddos|elf|mirai","20.239.163.237","20.239.163.237","8075","HK"
"2023-03-11 13:12:23","http://20.239.163.237/new/sysnew.arm7","offline","malware_download","elf|Mirai","20.239.163.237","20.239.163.237","8075","HK"
"2023-03-01 18:33:12","http://20.226.1.205/file/?/boot/","offline","malware_download","BRA|exe|geo|geofenced|zip","20.226.1.205","20.226.1.205","8075","BR"
"2023-03-01 15:55:28","https://bookkeepingagents.com/impresa/azienda.zip","offline","malware_download","agenziaentrate|gozi|isfb|ITA|pw-marzo2023|ursnif","bookkeepingagents.com","20.10.212.212","8075","US"
"2023-03-01 15:55:24","https://bookkeepingagents.com/impresa/contratto.zip","offline","malware_download","agenziaentrate|gozi|isfb|ITA|pw-marzo2023|ursnif","bookkeepingagents.com","20.10.212.212","8075","US"
"2023-03-01 15:55:24","https://bookkeepingagents.com/impresa/impresa.zip","offline","malware_download","agenziaentrate|gozi|isfb|ITA|pw-marzo2023|ursnif","bookkeepingagents.com","20.10.212.212","8075","US"
"2023-03-01 15:55:23","https://bookkeepingagents.com/impresa/Marzo.zip","offline","malware_download","agenziaentrate|gozi|isfb|ITA|pw-marzo2023|ursnif","bookkeepingagents.com","20.10.212.212","8075","US"
"2023-03-01 15:55:17","https://bookkeepingagents.com/impresa/Agenzia.zip","offline","malware_download","agenziaentrate|gozi|isfb|ITA|pw-marzo2023|ursnif","bookkeepingagents.com","20.10.212.212","8075","US"
"2023-03-01 15:55:17","https://bookkeepingagents.com/impresa/AgenziaEntrate.zip","offline","malware_download","agenziaentrate|gozi|isfb|ITA|pw-marzo2023|ursnif","bookkeepingagents.com","20.10.212.212","8075","US"
"2023-03-01 15:55:17","https://bookkeepingagents.com/impresa/Agenzia_Entrate.zip","offline","malware_download","agenziaentrate|gozi|isfb|ITA|pw-marzo2023|ursnif","bookkeepingagents.com","20.10.212.212","8075","US"
"2023-03-01 15:55:17","https://bookkeepingagents.com/impresa/cliente.zip","offline","malware_download","agenziaentrate|gozi|isfb|ITA|pw-marzo2023|ursnif","bookkeepingagents.com","20.10.212.212","8075","US"
"2023-03-01 15:55:17","https://bookkeepingagents.com/impresa/Direzione.zip","offline","malware_download","agenziaentrate|gozi|isfb|ITA|pw-marzo2023|ursnif","bookkeepingagents.com","20.10.212.212","8075","US"
"2023-03-01 15:55:17","https://bookkeepingagents.com/impresa/documenti.zip","offline","malware_download","agenziaentrate|gozi|isfb|ITA|pw-marzo2023|ursnif","bookkeepingagents.com","20.10.212.212","8075","US"
"2023-02-01 06:20:07","http://172.174.176.153/server/NjRat.txt","offline","malware_download","","172.174.176.153","172.174.176.153","8075","US"
"2023-02-01 06:20:06","http://172.174.176.153/dll/hiden.ppa","offline","malware_download","","172.174.176.153","172.174.176.153","8075","US"
"2023-02-01 06:20:06","http://172.174.176.153/dll/vbs_to_js.ppam","offline","malware_download","","172.174.176.153","172.174.176.153","8075","US"
"2023-01-31 13:38:10","http://20.151.163.33/site/att.txt","offline","malware_download","","20.151.163.33","20.151.163.33","8075","CA"
"2023-01-31 13:38:09","http://20.151.163.33/apg.hta","offline","malware_download","","20.151.163.33","20.151.163.33","8075","CA"
"2023-01-24 16:02:10","http://20.206.153.191/file/?/boot/","offline","malware_download","banker|banload|BRA|geo ","20.206.153.191","20.206.153.191","8075","BR"
"2023-01-23 16:22:26","http://104.208.72.2/SnOoPy.sh","offline","malware_download","|script","104.208.72.2","104.208.72.2","8075","HK"
"2023-01-20 19:30:06","http://172.174.176.153/dll/Dll.ppam","offline","malware_download","","172.174.176.153","172.174.176.153","8075","US"
"2023-01-15 14:11:11","http://20.253.174.196/file2/file2.exe","offline","malware_download","AgentTesla|exe","20.253.174.196","20.253.174.196","8075","US"
"2023-01-04 14:40:12","http://172.174.176.153/dll/NoStartUp.ppam","offline","malware_download","","172.174.176.153","172.174.176.153","8075","US"
"2023-01-04 14:40:12","http://172.174.176.153/rump/Rump.xls","offline","malware_download","","172.174.176.153","172.174.176.153","8075","US"
"2023-01-03 17:05:40","http://20.69.97.31/beacon.bin","offline","malware_download","1580103824|Beacon|Cobalt Strike|CobaltStrike|exe","20.69.97.31","20.69.97.31","8075","US"
"2022-12-23 18:25:30","https://agrofulltec.com/ENU.php","offline","malware_download","BB11|ISO|Qakbot|Qbot|Quakbot|TR|U22|zip","agrofulltec.com","52.183.250.60","8075","US"
"2022-12-22 19:53:12","http://drzaklin.com/TO.php","offline","malware_download","B1|BB11|ISO|Qakbot|Qbot|Quakbot|TR|U22|zip","drzaklin.com","13.68.139.112","8075","US"
"2022-12-19 19:08:05","http://4.204.233.44/dll/vbs_to_js.ppam","offline","malware_download","opendir","4.204.233.44","4.204.233.44","8075","CA"
"2022-12-19 19:08:04","http://4.204.233.44/dll/dll.txt","offline","malware_download","opendir","4.204.233.44","4.204.233.44","8075","CA"
"2022-12-17 08:05:35","http://20.127.168.10/assets/Updater.exe","offline","malware_download","exe","20.127.168.10","20.127.168.10","8075","US"
"2022-12-15 16:18:41","https://noaacademy.ro/taal/index.php","offline","malware_download","BB10|E17|ISO|qakbot|qbot|quakbot|TR|zip","noaacademy.ro","52.157.237.253","8075","NL"
"2022-12-15 01:04:04","http://20.127.168.10/assets/loader.exe","offline","malware_download","32|exe|RedLineStealer","20.127.168.10","20.127.168.10","8075","US"
"2022-12-14 20:11:29","https://noaacademy.ro/ro/index.php","offline","malware_download","BB10|ISO|nt005|qakbot|qbot|quakbot|TR|zip","noaacademy.ro","52.157.237.253","8075","NL"
"2022-12-14 20:11:28","https://noagroup.ro/lihi/index.php","offline","malware_download","BB10|ISO|nt005|qakbot|qbot|quakbot|TR|zip","noagroup.ro","52.157.237.253","8075","NL"
"2022-12-14 09:13:10","http://20.127.168.10/assets/Updeter.exe","offline","malware_download","AsyncRAT|CoinMiner|exe","20.127.168.10","20.127.168.10","8075","US"
"2022-12-06 17:56:10","https://tuvrheinlandgroup-my.sharepoint.com/personal/xiacla_tuv_group/Documents/Desktop/4.%20Confirmation%20form%20(Rev.%202022-09-09)%20.doc","offline","malware_download","doc","tuvrheinlandgroup-my.sharepoint.com","52.107.225.1","8075","DE"
"2022-12-06 17:56:10","https://tuvrheinlandgroup-my.sharepoint.com/personal/xiacla_tuv_group/Documents/Desktop/4.%20Confirmation%20form%20(Rev.%202022-09-09)%20.doc","offline","malware_download","doc","tuvrheinlandgroup-my.sharepoint.com","52.107.243.196","8075","DE"
"2022-12-06 17:56:10","https://tuvrheinlandgroup-my.sharepoint.com/personal/xiacla_tuv_group/Documents/Desktop/4.%20Confirmation%20form%20(Rev.%202022-09-09)%20.doc","offline","malware_download","doc","tuvrheinlandgroup-my.sharepoint.com","52.107.243.80","8075","DE"
"2022-12-06 17:56:10","https://tuvrheinlandgroup-my.sharepoint.com/personal/xiacla_tuv_group/Documents/Desktop/4.%20Confirmation%20form%20(Rev.%202022-09-09)%20.doc","offline","malware_download","doc","tuvrheinlandgroup-my.sharepoint.com","52.107.243.81","8075","DE"
"2022-12-06 17:56:10","https://tuvrheinlandgroup-my.sharepoint.com/personal/xiacla_tuv_group/Documents/Desktop/4.%20Confirmation%20form%20(Rev.%202022-09-09)%20.doc","offline","malware_download","doc","tuvrheinlandgroup-my.sharepoint.com","52.107.243.85","8075","DE"
"2022-12-06 17:56:10","https://tuvrheinlandgroup-my.sharepoint.com/personal/xiacla_tuv_group/Documents/Desktop/4.%20Confirmation%20form%20(Rev.%202022-09-09)%20.doc","offline","malware_download","doc","tuvrheinlandgroup-my.sharepoint.com","52.107.243.88","8075","DE"
"2022-12-06 17:56:10","https://tuvrheinlandgroup-my.sharepoint.com/personal/xiacla_tuv_group/Documents/Desktop/4.%20Confirmation%20form%20(Rev.%202022-09-09)%20.doc","offline","malware_download","doc","tuvrheinlandgroup-my.sharepoint.com","52.107.243.94","8075","DE"
"2022-12-06 17:56:10","https://tuvrheinlandgroup-my.sharepoint.com/personal/xiacla_tuv_group/Documents/Desktop/4.%20Confirmation%20form%20(Rev.%202022-09-09)%20.doc","offline","malware_download","doc","tuvrheinlandgroup-my.sharepoint.com","52.107.243.95","8075","DE"
"2022-12-05 18:34:59","https://impeccablepublishingng.com/iqns/index.php?QBOT.zip","offline","malware_download","BB09|N54|qakbot|qbot|quakbot|TR|VHD|zip","impeccablepublishingng.com","102.37.125.193","8075","ZA"
"2022-11-28 14:27:03","http://20.238.8.87/Online/dll.ppam","offline","malware_download","","20.238.8.87","20.238.8.87","8075","IE"
"2022-11-28 14:27:03","http://20.238.8.87/Online/online.txt","offline","malware_download","","20.238.8.87","20.238.8.87","8075","IE"
"2022-11-28 14:27:03","http://20.238.8.87/Online/vbwin","offline","malware_download","","20.238.8.87","20.238.8.87","8075","IE"
"2022-11-28 13:41:11","http://20.238.8.87/Online/Rump.xls","offline","malware_download","","20.238.8.87","20.238.8.87","8075","IE"
"2022-11-25 09:10:16","http://104.208.69.168/phantom.sh","offline","malware_download","|ascii","104.208.69.168","104.208.69.168","8075","HK"
"2022-11-24 09:04:04","http://13.90.128.253/wp-content/overthinker.exe","offline","malware_download","32|exe|Lucifer","13.90.128.253","13.90.128.253","8075","US"
"2022-11-24 06:46:04","http://13.90.128.253/wp-content/cvshosts.exe","offline","malware_download","32|ArkeiStealer|exe","13.90.128.253","13.90.128.253","8075","US"
"2022-11-24 04:24:04","http://13.90.128.253/wp-content/1877.exe","offline","malware_download","32|exe|QuasarRAT","13.90.128.253","13.90.128.253","8075","US"
"2022-11-19 07:20:50","http://20.164.200.118/Fsociety/server/config.ini","offline","malware_download","ascii|encoded|opendir","20.164.200.118","20.164.200.118","8075","ZA"
"2022-11-19 07:14:05","http://20.164.200.118/Fsociety/server/key.ini","offline","malware_download","ascii|encoded|opendir","20.164.200.118","20.164.200.118","8075","ZA"
"2022-11-18 23:03:20","http://52.187.50.165/new.hta","offline","malware_download","","52.187.50.165","52.187.50.165","8075","SG"
"2022-11-18 05:39:06","http://4.229.235.23:222/1.bat","offline","malware_download","AsyncRAT|exe","4.229.235.23","4.229.235.23","8075","CA"
"2022-11-18 05:39:06","http://4.229.235.23:222/kapo.exe","offline","malware_download","AsyncRAT|exe","4.229.235.23","4.229.235.23","8075","CA"
"2022-11-18 05:39:06","http://4.229.235.23:222/R%e2%80%ae%e2%80%ae%e2%80%ae%e2%80%aegpj.exe","offline","malware_download",".NET|AsyncRAT|exe|MSIL","4.229.235.23","4.229.235.23","8075","CA"
"2022-11-16 18:02:03","http://4.204.233.44/Dll/Dll.ppam","offline","malware_download","encrypted","4.204.233.44","4.204.233.44","8075","CA"
"2022-11-16 14:52:06","http://4.204.233.44/dll/NoStartUp.ppam","offline","malware_download","","4.204.233.44","4.204.233.44","8075","CA"
"2022-11-16 14:52:06","http://4.204.233.44/Rump/Rump.xls","offline","malware_download","","4.204.233.44","4.204.233.44","8075","CA"
"2022-11-07 11:32:05","http://20.121.23.97/msmpeng.exe","offline","malware_download","RemcosRAT","20.121.23.97","20.121.23.97","8075","US"
"2022-11-07 11:29:04","http://20.121.23.97/fdSQGBvHDg_msmpeng.js","offline","malware_download","","20.121.23.97","20.121.23.97","8075","US"
"2022-11-05 18:55:34","http://20.67.246.104/bins.sh","offline","malware_download","|script","20.67.246.104","20.67.246.104","8075","IE"
"2022-11-05 18:18:34","http://20.67.246.104/assailant.m68k","offline","malware_download","32|bashlite|elf|gafgyt|motorola","20.67.246.104","20.67.246.104","8075","IE"
"2022-11-05 18:18:34","http://20.67.246.104/assailant.x86","offline","malware_download","64|bashlite|elf|gafgyt","20.67.246.104","20.67.246.104","8075","IE"
"2022-11-05 18:17:33","http://20.67.246.104/assailant.arm4","offline","malware_download","32|arm|bashlite|elf|gafgyt","20.67.246.104","20.67.246.104","8075","IE"
"2022-11-05 18:17:33","http://20.67.246.104/assailant.i586","offline","malware_download","32|bashlite|elf|gafgyt|intel","20.67.246.104","20.67.246.104","8075","IE"
"2022-11-05 18:17:33","http://20.67.246.104/assailant.mips","offline","malware_download","32|bashlite|elf|gafgyt|mips","20.67.246.104","20.67.246.104","8075","IE"
"2022-11-05 18:16:34","http://20.67.246.104/assailant.arm5","offline","malware_download","32|arm|bashlite|elf|gafgyt","20.67.246.104","20.67.246.104","8075","IE"
"2022-11-04 07:47:05","http://20.106.255.48/rump/rump","offline","malware_download","ascii|encoded","20.106.255.48","20.106.255.48","8075","US"
"2022-11-04 07:47:04","http://20.106.255.48/dll/dll_nostartup.pdf","offline","malware_download","","20.106.255.48","20.106.255.48","8075","US"
"2022-11-03 11:49:07","http://52.187.50.165/site/att.txt","offline","malware_download","","52.187.50.165","52.187.50.165","8075","SG"
"2022-11-03 07:52:04","http://20.106.255.48/dll/lnk.pdf","offline","malware_download","opendir","20.106.255.48","20.106.255.48","8075","US"
"2022-11-03 07:52:04","http://20.106.255.48/dll/nostartup.pdf","offline","malware_download","opendir","20.106.255.48","20.106.255.48","8075","US"
"2022-11-03 07:51:06","http://20.106.255.48/dll/TESTING.txt","offline","malware_download","ascii|encoded|opendir","20.106.255.48","20.106.255.48","8075","US"
"2022-11-02 23:47:40","https://ihinteriors.com/dtx/qbot.zip","offline","malware_download","BB05|iso|qakbot|qbot|quakbot|TR|W19|zip","ihinteriors.com","40.123.214.195","8075","AE"
"2022-11-01 19:36:04","http://20.7.14.99/exe/dll/LMzPRYUi.dll","offline","malware_download","","20.7.14.99","20.7.14.99","8075","US"
"2022-10-31 16:15:20","https://tonygill.co.nz/uaaq/qakbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","tonygill.co.nz","20.193.64.18","8075","AU"
"2022-10-31 16:09:42","https://gyaseguros.mx/petl/qakbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","gyaseguros.mx","4.227.196.164","8075","US"
"2022-10-29 06:32:04","http://20.7.14.99/dll/dll_downloader.pdf","offline","malware_download","ascii|encoded|opendir","20.7.14.99","20.7.14.99","8075","US"
"2022-10-29 06:32:04","http://20.7.14.99/dll/dll_downloader_bkp.pdf","offline","malware_download","ascii|encoded|opendir","20.7.14.99","20.7.14.99","8075","US"
"2022-10-29 06:32:04","http://20.7.14.99/dll/dll_hiden.pdf","offline","malware_download","ascii|encoded|opendir","20.7.14.99","20.7.14.99","8075","US"
"2022-10-29 06:32:04","http://20.7.14.99/dll/dll_ink_bkp.pdf","offline","malware_download","ascii|encoded|opendir","20.7.14.99","20.7.14.99","8075","US"
"2022-10-29 06:32:04","http://20.7.14.99/dll/dll_nostartup.pdf","offline","malware_download","ascii|encoded|opendir","20.7.14.99","20.7.14.99","8075","US"
"2022-10-29 06:32:04","http://20.7.14.99/dll/TESTING.txt","offline","malware_download","ascii|encoded|opendir","20.7.14.99","20.7.14.99","8075","US"
"2022-10-25 23:00:14","https://unipackmexico.com.mx/tv/almbcuxicepo","offline","malware_download","BB04|iso|PG1|qakbot|qbot|quakbot|TR|zip","unipackmexico.com.mx","20.64.72.141","8075","US"
"2022-10-21 01:19:26","http://ifmanigeria.org/fa/soroedrp","offline","malware_download","BB04|iso|NH833|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-20 20:43:51","https://ifmanigeria.org/qse/pmeistdiamip","offline","malware_download","BB04|iso|NH833|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-17 17:32:06","http://20.163.210.231/Company.exe","offline","malware_download","exe|PripyatMiner","20.163.210.231","20.163.210.231","8075","US"
"2022-10-14 22:10:48","https://espajv.com/ie/aeraemvipl","offline","malware_download","BB02|FYN09|iso|qakbot|qbot|quakbot|TR|zip","espajv.com","20.119.8.25","8075","US"
"2022-10-14 22:10:20","https://envisioneeringinc.com/rrt/aotslvupte","offline","malware_download","BB02|FYN09|iso|qakbot|qbot|quakbot|TR|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-10-13 19:23:16","https://ifmanigeria.org/fa/alueatlnaqur","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 19:23:16","https://ifmanigeria.org/fa/maigiuqn","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 19:23:13","https://ifmanigeria.org/fa/slvseudpoat","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:44:48","https://ifmanigeria.org/fa/offerRumley","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:43:19","https://ifmanigeria.org/fa/offerVij","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:43:17","https://ifmanigeria.org/fa/poultvaculpas","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:43:17","https://ifmanigeria.org/fa/soroedrp","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:43:16","https://ifmanigeria.org/fa/offerMartin","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:43:15","https://ifmanigeria.org/fa/pechitnaaill","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:43:13","https://ifmanigeria.org/fa/atcausesitneebis","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:43:09","https://ifmanigeria.org/fa/eonliiml","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:43:04","https://ifmanigeria.org/fa/offerGoller","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:43:04","https://ifmanigeria.org/fa/offerMoreen","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:43:04","https://ifmanigeria.org/fa/orarmermpute","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:43:03","https://ifmanigeria.org/fa/offerUllrich","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:43:01","https://ifmanigeria.org/fa/dsecoati","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:43:00","https://ifmanigeria.org/fa/offerPope","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:55","https://ifmanigeria.org/fa/offerParcey","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:49","https://ifmanigeria.org/fa/umdtisrool","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:48","https://ifmanigeria.org/fa/polavttuemtu","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:46","https://ifmanigeria.org/fa/offerSilverfine","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:46","https://ifmanigeria.org/fa/offerTillman-Goodwin","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:45","https://ifmanigeria.org/fa/osgiiditsenms","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:42","https://ifmanigeria.org/fa/offerNarcisse","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:38","https://ifmanigeria.org/fa/offerHobby","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:37","https://ifmanigeria.org/fa/offerWoods","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:35","https://ifmanigeria.org/fa/offerAmaral","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:35","https://ifmanigeria.org/fa/offerMcconnell","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:33","https://ifmanigeria.org/fa/offerTapar","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:28","https://ifmanigeria.org/fa/nrraipecfefsedree","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:25","https://ifmanigeria.org/fa/iplamsaul","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:23","https://ifmanigeria.org/fa/teervo","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:23","https://ifmanigeria.org/fa/utueiqmsani","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:22","https://ifmanigeria.org/fa/isnetmo","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:21","https://ifmanigeria.org/fa/eqiut","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:20","https://ifmanigeria.org/fa/offerPawlak","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:18","https://ifmanigeria.org/fa/offerKotadiya","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:16","https://ifmanigeria.org/fa/offerStafford","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:13","https://ifmanigeria.org/fa/iihlncniniudt","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:13","https://ifmanigeria.org/fa/offerLevine","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:11","https://ifmanigeria.org/fa/nrolfoeibdidseeuprsr","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-13 15:42:11","https://ifmanigeria.org/fa/offerDavis","offline","malware_download","BB01|BNO87|iso|qakbot|qbot|quakbot|TR|zip","ifmanigeria.org","104.40.209.104","8075","NL"
"2022-10-10 18:20:28","https://impeccablepublishingng.com/ue/uaeccuexspscmtariu","offline","malware_download","BB|iso|qakbot|qbot|quakbot|TR|X353|X873|zip","impeccablepublishingng.com","102.37.125.193","8075","ZA"
"2022-10-10 18:20:26","https://impeccablepublishingng.com/ue/umatue","offline","malware_download","BB|iso|qakbot|qbot|quakbot|TR|X353|X873|zip","impeccablepublishingng.com","102.37.125.193","8075","ZA"
"2022-10-10 18:20:17","https://impeccablepublishingng.com/ue/ueiqtss","offline","malware_download","BB|iso|qakbot|qbot|quakbot|TR|X353|X873|zip","impeccablepublishingng.com","102.37.125.193","8075","ZA"
"2022-10-10 18:20:16","https://impeccablepublishingng.com/ue/seqrsensareortpaoiuuc","offline","malware_download","BB|iso|qakbot|qbot|quakbot|TR|X353|X873|zip","impeccablepublishingng.com","102.37.125.193","8075","ZA"
"2022-10-10 18:20:16","https://impeccablepublishingng.com/ue/stoaloerpsudlvo","offline","malware_download","BB|iso|qakbot|qbot|quakbot|TR|X353|X873|zip","impeccablepublishingng.com","102.37.125.193","8075","ZA"
"2022-10-03 16:47:17","https://enrol.ng/ss/emmriamrxeu","offline","malware_download","BB|qakbot|qbot|quakbot|R871|TR|zip","enrol.ng","102.37.125.193","8075","ZA"
"2022-10-03 08:55:04","http://84.222.94.73:44295/.i","offline","malware_download","Hajime","84.222.94.73","84.222.94.73","8075","GB"
"2022-10-01 17:18:02","http://51.140.255.32/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/nss3.dll","offline","malware_download","dll|RecordBreaker","51.140.255.32","51.140.255.32","8075","GB"
"2022-10-01 17:17:19","http://51.140.255.32/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/sqlite3.dll","offline","malware_download","dll|RecordBreaker","51.140.255.32","51.140.255.32","8075","GB"
"2022-10-01 17:16:24","http://51.140.255.32/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/mozglue.dll","offline","malware_download","dll|RecordBreaker","51.140.255.32","51.140.255.32","8075","GB"
"2022-10-01 17:15:40","http://51.140.255.32/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/freebl3.dll","offline","malware_download","dll|RecordBreaker","51.140.255.32","51.140.255.32","8075","GB"
"2022-10-01 17:15:25","http://51.140.255.32/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/msvcp140.dll","offline","malware_download","dll|RecordBreaker","51.140.255.32","51.140.255.32","8075","GB"
"2022-10-01 17:14:26","http://51.140.255.32/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/softokn3.dll","offline","malware_download","dll|RecordBreaker","51.140.255.32","51.140.255.32","8075","GB"
"2022-10-01 17:13:55","http://51.140.255.32/aN7jD0qO6kT5bK5bQ4eR8fE1xP7hL2vK/vcruntime140.dll","offline","malware_download","dll|RecordBreaker","51.140.255.32","51.140.255.32","8075","GB"
"2022-09-30 20:52:28","https://envisioneeringinc.com/ee/oumqiaiqsllu","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:28","https://envisioneeringinc.com/ee/ueqtatie","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:27","https://envisioneeringinc.com/ee/aocmsilacuuaestesm","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:27","https://envisioneeringinc.com/ee/nrfebdeipsera","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:24","https://envisioneeringinc.com/ee/lltiotmavisese","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:24","https://envisioneeringinc.com/ee/sttee","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:24","https://envisioneeringinc.com/ee/tirutpcoru","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:24","https://envisioneeringinc.com/ee/vmtutdploaaceti","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:24","https://envisioneeringinc.com/ee/voatuislpuq","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:22","https://envisioneeringinc.com/ee/alduuqinluasmb","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:20","https://envisioneeringinc.com/ee/sucaietmnamcniu","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:20","https://envisioneeringinc.com/ee/tqueo","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:19","https://envisioneeringinc.com/ee/sinmmsiupo","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:17","https://envisioneeringinc.com/ee/oeltbrea","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:16","https://envisioneeringinc.com/ee/loesplerunsdee","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:16","https://envisioneeringinc.com/ee/mipnaerai","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:16","https://envisioneeringinc.com/ee/suuqtaa","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:16","https://envisioneeringinc.com/ee/tuaotamt","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:15","https://envisioneeringinc.com/ee/ictdtae","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:15","https://envisioneeringinc.com/ee/loudeendsor","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:15","https://envisioneeringinc.com/ee/lulovradtipoosbus","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:14","https://envisioneeringinc.com/ee/utppoleucaltav","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:13","https://envisioneeringinc.com/ee/crusetodleeldmo","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:12","https://envisioneeringinc.com/ee/aiutisipocsuoflvtbif","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:12","https://envisioneeringinc.com/ee/ilvpttocdatuuibas","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:12","https://envisioneeringinc.com/ee/nonad","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:12","https://envisioneeringinc.com/ee/odnvtopnerni","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:12","https://envisioneeringinc.com/ee/oeitnsnm","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:12","https://envisioneeringinc.com/ee/rnteustdee","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:11","https://envisioneeringinc.com/ee/eeonhieepdsdrtrlroer","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:11","https://envisioneeringinc.com/ee/ielauiprtvsopasttipce","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-30 20:52:11","https://envisioneeringinc.com/ee/uetvbuaoapltsi","offline","malware_download","BB|qakbot|qbot|quakbot|TR|U492|zip","envisioneeringinc.com","20.241.204.130","8075","US"
"2022-09-26 14:43:05","http://20.7.14.99/dll/dll_ink.pdf","offline","malware_download","","20.7.14.99","20.7.14.99","8075","US"
"2022-09-26 14:43:05","http://20.7.14.99/rump/rump","offline","malware_download","","20.7.14.99","20.7.14.99","8075","US"
"2022-09-26 09:04:34","http://20.20.20.31:49977/Mozi.m","offline","malware_download","Mozi","20.20.20.31","20.20.20.31","8075","US"
"2022-09-24 10:35:07","http://20.234.231.114/qklvqiawww.xgk","offline","malware_download","32|exe","20.234.231.114","20.234.231.114","8075","NL"
"2022-09-23 09:12:04","http://85.210.231.27:58494/i","offline","malware_download","32-bit|ARM|ELF|Mirai|Mozi","85.210.231.27","85.210.231.27","8075","GB"
"2022-09-23 08:48:05","http://85.210.231.27:58494/bin.sh","offline","malware_download","32-bit|ARM|ELF|Mirai|Mozi","85.210.231.27","85.210.231.27","8075","GB"
"2022-09-22 21:25:06","https://agrotecnologia-ec.com/uo/trsucks","offline","malware_download","bb|encrypted|iso|qakbot|qbot|quakbot|tr|zip","agrotecnologia-ec.com","13.65.148.162","8075","US"
"2022-09-22 21:22:49","https://impeccablepublishingng.com/als/trsucks","offline","malware_download","bb|encrypted|iso|qakbot|qbot|quakbot|tr|zip","impeccablepublishingng.com","102.37.125.193","8075","ZA"
"2022-09-22 17:28:12","https://impeccablepublishingng.com/als/ortasmlvudolpou","offline","malware_download","BB|K317|qakbot|qbot|quakbot|R571|TR|zip","impeccablepublishingng.com","102.37.125.193","8075","ZA"
"2022-09-22 08:42:34","http://40.117.139.198/7905_UXTnteXNQi131.bin","offline","malware_download","encrypted|GuLoader","40.117.139.198","40.117.139.198","8075","US"
"2022-09-21 22:59:04","http://85.210.231.27:44886/bin.sh","offline","malware_download","32-bit|ARM|ELF|Mirai|Mozi","85.210.231.27","85.210.231.27","8075","GB"
"2022-09-21 21:21:04","http://85.210.231.27:44886/i","offline","malware_download","32-bit|ARM|ELF|Mirai|Mozi","85.210.231.27","85.210.231.27","8075","GB"
"2022-09-19 08:54:05","http://20.13.18.40/doc/paint.exe","offline","malware_download","exe|ModiLoader|opendir","20.13.18.40","20.13.18.40","8075","NL"
"2022-09-18 20:43:06","http://84.223.33.226:28142/.i","offline","malware_download","Hajime","84.223.33.226","84.223.33.226","8075","GB"
"2022-09-15 11:34:10","http://20.168.7.145/20.zip","offline","malware_download","Mekotio","20.168.7.145","20.168.7.145","8075","US"
"2022-09-15 11:34:10","http://20.168.7.145/867.php","offline","malware_download","Mekotio","20.168.7.145","20.168.7.145","8075","US"
"2022-09-15 11:01:34","http://paste.c-net.org/RefuseFreeze","offline","malware_download","","paste.c-net.org","20.100.184.134","8075","NO"
"2022-09-12 07:30:05","http://20.7.14.99/bug/dll_nostartup.mp4","offline","malware_download","base64|lokibot","20.7.14.99","20.7.14.99","8075","US"
"2022-09-10 06:49:04","http://85.210.231.27:33734/i","offline","malware_download","32-bit|ARM|ELF|Mirai|Mozi","85.210.231.27","85.210.231.27","8075","GB"
"2022-09-10 06:07:05","http://85.210.231.27:33734/bin.sh","offline","malware_download","32-bit|ARM|ELF|Mirai|Mozi","85.210.231.27","85.210.231.27","8075","GB"
"2022-09-10 01:38:04","http://52.231.30.204/nwww/nww.arm5","offline","malware_download","32|arm|elf|mirai","52.231.30.204","52.231.30.204","8075","KR"
"2022-09-10 01:37:05","http://52.231.30.204/nwww/nww.arm6","offline","malware_download","32|arm|elf|mirai","52.231.30.204","52.231.30.204","8075","KR"
"2022-09-10 01:37:05","http://52.231.30.204/nwww/nww.ppc","offline","malware_download","32|elf|mirai|powerpc","52.231.30.204","52.231.30.204","8075","KR"
"2022-09-10 01:20:07","http://52.231.30.204/nw.sh","offline","malware_download","shellscript","52.231.30.204","52.231.30.204","8075","KR"
"2022-09-09 15:15:06","http://52.231.30.204/nwww/nww.mips","offline","malware_download","mirai","52.231.30.204","52.231.30.204","8075","KR"
"2022-09-09 15:15:05","http://52.231.30.204/nwww/nww.arm","offline","malware_download","mirai","52.231.30.204","52.231.30.204","8075","KR"
"2022-09-09 15:15:05","http://52.231.30.204/nwww/nww.arm7","offline","malware_download","mirai","52.231.30.204","52.231.30.204","8075","KR"
"2022-09-09 15:15:05","http://52.231.30.204/nwww/nww.mpsl","offline","malware_download","mirai","52.231.30.204","52.231.30.204","8075","KR"
"2022-09-09 15:15:05","http://52.231.30.204/nwww/nww.x86","offline","malware_download","mirai","52.231.30.204","52.231.30.204","8075","KR"
"2022-09-09 15:15:04","http://52.231.30.204/nwww/nww.i686","offline","malware_download","mirai","52.231.30.204","52.231.30.204","8075","KR"
"2022-09-09 12:42:06","http://52.231.30.204/76d32be0.sh","offline","malware_download","|ascii","52.231.30.204","52.231.30.204","8075","KR"
"2022-09-06 20:58:04","http://85.210.225.202:33734/i","offline","malware_download","32-bit|ARM|ELF|Mirai|Mozi","85.210.225.202","85.210.225.202","8075","GB"
"2022-09-06 18:26:04","http://85.210.225.202:33734/bin.sh","offline","malware_download","32-bit|ARM|ELF|Mirai|Mozi","85.210.225.202","85.210.225.202","8075","GB"
"2022-09-05 14:22:04","http://85.210.225.202:38111/Mozi.m","offline","malware_download","elf|Mirai|Mozi","85.210.225.202","85.210.225.202","8075","GB"
"2022-09-05 06:57:05","http://20.7.14.99/server/venom.txt","offline","malware_download","","20.7.14.99","20.7.14.99","8075","US"
"2022-09-03 19:25:05","http://85.210.225.202:38111/i","offline","malware_download","32-bit|ARM|ELF|Mirai|Mozi","85.210.225.202","85.210.225.202","8075","GB"
"2022-09-03 19:01:06","http://85.210.225.202:38111/bin.sh","offline","malware_download","32-bit|ARM|ELF|Mirai|Mozi","85.210.225.202","85.210.225.202","8075","GB"
"2022-08-31 19:16:04","http://85.210.225.116:38111/i","offline","malware_download","32-bit|ARM|ELF|Mirai|Mozi","85.210.225.116","85.210.225.116","8075","GB"
"2022-08-31 18:24:05","http://85.210.225.116:38111/bin.sh","offline","malware_download","32-bit|ARM|ELF|Mirai|Mozi","85.210.225.116","85.210.225.116","8075","GB"
"2022-08-31 14:00:06","https://ifb-eb-gxchf2gfcad8crac.z01.azurefd.net/?utm_content=TOO2mz3","offline","malware_download","","ifb-eb-gxchf2gfcad8crac.z01.azurefd.net","13.107.246.45","8075","US"
"2022-08-31 08:56:05","http://20.7.14.99/server/dll.txt","offline","malware_download","ascii|encoded|opendir","20.7.14.99","20.7.14.99","8075","US"
"2022-08-31 08:56:05","http://20.7.14.99/server/dll2.txt","offline","malware_download","ascii|encoded|opendir","20.7.14.99","20.7.14.99","8075","US"
"2022-08-31 08:56:05","http://20.7.14.99/server/melissa.txt","offline","malware_download","ascii|encoded|opendir","20.7.14.99","20.7.14.99","8075","US"
"2022-08-31 08:56:05","http://20.7.14.99/server/njrat.mp4","offline","malware_download","ascii|encoded|opendir","20.7.14.99","20.7.14.99","8075","US"
"2022-08-31 08:56:05","http://20.7.14.99/server/RUMPE.txt","offline","malware_download","ascii|encoded|opendir","20.7.14.99","20.7.14.99","8075","US"
"2022-08-31 08:56:05","http://20.7.14.99/server/RUMPE2.txt","offline","malware_download","ascii|encoded|opendir","20.7.14.99","20.7.14.99","8075","US"
"2022-08-31 08:56:05","http://20.7.14.99/server/Server.exe","offline","malware_download","exe|njrat|opendir","20.7.14.99","20.7.14.99","8075","US"
"2022-08-31 08:56:03","http://20.7.14.99/server/TesteOk.txt","offline","malware_download","ascii|encoded|opendir","20.7.14.99","20.7.14.99","8075","US"
"2022-08-30 13:07:05","http://20.187.79.179/where/botx.arm","offline","malware_download","elf|Mirai","20.187.79.179","20.187.79.179","8075","HK"
"2022-08-30 13:07:05","http://20.187.79.179/where/botx.arm5","offline","malware_download","elf|Mirai","20.187.79.179","20.187.79.179","8075","HK"
"2022-08-30 13:07:05","http://20.187.79.179/where/botx.arm6","offline","malware_download","elf|Mirai","20.187.79.179","20.187.79.179","8075","HK"
"2022-08-30 13:07:05","http://20.187.79.179/where/botx.arm7","offline","malware_download","elf|Mirai","20.187.79.179","20.187.79.179","8075","HK"
"2022-08-30 13:07:05","http://20.187.79.179/where/botx.m68k","offline","malware_download","elf|Mirai","20.187.79.179","20.187.79.179","8075","HK"
"2022-08-30 13:07:05","http://20.187.79.179/where/botx.mips","offline","malware_download","elf|Mirai","20.187.79.179","20.187.79.179","8075","HK"
"2022-08-30 13:07:05","http://20.187.79.179/where/botx.mpsl","offline","malware_download","elf|Mirai","20.187.79.179","20.187.79.179","8075","HK"
"2022-08-30 13:07:05","http://20.187.79.179/where/botx.ppc","offline","malware_download","elf|Mirai","20.187.79.179","20.187.79.179","8075","HK"
"2022-08-30 13:07:05","http://20.187.79.179/where/botx.sh4","offline","malware_download","elf|Mirai","20.187.79.179","20.187.79.179","8075","HK"
"2022-08-30 13:07:05","http://20.187.79.179/where/botx.spc","offline","malware_download","elf|Mirai","20.187.79.179","20.187.79.179","8075","HK"
"2022-08-30 13:07:05","http://20.187.79.179/where/botx.x86","offline","malware_download","elf|Mirai","20.187.79.179","20.187.79.179","8075","HK"
"2022-08-26 11:49:08","https://www.sccm.org/Files/setup.zip","offline","malware_download","is|password|redline|setup112233","www.sccm.org","20.221.197.15","8075","US"
"2022-08-25 19:23:33","http://40.117.139.198/7905_LLnCG86.bin","offline","malware_download","encrypted|GuLoader","40.117.139.198","40.117.139.198","8075","US"
"2022-08-25 19:23:33","http://40.117.139.198/Backup_AKnHeVfTm115.bin","offline","malware_download","encrypted|GuLoader","40.117.139.198","40.117.139.198","8075","US"
"2022-08-24 15:24:05","http://20.7.43.70/BkRCY.exe","offline","malware_download","exe|RAT|RemcosRAT","20.7.43.70","20.7.43.70","8075","US"
"2022-08-21 10:13:04","http://20.117.177.147/a-r.m-6.Sakura","offline","malware_download","mirai","20.117.177.147","20.117.177.147","8075","GB"
"2022-08-21 10:13:04","http://20.117.177.147/m-i.p-s.Sakura","offline","malware_download","mirai","20.117.177.147","20.117.177.147","8075","GB"
"2022-08-21 10:13:04","http://20.117.177.147/m-p.s-l.Sakura","offline","malware_download","mirai","20.117.177.147","20.117.177.147","8075","GB"
"2022-08-21 10:13:04","http://20.117.177.147/x-8.6-.Sakura","offline","malware_download","mirai","20.117.177.147","20.117.177.147","8075","GB"
"2022-08-21 06:29:04","http://20.117.177.147/Sakura.sh","offline","malware_download","|script","20.117.177.147","20.117.177.147","8075","GB"
"2022-08-18 23:37:05","http://20.25.153.134//armv6l","offline","malware_download","mirai","20.25.153.134","20.25.153.134","8075","US"
"2022-08-18 23:37:04","http://20.25.153.134//i586","offline","malware_download","mirai","20.25.153.134","20.25.153.134","8075","US"
"2022-08-18 23:37:04","http://20.25.153.134//mips","offline","malware_download","mirai","20.25.153.134","20.25.153.134","8075","US"
"2022-08-18 23:37:04","http://20.25.153.134//mipsel","offline","malware_download","mirai","20.25.153.134","20.25.153.134","8075","US"
"2022-08-18 19:48:33","http://20.25.153.134/armv4l","offline","malware_download","32|arm|bashlite|elf|gafgyt","20.25.153.134","20.25.153.134","8075","US"
"2022-08-18 19:48:33","http://20.25.153.134/armv6l","offline","malware_download","32|arm|bashlite|elf|gafgyt","20.25.153.134","20.25.153.134","8075","US"
"2022-08-18 19:48:33","http://20.25.153.134/i586","offline","malware_download","32|bashlite|elf|gafgyt|intel","20.25.153.134","20.25.153.134","8075","US"
"2022-08-18 19:48:33","http://20.25.153.134/mips","offline","malware_download","32|bashlite|elf|gafgyt|mips","20.25.153.134","20.25.153.134","8075","US"
"2022-08-18 19:48:33","http://20.25.153.134/powerpc","offline","malware_download","32|bashlite|elf|gafgyt|powerpc","20.25.153.134","20.25.153.134","8075","US"
"2022-08-18 19:47:34","http://20.25.153.134/m68k","offline","malware_download","32|bashlite|elf|gafgyt|motorola","20.25.153.134","20.25.153.134","8075","US"
"2022-08-18 19:32:33","http://20.25.153.134/armv5l","offline","malware_download","32|arm|bashlite|elf|gafgyt","20.25.153.134","20.25.153.134","8075","US"
"2022-08-18 19:32:33","http://20.25.153.134/mipsel","offline","malware_download","32|bashlite|elf|gafgyt|mips","20.25.153.134","20.25.153.134","8075","US"
"2022-08-18 19:32:33","http://20.25.153.134/sh4","offline","malware_download","32|bashlite|elf|gafgyt|renesas","20.25.153.134","20.25.153.134","8075","US"
"2022-08-18 19:30:34","http://20.25.153.134/i686","offline","malware_download","32|bashlite|elf|gafgyt|intel","20.25.153.134","20.25.153.134","8075","US"
"2022-08-18 19:30:34","http://20.25.153.134/sparc","offline","malware_download","32|bashlite|elf|gafgyt|sparc","20.25.153.134","20.25.153.134","8075","US"
"2022-08-18 19:30:34","http://20.25.153.134/x86","offline","malware_download","64|bashlite|elf|gafgyt","20.25.153.134","20.25.153.134","8075","US"
"2022-08-18 18:55:10","http://20.25.153.134/cayosinbins.sh","offline","malware_download","|script","20.25.153.134","20.25.153.134","8075","US"
"2022-08-17 06:31:33","http://20.249.86.18/bins.sh","offline","malware_download","|script","20.249.86.18","20.249.86.18","8075","KR"
"2022-08-12 20:58:06","http://20.226.5.153//i586","offline","malware_download","mirai","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 20:58:06","http://20.226.5.153//mipsel","offline","malware_download","mirai","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 20:58:05","http://20.226.5.153//armv6l","offline","malware_download","mirai","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 20:58:05","http://20.226.5.153//mips","offline","malware_download","mirai","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 16:28:33","http://20.226.5.153/armv5l","offline","malware_download","32|arm|bashlite|elf|gafgyt","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 16:28:33","http://20.226.5.153/armv6l","offline","malware_download","32|arm|bashlite|elf|gafgyt","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 16:28:33","http://20.226.5.153/i586","offline","malware_download","32|bashlite|elf|gafgyt|intel","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 16:27:33","http://20.226.5.153/armv4l","offline","malware_download","32|arm|bashlite|elf|gafgyt","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 16:27:33","http://20.226.5.153/i686","offline","malware_download","32|bashlite|elf|gafgyt|intel","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 16:27:33","http://20.226.5.153/m68k","offline","malware_download","32|bashlite|elf|gafgyt|motorola","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 16:27:33","http://20.226.5.153/mipsel","offline","malware_download","32|bashlite|elf|gafgyt|mips","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 16:27:33","http://20.226.5.153/powerpc","offline","malware_download","32|bashlite|elf|gafgyt|powerpc","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 16:27:33","http://20.226.5.153/sh4","offline","malware_download","32|bashlite|elf|gafgyt|renesas","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 16:27:33","http://20.226.5.153/x86","offline","malware_download","64|bashlite|elf|gafgyt","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 16:26:34","http://20.226.5.153/armv7l","offline","malware_download","32|arm|bashlite|elf|gafgyt","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 16:26:34","http://20.226.5.153/mips","offline","malware_download","32|bashlite|elf|gafgyt|mips","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 16:26:34","http://20.226.5.153/sparc","offline","malware_download","32|bashlite|elf|gafgyt|sparc","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-12 16:26:05","http://20.226.5.153/cayosinbins.sh","offline","malware_download","|script","20.226.5.153","20.226.5.153","8075","BR"
"2022-08-06 03:50:09","http://84.223.23.204:42757/Mozi.m","offline","malware_download","elf|Mirai|Mozi","84.223.23.204","84.223.23.204","8075","GB"
"2022-08-04 14:56:06","http://20.48.118.182/12.png","offline","malware_download","Formbook|LLDLoader","20.48.118.182","20.48.118.182","8075","JP"
"2022-08-02 17:55:05","http://40.65.123.35/clean.js","offline","malware_download","ascii|js","40.65.123.35","40.65.123.35","8075","US"
"2022-08-02 17:54:04","http://40.65.123.35/clean.hta","offline","malware_download","ascii|hta","40.65.123.35","40.65.123.35","8075","US"
"2022-08-02 11:35:07","http://20.48.118.182/mon_Mmrlquuz.bmp","offline","malware_download","encrypted|RAT|RemcosRAT","20.48.118.182","20.48.118.182","8075","JP"
"2022-07-29 09:11:05","https://wuvyish.com/wp-content/D9/","offline","malware_download","emotet","wuvyish.com","104.210.38.149","8075","US"
"2022-07-29 09:11:05","https://wuvyish.com/wp-content/D9/","offline","malware_download","emotet","wuvyish.com","40.112.243.19","8075","US"
"2022-07-28 11:58:06","http://102.37.220.234/htdocs/LqAST.exe","offline","malware_download","exe|StormKitty","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:51:04","http://40.65.123.35/trow.hta","offline","malware_download","ascii|hta","40.65.123.35","40.65.123.35","8075","US"
"2022-07-27 20:44:25","http://102.37.220.234/htdocs/aCGXA.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:25","http://102.37.220.234/htdocs/BmGjL.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:24","http://102.37.220.234/htdocs/cXDKE.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:24","http://102.37.220.234/htdocs/PjJtR.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:24","http://102.37.220.234/htdocs/qMHAo.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:23","http://102.37.220.234/htdocs/AxStJ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:20","http://102.37.220.234/htdocs/RwFrZ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:13","http://102.37.220.234/htdocs/JwLmE.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:10","http://102.37.220.234/htdocs/CjYrW.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:09","http://102.37.220.234/htdocs/gNCXQ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:06","http://102.37.220.234/htdocs/CjNaT.exe","offline","malware_download","exe|NanoCore|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:06","http://102.37.220.234/htdocs/CnBAH.exe","offline","malware_download","exe|NanoCore|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:06","http://102.37.220.234/htdocs/dZLBf.exe","offline","malware_download","AgentTesla|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:06","http://102.37.220.234/htdocs/FiATW.exe","offline","malware_download","exe|opendir|StormKitty","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:06","http://102.37.220.234/htdocs/gNRDa.exe","offline","malware_download","AgentTesla|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:06","http://102.37.220.234/htdocs/iZMXK.exe","offline","malware_download","exe|opendir|RemcosRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:06","http://102.37.220.234/htdocs/JnMmH.exe","offline","malware_download","AgentTesla|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:06","http://102.37.220.234/htdocs/NqHNP.exe","offline","malware_download","exe|MassLogger|opendir|StormKitty","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:06","http://102.37.220.234/htdocs/NxATQ.exe","offline","malware_download","exe|opendir|StormKitty","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:06","http://102.37.220.234/htdocs/rAQAg.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:06","http://102.37.220.234/htdocs/zHRMi.exe","offline","malware_download","AgentTesla|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:05","http://102.37.220.234/htdocs/XgKdC.exe","offline","malware_download","exe|MassLogger|opendir|StormKitty","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:04","http://102.37.220.234/htdocs/FzFJD.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:04","http://102.37.220.234/htdocs/kMQWL.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-27 20:44:04","http://102.37.220.234/htdocs/SoCJQ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:20:22","http://102.37.220.234/htdocs/yJMDp.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:37","http://102.37.220.234/htdocs/nTHQr.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:37","http://102.37.220.234/htdocs/qYNGc.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:37","http://102.37.220.234/htdocs/sHZTD.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:36","http://102.37.220.234/htdocs/aAENR.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:36","http://102.37.220.234/htdocs/CaDnM.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:36","http://102.37.220.234/htdocs/HaKJC.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:36","http://102.37.220.234/htdocs/nJFKK.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:36","http://102.37.220.234/htdocs/NnMbE.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:36","http://102.37.220.234/htdocs/qKHYm.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:35","http://102.37.220.234/htdocs/bFCRH.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:35","http://102.37.220.234/htdocs/ePSJy.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:35","http://102.37.220.234/htdocs/eWTPJ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:35","http://102.37.220.234/htdocs/iWGTR.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:35","http://102.37.220.234/htdocs/sRRLN.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:35","http://102.37.220.234/htdocs/wAGZF.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:35","http://102.37.220.234/htdocs/wLBML.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:35","http://102.37.220.234/htdocs/WsYQC.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:34","http://102.37.220.234/htdocs/aBXHr.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:34","http://102.37.220.234/htdocs/jCMPD.exe","offline","malware_download","exe|NanoCore|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:34","http://102.37.220.234/htdocs/jEDWg.exe","offline","malware_download","exe|opendir|SnakeKeylogger","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:34","http://102.37.220.234/htdocs/kHLSE.exe","offline","malware_download","exe|NanoCore|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:34","http://102.37.220.234/htdocs/wDWQz.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:34","http://102.37.220.234/htdocs/yHFJA.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:33","http://102.37.220.234/htdocs/rZLTY.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:33","http://102.37.220.234/htdocs/sWANw.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:33","http://102.37.220.234/htdocs/TxZcH.exe","offline","malware_download","exe|opendir|RemcosRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:32","http://102.37.220.234/htdocs/CqLeA.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:32","http://102.37.220.234/htdocs/MqGBZ.exe","offline","malware_download","AgentTesla|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:32","http://102.37.220.234/htdocs/rXSPq.exe","offline","malware_download","exe|NanoCore|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:32","http://102.37.220.234/htdocs/zLNGx.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:31","http://102.37.220.234/htdocs/cFRPD.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:31","http://102.37.220.234/htdocs/DwRTZ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:31","http://102.37.220.234/htdocs/qZRMP.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:31","http://102.37.220.234/htdocs/SwZiR.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:31","http://102.37.220.234/htdocs/ZxNDX.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:30","http://102.37.220.234/htdocs/LxBAK.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:30","http://102.37.220.234/htdocs/NqRHQ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:30","http://102.37.220.234/htdocs/oJGAM.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:30","http://102.37.220.234/htdocs/oKSCQ.exe","offline","malware_download","a310Logger|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:30","http://102.37.220.234/htdocs/rNAZK.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:30","http://102.37.220.234/htdocs/tGCPT.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:30","http://102.37.220.234/htdocs/yAPMM.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:30","http://102.37.220.234/htdocs/YgSyW.exe","offline","malware_download","AsyncRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:29","http://102.37.220.234/htdocs/MgYCD.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:29","http://102.37.220.234/htdocs/nBASi.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:29","http://102.37.220.234/htdocs/TpPsE.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:29","http://102.37.220.234/htdocs/zYPGb.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:28","http://102.37.220.234/htdocs/eFZDk.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:28","http://102.37.220.234/htdocs/FtBgW.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:28","http://102.37.220.234/htdocs/jHHCS.exe","offline","malware_download","exe|MassLogger|opendir|StormKitty","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:28","http://102.37.220.234/htdocs/MbJGW.exe","offline","malware_download","exe|opendir|QuasarRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:28","http://102.37.220.234/htdocs/NfReS.exe","offline","malware_download","exe|NanoCore|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:28","http://102.37.220.234/htdocs/PfKgX.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:28","http://102.37.220.234/htdocs/tCAJY.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/cJMRp.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/CyYMS.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/fBLPb.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/FkSyD.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/FsQeR.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/GoNWL.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/HaWyJ.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/LyBjX.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/MoTnC.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/oYTKL.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/pJLPy.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/QcRHN.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/rMEAS.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/WsNYB.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/yMSXY.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/YsEZJ.exe","offline","malware_download","exe|opendir|XFilesStealer","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/yTBEH.exe","offline","malware_download","AgentTesla|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:27","http://102.37.220.234/htdocs/zTALg.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:26","http://102.37.220.234/htdocs/bPTHa.exe","offline","malware_download","AveMariaRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:26","http://102.37.220.234/htdocs/CqPZX.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:26","http://102.37.220.234/htdocs/gDALZ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:26","http://102.37.220.234/htdocs/HgHJX.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:26","http://102.37.220.234/htdocs/HoKfE.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:26","http://102.37.220.234/htdocs/iATCd.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:26","http://102.37.220.234/htdocs/ToKEC.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:25","http://102.37.220.234/htdocs/FkMQA.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:25","http://102.37.220.234/htdocs/jHRLw.exe","offline","malware_download","a310Logger|exe|MassLogger|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:25","http://102.37.220.234/htdocs/KtPiA.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:25","http://102.37.220.234/htdocs/MpFzZ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:25","http://102.37.220.234/htdocs/tXBLk.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:24","http://102.37.220.234/htdocs/CwZFW.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:24","http://102.37.220.234/htdocs/iJWNB.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:24","http://102.37.220.234/htdocs/QoEpB.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:24","http://102.37.220.234/htdocs/wWLNq.exe","offline","malware_download","BluStealer|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:23","http://102.37.220.234/htdocs/CnLjK.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:23","http://102.37.220.234/htdocs/dGFJs.exe","offline","malware_download","exe|NanoCore|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:23","http://102.37.220.234/htdocs/GdZPS.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:23","http://102.37.220.234/htdocs/JxSrM.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:23","http://102.37.220.234/htdocs/kSQGg.exe","offline","malware_download","AgentTesla|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:23","http://102.37.220.234/htdocs/mNJAt.exe","offline","malware_download","exe|opendir|XFilesStealer","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:23","http://102.37.220.234/htdocs/SbNLY.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:22","http://102.37.220.234/htdocs/cKKPf.exe","offline","malware_download","AveMariaRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:22","http://102.37.220.234/htdocs/cMDTM.exe","offline","malware_download","exe|opendir|SnakeKeylogger","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:22","http://102.37.220.234/htdocs/dMKZE.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:22","http://102.37.220.234/htdocs/eGKBf.exe","offline","malware_download","AveMariaRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:22","http://102.37.220.234/htdocs/pRJXn.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:22","http://102.37.220.234/htdocs/qCXSc.exe","offline","malware_download","AveMariaRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:22","http://102.37.220.234/htdocs/wBWET.exe","offline","malware_download","exe|opendir|RemcosRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:22","http://102.37.220.234/htdocs/WfJgG.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:22","http://102.37.220.234/htdocs/zQLTr.exe","offline","malware_download","exe|Formbook|NanoCore|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:21","http://102.37.220.234/htdocs/fRFJr.exe","offline","malware_download","exe|NanoCore|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:21","http://102.37.220.234/htdocs/HiSeX.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:21","http://102.37.220.234/htdocs/qGLNt.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:21","http://102.37.220.234/htdocs/sKGWf.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:20","http://102.37.220.234/htdocs/dEEWc.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:20","http://102.37.220.234/htdocs/gKWSj.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:20","http://102.37.220.234/htdocs/HgXeY.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:20","http://102.37.220.234/htdocs/RdFbE.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:20","http://102.37.220.234/htdocs/SxWmX.exe","offline","malware_download","AsyncRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:19","http://102.37.220.234/htdocs/eSBLC.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:19","http://102.37.220.234/htdocs/jCWTi.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:19","http://102.37.220.234/htdocs/mMLBa.exe","offline","malware_download","exe|opendir|Spambot.Kelihos","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:19","http://102.37.220.234/htdocs/RbKTM.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:19","http://102.37.220.234/htdocs/xBLQR.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:18","http://102.37.220.234/htdocs/CiPqX.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:18","http://102.37.220.234/htdocs/DiSoX.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:18","http://102.37.220.234/htdocs/DwGfW.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:18","http://102.37.220.234/htdocs/eHKKX.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:18","http://102.37.220.234/htdocs/iSLPe.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:18","http://102.37.220.234/htdocs/PeYnH.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:18","http://102.37.220.234/htdocs/SgBSN.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:17","http://102.37.220.234/htdocs/AjRFD.exe","offline","malware_download","exe|opendir|XFilesStealer","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:17","http://102.37.220.234/htdocs/aSSFy.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:17","http://102.37.220.234/htdocs/HaBQB.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:17","http://102.37.220.234/htdocs/HsJzA.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:17","http://102.37.220.234/htdocs/MyFNF.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:17","http://102.37.220.234/htdocs/TkHrL.exe","offline","malware_download","AgentTesla|exe|opendir|RemcosRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:17","http://102.37.220.234/htdocs/WxRfM.exe","offline","malware_download","BitRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:17","http://102.37.220.234/htdocs/xEPYe.exe","offline","malware_download","AsyncRAT|exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:17","http://102.37.220.234/htdocs/XtMKR.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:16","http://102.37.220.234/htdocs/sKMNx.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:16","http://102.37.220.234/htdocs/tSSBp.exe","offline","malware_download","AveMariaRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:16","http://102.37.220.234/htdocs/XnNfM.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:16","http://102.37.220.234/htdocs/XnZoF.exe","offline","malware_download","AgentTesla|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:16","http://102.37.220.234/htdocs/yFRTS.exe","offline","malware_download","exe|MassLogger|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:16","http://102.37.220.234/htdocs/zWHEX.exe","offline","malware_download","AgentTesla|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:15","http://102.37.220.234/htdocs/BxHmT.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:15","http://102.37.220.234/htdocs/CeLKK.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:15","http://102.37.220.234/htdocs/dCCDG.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:15","http://102.37.220.234/htdocs/FdZEQ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:15","http://102.37.220.234/htdocs/iAMEH.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:15","http://102.37.220.234/htdocs/TjMTL.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:15","http://102.37.220.234/htdocs/XiGCB.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:15","http://102.37.220.234/htdocs/zYZAc.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:14","http://102.37.220.234/htdocs/FcYbR.exe","offline","malware_download","AveMariaRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:14","http://102.37.220.234/htdocs/pGDNT.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:14","http://102.37.220.234/htdocs/PzHqJ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:14","http://102.37.220.234/htdocs/qWDXb.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:14","http://102.37.220.234/htdocs/zGGHt.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:13","http://102.37.220.234/htdocs/eZYWw.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:13","http://102.37.220.234/htdocs/LoDSW.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:13","http://102.37.220.234/htdocs/LoSRW.exe","offline","malware_download","AgentTesla|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:13","http://102.37.220.234/htdocs/sGCDq.exe","offline","malware_download","AgentTesla|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:13","http://102.37.220.234/htdocs/sHNRY.exe","offline","malware_download","AgentTesla|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:13","http://102.37.220.234/htdocs/sZABx.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:13","http://102.37.220.234/htdocs/wPQPj.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:12","http://102.37.220.234/htdocs/aHXPH.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:12","http://102.37.220.234/htdocs/BtMiC.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:12","http://102.37.220.234/htdocs/GnZiJ.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:12","http://102.37.220.234/htdocs/jBANt.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:12","http://102.37.220.234/htdocs/SkWBT.exe","offline","malware_download","exe|opendir|RemcosRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:12","http://102.37.220.234/htdocs/WaPoD.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:12","http://102.37.220.234/htdocs/yNZCq.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:11","http://102.37.220.234/htdocs/bQMSQ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:11","http://102.37.220.234/htdocs/HkAmK.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:11","http://102.37.220.234/htdocs/MyPRK.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:11","http://102.37.220.234/htdocs/PpNXA.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:11","http://102.37.220.234/htdocs/QrWjA.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:11","http://102.37.220.234/htdocs/XeRsJ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:11","http://102.37.220.234/htdocs/xTECY.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:10","http://102.37.220.234/htdocs/aTZYy.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:10","http://102.37.220.234/htdocs/bQXEF.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:10","http://102.37.220.234/htdocs/DrCAJ.exe","offline","malware_download","exe|opendir|QuasarRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:10","http://102.37.220.234/htdocs/HqBrZ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:10","http://102.37.220.234/htdocs/nCWTD.exe","offline","malware_download","AgentTesla|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:10","http://102.37.220.234/htdocs/nFZCo.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:10","http://102.37.220.234/htdocs/PoCTT.exe","offline","malware_download","exe|opendir|QuasarRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:10","http://102.37.220.234/htdocs/rGZYH.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:10","http://102.37.220.234/htdocs/RsYPD.exe","offline","malware_download","exe|opendir|SnakeKeylogger","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:10","http://102.37.220.234/htdocs/SzRLA.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:10","http://102.37.220.234/htdocs/XiXAW.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:10","http://102.37.220.234/htdocs/XzBtM.exe","offline","malware_download","AsyncRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:09","http://102.37.220.234/htdocs/cTPKW.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:09","http://102.37.220.234/htdocs/dZDPM.exe","offline","malware_download","a310Logger|exe|opendir|XFilesStealer","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:09","http://102.37.220.234/htdocs/FgNRQ.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:09","http://102.37.220.234/htdocs/iCTFg.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:09","http://102.37.220.234/htdocs/kQZXN.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:09","http://102.37.220.234/htdocs/LzYAJ.exe","offline","malware_download","AgentTesla|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:09","http://102.37.220.234/htdocs/mKLPe.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:09","http://102.37.220.234/htdocs/mZWED.exe","offline","malware_download","a310Logger|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:08","http://102.37.220.234/htdocs/fNZBW.exe","offline","malware_download","AveMariaRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:08","http://102.37.220.234/htdocs/KaKzM.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:08","http://102.37.220.234/htdocs/KeFqM.exe","offline","malware_download","exe|opendir|RemcosRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:08","http://102.37.220.234/htdocs/pJGJj.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:08","http://102.37.220.234/htdocs/pKHTg.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:08","http://102.37.220.234/htdocs/wJRRC.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:07","http://102.37.220.234/htdocs/ByYSH.exe","offline","malware_download","AgentTesla|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:07","http://102.37.220.234/htdocs/HoTyF.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:07","http://102.37.220.234/htdocs/yMCYi.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:06","http://102.37.220.234/htdocs/EkRjC.exe","offline","malware_download","exe|opendir|SnakeKeylogger","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:06","http://102.37.220.234/htdocs/PfSZT.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:05","http://102.37.220.234/htdocs/AtKSJ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:05","http://102.37.220.234/htdocs/BnGrY.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:05","http://102.37.220.234/htdocs/iEBAZ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:05","http://102.37.220.234/htdocs/rSFEa.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:05","http://102.37.220.234/htdocs/SrFHP.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:05","http://102.37.220.234/htdocs/xFEZQ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:04","http://102.37.220.234/htdocs/bEYJt.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:04","http://102.37.220.234/htdocs/bFPTx.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:04","http://102.37.220.234/htdocs/BjWXP.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:04","http://102.37.220.234/htdocs/GxBEA.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:04","http://102.37.220.234/htdocs/HpFPL.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:04","http://102.37.220.234/htdocs/JbHWS.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:04","http://102.37.220.234/htdocs/NoJfM.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:04","http://102.37.220.234/htdocs/nRFHk.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:04","http://102.37.220.234/htdocs/PkMAB.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:04","http://102.37.220.234/htdocs/QfLwA.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:04","http://102.37.220.234/htdocs/RgXdC.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:04","http://102.37.220.234/htdocs/wXTBr.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-26 15:19:04","http://102.37.220.234/htdocs/YnPaY.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-25 16:24:05","http://102.37.220.234/htdocs/BcHxN.exe","offline","malware_download","32|AveMariaRAT|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-25 16:24:05","http://102.37.220.234/htdocs/KeFRQ.exe","offline","malware_download","32|AveMariaRAT|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-25 09:16:04","http://20.96.176.100/NGhJrwsnkZ_sssssssssssss.js","offline","malware_download","ascii|js|Vjw0rm","20.96.176.100","20.96.176.100","8075","US"
"2022-07-25 09:07:05","http://102.37.220.234/htdocs/pQMFb.exe","offline","malware_download","AgentTesla|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-25 04:34:05","http://102.37.220.234/htdocs/dQRKC.exe","offline","malware_download","32|exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-25 02:46:06","http://102.37.220.234/htdocs/bCMLm.exe","offline","malware_download","exe|Remcos|RemcosRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-24 16:35:05","http://102.37.220.234/htdocs/fSDGg.exe","offline","malware_download","32|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-24 16:35:05","http://102.37.220.234/htdocs/kPEQf.exe","offline","malware_download","32|AveMariaRAT|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-24 13:18:05","http://102.37.220.234/htdocs/AwWZN.exe","offline","malware_download","32|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-24 07:55:05","http://20.7.43.70/SUqTWQdtPa_msmpeng.js","offline","malware_download","ascii|js|Vjw0rm","20.7.43.70","20.7.43.70","8075","US"
"2022-07-23 16:58:10","http://102.37.220.234/htdocs/mykcy.exe","offline","malware_download","32|exe|QuasarRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-23 16:15:04","http://20.51.227.181/y0LRhLLWG7JY.exe","offline","malware_download","exe","20.51.227.181","20.51.227.181","8075","US"
"2022-07-23 15:55:07","http://102.37.220.234/htdocs/xARJj.exe","offline","malware_download","exe|MassLogger|opendir|StormKitty","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-23 15:52:05","http://102.37.220.234/htdocs/tSWWZ.exe","offline","malware_download","AveMariaRAT|exe|opendir|SnakeKeylogger","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-23 12:45:13","http://102.37.220.234/htdocs/FiKWA.exe","offline","malware_download","32|AgentTesla|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-23 12:44:05","http://102.37.220.234/htdocs/AkYtP.exe","offline","malware_download","32|exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-23 12:44:05","http://102.37.220.234/htdocs/EzHfY.exe","offline","malware_download","32|exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-23 12:44:05","http://102.37.220.234/htdocs/FoXEP.exe","offline","malware_download","32|exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-22 10:47:06","http://102.37.220.234/htdocs/BgNDT.exe","offline","malware_download","32|a310Logger|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-22 09:21:06","http://102.37.220.234/htdocs/mnjks.exe","offline","malware_download","exe|QuasarRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-22 09:21:05","http://102.37.220.234/htdocs/mBHKP.exe","offline","malware_download","exe|QuasarRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-22 03:16:06","http://102.37.220.234/htdocs/EzArB.exe","offline","malware_download","32|exe|RemcosRAT|StormKitty","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-22 01:21:05","http://84.223.21.227:12089/.i","offline","malware_download","Hajime","84.223.21.227","84.223.21.227","8075","GB"
"2022-07-21 17:56:06","http://102.37.220.234/htdocs/KdJnH.exe","offline","malware_download","exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 17:02:05","http://102.37.220.234/htdocs/xLCZo.exe","offline","malware_download","32|exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 11:57:04","http://102.37.220.234/xampp/InternalAssemblyBuilder.dll","offline","malware_download","32|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:14","http://102.37.220.234/htdocs/DjTQW.exe","offline","malware_download","exe|QuasarRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:09","http://102.37.220.234/htdocs/AyBtH.exe","offline","malware_download","exe|SnakeKeylogger","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:09","http://102.37.220.234/htdocs/bCXQP.exe","offline","malware_download","exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:09","http://102.37.220.234/htdocs/EkQDX.exe","offline","malware_download","exe|QuasarRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:09","http://102.37.220.234/htdocs/FtRoT.exe","offline","malware_download","AveMariaRAT|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:09","http://102.37.220.234/htdocs/iMWQH.exe","offline","malware_download","AgentTesla|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:09","http://102.37.220.234/htdocs/LtEaG.exe","offline","malware_download","a310Logger|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:09","http://102.37.220.234/htdocs/oKMMY.exe","offline","malware_download","a310Logger|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:09","http://102.37.220.234/htdocs/oMWPC.exe","offline","malware_download","a310Logger|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:09","http://102.37.220.234/htdocs/oREFB.exe","offline","malware_download","exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:09","http://102.37.220.234/htdocs/sBLQX.exe","offline","malware_download","exe|RemcosRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:09","http://102.37.220.234/htdocs/TwNfM.exe","offline","malware_download","exe|QuasarRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:09","http://102.37.220.234/htdocs/yHYWC.exe","offline","malware_download","a310Logger|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:08","http://102.37.220.234/htdocs/aAZWB.exe","offline","malware_download","AveMariaRAT|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:08","http://102.37.220.234/htdocs/AfMaR.exe","offline","malware_download","exe|Formbook|SnakeKeylogger","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:08","http://102.37.220.234/htdocs/DeBDW.exe","offline","malware_download","exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:08","http://102.37.220.234/htdocs/eDFTS.exe","offline","malware_download","a310Logger|exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:08","http://102.37.220.234/htdocs/EfLgJ.exe","offline","malware_download","AgentTesla|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:08","http://102.37.220.234/htdocs/fWAGk.exe","offline","malware_download","exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:08","http://102.37.220.234/htdocs/QyCzS.exe","offline","malware_download","exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:08","http://102.37.220.234/htdocs/QyZcY.exe","offline","malware_download","a310Logger|exe|MassLogger","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:08","http://102.37.220.234/htdocs/wGCAQ.exe","offline","malware_download","exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:08","http://102.37.220.234/htdocs/WxByN.exe","offline","malware_download","exe|QuasarRAT|SnakeKeylogger","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:08","http://102.37.220.234/htdocs/yBDBp.exe","offline","malware_download","exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:08","http://102.37.220.234/htdocs/zNETs.exe","offline","malware_download","exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:07","http://102.37.220.234/htdocs/aFDGQ.exe","offline","malware_download","AsyncRAT|exe|NanoCore","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:07","http://102.37.220.234/htdocs/KqZFX.exe","offline","malware_download","AveMariaRAT|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:07","http://102.37.220.234/htdocs/NpMJC.exe","offline","malware_download","exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:07","http://102.37.220.234/htdocs/yQKAL.exe","offline","malware_download","exe|SnakeKeylogger","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:06","http://102.37.220.234/htdocs/MyMXE.exe","offline","malware_download","exe|SnakeKeylogger","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:06","http://102.37.220.234/htdocs/QzKyR.exe","offline","malware_download","AsyncRAT|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:05","http://102.37.220.234/htdocs/dNSZD.exe","offline","malware_download","exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:05","http://102.37.220.234/htdocs/fGMWK.exe","offline","malware_download","exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:05","http://102.37.220.234/htdocs/KqXCJ.exe","offline","malware_download","AsyncRAT|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:05","http://102.37.220.234/htdocs/rQDLJ.exe","offline","malware_download","exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:05","http://102.37.220.234/htdocs/sZHSy.exe","offline","malware_download","exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:05","http://102.37.220.234/htdocs/wRQFT.exe","offline","malware_download","exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 10:32:04","http://102.37.220.234/htdocs/sGRBn.exe","offline","malware_download","AveMariaRAT|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 04:15:07","http://102.37.220.234/htdocs/RsBRM.exe","offline","malware_download","32|exe|SnakeKeylogger","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 04:15:06","http://102.37.220.234/htdocs/TsHAZ.exe","offline","malware_download","32|exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 04:00:07","http://102.37.220.234/htdocs/gPDQG.exe","offline","malware_download","32|exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 00:57:05","http://102.37.220.234/htdocs/JgCXA.exe","offline","malware_download","32|exe|Formbook","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-21 00:16:04","http://102.37.220.234/htdocs/mELHN.exe","offline","malware_download","32|AsyncRAT|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 19:47:05","http://102.37.220.234/htdocs/FsEcM.exe","offline","malware_download","32|AsyncRAT|AveMariaRAT|exe","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:16","http://102.37.220.234/htdocs/ReNbA.exe","offline","malware_download","exe|opendir|QuasarRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:12","http://102.37.220.234/htdocs/bJSBJ.exe","offline","malware_download","exe|opendir|QuasarRAT|RemcosRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:11","http://102.37.220.234/htdocs/AtKRF.exe","offline","malware_download","exe|opendir|RemcosRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:11","http://102.37.220.234/htdocs/GnSTC.exe","offline","malware_download","a310Logger|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:11","http://102.37.220.234/htdocs/GpBWB.exe","offline","malware_download","exe|opendir|RemcosRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:11","http://102.37.220.234/htdocs/xHDNs.exe","offline","malware_download","exe|opendir|RemcosRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:10","http://102.37.220.234/htdocs/BcJRF.exe","offline","malware_download","a310Logger|AsyncRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:10","http://102.37.220.234/htdocs/YjXdA.exe","offline","malware_download","exe|opendir|RemcosRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:10","http://102.37.220.234/htdocs/ZmFSA.exe","offline","malware_download","a310Logger|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:09","http://102.37.220.234/htdocs/aKPFR.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:09","http://102.37.220.234/htdocs/BjDKM.exe","offline","malware_download","AveMariaRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:09","http://102.37.220.234/htdocs/DzXbP.exe","offline","malware_download","AgentTesla|exe|MassLogger|opendir|QuasarRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:09","http://102.37.220.234/htdocs/kQATo.exe","offline","malware_download","exe|opendir|RemcosRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:09","http://102.37.220.234/htdocs/yHAQi.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:08","http://102.37.220.234/htdocs/DpBwG.exe","offline","malware_download","a310Logger|exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:08","http://102.37.220.234/htdocs/mTGTn.exe","offline","malware_download","exe|Formbook|Neshta|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:08","http://102.37.220.234/htdocs/xGBJA.exe","offline","malware_download","AveMariaRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:07","http://102.37.220.234/htdocs/aTTSP.exe","offline","malware_download","AsyncRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:07","http://102.37.220.234/htdocs/bYCQn.exe","offline","malware_download","exe|Neshta|opendir|SnakeKeylogger","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:07","http://102.37.220.234/htdocs/cRHBa.exe","offline","malware_download","exe|Neshta|opendir|RemcosRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:07","http://102.37.220.234/htdocs/CrWaJ.exe","offline","malware_download","exe|Neshta|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:07","http://102.37.220.234/htdocs/EkZQT.exe","offline","malware_download","exe|opendir|SnakeKeylogger","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:07","http://102.37.220.234/htdocs/GxMBK.exe","offline","malware_download","exe|Formbook|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:07","http://102.37.220.234/htdocs/qDQBK.exe","offline","malware_download","exe|Neshta|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:06","http://102.37.220.234/htdocs/qRYTi.exe","offline","malware_download","AsyncRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:06","http://102.37.220.234/htdocs/tKLNH.exe","offline","malware_download","AsyncRAT|exe|opendir|RemcosRAT","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:06","http://102.37.220.234/htdocs/yGRPj.exe","offline","malware_download","exe|Neshta|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:06","http://102.37.220.234/htdocs/ZtSXJ.exe","offline","malware_download","AsyncRAT|exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:05","http://102.37.220.234/htdocs/aPABQ.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:39:05","http://102.37.220.234/htdocs/QfHKC.exe","offline","malware_download","exe|opendir","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-20 18:37:06","http://102.37.220.234/htdocs/sDTRw.exe","offline","malware_download","exe|opendir|SnakeKeylogger","102.37.220.234","102.37.220.234","8075","ZA"
"2022-07-19 15:38:05","http://52.149.215.0/svchost.exe","offline","malware_download","exe|Neshta","52.149.215.0","52.149.215.0","8075","US"
"2022-07-19 08:22:13","http://20.70.2.177/teste20.zip","offline","malware_download","Grandoreiro","20.70.2.177","20.70.2.177","8075","AU"
"2022-07-19 08:22:13","http://20.70.2.177/teste30.zip","offline","malware_download","Grandoreiro","20.70.2.177","20.70.2.177","8075","AU"
"2022-07-18 16:44:16","http://20.7.14.99/dll/14-07-2022.mp4","offline","malware_download","","20.7.14.99","20.7.14.99","8075","US"
"2022-07-18 16:44:16","http://20.7.14.99/rump/14-07-2022.mp4","offline","malware_download","","20.7.14.99","20.7.14.99","8075","US"
"2022-07-16 17:34:04","http://40.90.250.107/bins//sora.x86","offline","malware_download","mirai","40.90.250.107","40.90.250.107","8075","US"
"2022-07-15 15:01:33","http://40.90.250.107/bins/sora.arm","offline","malware_download","32|arm|elf|mirai","40.90.250.107","40.90.250.107","8075","US"
"2022-07-15 15:01:33","http://40.90.250.107/bins/sora.spc","offline","malware_download","32|elf|mirai|sparc","40.90.250.107","40.90.250.107","8075","US"
"2022-07-15 15:01:33","http://40.90.250.107/sora.mips","offline","malware_download","32|elf|mips|mirai","40.90.250.107","40.90.250.107","8075","US"
"2022-07-15 14:40:34","http://40.90.250.107/bins/sora.arm5","offline","malware_download","32|arm|elf|mirai","40.90.250.107","40.90.250.107","8075","US"
"2022-07-15 14:40:34","http://40.90.250.107/bins/sora.arm6","offline","malware_download","32|arm|elf|mirai","40.90.250.107","40.90.250.107","8075","US"
"2022-07-15 14:40:34","http://40.90.250.107/bins/sora.arm7","offline","malware_download","32|arm|elf|mirai","40.90.250.107","40.90.250.107","8075","US"
"2022-07-15 14:40:34","http://40.90.250.107/bins/sora.i686","offline","malware_download","32|elf|intel|mirai","40.90.250.107","40.90.250.107","8075","US"
"2022-07-15 14:40:34","http://40.90.250.107/bins/sora.mpsl","offline","malware_download","32|elf|mips|mirai","40.90.250.107","40.90.250.107","8075","US"
"2022-07-15 14:40:34","http://40.90.250.107/bins/sora.x86","offline","malware_download","32|elf|intel|mirai","40.90.250.107","40.90.250.107","8075","US"
"2022-07-15 14:39:33","http://40.90.250.107/bins/sora.m68k","offline","malware_download","32|elf|mirai|motorola","40.90.250.107","40.90.250.107","8075","US"
"2022-07-15 14:39:33","http://40.90.250.107/bins/sora.ppc","offline","malware_download","32|elf|mirai|powerpc","40.90.250.107","40.90.250.107","8075","US"
"2022-07-15 14:39:33","http://40.90.250.107/bins/sora.sh4","offline","malware_download","32|elf|mirai|renesas","40.90.250.107","40.90.250.107","8075","US"
"2022-07-15 14:39:33","http://40.90.250.107/bins/sora.x86_64","offline","malware_download","64|elf|mirai","40.90.250.107","40.90.250.107","8075","US"
"2022-07-15 14:39:04","http://40.90.250.107/sora.sh","offline","malware_download","shellscript","40.90.250.107","40.90.250.107","8075","US"
"2022-07-13 08:30:18","http://20.231.55.108/Server/teste_ok.txt","offline","malware_download","Reverse Text Base64 PE","20.231.55.108","20.231.55.108","8075","US"
"2022-07-12 10:35:05","http://20.231.55.108/Server/droid.txt","offline","malware_download","Reverse Text Base64 PE","20.231.55.108","20.231.55.108","8075","US"
"2022-07-12 10:35:05","http://20.231.55.108/Server/njrat.txt","offline","malware_download","Reverse Text Base64 PE","20.231.55.108","20.231.55.108","8075","US"
"2022-07-11 15:14:04","http://20.205.9.191/596a96cc7bf9108cd896f33c44aedc8a//db0fa4b8db0333367e9bda3ab68b8042.arm","offline","malware_download","mirai","20.205.9.191","20.205.9.191","8075","HK"
"2022-07-11 15:14:04","http://20.205.9.191/596a96cc7bf9108cd896f33c44aedc8a//db0fa4b8db0333367e9bda3ab68b8042.mips","offline","malware_download","mirai","20.205.9.191","20.205.9.191","8075","HK"
"2022-07-11 15:14:04","http://20.205.9.191/596a96cc7bf9108cd896f33c44aedc8a//db0fa4b8db0333367e9bda3ab68b8042.mpsl","offline","malware_download","mirai","20.205.9.191","20.205.9.191","8075","HK"
"2022-07-11 15:14:04","http://20.205.9.191/596a96cc7bf9108cd896f33c44aedc8a//db0fa4b8db0333367e9bda3ab68b8042.x86","offline","malware_download","mirai","20.205.9.191","20.205.9.191","8075","HK"
"2022-07-11 14:45:34","http://20.205.9.191/596a96cc7bf9108cd896f33c44aedc8a/db0fa4b8db0333367e9bda3ab68b8042.sh4","offline","malware_download","32|elf|mirai|renesas","20.205.9.191","20.205.9.191","8075","HK"
"2022-07-11 14:27:33","http://20.205.9.191/596a96cc7bf9108cd896f33c44aedc8a/db0fa4b8db0333367e9bda3ab68b8042.arm6","offline","malware_download","32|arm|elf|mirai","20.205.9.191","20.205.9.191","8075","HK"
"2022-07-11 14:27:33","http://20.205.9.191/596a96cc7bf9108cd896f33c44aedc8a/db0fa4b8db0333367e9bda3ab68b8042.i686","offline","malware_download","32|bashlite|elf|gafgyt|intel","20.205.9.191","20.205.9.191","8075","HK"
"2022-07-11 14:27:33","http://20.205.9.191/596a96cc7bf9108cd896f33c44aedc8a/db0fa4b8db0333367e9bda3ab68b8042.mpsl","offline","malware_download","32|elf|mips|mirai","20.205.9.191","20.205.9.191","8075","HK"
"2022-07-11 14:27:33","http://20.205.9.191/596a96cc7bf9108cd896f33c44aedc8a/db0fa4b8db0333367e9bda3ab68b8042.ppc","offline","malware_download","32|elf|mirai|powerpc","20.205.9.191","20.205.9.191","8075","HK"
"2022-07-11 14:26:34","http://20.205.9.191/596a96cc7bf9108cd896f33c44aedc8a/db0fa4b8db0333367e9bda3ab68b8042.arm","offline","malware_download","32|arm|elf|mirai","20.205.9.191","20.205.9.191","8075","HK"
"2022-07-11 14:26:34","http://20.205.9.191/596a96cc7bf9108cd896f33c44aedc8a/db0fa4b8db0333367e9bda3ab68b8042.arm5","offline","malware_download","32|arm|elf|mirai","20.205.9.191","20.205.9.191","8075","HK"
"2022-07-11 14:26:34","http://20.205.9.191/596a96cc7bf9108cd896f33c44aedc8a/db0fa4b8db0333367e9bda3ab68b8042.m68k","offline","malware_download","32|elf|mirai|motorola","20.205.9.191","20.205.9.191","8075","HK"
"2022-07-11 14:25:33","http://20.205.9.191/596a96cc7bf9108cd896f33c44aedc8a/db0fa4b8db0333367e9bda3ab68b8042.arm7","offline","malware_download","32|arm|bashlite|elf|gafgyt","20.205.9.191","20.205.9.191","8075","HK"
"2022-07-11 14:25:33","http://20.205.9.191/596a96cc7bf9108cd896f33c44aedc8a/db0fa4b8db0333367e9bda3ab68b8042.mips","offline","malware_download","32|elf|mips|mirai","20.205.9.191","20.205.9.191","8075","HK"
"2022-07-11 14:25:33","http://20.205.9.191/596a96cc7bf9108cd896f33c44aedc8a/db0fa4b8db0333367e9bda3ab68b8042.spc","offline","malware_download","32|elf|mirai|sparc","20.205.9.191","20.205.9.191","8075","HK"
"2022-07-11 13:49:33","http://20.205.9.191/596a96cc7bf9108cd896f33c44aedc8a/db0fa4b8db0333367e9bda3ab68b8042.x86","offline","malware_download","elf","20.205.9.191","20.205.9.191","8075","HK"
"2022-07-11 12:33:29","http://20.231.55.108/dll/06-07-2022.PDF","offline","malware_download","","20.231.55.108","20.231.55.108","8075","US"
"2022-07-11 12:33:29","http://20.231.55.108/rump/06-07-2022.PDF","offline","malware_download","","20.231.55.108","20.231.55.108","8075","US"
"2022-07-08 12:39:33","http://13.70.188.178/ohsitsvegawellrip.sh","offline","malware_download","|script","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-07 01:43:05","http://84.223.38.23:28142/.i","offline","malware_download","Hajime","84.223.38.23","84.223.38.23","8075","GB"
"2022-07-06 11:40:05","http://13.70.188.178/bins//sora.arm6","offline","malware_download","mirai","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 11:40:05","http://13.70.188.178/bins//sora.i686","offline","malware_download","mirai","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 11:40:05","http://13.70.188.178/bins//sora.mips","offline","malware_download","mirai","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 11:40:05","http://13.70.188.178/bins//sora.mpsl","offline","malware_download","mirai","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 11:40:05","http://13.70.188.178/bins//sora.x86","offline","malware_download","mirai","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 04:20:34","http://13.70.188.178/bins/sora.arm5","offline","malware_download","32|arm|elf|mirai","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 04:20:34","http://13.70.188.178/bins/sora.m68k","offline","malware_download","32|elf|mirai|motorola","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 04:20:34","http://13.70.188.178/bins/sora.sh4","offline","malware_download","32|elf|mirai|renesas","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 04:19:34","http://13.70.188.178/bins/sora.mips","offline","malware_download","32|elf|mips|mirai","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 04:19:34","http://13.70.188.178/bins/sora.mpsl","offline","malware_download","32|elf|mips|mirai","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 04:19:34","http://13.70.188.178/bins/sora.ppc","offline","malware_download","32|elf|mirai|powerpc","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 04:19:34","http://13.70.188.178/bins/sora.spc","offline","malware_download","32|elf|mirai|sparc","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 04:19:34","http://13.70.188.178/bins/sora.x86_64","offline","malware_download","64|elf|mirai","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 04:18:33","http://13.70.188.178/bins/sora.x86","offline","malware_download","32|elf|intel|mirai","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 04:09:04","http://13.70.188.178/sora.sh","offline","malware_download","|script","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 04:08:33","http://13.70.188.178/bins/sora.arm","offline","malware_download","32|arm|elf|mirai","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 04:08:33","http://13.70.188.178/bins/sora.arm6","offline","malware_download","32|arm|elf|mirai","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 04:08:33","http://13.70.188.178/bins/sora.arm7","offline","malware_download","32|arm|elf|mirai","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-06 04:07:33","http://13.70.188.178/bins/sora.i686","offline","malware_download","32|elf|intel|mirai","13.70.188.178","13.70.188.178","8075","AU"
"2022-07-01 08:22:06","http://20.91.206.86/64bits.php","offline","malware_download","banker|mekotio|spy","20.91.206.86","20.91.206.86","8075","SE"
"2022-07-01 08:22:04","http://20.91.206.86/?a=Z0DEXUBSWD7FE45T3JHBMMJXCW3DON98P9LY3SRT","offline","malware_download","banker|mekotio|spy","20.91.206.86","20.91.206.86","8075","SE"
"2022-06-27 16:14:07","http://dotcompany.com.br/autoupdate/WVzrARSu74NtSh61uF/","offline","malware_download","emotet|exe|heodo","dotcompany.com.br","20.64.250.87","8075","US"
"2022-06-25 06:35:07","http://20.51.227.181/svchost.exe","offline","malware_download","AveMariaRAT|Neshta","20.51.227.181","20.51.227.181","8075","US"
"2022-06-25 06:35:06","http://20.51.227.181/layout20223acb.dotm","offline","malware_download","AveMariaRAT","20.51.227.181","20.51.227.181","8075","US"
"2022-06-23 00:04:11","http://20.197.199.37:40000/encodedraid35.zip","offline","malware_download","Grandoreiro|zip","20.197.199.37","20.197.199.37","8075","BR"
"2022-06-21 06:24:09","http://85.211.229.86:19245/.i","offline","malware_download","Hajime","85.211.229.86","85.211.229.86","8075","GB"
"2022-06-17 12:46:07","http://20.187.95.64/pandora.arm","offline","malware_download","elf|Mirai","20.187.95.64","20.187.95.64","8075","HK"
"2022-06-17 12:46:07","http://20.187.95.64/pandora.arm6","offline","malware_download","elf|Mirai","20.187.95.64","20.187.95.64","8075","HK"
"2022-06-17 12:46:07","http://20.187.95.64/pandora.arm7","offline","malware_download","elf|Mirai","20.187.95.64","20.187.95.64","8075","HK"
"2022-06-17 12:46:07","http://20.187.95.64/pandora.mips","offline","malware_download","elf|Mirai","20.187.95.64","20.187.95.64","8075","HK"
"2022-06-17 12:46:07","http://20.187.95.64/pandora.x86","offline","malware_download","elf|Mirai","20.187.95.64","20.187.95.64","8075","HK"
"2022-06-17 12:46:06","http://20.187.95.64/pandora.m68k","offline","malware_download","elf","20.187.95.64","20.187.95.64","8075","HK"
"2022-06-17 12:46:06","http://20.187.95.64/pandora.mpsl","offline","malware_download","elf|Mirai","20.187.95.64","20.187.95.64","8075","HK"
"2022-06-17 12:46:06","http://20.187.95.64/pandora.sh4","offline","malware_download","elf|Mirai","20.187.95.64","20.187.95.64","8075","HK"
"2022-06-17 12:46:06","http://20.187.95.64/pandora.spc","offline","malware_download","elf|Mirai","20.187.95.64","20.187.95.64","8075","HK"
"2022-06-17 12:46:05","http://20.187.95.64/pandora.arm5","offline","malware_download","elf|Mirai","20.187.95.64","20.187.95.64","8075","HK"
"2022-06-17 12:46:05","http://20.187.95.64/pandora.ppc","offline","malware_download","elf|Mirai","20.187.95.64","20.187.95.64","8075","HK"
"2022-06-16 22:39:04","http://85.210.229.29:59905/bin.sh","offline","malware_download","32-bit|ARM|ELF|Mirai|Mozi","85.210.229.29","85.210.229.29","8075","GB"
"2022-06-16 10:11:35","https://www.textilia.be/flash/accept.js","offline","malware_download","MageCart","www.textilia.be","108.142.115.11","8075","NL"
"2022-06-13 12:40:06","http://85.210.229.29:59905/i","offline","malware_download","32-bit|ARM|ELF|Mirai|Mozi","85.210.229.29","85.210.229.29","8075","GB"
"2022-06-02 09:40:05","http://20.52.18.136/m","offline","malware_download","elf|mips|mirai","20.52.18.136","20.52.18.136","8075","DE"
"2022-05-19 14:28:10","https://infovitimas.pt/teu/oolomrtempered","offline","malware_download","Quakbot|SilentBuilder|TR","infovitimas.pt","13.107.253.45","8075","US"
"2022-05-19 11:26:05","http://infovitimas.pt/teu/nutimdpsiime","offline","malware_download","Qakbot|qbot|Quakbot","infovitimas.pt","13.107.253.45","8075","US"
"2022-05-19 11:26:05","http://infovitimas.pt/teu/umvpumaettltaeo","offline","malware_download","Qakbot|qbot|Quakbot","infovitimas.pt","13.107.253.45","8075","US"
"2022-05-19 06:43:05","https://olgaperezporro.com/js/6vnOMgxQdjedBh/","offline","malware_download","emotet|epoch5|exe|heodo","olgaperezporro.com","40.115.116.248","8075","IE"
"2022-05-17 05:54:13","http://51.141.112.89:9797/encodedtexas1705.zip","offline","malware_download","zip","51.141.112.89","51.141.112.89","8075","GB"
"2022-05-12 07:52:06","http://20.239.193.47/6","offline","malware_download","Kaiji","20.239.193.47","20.239.193.47","8075","HK"
"2022-05-11 23:23:05","http://20.239.193.47/kele/linux_amd64","offline","malware_download","64|CVE-2022-1388|elf|Kaiji","20.239.193.47","20.239.193.47","8075","HK"
"2022-05-11 23:09:04","http://20.239.193.47/kele.sh","offline","malware_download","shellscript","20.239.193.47","20.239.193.47","8075","HK"
"2022-05-11 18:56:08","http://51.141.116.244:8999/encodedvipal10052022.zip","offline","malware_download","Grandoreiro |Metamorfo|zip","51.141.116.244","51.141.116.244","8075","GB"
"2022-05-11 11:58:06","http://20.187.67.224/6","offline","malware_download","|64-bit|CVE-2022-1388|ELF|Kaiji|x86-64","20.187.67.224","20.187.67.224","8075","HK"
"2022-05-11 11:24:13","http://20.187.86.47/dadda","offline","malware_download","CVE-2022-1388|elf|Kaiji","20.187.86.47","20.187.86.47","8075","HK"
"2022-04-28 06:20:09","http://isfactorytox.duckdns.org/gg/gmptx","offline","malware_download","zip","isfactorytox.duckdns.org","20.203.120.34","8075","AE"
"2022-04-28 03:43:29","https://emcoop.ae/ork/rCPksDiIx9.zip","offline","malware_download","b-TDS|obama180|Qakbot|qbot|Quakbot|zip","emcoop.ae","20.74.221.63","8075","AE"
"2022-04-28 03:42:47","https://emcoop.ae/ork/h/u5IyYSDKF.zip","offline","malware_download","b-TDS|obama180|Qakbot|qbot|Quakbot|zip","emcoop.ae","20.74.221.63","8075","AE"
"2022-04-28 03:42:28","https://emcoop.ae/ork/iU/Tb/C2jpzn3h.zip","offline","malware_download","b-TDS|obama180|Qakbot|qbot|Quakbot|zip","emcoop.ae","20.74.221.63","8075","AE"
"2022-04-28 03:42:28","https://emcoop.ae/ork/Z3g6RnY6zN.zip","offline","malware_download","b-TDS|obama180|Qakbot|qbot|Quakbot|zip","emcoop.ae","20.74.221.63","8075","AE"
"2022-04-27 21:18:06","https://www.granhoteldiligencias.com.mx/api/ga/","offline","malware_download","dll|emotet|epoch4|Heodo","www.granhoteldiligencias.com.mx","40.112.243.100","8075","US"
"2022-04-27 15:06:03","http://20.106.232.4/dll/updated.mp4","offline","malware_download","ps1","20.106.232.4","20.106.232.4","8075","US"
"2022-04-27 11:31:06","http://20.222.50.134/jv/loader/uploads/FT17516620_Iislupxi.jpg","offline","malware_download","","20.222.50.134","20.222.50.134","8075","JP"
"2022-04-27 11:31:06","http://20.222.50.134/jv/loader/uploads/MT02231706_Bkguqcos.jpg","offline","malware_download","","20.222.50.134","20.222.50.134","8075","JP"
"2022-04-27 11:30:09","http://20.222.50.134/jv/loader/uploads/MT2055610357_Drypfsym.bmp","offline","malware_download","","20.222.50.134","20.222.50.134","8075","JP"
"2022-04-27 11:30:09","http://20.222.50.134/jv/loader/uploads/MT80220758_Fjtrefxo.jpg","offline","malware_download","","20.222.50.134","20.222.50.134","8075","JP"
"2022-04-27 11:30:09","http://20.222.50.134/jv/loader/uploads/MT_067339182_Sxyyuioy.bmp","offline","malware_download","","20.222.50.134","20.222.50.134","8075","JP"
"2022-04-27 11:30:08","http://20.222.50.134/jv/loader/uploads/TL31037003_Zmnknhql.bmp","offline","malware_download","","20.222.50.134","20.222.50.134","8075","JP"
"2022-04-27 11:29:06","http://20.222.50.134/jv/loader/uploads/MT-06001378510_Sretesbd.jpg","offline","malware_download","","20.222.50.134","20.222.50.134","8075","JP"
"2022-04-27 11:29:06","http://20.222.50.134/jv/loader/uploads/MT00178963605_Stlmufdv.jpg","offline","malware_download","","20.222.50.134","20.222.50.134","8075","JP"
"2022-04-27 11:29:06","http://20.222.50.134/jv/loader/uploads/MT06032760130_Ygihvarg.jpg","offline","malware_download","","20.222.50.134","20.222.50.134","8075","JP"
"2022-04-27 10:26:07","http://20.222.50.134/jv/loader/uploads/MT06672320706_Xlnpaseg.bmp","offline","malware_download","","20.222.50.134","20.222.50.134","8075","JP"
"2022-04-27 10:26:05","http://20.222.50.134/jv/loader/uploads/MT06672320706.bat","offline","malware_download","Formbook","20.222.50.134","20.222.50.134","8075","JP"
"2022-04-27 07:11:06","http://20.222.50.134/jv/loader/uploads/remmy_Acfsyqtk.png","offline","malware_download","encrypted|RAT|RemcosRAT","20.222.50.134","20.222.50.134","8075","JP"
"2022-04-27 07:10:06","http://20.222.50.134/jv/loader/uploads/MT_061745688_Yaukqlgk.jpg","offline","malware_download","encrypted|SnakeKeylogger","20.222.50.134","20.222.50.134","8075","JP"
"2022-04-26 14:21:06","http://20.222.50.134/jv/loader/uploads/remmy.bat","offline","malware_download","32|exe|RemcosRAT","20.222.50.134","20.222.50.134","8075","JP"
"2022-04-25 19:20:09","http://20.106.232.4/rumpe/rumpe.pdf","offline","malware_download","Loki|LokiBot|LokiPWS|ps1","20.106.232.4","20.106.232.4","8075","US"
"2022-04-18 15:45:15","http://20.219.194.154:1141/encodedvolkswagen1804.zip","offline","malware_download","","20.219.194.154","20.219.194.154","8075","IN"
"2022-04-14 05:26:33","http://20.40.97.94/t7b/loader/uploads/BPL_1433572_007.bat","offline","malware_download","bat|SnakeKeylogger","20.40.97.94","20.40.97.94","8075","JP"
"2022-04-14 05:24:33","http://20.40.97.94/itl/loader/uploads/BPL_1433572_007_Gnvlywav.jpg","offline","malware_download","encrypted|SnakeKeylogger","20.40.97.94","20.40.97.94","8075","JP"
"2022-04-14 05:23:33","http://20.40.97.94/t7b/loader/uploads/SPE0451337.bat","offline","malware_download","ascii|bat|SnakeKeylogger","20.40.97.94","20.40.97.94","8075","JP"
"2022-04-14 05:22:33","http://20.40.97.94/t7b/loader/uploads/SPE0451337_Raeyddaq.bmp","offline","malware_download","encrypted|SnakeKeylogger","20.40.97.94","20.40.97.94","8075","JP"
"2022-04-13 11:20:34","http://20.40.97.94/t7b/loader/uploads/065754100.bat","offline","malware_download","32|exe|Loki","20.40.97.94","20.40.97.94","8075","JP"
"2022-04-13 10:33:47","http://20.40.97.94/t7b/loader/uploads/ETL020611_Uouwcrzs.png","offline","malware_download","exe","20.40.97.94","20.40.97.94","8075","JP"
"2022-04-12 18:21:11","http://20.106.232.4/rumpe/HVNC_RUMP.pdf","offline","malware_download","","20.106.232.4","20.106.232.4","8075","US"
"2022-04-12 14:09:19","http://20.40.97.94/s5g/zv/loader/uploads/invoice_Rtmtdoiy.bmp","offline","malware_download","","20.40.97.94","20.40.97.94","8075","JP"
"2022-04-11 07:59:06","http://20.40.97.94/s5g/zv/loader/uploads/605107332_Tahpcuoc.png","offline","malware_download","exe","20.40.97.94","20.40.97.94","8075","JP"
"2022-04-06 12:52:11","http://20.106.232.4/rumpe/FOTOOOOOOOOOOOOOOOO.jpg","offline","malware_download","","20.106.232.4","20.106.232.4","8075","US"
"2022-03-30 12:43:09","http://20.106.232.4/bkp/adsssss.jpg","offline","malware_download","","20.106.232.4","20.106.232.4","8075","US"
"2022-03-30 07:34:06","http://20.122.55.122/reparador1/sexoedrogaseputas.zip","offline","malware_download","mekotio","20.122.55.122","20.122.55.122","8075","US"
"2022-03-25 13:39:07","http://20.216.49.146/19827.zip","offline","malware_download","Mekotio|ZIP","20.216.49.146","20.216.49.146","8075","AE"
"2022-03-18 02:09:11","http://20.226.17.131:777/encodedamazonas17.zip","offline","malware_download","Metamorfo","20.226.17.131","20.226.17.131","8075","BR"
"2022-03-18 02:09:11","http://20.226.17.131:777/encodedcoin16.zip","offline","malware_download","Metamorfo","20.226.17.131","20.226.17.131","8075","BR"
"2022-03-15 06:27:10","http://20.226.17.131:777/encodedtrabalho1503.zip","offline","malware_download","Metamorfo|msi","20.226.17.131","20.226.17.131","8075","BR"
"2022-03-14 06:33:14","http://20.226.36.51:19955/encodedmulti1303.zip","offline","malware_download","Metamorfo|msi","20.226.36.51","20.226.36.51","8075","BR"
"2022-03-11 12:36:34","http://20.51.217.113/xse/Feeut.log","offline","malware_download","","20.51.217.113","20.51.217.113","8075","US"
"2022-03-11 12:36:33","http://20.51.217.113/gou/examle.hta","offline","malware_download","","20.51.217.113","20.51.217.113","8075","US"
"2022-03-09 13:43:07","https://srv1.aztronic.com.br/Atendimento_calper/imagens/seguroacesso.txt","offline","malware_download","","srv1.aztronic.com.br","191.235.104.103","8075","BR"
"2022-03-01 08:46:06","http://20.106.125.237/less/cocxl.exe","offline","malware_download","exe|Formbook|opendir","20.106.125.237","20.106.125.237","8075","US"
"2022-03-01 08:46:05","http://20.106.125.237/image/images.exe","offline","malware_download","AveMariaRAT|exe|opendir|RAT","20.106.125.237","20.106.125.237","8075","US"
"2022-03-01 08:45:06","http://20.106.125.237/ups/bups.exe","offline","malware_download","AveMariaRAT|exe|opendir|RAT","20.106.125.237","20.106.125.237","8075","US"
"2022-03-01 08:45:05","http://20.106.125.237/yakfileloadsonedrivedocumentsuploadgoogleapclouddownloads/Flcgfhdczhogsgaqkrrvsfzytjhn","offline","malware_download","AveMariaRAT|encrypted|RAT","20.106.125.237","20.106.125.237","8075","US"
"2022-03-01 08:44:06","http://20.106.125.237/co/cowarz.exe","offline","malware_download","AveMariaRAT|exe|ModiLoader|opendir|RAT","20.106.125.237","20.106.125.237","8075","US"
"2022-02-25 06:02:06","http://52.161.2.12/rmr/photos.exe","offline","malware_download","AveMariaRAT|exe|opendir|RAT","52.161.2.12","52.161.2.12","8075","US"
"2022-02-24 16:59:06","http://52.161.2.12/ecx/coco1xl.exe","offline","malware_download","exe|Formbook|opendir","52.161.2.12","52.161.2.12","8075","US"
"2022-02-24 16:59:06","http://52.161.2.12/tws/coco2war.exe","offline","malware_download","AveMariaRAT|exe","52.161.2.12","52.161.2.12","8075","US"
"2022-02-24 12:42:07","https://hcci.worldofss.com/fold-vhdl/CnBgXD/","offline","malware_download","dll|Emotet|epoch5|Heodo","hcci.worldofss.com","20.11.24.121","8075","AU"
"2022-02-24 12:30:06","http://20.38.171.132/oc/doc.exe","offline","malware_download","AveMariaRAT","20.38.171.132","20.38.171.132","8075","US"
"2022-02-22 16:36:05","https://cleanitsupply-my.sharepoint.com/:u:/p/kevin/EcZYkK4bsQ9KkzZ51-XOuXIBuf26LwI00GxBS07psWzyFw","offline","malware_download","","cleanitsupply-my.sharepoint.com","52.107.243.192","8075","DE"
"2022-02-22 16:36:05","https://cleanitsupply-my.sharepoint.com/:u:/p/kevin/EcZYkK4bsQ9KkzZ51-XOuXIBuf26LwI00GxBS07psWzyFw","offline","malware_download","","cleanitsupply-my.sharepoint.com","52.107.243.198","8075","DE"
"2022-02-22 16:36:05","https://cleanitsupply-my.sharepoint.com/:u:/p/kevin/EcZYkK4bsQ9KkzZ51-XOuXIBuf26LwI00GxBS07psWzyFw","offline","malware_download","","cleanitsupply-my.sharepoint.com","52.107.243.215","8075","DE"
"2022-02-22 16:36:05","https://cleanitsupply-my.sharepoint.com/:u:/p/kevin/EcZYkK4bsQ9KkzZ51-XOuXIBuf26LwI00GxBS07psWzyFw","offline","malware_download","","cleanitsupply-my.sharepoint.com","52.107.243.216","8075","DE"
"2022-02-22 16:36:05","https://cleanitsupply-my.sharepoint.com/:u:/p/kevin/EcZYkK4bsQ9KkzZ51-XOuXIBuf26LwI00GxBS07psWzyFw","offline","malware_download","","cleanitsupply-my.sharepoint.com","52.107.243.71","8075","DE"
"2022-02-22 16:36:05","https://cleanitsupply-my.sharepoint.com/:u:/p/kevin/EcZYkK4bsQ9KkzZ51-XOuXIBuf26LwI00GxBS07psWzyFw","offline","malware_download","","cleanitsupply-my.sharepoint.com","52.107.243.77","8075","DE"
"2022-02-22 16:36:05","https://cleanitsupply-my.sharepoint.com/:u:/p/kevin/EcZYkK4bsQ9KkzZ51-XOuXIBuf26LwI00GxBS07psWzyFw","offline","malware_download","","cleanitsupply-my.sharepoint.com","52.107.243.85","8075","DE"
"2022-02-22 16:36:05","https://cleanitsupply-my.sharepoint.com/:u:/p/kevin/EcZYkK4bsQ9KkzZ51-XOuXIBuf26LwI00GxBS07psWzyFw","offline","malware_download","","cleanitsupply-my.sharepoint.com","52.107.243.94","8075","DE"
"2022-02-22 14:33:10","http://191.239.253.104:10101/encodedgerenciamento2102-02.zip","offline","malware_download","","191.239.253.104","191.239.253.104","8075","BR"
"2022-02-22 14:11:05","https://cleanitsupply-my.sharepoint.com/:u:/p/kevin/EQSveM57kB1LsK-fkjNHkcYBlHN86O3JDzVYHZJ-zAbCDQ","offline","malware_download","","cleanitsupply-my.sharepoint.com","52.107.243.192","8075","DE"
"2022-02-22 14:11:05","https://cleanitsupply-my.sharepoint.com/:u:/p/kevin/EQSveM57kB1LsK-fkjNHkcYBlHN86O3JDzVYHZJ-zAbCDQ","offline","malware_download","","cleanitsupply-my.sharepoint.com","52.107.243.198","8075","DE"
"2022-02-22 14:11:05","https://cleanitsupply-my.sharepoint.com/:u:/p/kevin/EQSveM57kB1LsK-fkjNHkcYBlHN86O3JDzVYHZJ-zAbCDQ","offline","malware_download","","cleanitsupply-my.sharepoint.com","52.107.243.215","8075","DE"
"2022-02-22 14:11:05","https://cleanitsupply-my.sharepoint.com/:u:/p/kevin/EQSveM57kB1LsK-fkjNHkcYBlHN86O3JDzVYHZJ-zAbCDQ","offline","malware_download","","cleanitsupply-my.sharepoint.com","52.107.243.216","8075","DE"
"2022-02-22 14:11:05","https://cleanitsupply-my.sharepoint.com/:u:/p/kevin/EQSveM57kB1LsK-fkjNHkcYBlHN86O3JDzVYHZJ-zAbCDQ","offline","malware_download","","cleanitsupply-my.sharepoint.com","52.107.243.71","8075","DE"
"2022-02-22 14:11:05","https://cleanitsupply-my.sharepoint.com/:u:/p/kevin/EQSveM57kB1LsK-fkjNHkcYBlHN86O3JDzVYHZJ-zAbCDQ","offline","malware_download","","cleanitsupply-my.sharepoint.com","52.107.243.77","8075","DE"
"2022-02-22 14:11:05","https://cleanitsupply-my.sharepoint.com/:u:/p/kevin/EQSveM57kB1LsK-fkjNHkcYBlHN86O3JDzVYHZJ-zAbCDQ","offline","malware_download","","cleanitsupply-my.sharepoint.com","52.107.243.85","8075","DE"
"2022-02-22 14:11:05","https://cleanitsupply-my.sharepoint.com/:u:/p/kevin/EQSveM57kB1LsK-fkjNHkcYBlHN86O3JDzVYHZJ-zAbCDQ","offline","malware_download","","cleanitsupply-my.sharepoint.com","52.107.243.94","8075","DE"
"2022-02-22 00:03:34","http://209.240.192.6:33577/Mozi.m","offline","malware_download","Mozi","209.240.192.6","209.240.192.6","8075","US"
"2022-02-16 06:04:03","http://20.24.73.127:40469/Mozi.m","offline","malware_download","Mozi","20.24.73.127","20.24.73.127","8075","HK"
"2022-02-14 07:51:05","http://52.161.2.12/ru/image001.exe","offline","malware_download","AveMariaRAT|exe|opendir|RAT","52.161.2.12","52.161.2.12","8075","US"
"2022-02-09 14:36:05","http://52.186.122.65/z/zone.exe","offline","malware_download","AveMariaRAT|exe|opendir","52.186.122.65","52.186.122.65","8075","US"
"2022-02-09 14:35:06","http://52.186.122.65/fox/fox.exe","offline","malware_download","exe|Formbook|opendir","52.186.122.65","52.186.122.65","8075","US"
"2022-02-09 14:35:06","http://52.186.122.65/putt/putty.exe","offline","malware_download","exe|opendir","52.186.122.65","52.186.122.65","8075","US"
"2022-02-09 14:35:04","http://52.186.122.65/es/cos.hta","offline","malware_download","ascii|hta|opendir","52.186.122.65","52.186.122.65","8075","US"
"2022-02-09 14:35:04","http://52.186.122.65/tos/newone","offline","malware_download","ascii|Formbook|opendir|vbs","52.186.122.65","52.186.122.65","8075","US"
"2022-02-03 13:30:04","http://20.51.217.113/hub/Ngsvpxd.log","offline","malware_download","exe","20.51.217.113","20.51.217.113","8075","US"
"2022-02-03 13:24:04","http://20.51.217.113/fc/Xxzjxsyby.exe","offline","malware_download","exe|Formbook","20.51.217.113","20.51.217.113","8075","US"
"2022-02-03 13:22:05","http://20.51.217.113/ome/Xxzjxsyby.jpg","offline","malware_download","exe","20.51.217.113","20.51.217.113","8075","US"
"2022-02-02 10:54:05","http://20.51.217.113/vv/dcs.exe","offline","malware_download","32|AveMariaRAT|exe","20.51.217.113","20.51.217.113","8075","US"
"2022-01-31 09:26:07","http://20.51.217.113/sub/sub.exe","offline","malware_download","AVeMariaRAT|exe|opendir|RAT","20.51.217.113","20.51.217.113","8075","US"
"2022-01-29 09:40:05","http://20.51.217.113/fuue/Feeut.exe","offline","malware_download","32|AveMariaRAT|exe","20.51.217.113","20.51.217.113","8075","US"
"2022-01-27 13:08:03","http://20.51.217.113/gyg/Edutr.log","offline","malware_download","AveMariaRAT|encrypted|opendir|RAT","20.51.217.113","20.51.217.113","8075","US"
"2022-01-27 03:47:13","https://forms.saurashtrauniversity.edu/belt.php","online","malware_download","doc|hancitor|html","forms.saurashtrauniversity.edu","20.219.188.156","8075","IN"
"2022-01-26 21:17:05","http://20.51.217.113/cih/Cihyp.exe","offline","malware_download","32|exe|Formbook","20.51.217.113","20.51.217.113","8075","US"
"2022-01-26 21:16:04","http://20.51.217.113/ris/ume.exe","offline","malware_download","32|AveMariaRAT|exe","20.51.217.113","20.51.217.113","8075","US"
"2022-01-26 20:16:04","http://20.51.217.113/Edutr/Edutr.exe","offline","malware_download","AveMariaRAT|lnk|lnk-powershell|lnk-ps-hta|md5:366017e077f55cde2ed73c96f6872ff4","20.51.217.113","20.51.217.113","8075","US"
"2022-01-26 19:29:03","http://20.51.217.113/imx/list.hta","offline","malware_download","lnk|lnk-powershell|md5:366017e077f55cde2ed73c96f6872ff4","20.51.217.113","20.51.217.113","8075","US"
"2022-01-26 07:18:08","http://40.86.212.4:24563/Nfe-459390-1296-05-023904-750-4590-523904-12304923.zip","offline","malware_download","Guildma|zip","40.86.212.4","40.86.212.4","8075","CA"
"2022-01-25 07:26:33","http://20.115.127.123/attachments/916372126548787201/919546730075283516/gamesetup.exe","offline","malware_download","discord|tokengrabber|tokenstealer","20.115.127.123","20.115.127.123","8075","US"
"2022-01-25 07:26:07","http://20.115.127.123/attachments/916372126548787201/919546730075283516/magicercat.rar","offline","malware_download","discord|tokengrabber|tokenstealer","20.115.127.123","20.115.127.123","8075","US"
"2022-01-24 20:50:05","http://20.24.90.25/bns/gang123isgodloluaintgettingthesebinslikedammwtf.arm","offline","malware_download","32|arm|elf|mirai","20.24.90.25","20.24.90.25","8075","HK"
"2022-01-24 20:50:05","http://20.24.90.25/bns/gang123isgodloluaintgettingthesebinslikedammwtf.arm6","offline","malware_download","32|arm|elf|mirai","20.24.90.25","20.24.90.25","8075","HK"
"2022-01-24 20:50:05","http://20.24.90.25/bns/gang123isgodloluaintgettingthesebinslikedammwtf.sh4","offline","malware_download","32|elf|mirai|renesas","20.24.90.25","20.24.90.25","8075","HK"
"2022-01-24 20:49:04","http://20.24.90.25/bns/gang123isgodloluaintgettingthesebinslikedammwtf.arm5","offline","malware_download","32|arm|elf|mirai","20.24.90.25","20.24.90.25","8075","HK"
"2022-01-24 20:49:04","http://20.24.90.25/bns/gang123isgodloluaintgettingthesebinslikedammwtf.arm7","offline","malware_download","32|arm|elf|mirai","20.24.90.25","20.24.90.25","8075","HK"
"2022-01-24 20:49:04","http://20.24.90.25/bns/gang123isgodloluaintgettingthesebinslikedammwtf.m68k","offline","malware_download","32|elf|mirai|motorola","20.24.90.25","20.24.90.25","8075","HK"
"2022-01-24 20:49:04","http://20.24.90.25/bns/gang123isgodloluaintgettingthesebinslikedammwtf.mpsl","offline","malware_download","32|elf|mips|mirai","20.24.90.25","20.24.90.25","8075","HK"
"2022-01-24 20:49:04","http://20.24.90.25/bns/gang123isgodloluaintgettingthesebinslikedammwtf.ppc","offline","malware_download","32|elf|mirai|powerpc","20.24.90.25","20.24.90.25","8075","HK"
"2022-01-24 20:49:04","http://20.24.90.25/bns/gang123isgodloluaintgettingthesebinslikedammwtf.spc","offline","malware_download","32|elf|mirai|sparc","20.24.90.25","20.24.90.25","8075","HK"
"2022-01-24 18:18:34","http://20.115.127.123/attachments/916372126548787201/919546730075283516/gamesetup-linux","offline","malware_download","discord|tokengrabber|tokenstealer","20.115.127.123","20.115.127.123","8075","US"
"2022-01-24 18:18:21","http://20.115.127.123/attachments/916372126548787201/919546730075283516/wonderhall.exe","offline","malware_download","discord|tokengrabber|tokenstealer","20.115.127.123","20.115.127.123","8075","US"
"2022-01-24 18:18:11","http://20.115.127.123/attachments/916372126548787201/919546730075283516/gamesetupps.rar","offline","malware_download","discord|tokengrabber|tokenstealer","20.115.127.123","20.115.127.123","8075","US"
"2022-01-24 18:18:08","http://20.115.127.123/attachments/916372126548787201/919546730075283516/wonderhall.rar","offline","malware_download","discord|tokengrabber|tokenstealer","20.115.127.123","20.115.127.123","8075","US"
"2022-01-24 18:18:05","http://20.24.90.25/x86.sh","offline","malware_download","|script","20.24.90.25","20.24.90.25","8075","HK"
"2022-01-24 09:03:03","http://20.24.80.40:34683/Mozi.m","offline","malware_download","Mozi","20.24.80.40","20.24.80.40","8075","HK"
"2022-01-20 12:15:04","http://orbisit.com.au/wp-content/plugins/wp-roilbask/includes","offline","malware_download","bazaloader|bazarloader|icedid|wp-roilbask","orbisit.com.au","13.107.253.45","8075","US"
"2022-01-20 09:37:10","http://85.210.216.224:8888/.i","offline","malware_download","elf|Hajime","85.210.216.224","85.210.216.224","8075","GB"
"2022-01-20 07:27:04","http://orbisit.com.au/wp-content/plugins/wp-roilbask/includes/","offline","malware_download","bazarloader|xll","orbisit.com.au","13.107.253.45","8075","US"
"2022-01-19 21:41:05","https://orbisit.com.au/wp-content/plugins/wp-roilbask/includes","offline","malware_download","IcedID","orbisit.com.au","13.107.253.45","8075","US"
"2022-01-19 15:55:06","http://20.51.217.113/mko/fil.exe","offline","malware_download","32|DBatLoader|exe","20.51.217.113","20.51.217.113","8075","US"
"2022-01-19 15:55:05","http://20.51.217.113/ivo/Wuhtqscwk.exe","offline","malware_download","32|AveMariaRAT|exe","20.51.217.113","20.51.217.113","8075","US"
"2022-01-19 15:15:04","http://20.51.217.113/bo/Xjtucvnat.exe","offline","malware_download","32|AveMariaRAT|exe","20.51.217.113","20.51.217.113","8075","US"
"2022-01-18 23:11:16","https://orbisit.com.au/wp-content/plugins/wp-roilbask/includes/","offline","malware_download","BazaLoader|bazarloader|IcedID|xll","orbisit.com.au","13.107.253.45","8075","US"
"2022-01-18 19:56:05","http://chicagocloudgroup.com/wp-content/updraft/GBLpmsxC3TJzRT4iX4H/","offline","malware_download","emotet|epoch5|exe|Heodo","chicagocloudgroup.com","20.185.224.159","8075","US"
"2022-01-18 17:21:04","http://20.206.110.23/phantom.sh","offline","malware_download","|script","20.206.110.23","20.206.110.23","8075","BR"
"2022-01-17 12:41:33","http://20.24.75.93:52990/mozi.a","offline","malware_download","","20.24.75.93","20.24.75.93","8075","HK"
"2022-01-17 00:03:34","http://20.24.73.148:36169/Mozi.m","offline","malware_download","Mozi","20.24.73.148","20.24.73.148","8075","HK"
"2022-01-17 00:03:34","http://20.24.77.34:39143/Mozi.m","offline","malware_download","Mozi","20.24.77.34","20.24.77.34","8075","HK"
"2022-01-16 22:55:05","http://20.206.110.23/bins/phantom.spc","offline","malware_download","32|elf|mirai|sparc","20.206.110.23","20.206.110.23","8075","BR"
"2022-01-16 22:43:33","http://20.24.74.207:60015/mozi.m","offline","malware_download","","20.24.74.207","20.24.74.207","8075","HK"
"2022-01-16 21:42:04","http://20.206.110.23/bins/phantom.arm","offline","malware_download","elf|Mirai","20.206.110.23","20.206.110.23","8075","BR"
"2022-01-16 21:42:04","http://20.206.110.23/bins/phantom.arm5","offline","malware_download","elf|Mirai","20.206.110.23","20.206.110.23","8075","BR"
"2022-01-16 21:42:04","http://20.206.110.23/bins/phantom.arm6","offline","malware_download","elf|Mirai","20.206.110.23","20.206.110.23","8075","BR"
"2022-01-16 21:42:04","http://20.206.110.23/bins/phantom.arm7","offline","malware_download","elf|Mirai","20.206.110.23","20.206.110.23","8075","BR"
"2022-01-16 21:42:04","http://20.206.110.23/bins/phantom.m68k","offline","malware_download","elf|Mirai","20.206.110.23","20.206.110.23","8075","BR"
"2022-01-16 21:42:04","http://20.206.110.23/bins/phantom.mips","offline","malware_download","elf|Mirai","20.206.110.23","20.206.110.23","8075","BR"
"2022-01-16 21:42:04","http://20.206.110.23/bins/phantom.mpsl","offline","malware_download","elf","20.206.110.23","20.206.110.23","8075","BR"
"2022-01-16 21:42:04","http://20.206.110.23/bins/phantom.ppc","offline","malware_download","elf|Mirai","20.206.110.23","20.206.110.23","8075","BR"
"2022-01-16 21:42:04","http://20.206.110.23/bins/phantom.sh4","offline","malware_download","elf|Mirai","20.206.110.23","20.206.110.23","8075","BR"
"2022-01-16 21:42:04","http://20.206.110.23/bins/phantom.x86","offline","malware_download","elf|Mirai","20.206.110.23","20.206.110.23","8075","BR"
"2022-01-15 09:12:04","http://20.51.217.113/imk/Azouu.jpeg","offline","malware_download","AveMariaRAT|encrypted|opendir|RAT","20.51.217.113","20.51.217.113","8075","US"
"2022-01-15 08:39:04","http://20.51.217.113/wo/Dfflc.jpeg","offline","malware_download","AveMariaRAT|encrypted|RAT","20.51.217.113","20.51.217.113","8075","US"
"2022-01-14 20:58:04","http://20.51.217.113/js/Dfflc.exe","offline","malware_download","32|AveMariaRAT|exe","20.51.217.113","20.51.217.113","8075","US"
"2022-01-14 13:40:05","http://20.51.217.113/azu/Azouu.com","offline","malware_download","32|AveMariaRAT|exe","20.51.217.113","20.51.217.113","8075","US"
"2022-01-14 07:55:05","http://chicagocloudgroup.com/wp-content/updraft/OKXV/","offline","malware_download","emotet|epoch5|exe|heodo","chicagocloudgroup.com","20.185.224.159","8075","US"
"2022-01-14 03:13:05","http://blog.mazda.co.il/a/4744_31497/","offline","malware_download","emotet|epoch5|redir-doc|xls","blog.mazda.co.il","51.105.247.195","8075","NL"
"2022-01-14 03:13:05","http://blog.mazda.co.il/a/4744_31497/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","blog.mazda.co.il","51.105.247.195","8075","NL"
"2022-01-13 02:34:04","http://blog.mazda.co.il/a/U-189/","offline","malware_download","emotet|epoch5|redir-doc|xls","blog.mazda.co.il","51.105.247.195","8075","NL"
"2022-01-13 02:34:04","http://blog.mazda.co.il/a/U-189/?i=1","offline","malware_download","doc|emotet|epoch5|Heodo","blog.mazda.co.il","51.105.247.195","8075","NL"
"2022-01-12 21:11:07","https://chicagocloudgroup.com/wp-content/updraft/163444-07289/","offline","malware_download","Emotet","chicagocloudgroup.com","20.185.224.159","8075","US"
"2022-01-12 01:48:04","http://chicagocloudgroup.com/wp-content/updraft/163444-07289/","offline","malware_download","emotet|epoch4|redir-doc|xls","chicagocloudgroup.com","20.185.224.159","8075","US"
"2022-01-12 01:48:04","http://chicagocloudgroup.com/wp-content/updraft/163444-07289/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","chicagocloudgroup.com","20.185.224.159","8075","US"
"2022-01-12 01:48:04","http://chicagocloudgroup.com/wp-content/updraft/163444-07289/?name=JSP/","offline","malware_download","emotet|epoch4|redir-doc","chicagocloudgroup.com","20.185.224.159","8075","US"
"2022-01-11 23:11:12","http://blog.mazda.co.il/a/08FEI_6544/","offline","malware_download","emotet|epoch4|redir-doc|xls","blog.mazda.co.il","51.105.247.195","8075","NL"
"2022-01-11 23:11:06","http://blog.mazda.co.il/a/08FEI_6544/?i=1","offline","malware_download","doc|emotet|epoch4|Heodo|SilentBuilder","blog.mazda.co.il","51.105.247.195","8075","NL"
"2022-01-07 07:21:33","http://20.51.217.113/tol/images.exe","offline","malware_download","exe","20.51.217.113","20.51.217.113","8075","US"
"2022-01-05 09:41:15","https://watertecindia.com/watertec/fw3.exe","offline","malware_download","32|exe","watertecindia.com","20.244.99.167","8075","IN"
"2022-01-05 06:00:34","http://20.24.75.29:39010/mozi.m","offline","malware_download","","20.24.75.29","20.24.75.29","8075","HK"
"2021-12-30 00:56:33","http://20.24.76.53:50519/mozi.m","offline","malware_download","","20.24.76.53","20.24.76.53","8075","HK"
"2021-12-29 16:34:50","http://20.24.79.22:45363/Mozi.m","offline","malware_download","Mozi","20.24.79.22","20.24.79.22","8075","HK"
"2021-12-28 07:24:04","http://20.51.217.113/tos/docs.exe","offline","malware_download","AveMariaRAT|exe|opendir|RAT","20.51.217.113","20.51.217.113","8075","US"
"2021-12-28 07:22:04","http://20.197.193.102/bins.sh","offline","malware_download","|script","20.197.193.102","20.197.193.102","8075","BR"
"2021-12-24 18:06:09","http://sales.earnhardtmarketing.com/wp-admin/c/","offline","malware_download","emotet|epoch4|redir-doc|xls","sales.earnhardtmarketing.com","20.150.141.31","8075","US"
"2021-12-24 17:47:12","http://20.106.163.35/SBIDIOT/root.keen.onion.1337","offline","malware_download","elf|Mirai","20.106.163.35","20.106.163.35","8075","US"
"2021-12-24 17:47:12","http://20.106.163.35/SBIDIOT/sh4.keen.onion.1337","offline","malware_download","elf|Mirai","20.106.163.35","20.106.163.35","8075","US"
"2021-12-24 17:47:12","http://20.106.163.35/SBIDIOT/x86.keen.onion.1337","offline","malware_download","elf|Mirai","20.106.163.35","20.106.163.35","8075","US"
"2021-12-24 17:47:08","http://20.106.163.35/cnrig","offline","malware_download","elf","20.106.163.35","20.106.163.35","8075","US"
"2021-12-24 17:47:07","http://20.106.163.35/SBIDIOT/arm6.keen.onion.1337","offline","malware_download","elf","20.106.163.35","20.106.163.35","8075","US"
"2021-12-24 17:47:07","http://20.106.163.35/SBIDIOT/zte.keen.onion.1337","offline","malware_download","elf","20.106.163.35","20.106.163.35","8075","US"
"2021-12-24 17:47:06","http://20.106.163.35/SBIDIOT/arm.keen.onion.1337","offline","malware_download","elf","20.106.163.35","20.106.163.35","8075","US"
"2021-12-24 17:47:05","http://20.106.163.35/SBIDIOT/arm7.keen.onion.1337","offline","malware_download","elf","20.106.163.35","20.106.163.35","8075","US"
"2021-12-24 17:47:05","http://20.106.163.35/SBIDIOT/m68k.keen.onion.1337","offline","malware_download","elf|Mirai","20.106.163.35","20.106.163.35","8075","US"
"2021-12-24 17:47:05","http://20.106.163.35/SBIDIOT/mips.keen.onion.1337","offline","malware_download","elf","20.106.163.35","20.106.163.35","8075","US"
"2021-12-24 17:47:05","http://20.106.163.35/SBIDIOT/mpsl.keen.onion.1337","offline","malware_download","elf","20.106.163.35","20.106.163.35","8075","US"
"2021-12-24 17:47:05","http://20.106.163.35/SBIDIOT/ppc.keen.onion.1337","offline","malware_download","elf","20.106.163.35","20.106.163.35","8075","US"
"2021-12-24 17:47:05","http://20.106.163.35/SBIDIOT/rtk.keen.onion.1337","offline","malware_download","elf","20.106.163.35","20.106.163.35","8075","US"
"2021-12-23 07:39:04","http://40.76.9.118/wp-content/themes/twentysixteen/Exploit.class","offline","malware_download","class|CVE-2021-44228|log4j|Muhstik|Tsunami","40.76.9.118","40.76.9.118","8075","US"
"2021-12-23 05:18:10","http://chicagocloudgroup.com/wp-content/updraft/l3rrKEbEHfSvxyuV/","offline","malware_download","emotet|epoch4|redir-doc|xls","chicagocloudgroup.com","20.185.224.159","8075","US"
"2021-12-23 00:38:05","https://gems-consult.com/wp-includes/ha9QVifn/","offline","malware_download","emotet|epoch4|redir-doc|xls","gems-consult.com","20.64.155.236","8075","US"
"2021-12-22 21:01:09","http://sales.earnhardtmarketing.com/wp-admin/pKs3cxtvfqc3uws1/","offline","malware_download","emotet|epoch4|redir-doc|xls","sales.earnhardtmarketing.com","20.150.141.31","8075","US"
"2021-12-22 16:30:04","http://20.91.133.41/all.txt","offline","malware_download","ascii|PowerShell|ps|RAT","20.91.133.41","20.91.133.41","8075","SE"
"2021-12-22 16:30:04","http://20.91.133.41/HHHHHHHHHHHHHHHH.txt","offline","malware_download","ascii|PowerShell|ps|RAT","20.91.133.41","20.91.133.41","8075","SE"
"2021-12-20 18:27:03","http://20.51.217.113/ncx/ConsoleApp19.exe","offline","malware_download","32|AveMariaRAT|exe","20.51.217.113","20.51.217.113","8075","US"
"2021-12-20 09:21:03","http://20.51.217.113/mac/mac.exe","offline","malware_download","AveMariaRAT|exe|RAT","20.51.217.113","20.51.217.113","8075","US"
"2021-12-18 00:42:34","http://20.24.78.243:44574/mozi.m","offline","malware_download","","20.24.78.243","20.24.78.243","8075","HK"
"2021-12-17 08:00:11","https://nagains.azurewebsites.net/wp-content/plugins/wp-file-manager/lib/codemirror/mode/rpm/changes/peacefulness.php","offline","malware_download","doc|hancitor|html","nagains.azurewebsites.net","52.176.6.0","8075","US"
"2021-12-17 08:00:11","https://nagains.azurewebsites.net/wp-content/plugins/wp-file-manager/lib/codemirror/mode/rpm/changes/thresh.php","offline","malware_download","doc|hancitor|html","nagains.azurewebsites.net","52.176.6.0","8075","US"
"2021-12-16 17:42:04","https://nagains.azurewebsites.net/wp-content/plugins/wp-file-manager/lib/codemirror/mode/rpm/changes/bulwark.php","offline","malware_download","doc|hancitor|html","nagains.azurewebsites.net","52.176.6.0","8075","US"
"2021-12-15 17:10:25","https://nagains.azurewebsites.net/wp-content/plugins/wp-file-manager/lib/codemirror/mode/rpm/changes/bolog.php","offline","malware_download","doc|hancitor|html","nagains.azurewebsites.net","52.176.6.0","8075","US"
"2021-12-15 16:24:16","https://nagains.azurewebsites.net/wp-content/plugins/wp-file-manager/lib/codemirror/mode/rpm/changes/burned.php","offline","malware_download","doc|hancitor|html","nagains.azurewebsites.net","52.176.6.0","8075","US"
"2021-12-15 16:24:10","https://nagains.azurewebsites.net/wp-content/plugins/wp-file-manager/lib/codemirror/mode/rpm/changes/piratical.php","offline","malware_download","doc|hancitor|html","nagains.azurewebsites.net","52.176.6.0","8075","US"
"2021-12-15 16:24:10","https://nagains.azurewebsites.net/wp-content/plugins/wp-file-manager/lib/codemirror/mode/rpm/changes/seismologist.php","offline","malware_download","doc|hancitor|html","nagains.azurewebsites.net","52.176.6.0","8075","US"
"2021-12-15 05:49:53","http://20.24.77.31:60710/Mozi.m","offline","malware_download","Mozi","20.24.77.31","20.24.77.31","8075","HK"
"2021-12-15 05:49:30","http://20.24.50.238:57893/Mozi.m","offline","malware_download","Mozi","20.24.50.238","20.24.50.238","8075","SG"
"2021-12-13 17:42:04","http://20.51.217.113/kcx/ConsoleApp2.exe","offline","malware_download","exe|Formbook|opendir","20.51.217.113","20.51.217.113","8075","US"
"2021-12-13 17:42:04","http://20.51.217.113/xvx/ConsoleApp2.bin","offline","malware_download","encrypted|Formbook|opendir","20.51.217.113","20.51.217.113","8075","US"
"2021-12-13 15:16:03","http://51.124.222.69/goodrat.exe","offline","malware_download","32|AsyncRAT|exe","51.124.222.69","51.124.222.69","8075","NL"
"2021-12-13 15:10:11","http://20.63.103.150/a-r.m-7.ISIS","offline","malware_download","32|bashlite|elf|gafgyt|powerpc","20.63.103.150","20.63.103.150","8075","CA"
"2021-12-13 15:10:05","http://20.63.103.150/s-h.4-.ISIS","offline","malware_download","32|bashlite|elf|gafgyt|renesas","20.63.103.150","20.63.103.150","8075","CA"
"2021-12-13 15:10:05","http://20.63.103.150/x-3.2-.ISIS","offline","malware_download","32|bashlite|elf|gafgyt|intel","20.63.103.150","20.63.103.150","8075","CA"
"2021-12-13 15:04:14","http://20.63.103.150/x-8.6-.ISIS","offline","malware_download","64|bashlite|elf|gafgyt","20.63.103.150","20.63.103.150","8075","CA"
"2021-12-13 15:04:05","http://20.63.103.150/a-r.m-4.ISIS","offline","malware_download","32|arm|elf|Gafgyt","20.63.103.150","20.63.103.150","8075","CA"
"2021-12-13 15:04:05","http://20.63.103.150/a-r.m-5.ISIS","offline","malware_download","32|arm|elf|Gafgyt","20.63.103.150","20.63.103.150","8075","CA"
"2021-12-13 15:04:05","http://20.63.103.150/m-p.s-l.ISIS","offline","malware_download","32|bashlite|elf|gafgyt|mips","20.63.103.150","20.63.103.150","8075","CA"
"2021-12-13 15:04:05","http://20.63.103.150/p-p.c-.ISIS","offline","malware_download","32|arm|elf|Gafgyt","20.63.103.150","20.63.103.150","8075","CA"
"2021-12-13 15:04:04","http://20.63.103.150/i-5.8-6.ISIS","offline","malware_download","32|bashlite|elf|gafgyt|motorola","20.63.103.150","20.63.103.150","8075","CA"
"2021-12-13 15:04:03","http://20.63.103.150/ISIS.sh","offline","malware_download","shellscript","20.63.103.150","20.63.103.150","8075","CA"
"2021-12-13 14:59:12","http://20.63.103.150/m-i.p-s.ISIS","offline","malware_download","32|bashlite|elf|gafgyt|mips","20.63.103.150","20.63.103.150","8075","CA"
"2021-12-13 14:59:04","http://20.63.103.150/a-r.m-6.ISIS","offline","malware_download","32|arm|bashlite|elf|gafgyt","20.63.103.150","20.63.103.150","8075","CA"
"2021-12-13 14:55:05","http://51.124.222.69/build.exe","offline","malware_download","32|exe|RedLineStealer","51.124.222.69","51.124.222.69","8075","NL"
"2021-12-13 09:14:14","http://20.104.28.56/i-5.8-6.Sakura","offline","malware_download","32|bashlite|elf|gafgyt|Mirai|motorola","20.104.28.56","20.104.28.56","8075","CA"
"2021-12-13 09:14:14","http://20.104.28.56/m-i.p-s.Sakura","offline","malware_download","32|bashlite|elf|gafgyt|mips|Mirai","20.104.28.56","20.104.28.56","8075","CA"
"2021-12-13 09:14:10","http://20.104.28.56/x-8.6-.Sakura","offline","malware_download","64|bashlite|elf|gafgyt|Mirai","20.104.28.56","20.104.28.56","8075","CA"
"2021-12-13 09:14:07","http://20.104.28.56/a-r.m-4.Sakura","offline","malware_download","32|arm|bashlite|elf|gafgyt","20.104.28.56","20.104.28.56","8075","CA"
"2021-12-13 09:14:04","http://20.104.28.56/a-r.m-5.Sakura","offline","malware_download","32|arm|bashlite|elf|gafgyt|Mirai","20.104.28.56","20.104.28.56","8075","CA"
"2021-12-13 09:14:04","http://20.104.28.56/m-6.8-k.Sakura","offline","malware_download","32|arm|bashlite|elf|gafgyt|Mirai","20.104.28.56","20.104.28.56","8075","CA"
"2021-12-13 09:14:04","http://20.104.28.56/p-p.c-.Sakura","offline","malware_download","32|arm|bashlite|elf|gafgyt","20.104.28.56","20.104.28.56","8075","CA"
"2021-12-13 09:13:04","http://20.104.28.56/a-r.m-6.Sakura","offline","malware_download","32|arm|bashlite|elf|gafgyt|Mirai","20.104.28.56","20.104.28.56","8075","CA"
"2021-12-13 09:07:10","http://20.104.28.56/m-p.s-l.Sakura","offline","malware_download","32|bashlite|elf|gafgyt|mips|Mirai","20.104.28.56","20.104.28.56","8075","CA"
"2021-12-13 09:07:10","http://20.104.28.56/x-3.2-.Sakura","offline","malware_download","32|bashlite|elf|gafgyt|intel|Mirai","20.104.28.56","20.104.28.56","8075","CA"
"2021-12-13 09:07:07","http://20.104.28.56/a-r.m-7.Sakura","offline","malware_download","32|bashlite|elf|gafgyt|Mirai|powerpc","20.104.28.56","20.104.28.56","8075","CA"
"2021-12-13 09:07:07","http://20.104.28.56/s-h.4-.Sakura","offline","malware_download","32|bashlite|elf|gafgyt|Mirai|renesas","20.104.28.56","20.104.28.56","8075","CA"
"2021-12-13 09:07:04","http://20.104.28.56/Sakura.sh","offline","malware_download","shellscript","20.104.28.56","20.104.28.56","8075","CA"
"2021-12-10 10:42:24","http://20.24.75.93:57589/Mozi.a","offline","malware_download","Mozi","20.24.75.93","20.24.75.93","8075","HK"
"2021-12-10 10:37:39","http://20.24.74.159:43573/Mozi.m","offline","malware_download","Mozi","20.24.74.159","20.24.74.159","8075","HK"
"2021-12-10 10:37:11","http://20.24.74.153:38346/Mozi.m","offline","malware_download","Mozi","20.24.74.153","20.24.74.153","8075","HK"
"2021-12-10 10:34:34","http://20.24.50.181:44996/Mozi.m","offline","malware_download","Mozi","20.24.50.181","20.24.50.181","8075","SG"
"2021-12-10 06:46:04","http://20.51.217.113/ado/ConsoleApp13.exe","offline","malware_download","32|exe|Formbook","20.51.217.113","20.51.217.113","8075","US"
"2021-12-09 13:53:04","http://20.51.217.113/mjn/music.exe","offline","malware_download","AveMariaRAT|exe|opendir","20.51.217.113","20.51.217.113","8075","US"
"2021-12-09 10:50:13","https://wecare.com.vn/get/3Pgny6gwZc/","offline","malware_download","doc|emotet|epoch4|Heodo","wecare.com.vn","20.127.187.150","8075","US"
"2021-12-08 11:42:03","http://40.118.82.237/today.exe","offline","malware_download","32|AgentTesla|exe","40.118.82.237","40.118.82.237","8075","NL"
"2021-12-05 15:54:34","http://20.24.49.228:38590/mozi.m","offline","malware_download","","20.24.49.228","20.24.49.228","8075","SG"
"2021-12-05 15:51:33","http://20.24.75.114:49975/mozi.m","offline","malware_download","","20.24.75.114","20.24.75.114","8075","HK"
"2021-12-05 15:20:03","http://20.24.76.8:51113/Mozi.m","offline","malware_download","Mozi","20.24.76.8","20.24.76.8","8075","HK"
"2021-11-30 08:41:05","http://valorisation.toutsurmesservices.fr/documents/contrat-9652544","offline","malware_download","chaserldr|Qakbot|TR|zip","valorisation.toutsurmesservices.fr","51.144.45.245","8075","NL"
"2021-11-29 11:57:34","http://20.24.74.89:59416/mozi.m","offline","malware_download","","20.24.74.89","20.24.74.89","8075","HK"
"2021-11-28 19:43:04","http://20.199.99.253/CoreRats/shiko.mpsl?ddos","offline","malware_download","ddos|elf|mirai","20.199.99.253","20.199.99.253","8075","FR"
"2021-11-27 14:55:34","http://20.24.79.84:38949/Mozi.m","offline","malware_download","Mozi","20.24.79.84","20.24.79.84","8075","HK"
"2021-11-24 12:14:10","http://20.199.99.253/CoreRats/shiko.x86?ddos","offline","malware_download","ddos|elf|mirai","20.199.99.253","20.199.99.253","8075","FR"
"2021-11-22 15:12:33","http://20.24.73.194:48921/mozi.a","offline","malware_download","","20.24.73.194","20.24.73.194","8075","HK"
"2021-11-21 18:04:34","http://20.24.76.237:42639/Mozi.m","offline","malware_download","Mozi","20.24.76.237","20.24.76.237","8075","HK"
"2021-11-17 18:03:34","http://20.24.79.98:55178/Mozi.m","offline","malware_download","Mozi","20.24.79.98","20.24.79.98","8075","HK"
"2021-11-17 06:04:33","http://20.24.75.25:43777/Mozi.m","offline","malware_download","Mozi","20.24.75.25","20.24.75.25","8075","HK"
"2021-11-16 23:36:04","http://20.199.99.253/CoreRats/shiko.mpsl","offline","malware_download","DDoS Bot|elf|mirai","20.199.99.253","20.199.99.253","8075","FR"
"2021-11-16 23:36:04","http://20.199.99.253/CoreRats/shiko.x86","offline","malware_download","DDoS Bot|elf|mirai","20.199.99.253","20.199.99.253","8075","FR"
"2021-11-16 23:36:03","http://20.199.99.253/CoreRats/bins.sh","offline","malware_download","shellscript","20.199.99.253","20.199.99.253","8075","FR"
"2021-11-16 23:34:05","http://20.199.99.253/CoreRats/shiko.mips","offline","malware_download","DDoS Bot|elf|mirai","20.199.99.253","20.199.99.253","8075","FR"
"2021-11-16 13:00:34","http://20.24.80.149:36392/mozi.m","offline","malware_download","","20.24.80.149","20.24.80.149","8075","HK"
"2021-11-15 23:35:33","http://20.24.76.41:41510/mozi.m","offline","malware_download","","20.24.76.41","20.24.76.41","8075","HK"
"2021-11-15 12:51:08","http://20.197.192.183:4411/encodeddisk141121.zip","offline","malware_download","","20.197.192.183","20.197.192.183","8075","BR"
"2021-11-14 13:25:34","http://20.119.250.85/bins.sh","offline","malware_download","","20.119.250.85","20.119.250.85","8075","US"
"2021-11-14 13:23:06","http://20.24.74.231:55333/Mozi.a","offline","malware_download","Mozi","20.24.74.231","20.24.74.231","8075","HK"
"2021-11-12 21:50:24","http://20.24.76.41:40815/Mozi.a","offline","malware_download","Mozi","20.24.76.41","20.24.76.41","8075","HK"
"2021-11-12 10:50:11","http://20.199.96.7/CoreRats/shiko.mips?ddos","offline","malware_download","ddos|elf|mirai","20.199.96.7","20.199.96.7","8075","FR"
"2021-11-12 10:26:33","http://20.24.79.28:33906/mozi.m","offline","malware_download","","20.24.79.28","20.24.79.28","8075","HK"
"2021-11-11 18:04:32","http://20.24.75.133:43831/Mozi.m","offline","malware_download","Mozi","20.24.75.133","20.24.75.133","8075","HK"
"2021-11-11 13:41:06","http://20.199.96.7/CoreRats/shiko.arm?ddos/","offline","malware_download","32|arm|elf|mirai","20.199.96.7","20.199.96.7","8075","FR"
"2021-11-11 11:19:12","http://20.199.96.7/CoreRats/shiko.mpsl?ddos","offline","malware_download","ddos|elf|mirai","20.199.96.7","20.199.96.7","8075","FR"
"2021-11-10 11:06:13","http://20.199.96.7/CoreRats/shiko.arm?ddos","offline","malware_download","ddos|elf|mirai","20.199.96.7","20.199.96.7","8075","FR"
"2021-11-10 01:06:08","http://20.24.80.84:59358/Mozi.m","offline","malware_download","Mozi","20.24.80.84","20.24.80.84","8075","HK"
"2021-11-09 16:46:34","http://20.199.82.72/storage.php?e=Desktop-PC","offline","malware_download","BRA|geofenced|msi|trojan|zip","20.199.82.72","20.199.82.72","8075","FR"
"2021-11-09 15:36:04","https://forms.saurashtrauniversity.edu/sombrero.php?a=EAxfXw1PTUBfQwoQQgNJQiVCEFoCAAo%3D","offline","malware_download","","forms.saurashtrauniversity.edu","20.219.188.156","8075","IN"
"2021-11-09 11:34:09","http://20.199.96.7/CoreRats/shiko.x86?ddos","offline","malware_download","ddos|elf|mirai","20.199.96.7","20.199.96.7","8075","FR"
"2021-11-08 19:36:18","https://universe-computer.azurewebsites.net/method.php","offline","malware_download","bazarloader|dll","universe-computer.azurewebsites.net","20.119.0.50","8075","US"
"2021-11-08 18:10:06","https://forms.saurashtrauniversity.edu/foxglove.php?a=GwtVQAVHHl4cGzgeSRxAQwJLX0JDHBEEFAhfWEkZFEdJSBE%3D","offline","malware_download","","forms.saurashtrauniversity.edu","20.219.188.156","8075","IN"
"2021-11-08 15:50:07","http://20.199.96.7/CoreRats/shiko.m68k","offline","malware_download","32|elf|mirai|motorola","20.199.96.7","20.199.96.7","8075","FR"
"2021-11-08 15:50:05","http://20.199.96.7/CoreRats/shiko.sh4","offline","malware_download","32|elf|mirai|renesas","20.199.96.7","20.199.96.7","8075","FR"
"2021-11-08 15:49:12","http://20.199.96.7/CoreRats/shiko.arm5","offline","malware_download","32|arm|elf|mirai","20.199.96.7","20.199.96.7","8075","FR"
"2021-11-08 15:49:12","http://20.199.96.7/CoreRats/shiko.arm7","offline","malware_download","32|arm|elf|mirai","20.199.96.7","20.199.96.7","8075","FR"
"2021-11-08 15:49:11","http://20.199.96.7/CoreRats/shiko.mpsl","offline","malware_download","32|elf|mips|mirai","20.199.96.7","20.199.96.7","8075","FR"
"2021-11-08 15:49:11","http://20.199.96.7/CoreRats/shiko.ppc","offline","malware_download","32|elf|mirai|powerpc","20.199.96.7","20.199.96.7","8075","FR"
"2021-11-08 15:49:04","http://20.199.96.7/CoreRats/shiko.arm6","offline","malware_download","32|arm|elf|mirai","20.199.96.7","20.199.96.7","8075","FR"
"2021-11-08 15:49:04","http://20.199.96.7/CoreRats/shiko.mips","offline","malware_download","32|elf|mips|mirai","20.199.96.7","20.199.96.7","8075","FR"
"2021-11-08 15:18:04","http://20.199.96.7/CoreRats/shiko.arm","offline","malware_download","DDoS Bot|elf|mirai","20.199.96.7","20.199.96.7","8075","FR"
"2021-11-08 15:18:04","http://20.199.96.7/CoreRats/shiko.x86","offline","malware_download","DDoS Bot|elf|mirai","20.199.96.7","20.199.96.7","8075","FR"
"2021-11-08 15:14:04","http://20.199.96.7/CoreRats/shiko.spc","offline","malware_download","DDoS Bot|elf|mirai","20.199.96.7","20.199.96.7","8075","FR"
"2021-11-06 22:18:39","http://20.24.78.163:41208/Mozi.m","offline","malware_download","Mozi","20.24.78.163","20.24.78.163","8075","HK"
"2021-11-06 22:17:33","http://20.24.79.189:39272/Mozi.m","offline","malware_download","Mozi","20.24.79.189","20.24.79.189","8075","HK"
"2021-11-06 19:49:33","http://20.24.75.115:51483/mozi.m","offline","malware_download","","20.24.75.115","20.24.75.115","8075","HK"
"2021-11-05 15:15:04","http://104.41.201.33/team/bypass.txt","offline","malware_download","ascii|PowerShell|ps","104.41.201.33","104.41.201.33","8075","IE"
"2021-11-05 15:15:04","http://104.41.201.33/team/PE.txt","offline","malware_download","ascii|PowerShell|ps","104.41.201.33","104.41.201.33","8075","IE"
"2021-11-04 23:36:33","http://20.24.73.44:52894/mozi.a","offline","malware_download","","20.24.73.44","20.24.73.44","8075","HK"
"2021-11-04 16:26:04","http://104.41.201.33/bypass.txt","offline","malware_download","ascii|encoded|opendir|PowerShell|ps","104.41.201.33","104.41.201.33","8075","IE"
"2021-11-04 16:26:04","http://104.41.201.33/PE.txt","offline","malware_download","ascii|encoded|opendir|PowerShell|ps","104.41.201.33","104.41.201.33","8075","IE"
"2021-11-04 07:12:34","http://20.24.78.58:47046/mozi.m","offline","malware_download","","20.24.78.58","20.24.78.58","8075","HK"
"2021-11-03 15:56:06","https://forms.saurashtrauniversity.edu/baffled.php","online","malware_download","doc|hancitor|html","forms.saurashtrauniversity.edu","20.219.188.156","8075","IN"
"2021-11-03 11:26:05","http://paste.c-net.org/BitsyPlatform","offline","malware_download","","paste.c-net.org","20.100.184.134","8075","NO"
"2021-11-02 17:01:34","http://20.24.77.229:55768/Mozi.m","offline","malware_download","Mozi","20.24.77.229","20.24.77.229","8075","HK"
"2021-11-02 17:01:34","http://20.24.78.134:33040/Mozi.a","offline","malware_download","Mozi","20.24.78.134","20.24.78.134","8075","HK"
"2021-11-02 09:52:12","http://20.151.141.34/bins/sora.arm7","offline","malware_download","elf","20.151.141.34","20.151.141.34","8075","CA"
"2021-11-02 09:52:11","http://20.151.141.34/bins/sora.sh4","offline","malware_download","elf|Mirai","20.151.141.34","20.151.141.34","8075","CA"
"2021-11-02 09:52:07","http://20.151.141.34/bins/sora.arm6","offline","malware_download","elf|Mirai","20.151.141.34","20.151.141.34","8075","CA"
"2021-11-02 09:52:07","http://20.151.141.34/bins/sora.mpsl","offline","malware_download","elf|Mirai","20.151.141.34","20.151.141.34","8075","CA"
"2021-11-02 09:52:07","http://20.151.141.34/bins/sora.x86","offline","malware_download","elf|Mirai","20.151.141.34","20.151.141.34","8075","CA"
"2021-11-02 09:52:06","http://20.151.141.34/bins/sora.arm5","offline","malware_download","elf|Mirai","20.151.141.34","20.151.141.34","8075","CA"
"2021-11-02 09:52:06","http://20.151.141.34/bins/sora.ppc","offline","malware_download","elf|Mirai","20.151.141.34","20.151.141.34","8075","CA"
"2021-11-02 09:52:04","http://20.151.141.34/bins/sora.arm","offline","malware_download","elf|Mirai","20.151.141.34","20.151.141.34","8075","CA"
"2021-11-02 09:52:04","http://20.151.141.34/bins/sora.m68k","offline","malware_download","elf|Mirai","20.151.141.34","20.151.141.34","8075","CA"
"2021-11-02 09:52:04","http://20.151.141.34/bins/sora.mips","offline","malware_download","elf|Mirai","20.151.141.34","20.151.141.34","8075","CA"
"2021-11-02 08:34:10","http://1.186.218.228:35950/Mozi.a","offline","malware_download","elf|Mirai|Mozi","1.186.218.228","1.186.218.228","8075","GB"
"2021-11-02 07:43:33","http://20.24.79.96:56383/mozi.a","offline","malware_download","","20.24.79.96","20.24.79.96","8075","HK"
"2021-11-01 11:13:13","http://asbvihara.org.au/nullaminus/blanditiiseos-3230512","offline","malware_download","qbot","asbvihara.org.au","20.28.224.113","8075","AU"
"2021-11-01 11:12:17","http://asbvihara.org.au/nullaminus/etcorporis-2522184","offline","malware_download","qbot","asbvihara.org.au","20.28.224.113","8075","AU"
"2021-11-01 07:06:04","http://20.102.53.71/pcs/screenshot.exe","offline","malware_download","32|exe|Formbook","20.102.53.71","20.102.53.71","8075","US"
"2021-10-31 06:04:33","http://20.24.75.53:43517/mozi.a","offline","malware_download","","20.24.75.53","20.24.75.53","8075","HK"
"2021-10-30 09:58:34","http://20.24.74.16:45902/mozi.m","offline","malware_download","","20.24.74.16","20.24.74.16","8075","HK"
"2021-10-30 06:40:03","http://40.85.140.7/bypass.txt","offline","malware_download","ascii|PowerShell|ps","40.85.140.7","40.85.140.7","8075","IE"
"2021-10-30 06:39:04","http://40.85.140.7/PE.txt","offline","malware_download","ascii|PowerShell|ps","40.85.140.7","40.85.140.7","8075","IE"
"2021-10-29 18:24:33","http://20.24.79.92:34190/mozi.a","offline","malware_download","","20.24.79.92","20.24.79.92","8075","HK"
"2021-10-29 17:25:05","http://20.24.74.75:47208/Mozi.a","offline","malware_download","Mozi","20.24.74.75","20.24.74.75","8075","HK"
"2021-10-29 17:25:04","http://20.24.77.101:45779/Mozi.a","offline","malware_download","Mozi","20.24.77.101","20.24.77.101","8075","HK"
"2021-10-29 16:21:10","http://btime1624.duckdns.org/E/New%20folder/Async7842.exe","offline","malware_download","32|AsyncRAT|exe","btime1624.duckdns.org","13.78.209.105","8075","US"
"2021-10-29 16:20:11","http://btime1624.duckdns.org/D/Servers/7632KL.exe","offline","malware_download","32|exe|NanoCore","btime1624.duckdns.org","13.78.209.105","8075","US"
"2021-10-29 16:20:11","http://btime1624.duckdns.org/D/Servers/Netwire_prevent.exe","offline","malware_download","32|exe|NetWire","btime1624.duckdns.org","13.78.209.105","8075","US"
"2021-10-29 16:20:11","http://btime1624.duckdns.org/E/New%20folder/8903.exe","offline","malware_download","32|exe|NanoCore","btime1624.duckdns.org","13.78.209.105","8075","US"
"2021-10-29 16:20:10","http://btime1624.duckdns.org/D/Servers/AsyncClient.exe","offline","malware_download","32|AsyncRAT|exe","btime1624.duckdns.org","13.78.209.105","8075","US"
"2021-10-29 16:20:10","http://btime1624.duckdns.org/E/AsyncClient6121.exe","offline","malware_download","32|AsyncRAT|exe","btime1624.duckdns.org","13.78.209.105","8075","US"
"2021-10-29 16:20:06","http://13.78.209.105/E/New%20folder/8903.exe","offline","malware_download","32|exe|NanoCore","13.78.209.105","13.78.209.105","8075","US"
"2021-10-29 16:20:06","http://13.78.209.105/E/New%20folder/Async7842.exe","offline","malware_download","32|AsyncRAT|exe","13.78.209.105","13.78.209.105","8075","US"
"2021-10-29 16:14:05","http://btime1624.duckdns.org/B/8903MBACK.exe","offline","malware_download","32|exe|NanoCore","btime1624.duckdns.org","13.78.209.105","8075","US"
"2021-10-29 16:14:05","http://btime1624.duckdns.org/D/Servers/HostKfkk.exe","offline","malware_download","32|exe|NetWire","btime1624.duckdns.org","13.78.209.105","8075","US"
"2021-10-29 16:14:05","http://btime1624.duckdns.org/E/nano6129.exe","offline","malware_download","32|exe|NanoCore","btime1624.duckdns.org","13.78.209.105","8075","US"
"2021-10-29 16:14:05","http://btime1624.duckdns.org/E/New%20folder/7632.exe","offline","malware_download","32|exe|NanoCore","btime1624.duckdns.org","13.78.209.105","8075","US"
"2021-10-29 16:14:05","http://btime1624.duckdns.org/E/New%20folder/Host.exe","offline","malware_download","32|exe|NetWire","btime1624.duckdns.org","13.78.209.105","8075","US"
"2021-10-29 16:14:04","http://13.78.209.105/d/servers/7632KL.exe","offline","malware_download","32|exe|NanoCore","13.78.209.105","13.78.209.105","8075","US"
"2021-10-29 16:14:04","http://13.78.209.105/E/ClientDC.exe","offline","malware_download","32|DCRat|exe","13.78.209.105","13.78.209.105","8075","US"
"2021-10-29 16:14:04","http://13.78.209.105/E/New%20folder/7632.exe","offline","malware_download","32|exe|NanoCore","13.78.209.105","13.78.209.105","8075","US"
"2021-10-29 16:14:04","http://13.78.209.105/E/New%20folder/Host.exe","offline","malware_download","32|exe|NetWire","13.78.209.105","13.78.209.105","8075","US"
"2021-10-29 16:07:15","http://btime1624.duckdns.org/D/Servers/8093mm.exe","offline","malware_download","32|exe|NanoCore","btime1624.duckdns.org","13.78.209.105","8075","US"
"2021-10-29 16:07:04","http://13.78.209.105/D/Servers/Netwire_prevent.exe","offline","malware_download","32|exe|NetWire","13.78.209.105","13.78.209.105","8075","US"
"2021-10-29 15:59:04","http://13.78.209.105/D/Servers/AsyncClient.exe","offline","malware_download","32|AsyncRAT|exe","13.78.209.105","13.78.209.105","8075","US"
"2021-10-29 15:59:04","http://13.78.209.105/E/nano6129.exe","offline","malware_download","Nanocore","13.78.209.105","13.78.209.105","8075","US"
"2021-10-29 15:54:04","http://13.78.209.105/d/servers/hostkfkk.exe","offline","malware_download","32|exe|NetWire","13.78.209.105","13.78.209.105","8075","US"
"2021-10-29 15:53:07","https://btime1624.duckdns.org/B/AsyncClient7842.exe","offline","malware_download","32|AsyncRAT|exe","btime1624.duckdns.org","13.78.209.105","8075","US"
"2021-10-29 15:53:07","https://btime1624.duckdns.org/B/Host.exe","offline","malware_download","32|exe|NetWire","btime1624.duckdns.org","13.78.209.105","8075","US"
"2021-10-29 15:53:04","http://13.78.209.105/B/AsyncClient7842.exe","offline","malware_download","32|AsyncRAT|exe","13.78.209.105","13.78.209.105","8075","US"
"2021-10-29 15:53:04","http://13.78.209.105/b/host.exe","offline","malware_download","32|exe|NetWire","13.78.209.105","13.78.209.105","8075","US"
"2021-10-29 15:53:04","http://13.78.209.105/d/servers/8093mm.exe","offline","malware_download","32|exe|NanoCore","13.78.209.105","13.78.209.105","8075","US"
"2021-10-29 15:43:03","http://13.78.209.105/b/7632just.exe","offline","malware_download","32|exe|NanoCore","13.78.209.105","13.78.209.105","8075","US"
"2021-10-29 15:38:12","http://btime1624.duckdns.org/B/7632JUST.exe","offline","malware_download","32|exe|NanoCore","btime1624.duckdns.org","13.78.209.105","8075","US"
"2021-10-29 15:38:05","http://13.78.209.105/b/8903mback.exe","offline","malware_download","32|exe|NanoCore","13.78.209.105","13.78.209.105","8075","US"
"2021-10-29 09:40:04","http://20.102.53.71/mvn/systemdc.exe","offline","malware_download","32|exe|Formbook","20.102.53.71","20.102.53.71","8075","US"
"2021-10-29 08:27:05","http://20.102.53.71/mic/awsa.exe","offline","malware_download","32|exe|Formbook","20.102.53.71","20.102.53.71","8075","US"
"2021-10-29 05:44:05","http://52.150.26.35/PE.txt","offline","malware_download","ascii|AsyncRAT|PowerShell|ps|RAT","52.150.26.35","52.150.26.35","8075","US"
"2021-10-29 05:44:04","http://52.150.26.35/bypass.txt","offline","malware_download","ascii|AsyncRAT|PowerShell|ps|RAT","52.150.26.35","52.150.26.35","8075","US"
"2021-10-27 16:49:34","http://20.24.79.189:53995/mozi.m","offline","malware_download","","20.24.79.189","20.24.79.189","8075","HK"
"2021-10-26 08:05:05","http://137.135.65.29/bypass.txt","offline","malware_download","","137.135.65.29","137.135.65.29","8075","US"
"2021-10-26 08:05:05","http://137.135.65.29/PE.txt","offline","malware_download","","137.135.65.29","137.135.65.29","8075","US"
"2021-10-25 13:25:34","http://20.24.76.178:34481/mozi.m","offline","malware_download","","20.24.76.178","20.24.76.178","8075","HK"
"2021-10-23 05:08:05","http://40.69.216.184/get/iron-ore.txt","offline","malware_download","ascii|BitRAT|opendir|PowerShell|ps|RAT","40.69.216.184","40.69.216.184","8075","IE"
"2021-10-23 05:08:04","http://40.69.216.184/fri-10/bypass.txt","offline","malware_download","ascii|opendir|PowerShell|ps|RAT","40.69.216.184","40.69.216.184","8075","IE"
"2021-10-23 05:08:04","http://40.69.216.184/fri-10/Server.txt","offline","malware_download","ascii|opendir|PowerShell|ps|RAT","40.69.216.184","40.69.216.184","8075","IE"
"2021-10-23 05:08:04","http://40.69.216.184/get/5tons.txt","offline","malware_download","ascii|BitRAT|opendir|PowerShell|ps|RAT","40.69.216.184","40.69.216.184","8075","IE"
"2021-10-22 18:03:34","http://20.24.76.38:60443/Mozi.m","offline","malware_download","Mozi","20.24.76.38","20.24.76.38","8075","HK"
"2021-10-22 12:36:34","http://20.24.76.22:41750/mozi.m","offline","malware_download","","20.24.76.22","20.24.76.22","8075","HK"
"2021-10-21 07:07:32","http://20.24.74.162:49067/mozi.m","offline","malware_download","","20.24.74.162","20.24.74.162","8075","HK"
"2021-10-20 20:17:34","http://20.24.77.164:45343/mozi.m","offline","malware_download","","20.24.77.164","20.24.77.164","8075","HK"
"2021-10-20 14:51:19","https://happyhostworld.com/etipsa/documents.zip","offline","malware_download","TR|zip","happyhostworld.com","40.76.197.179","8075","US"
"2021-10-20 09:03:34","http://20.24.73.92:36782/Mozi.m","offline","malware_download","Mozi","20.24.73.92","20.24.73.92","8075","HK"
"2021-10-19 12:14:33","http://20.24.78.30:52173/mozi.m","offline","malware_download","","20.24.78.30","20.24.78.30","8075","HK"
"2021-10-19 08:34:33","http://20.24.78.195:42170/Mozi.m","offline","malware_download","Mozi","20.24.78.195","20.24.78.195","8075","HK"
"2021-10-19 05:21:34","http://20.24.74.162:57525/mozi.m","offline","malware_download","","20.24.74.162","20.24.74.162","8075","HK"
"2021-10-18 20:03:05","http://13.69.175.115/bypass.txt","offline","malware_download","ascii|NjRAT|opendir|PowerShell|ps|RAT","13.69.175.115","13.69.175.115","8075","IE"
"2021-10-18 20:03:05","http://13.69.175.115/Server.txt","offline","malware_download","ascii|NjRAT|opendir|PowerShell|ps|RAT","13.69.175.115","13.69.175.115","8075","IE"
"2021-10-18 19:43:15","http://20.196.200.76/dashboard/Server.txt","offline","malware_download","ascii|opendir|PowerShell|ps|RAT","20.196.200.76","20.196.200.76","8075","KR"
"2021-10-18 19:43:04","http://20.196.200.76/dashboard/index/bypass.txt","offline","malware_download","ascii|opendir|PowerShell|ps|RAT","20.196.200.76","20.196.200.76","8075","KR"
"2021-10-18 19:42:05","http://20.196.200.76/11109-pServer.txt","offline","malware_download","ascii|NjRAT|opendir|PowerShell|ps|RAT","20.196.200.76","20.196.200.76","8075","KR"
"2021-10-18 19:42:04","http://20.196.200.76/110209-bypass.txt","offline","malware_download","ascii|NjRAT|opendir|PowerShell|ps|RAT","20.196.200.76","20.196.200.76","8075","KR"
"2021-10-18 07:43:04","http://13.92.100.208/off/office.exe","offline","malware_download","32|AveMariaRAT|exe|Formbook","13.92.100.208","13.92.100.208","8075","US"
"2021-10-18 00:04:05","http://1.186.218.228:33600/Mozi.m","offline","malware_download","Mozi","1.186.218.228","1.186.218.228","8075","GB"
"2021-10-16 06:37:10","http://20.79.250.121/mirai.spc","offline","malware_download","elf|mirai","20.79.250.121","20.79.250.121","8075","DE"
"2021-10-16 06:37:08","http://20.79.250.121/mirai.x86","offline","malware_download","elf|mirai","20.79.250.121","20.79.250.121","8075","DE"
"2021-10-16 06:37:07","http://20.79.250.121/mirai.sh4","offline","malware_download","elf|mirai","20.79.250.121","20.79.250.121","8075","DE"
"2021-10-16 06:36:14","http://20.79.250.121/mirai.arm7","offline","malware_download","elf|mirai","20.79.250.121","20.79.250.121","8075","DE"
"2021-10-16 06:36:13","http://20.79.250.121/mirai.mpsl","offline","malware_download","elf|mirai","20.79.250.121","20.79.250.121","8075","DE"
"2021-10-16 06:36:11","http://20.79.250.121/mirai.arm","offline","malware_download","elf|mirai","20.79.250.121","20.79.250.121","8075","DE"
"2021-10-16 06:36:04","http://20.79.250.121/mirai.m68k","offline","malware_download","elf|mirai","20.79.250.121","20.79.250.121","8075","DE"
"2021-10-16 06:36:04","http://20.79.250.121/mirai.mips","offline","malware_download","elf|mirai","20.79.250.121","20.79.250.121","8075","DE"
"2021-10-16 06:36:04","http://20.79.250.121/mirai.ppc","offline","malware_download","elf|mirai","20.79.250.121","20.79.250.121","8075","DE"
"2021-10-15 15:03:34","http://20.24.76.184:37359/Mozi.m","offline","malware_download","Mozi","20.24.76.184","20.24.76.184","8075","HK"
"2021-10-15 10:54:04","http://20.69.160.69/reaper/reap.ppc","offline","malware_download","DDoS Bot|elf|mirai","20.69.160.69","20.69.160.69","8075","US"
"2021-10-15 07:10:34","http://20.24.80.54:34273/mozi.a","offline","malware_download","","20.24.80.54","20.24.80.54","8075","HK"
"2021-10-15 06:33:04","http://13.92.100.208/drfk/audio.exe","offline","malware_download","32|exe|Formbook","13.92.100.208","13.92.100.208","8075","US"
"2021-10-15 04:28:04","http://13.92.100.208/fmd/audio.exe","offline","malware_download","32|exe|Formbook","13.92.100.208","13.92.100.208","8075","US"
"2021-10-15 03:04:33","http://20.24.74.71:41595/Mozi.m","offline","malware_download","Mozi","20.24.74.71","20.24.74.71","8075","HK"
"2021-10-14 22:40:33","http://20.24.74.59:37195/mozi.m","offline","malware_download","","20.24.74.59","20.24.74.59","8075","HK"
"2021-10-14 09:07:03","http://20.69.160.69/reaper/reap.m68k","offline","malware_download","DDoS Bot|elf|mirai","20.69.160.69","20.69.160.69","8075","US"
"2021-10-13 11:36:04","http://13.92.100.208/toss/image.exe","offline","malware_download","32|exe|Formbook","13.92.100.208","13.92.100.208","8075","US"
"2021-10-13 11:24:33","http://20.24.78.86:58875/mozi.a","offline","malware_download","","20.24.78.86","20.24.78.86","8075","HK"
"2021-10-13 08:58:16","http://20.69.160.69/reaper/reap.arm7","offline","malware_download","DDoS Bot|elf|mirai","20.69.160.69","20.69.160.69","8075","US"
"2021-10-13 00:41:33","http://20.24.74.59:53459/mozi.m","offline","malware_download","","20.24.74.59","20.24.74.59","8075","HK"
"2021-10-12 15:32:04","http://13.92.100.208/msm/wins.exe","offline","malware_download","32|exe|Formbook","13.92.100.208","13.92.100.208","8075","US"
"2021-10-12 09:14:04","http://20.69.160.69/reaper/reap.arm6","offline","malware_download","DDoS Bot|elf|mirai","20.69.160.69","20.69.160.69","8075","US"
"2021-10-11 20:22:03","http://13.92.100.208/beco/system.exe","offline","malware_download","32|exe|Formbook","13.92.100.208","13.92.100.208","8075","US"
"2021-10-11 13:59:11","http://20.69.160.69/reaper/reap.mips","offline","malware_download","DDoS Bot|elf|mirai","20.69.160.69","20.69.160.69","8075","US"
"2021-10-11 13:59:09","http://20.69.160.69/reaper/reap.arm","offline","malware_download","DDoS Bot|elf|mirai","20.69.160.69","20.69.160.69","8075","US"
"2021-10-11 13:59:09","http://20.69.160.69/reaper/reap.arm5","offline","malware_download","DDoS Bot|elf|mirai","20.69.160.69","20.69.160.69","8075","US"
"2021-10-11 13:59:04","http://20.69.160.69/reaper/reap.mpsl","offline","malware_download","DDoS Bot|elf|mirai","20.69.160.69","20.69.160.69","8075","US"
"2021-10-11 10:54:04","http://13.92.100.208/au/audio.exe","offline","malware_download","32|exe|Formbook","13.92.100.208","13.92.100.208","8075","US"
"2021-10-11 04:57:33","http://20.24.80.114:50635/mozi.m","offline","malware_download","","20.24.80.114","20.24.80.114","8075","HK"
"2021-10-10 16:54:33","http://20.24.74.189:46355/mozi.a","offline","malware_download","","20.24.74.189","20.24.74.189","8075","HK"
"2021-10-09 18:23:33","http://20.24.77.25:45766/mozi.m","offline","malware_download","","20.24.77.25","20.24.77.25","8075","HK"
"2021-10-09 18:04:34","http://20.24.79.104:38096/Mozi.m","offline","malware_download","Mozi","20.24.79.104","20.24.79.104","8075","HK"
"2021-10-09 11:37:32","http://20.24.79.14:43345/mozi.m","offline","malware_download","","20.24.79.14","20.24.79.14","8075","HK"
"2021-10-08 08:09:03","http://13.92.100.208/toks/audio.exe","offline","malware_download","32|exe|Formbook","13.92.100.208","13.92.100.208","8075","US"
"2021-10-08 01:07:33","http://20.24.74.158:38539/mozi.a","offline","malware_download","","20.24.74.158","20.24.74.158","8075","HK"
"2021-10-07 08:26:33","http://20.24.79.14:59288/mozi.m","offline","malware_download","","20.24.79.14","20.24.79.14","8075","HK"
"2021-10-06 18:14:02","http://51.140.189.31/Sakura.sh","offline","malware_download","","51.140.189.31","51.140.189.31","8075","GB"
"2021-10-05 19:55:11","http://1.186.218.228:58346/mozi.a","offline","malware_download","","1.186.218.228","1.186.218.228","8075","GB"
"2021-10-05 14:24:34","http://20.24.80.174:39671/mozi.a","offline","malware_download","","20.24.80.174","20.24.80.174","8075","HK"
"2021-10-05 12:14:33","http://20.24.80.128:40002/Mozi.a","offline","malware_download","","20.24.80.128","20.24.80.128","8075","HK"
"2021-10-05 10:22:33","http://20.24.80.168:39597/mozi.m","offline","malware_download","","20.24.80.168","20.24.80.168","8075","HK"
"2021-10-03 05:47:33","http://20.24.74.56:49841/mozi.m","offline","malware_download","","20.24.74.56","20.24.74.56","8075","HK"
"2021-10-02 14:50:32","http://20.24.75.155:43944/mozi.a","offline","malware_download","","20.24.75.155","20.24.75.155","8075","HK"
"2021-10-02 06:03:33","http://20.24.78.60:34155/Mozi.m","offline","malware_download","Mozi","20.24.78.60","20.24.78.60","8075","HK"
"2021-10-01 07:07:04","http://13.92.100.208/adobe/adobe.exe","offline","malware_download","AveMariaRAT|exe|opendir|RAT","13.92.100.208","13.92.100.208","8075","US"
"2021-10-01 07:01:04","http://13.92.100.208/ucm/photo.exe","offline","malware_download","AveMariaRAT|exe|opendir|RAT","13.92.100.208","13.92.100.208","8075","US"
"2021-09-30 07:00:15","https://gee.ae/VideoPlayer.apk","offline","malware_download","","gee.ae","20.174.11.89","8075","AE"
"2021-09-28 09:32:34","http://13.92.100.208/doc/doc.exe","offline","malware_download","AveMariaRAT|exe|opendir|RAT","13.92.100.208","13.92.100.208","8075","US"
"2021-09-28 05:58:05","http://13.78.207.84/broady.txt","offline","malware_download","AsyncRAT|PowerShell|ps|RAT","13.78.207.84","13.78.207.84","8075","US"
"2021-09-28 05:58:04","http://13.78.207.84/bodyONME.txt","offline","malware_download","AsyncRAT|PowerShell|ps|RAT","13.78.207.84","13.78.207.84","8075","US"
"2021-09-27 09:03:40","http://20.24.80.212:41218/Mozi.m","offline","malware_download","Mozi","20.24.80.212","20.24.80.212","8075","HK"
"2021-09-27 08:48:05","http://13.92.100.208/tcm/audio.exe","offline","malware_download","AveMariaRAT|exe|opendir|RAT","13.92.100.208","13.92.100.208","8075","US"
"2021-09-27 03:05:34","http://20.24.73.182:41077/mozi.m","offline","malware_download","","20.24.73.182","20.24.73.182","8075","HK"
"2021-09-27 02:44:33","http://20.24.76.60:33985/mozi.m","offline","malware_download","","20.24.76.60","20.24.76.60","8075","HK"
"2021-09-27 00:03:33","http://20.24.75.155:49481/Mozi.m","offline","malware_download","Mozi","20.24.75.155","20.24.75.155","8075","HK"
"2021-09-26 20:44:33","http://20.24.76.60:46506/mozi.m","offline","malware_download","","20.24.76.60","20.24.76.60","8075","HK"
"2021-09-26 18:19:33","http://20.24.75.248:57960/mozi.m","offline","malware_download","","20.24.75.248","20.24.75.248","8075","HK"
"2021-09-25 18:04:37","http://20.24.79.105:38087/Mozi.m","offline","malware_download","Mozi","20.24.79.105","20.24.79.105","8075","HK"
"2021-09-25 17:57:33","http://20.24.74.10:41450/mozi.a","offline","malware_download","","20.24.74.10","20.24.74.10","8075","HK"
"2021-09-24 18:26:03","http://104.41.205.251/dashboard/majit.txt","offline","malware_download","AsyncRAT|encoded|PowerShell|ps|RAT","104.41.205.251","104.41.205.251","8075","IE"
"2021-09-24 18:26:03","http://104.41.205.251/dashboard/majoy.txt","offline","malware_download","AsyncRAT|encoded|PowerShell|ps|RAT","104.41.205.251","104.41.205.251","8075","IE"
"2021-09-24 15:04:33","http://20.24.74.14:45839/Mozi.m","offline","malware_download","Mozi","20.24.74.14","20.24.74.14","8075","HK"
"2021-09-24 12:37:33","http://20.24.78.103:40601/mozi.m","offline","malware_download","","20.24.78.103","20.24.78.103","8075","HK"
"2021-09-23 18:22:38","https://teamproject.link/assets/global/plugins/jquery-file-upload/server/php/files/thermodynamic.php","offline","malware_download","doc|hancitor|html","teamproject.link","52.231.68.3","8075","KR"
"2021-09-23 18:22:31","https://teamproject.link/assets/global/plugins/jquery-file-upload/server/php/files/beryllium.php","offline","malware_download","doc|hancitor|html","teamproject.link","52.231.68.3","8075","KR"
"2021-09-23 18:22:26","https://teamproject.link/assets/global/plugins/jquery-file-upload/server/php/files/sweetie.php","offline","malware_download","doc|hancitor|html","teamproject.link","52.231.68.3","8075","KR"
"2021-09-23 18:22:14","https://teamproject.link/assets/global/plugins/jquery-file-upload/server/php/files/peck.php","offline","malware_download","doc|hancitor|html","teamproject.link","52.231.68.3","8075","KR"
"2021-09-23 14:13:32","http://20.24.74.248:57938/mozi.m","offline","malware_download","","20.24.74.248","20.24.74.248","8075","HK"
"2021-09-23 00:50:33","http://20.0.255.168:38731/mozi.m","offline","malware_download","","20.0.255.168","20.0.255.168","8075","GB"
"2021-09-22 17:31:34","http://20.24.76.100:58024/mozi.m","offline","malware_download","","20.24.76.100","20.24.76.100","8075","HK"
"2021-09-22 17:25:03","http://40.127.142.17/img/bypass.txt","offline","malware_download","opendir|PowerShell|ps|RAT","40.127.142.17","40.127.142.17","8075","IE"
"2021-09-22 17:25:03","http://40.127.142.17/img/Server.txt","offline","malware_download","opendir|PowerShell|ps|RAT","40.127.142.17","40.127.142.17","8075","IE"
"2021-09-22 17:24:03","http://40.127.142.17/bypass.txt","offline","malware_download","NanoCore|opendir|Powershell|ps|RAT","40.127.142.17","40.127.142.17","8075","IE"
"2021-09-22 17:24:03","http://40.127.142.17/Server.txt","offline","malware_download","NanoCore|opendir|Powershell|ps|RAT","40.127.142.17","40.127.142.17","8075","IE"
"2021-09-22 09:57:32","http://20.24.77.84:56081/mozi.m","offline","malware_download","","20.24.77.84","20.24.77.84","8075","HK"
"2021-09-21 10:42:34","http://20.24.74.248:46892/mozi.m","offline","malware_download","","20.24.74.248","20.24.74.248","8075","HK"
"2021-09-21 06:53:33","http://20.24.76.250:48161/mozi.a","offline","malware_download","","20.24.76.250","20.24.76.250","8075","HK"
"2021-09-20 17:53:08","http://52.231.98.236/dashboard/Server.txt","offline","malware_download","NanoCore|opendir|PowerShell|ps|RAT","52.231.98.236","52.231.98.236","8075","KR"
"2021-09-20 17:53:06","http://52.231.98.236/Server.txt","offline","malware_download","NanoCore|opendir|PowerShell|ps|RAT","52.231.98.236","52.231.98.236","8075","KR"
"2021-09-20 17:53:04","http://52.231.98.236/bypass.txt","offline","malware_download","NanoCore|opendir|PowerShell|ps|RAT","52.231.98.236","52.231.98.236","8075","KR"
"2021-09-20 17:53:04","http://52.231.98.236/dashboard/index/bypass.txt","offline","malware_download","NanoCore|opendir|PowerShell|ps|RAT","52.231.98.236","52.231.98.236","8075","KR"
"2021-09-20 11:53:33","http://20.24.73.122:49820/mozi.m","offline","malware_download","","20.24.73.122","20.24.73.122","8075","HK"
"2021-09-20 10:11:33","http://20.24.77.84:40487/mozi.m","offline","malware_download","","20.24.77.84","20.24.77.84","8075","HK"
"2021-09-20 09:48:04","http://52.165.230.106/","offline","malware_download","","52.165.230.106","52.165.230.106","8075","US"
"2021-09-20 09:48:04","http://52.165.230.106/index.html","offline","malware_download","","52.165.230.106","52.165.230.106","8075","US"
"2021-09-20 09:48:04","http://52.165.230.106/MSOfficeUpdate.cab","offline","malware_download","","52.165.230.106","52.165.230.106","8075","US"
"2021-09-18 00:35:33","http://20.0.255.177:58489/mozi.m","offline","malware_download","","20.0.255.177","20.0.255.177","8075","GB"
"2021-09-17 11:17:33","http://20.24.79.148:56658/mozi.a","offline","malware_download","","20.24.79.148","20.24.79.148","8075","HK"
"2021-09-16 16:44:34","http://20.0.255.232:49399/mozi.m","offline","malware_download","","20.0.255.232","20.0.255.232","8075","GB"
"2021-09-16 13:48:34","http://20.24.79.150:52575/mozi.a","offline","malware_download","","20.24.79.150","20.24.79.150","8075","HK"
"2021-09-13 19:55:33","http://20.24.78.89:55391/mozi.a","offline","malware_download","","20.24.78.89","20.24.78.89","8075","HK"
"2021-09-13 08:17:07","http://sapworkflow13.azurefd.net/auth/AP%20Payout%20Report.jar","offline","malware_download","","sapworkflow13.azurefd.net","13.107.253.45","8075","US"
"2021-09-13 05:00:33","http://172.168.1.230:48468/mozi.a","offline","malware_download","","172.168.1.230","172.168.1.230","8075","US"
"2021-09-12 15:39:32","http://20.24.75.240:42395/mozi.a","offline","malware_download","","20.24.75.240","20.24.75.240","8075","HK"
"2021-09-11 18:04:31","http://20.24.77.167:57189/mozi.a","offline","malware_download","","20.24.77.167","20.24.77.167","8075","HK"
"2021-09-11 00:04:33","http://20.24.77.167:55875/Mozi.m","offline","malware_download","Mozi","20.24.77.167","20.24.77.167","8075","HK"
"2021-09-10 15:03:33","http://172.168.1.230:48468/Mozi.m","offline","malware_download","Mozi","172.168.1.230","172.168.1.230","8075","US"
"2021-09-10 10:13:33","http://20.24.75.240:46087/mozi.m","offline","malware_download","","20.24.75.240","20.24.75.240","8075","HK"
"2021-09-09 06:24:33","http://20.24.75.133:38786/mozi.a","offline","malware_download","","20.24.75.133","20.24.75.133","8075","HK"
"2021-09-06 15:08:33","http://20.24.75.4:35897/mozi.m","offline","malware_download","","20.24.75.4","20.24.75.4","8075","HK"
"2021-09-06 07:47:33","http://20.24.79.226:40797/mozi.a","offline","malware_download","","20.24.79.226","20.24.79.226","8075","HK"
"2021-09-05 11:46:34","http://20.24.78.47:40676/mozi.m","offline","malware_download","","20.24.78.47","20.24.78.47","8075","HK"
"2021-09-04 14:12:33","http://20.24.74.202:60413/mozi.a","offline","malware_download","","20.24.74.202","20.24.74.202","8075","HK"
"2021-09-03 21:38:33","http://20.24.80.198:55794/mozi.a","offline","malware_download","","20.24.80.198","20.24.80.198","8075","HK"
"2021-09-03 14:52:33","http://20.24.77.42:59302/mozi.a","offline","malware_download","","20.24.77.42","20.24.77.42","8075","HK"
"2021-09-03 12:11:04","http://20.80.179.176/au/audio.exe","offline","malware_download","32|AveMariaRAT|exe","20.80.179.176","20.80.179.176","8075","US"
"2021-09-03 12:11:04","http://20.80.179.176/dc/skype.exe","offline","malware_download","32|AveMariaRAT|exe","20.80.179.176","20.80.179.176","8075","US"
"2021-09-03 10:54:33","http://20.24.78.25:36241/mozi.a","offline","malware_download","","20.24.78.25","20.24.78.25","8075","HK"
"2021-09-03 03:36:33","http://20.24.79.144:35038/mozi.m","offline","malware_download","","20.24.79.144","20.24.79.144","8075","HK"
"2021-09-02 13:43:04","http://20.80.179.176/win/search.exe","offline","malware_download","AveMariaRAT|exe|opendir","20.80.179.176","20.80.179.176","8075","US"
"2021-09-02 13:43:03","http://20.80.179.176/htm/oldone","offline","malware_download","opendir|PowerShell|ps","20.80.179.176","20.80.179.176","8075","US"
"2021-08-31 16:31:33","http://20.24.78.26:59257/mozi.m","offline","malware_download","","20.24.78.26","20.24.78.26","8075","HK"
"2021-08-31 15:23:33","http://20.24.75.80:44874/mozi.a","offline","malware_download","","20.24.75.80","20.24.75.80","8075","HK"
"2021-08-31 08:38:05","http://20.80.179.176/mail/foxmail.exe","offline","malware_download","AveMariaRAT|exe|opendir|RAT","20.80.179.176","20.80.179.176","8075","US"
"2021-08-31 00:11:33","http://20.24.78.26:48159/mozi.a","offline","malware_download","","20.24.78.26","20.24.78.26","8075","HK"
"2021-08-30 23:28:33","http://20.24.73.59:60260/mozi.a","offline","malware_download","","20.24.73.59","20.24.73.59","8075","HK"
"2021-08-29 20:25:33","http://20.24.79.58:37015/mozi.m","offline","malware_download","","20.24.79.58","20.24.79.58","8075","HK"
"2021-08-29 01:44:33","http://20.24.79.58:49445/mozi.a","offline","malware_download","","20.24.79.58","20.24.79.58","8075","HK"
"2021-08-28 10:30:33","http://20.24.78.127:53443/mozi.m","offline","malware_download","","20.24.78.127","20.24.78.127","8075","HK"
"2021-08-27 13:56:33","http://20.24.76.114:43782/mozi.m","offline","malware_download","","20.24.76.114","20.24.76.114","8075","HK"
"2021-08-25 16:10:33","http://20.24.79.211:42393/mozi.m","offline","malware_download","","20.24.79.211","20.24.79.211","8075","HK"
"2021-08-25 10:53:33","http://20.24.73.27:45601/mozi.a","offline","malware_download","","20.24.73.27","20.24.73.27","8075","HK"
"2021-08-25 04:26:04","https://forms.saurashtrauniversity.edu/crampons.php","offline","malware_download","","forms.saurashtrauniversity.edu","20.219.188.156","8075","IN"
"2021-08-23 19:59:06","http://waskitaprecast.co.id/Microsoft.exe","offline","malware_download","RedLineStealer","waskitaprecast.co.id","168.63.235.129","8075","SG"
"2021-08-23 19:51:07","http://waskitaprecast.co.id/Windows.exe","offline","malware_download","RedLineStealer","waskitaprecast.co.id","168.63.235.129","8075","SG"
"2021-08-23 19:47:27","http://waskitaprecast.co.id/Explorer.exe","offline","malware_download","CoinMiner","waskitaprecast.co.id","168.63.235.129","8075","SG"
"2021-08-22 17:35:34","http://20.24.76.86:52062/mozi.a","offline","malware_download","","20.24.76.86","20.24.76.86","8075","HK"
"2021-08-21 22:51:33","http://20.24.76.114:53714/mozi.m","offline","malware_download","","20.24.76.114","20.24.76.114","8075","HK"
"2021-08-20 12:51:33","http://20.24.75.153:54235/mozi.a","offline","malware_download","","20.24.75.153","20.24.75.153","8075","HK"
"2021-08-18 19:28:33","http://20.24.79.52:40231/mozi.m","offline","malware_download","","20.24.79.52","20.24.79.52","8075","HK"
"2021-08-17 05:55:13","http://23.102.184.147/pm13/pm13.png","offline","malware_download","banker|brazil|ousaban","23.102.184.147","23.102.184.147","8075","US"
"2021-08-16 18:04:05","http://104.215.147.160/newwords.iso","offline","malware_download","banker|brazil|georestricted|trojan","104.215.147.160","104.215.147.160","8075","SG"
"2021-08-15 11:40:34","http://20.24.80.166:47433/mozi.a","offline","malware_download","","20.24.80.166","20.24.80.166","8075","HK"
"2021-08-14 13:05:33","http://20.24.80.6:39892/mozi.m","offline","malware_download","","20.24.80.6","20.24.80.6","8075","HK"
"2021-08-14 08:13:04","http://20.24.80.116:38585/mozi.a","offline","malware_download","","20.24.80.116","20.24.80.116","8075","HK"
"2021-08-13 05:52:33","http://20.24.75.153:37545/mozi.a","offline","malware_download","","20.24.75.153","20.24.75.153","8075","HK"
"2021-08-12 06:20:10","http://23.96.81.73/pdx1/pdx1.png","offline","malware_download","zip","23.96.81.73","23.96.81.73","8075","US"
"2021-08-11 18:03:36","http://20.24.73.35:35640/Mozi.m","offline","malware_download","Mozi","20.24.73.35","20.24.73.35","8075","HK"
"2021-08-11 11:43:35","http://172.168.1.230:45893/mozi.a","offline","malware_download","","172.168.1.230","172.168.1.230","8075","US"
"2021-08-09 23:38:33","http://20.24.73.21:60236/mozi.a","offline","malware_download","","20.24.73.21","20.24.73.21","8075","HK"
"2021-08-08 12:04:12","http://1.186.151.219:56759/Mozi.a","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2021-08-08 11:41:34","http://20.24.80.39:36512/mozi.a","offline","malware_download","","20.24.80.39","20.24.80.39","8075","HK"
"2021-08-03 16:34:11","http://1.186.151.219:60835/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2021-08-03 11:25:33","http://20.24.73.240:42454/mozi.m","offline","malware_download","","20.24.73.240","20.24.73.240","8075","HK"
"2021-08-03 03:38:33","http://20.24.73.240:42454/mozi.a","offline","malware_download","","20.24.73.240","20.24.73.240","8075","HK"
"2021-08-02 17:44:14","http://20.197.233.196/pma010/pm10.png","offline","malware_download","Ousaban|zip","20.197.233.196","20.197.233.196","8075","BR"
"2021-07-31 15:04:36","http://20.24.78.34:48736/Mozi.m","offline","malware_download","Mozi","20.24.78.34","20.24.78.34","8075","HK"
"2021-07-25 12:03:33","http://20.24.73.177:49527/Mozi.m","offline","malware_download","Mozi","20.24.73.177","20.24.73.177","8075","HK"
"2021-07-23 19:22:10","http://40.74.82.240:22810/amp","offline","malware_download","32-bit|ELF|MIPS","40.74.82.240","40.74.82.240","8075","JP"
"2021-07-22 17:34:16","http://1.186.151.219:34527/Mozi.a","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2021-07-21 06:04:05","http://1.186.151.219:57254/Mozi.a","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2021-07-20 09:55:05","http://cristal5.com/build.exe","offline","malware_download","","cristal5.com","20.111.1.11","8075","FR"
"2021-07-20 09:55:05","http://cristal5.com/build3.exe","offline","malware_download","","cristal5.com","20.111.1.11","8075","FR"
"2021-07-19 08:04:09","http://1.186.151.219:38776/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2021-07-18 04:04:17","http://1.186.151.219:52526/Mozi.a","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2021-07-17 05:34:05","http://1.186.151.219:43212/Mozi.a","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2021-07-16 09:49:07","http://1.186.151.219:46673/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2021-07-13 20:46:03","http://40.124.107.252/sensi.sh","offline","malware_download","shellscript","40.124.107.252","40.124.107.252","8075","US"
"2021-07-13 18:32:12","http://40.124.107.252/Binarys/nuclear.arm5","offline","malware_download","elf|Mirai","40.124.107.252","40.124.107.252","8075","US"
"2021-07-13 18:32:12","http://40.124.107.252/Binarys/nuclear.mips","offline","malware_download","elf|Mirai","40.124.107.252","40.124.107.252","8075","US"
"2021-07-13 18:32:06","http://40.124.107.252/Binarys/nuclear.mpsl","offline","malware_download","elf|Mirai","40.124.107.252","40.124.107.252","8075","US"
"2021-07-13 18:32:05","http://40.124.107.252/Binarys/nuclear.arm","offline","malware_download","elf|Mirai","40.124.107.252","40.124.107.252","8075","US"
"2021-07-13 18:32:05","http://40.124.107.252/Binarys/nuclear.arm6","offline","malware_download","elf|Mirai","40.124.107.252","40.124.107.252","8075","US"
"2021-07-13 18:32:05","http://40.124.107.252/Binarys/nuclear.arm7","offline","malware_download","elf|Mirai","40.124.107.252","40.124.107.252","8075","US"
"2021-07-13 18:32:05","http://40.124.107.252/Binarys/nuclear.m68k","offline","malware_download","elf|Mirai","40.124.107.252","40.124.107.252","8075","US"
"2021-07-13 18:32:05","http://40.124.107.252/Binarys/nuclear.ppc","offline","malware_download","elf|Mirai","40.124.107.252","40.124.107.252","8075","US"
"2021-07-13 18:32:05","http://40.124.107.252/Binarys/nuclear.sh4","offline","malware_download","elf|Mirai","40.124.107.252","40.124.107.252","8075","US"
"2021-07-13 18:32:05","http://40.124.107.252/Binarys/nuclear.x86","offline","malware_download","elf|Mirai","40.124.107.252","40.124.107.252","8075","US"
"2021-07-13 15:51:45","http://20.24.73.233:33216/Mozi.a","offline","malware_download","elf|Mozi","20.24.73.233","20.24.73.233","8075","HK"
"2021-07-10 22:31:28","http://172.201.165.197:58445/i","offline","malware_download","","172.201.165.197","172.201.165.197","8075","NL"
"2021-07-08 23:34:16","http://1.186.151.219:43053/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2021-07-04 05:49:07","http://1.186.151.219:59298/Mozi.m","offline","malware_download","elf|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2021-07-02 17:22:33","http://20.24.78.27:50305/Mozi.m","offline","malware_download","","20.24.78.27","20.24.78.27","8075","HK"
"2021-07-02 06:04:35","http://20.24.74.139:53283/Mozi.m","offline","malware_download","Mozi","20.24.74.139","20.24.74.139","8075","HK"
"2021-07-01 01:39:42","https://saurabha.com/wp-content/plugins/wpforms-lite/src/Access/1M51xEi1fQ1QU.php","offline","malware_download","Dridex","saurabha.com","20.204.18.222","8075","IN"
"2021-06-28 11:27:32","http://20.24.80.30:37842/mozi.m","offline","malware_download","","20.24.80.30","20.24.80.30","8075","HK"
"2021-06-27 08:57:32","http://1.186.91.191:45742/mozi.m","offline","malware_download","","1.186.91.191","1.186.91.191","8075","GB"
"2021-06-27 06:23:33","http://20.24.75.112:35959/mozi.a","offline","malware_download","","20.24.75.112","20.24.75.112","8075","HK"
"2021-06-27 00:03:33","http://20.24.76.107:49719/Mozi.m","offline","malware_download","Mozi","20.24.76.107","20.24.76.107","8075","HK"
"2021-06-25 14:59:05","http://52.142.42.230/desk/desktop.exe","offline","malware_download","AgentTesla|AveMariaRAT","52.142.42.230","52.142.42.230","8075","US"
"2021-06-23 15:04:45","http://20.24.78.213:58332/Mozi.m","offline","malware_download","Mozi","20.24.78.213","20.24.78.213","8075","HK"
"2021-06-21 21:04:33","http://20.24.78.10:59842/Mozi.m","offline","malware_download","Mozi","20.24.78.10","20.24.78.10","8075","HK"
"2021-06-21 06:04:35","http://20.24.73.68:58671/Mozi.m","offline","malware_download","Mozi","20.24.73.68","20.24.73.68","8075","HK"
"2021-06-20 12:04:33","http://20.24.73.13:42242/Mozi.m","offline","malware_download","Mozi","20.24.73.13","20.24.73.13","8075","HK"
"2021-06-17 12:04:14","http://1.186.151.219:56734/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2021-06-14 18:04:45","http://20.24.77.33:52346/Mozi.m","offline","malware_download","Mozi","20.24.77.33","20.24.77.33","8075","HK"
"2021-06-14 17:16:03","http://20.55.74.158/download/test.iso","offline","malware_download","","20.55.74.158","20.55.74.158","8075","US"
"2021-06-02 09:04:34","http://20.24.77.58:36801/Mozi.m","offline","malware_download","Mozi","20.24.77.58","20.24.77.58","8075","HK"
"2021-05-30 06:03:33","http://20.24.79.62:39640/Mozi.m","offline","malware_download","Mozi","20.24.79.62","20.24.79.62","8075","HK"
"2021-05-30 00:04:33","http://20.24.74.9:54928/Mozi.m","offline","malware_download","Mozi","20.24.74.9","20.24.74.9","8075","HK"
"2021-05-28 18:04:33","http://20.24.77.93:59678/Mozi.m","offline","malware_download","Mozi","20.24.77.93","20.24.77.93","8075","HK"
"2021-05-27 07:03:20","http://20.52.40.192/Demon.i586","offline","malware_download","elf|gafgyt","20.52.40.192","20.52.40.192","8075","DE"
"2021-05-27 07:03:19","http://20.52.40.192/Demon.mips","offline","malware_download","elf|gafgyt","20.52.40.192","20.52.40.192","8075","DE"
"2021-05-27 07:03:18","http://20.52.40.192/Demon.arm7","offline","malware_download","elf|gafgyt","20.52.40.192","20.52.40.192","8075","DE"
"2021-05-27 07:03:18","http://20.52.40.192/Demon.m68k","offline","malware_download","elf|gafgyt","20.52.40.192","20.52.40.192","8075","DE"
"2021-05-27 07:03:14","http://20.52.40.192/Demon.sparc","offline","malware_download","elf|gafgyt","20.52.40.192","20.52.40.192","8075","DE"
"2021-05-27 07:03:13","http://20.52.40.192/Demon.i686","offline","malware_download","elf|gafgyt","20.52.40.192","20.52.40.192","8075","DE"
"2021-05-27 07:03:10","http://20.52.40.192/Demon.arm6","offline","malware_download","elf|gafgyt","20.52.40.192","20.52.40.192","8075","DE"
"2021-05-27 07:03:09","http://20.52.40.192/Demon.arm5","offline","malware_download","elf|gafgyt","20.52.40.192","20.52.40.192","8075","DE"
"2021-05-27 07:03:09","http://20.52.40.192/Demon.sh4","offline","malware_download","elf|gafgyt","20.52.40.192","20.52.40.192","8075","DE"
"2021-05-27 07:03:04","http://20.52.40.192/Demon.arm4","offline","malware_download","elf|gafgyt","20.52.40.192","20.52.40.192","8075","DE"
"2021-05-27 07:03:04","http://20.52.40.192/Demon.mpsl","offline","malware_download","elf|gafgyt","20.52.40.192","20.52.40.192","8075","DE"
"2021-05-27 07:03:04","http://20.52.40.192/Demon.ppc","offline","malware_download","elf|gafgyt","20.52.40.192","20.52.40.192","8075","DE"
"2021-05-21 10:42:04","http://157.55.173.72/index/index.exe","offline","malware_download","exe|Formbook|opendir","157.55.173.72","157.55.173.72","8075","US"
"2021-05-20 06:03:37","http://20.24.49.233:39735/Mozi.m","offline","malware_download","Mozi","20.24.49.233","20.24.49.233","8075","SG"
"2021-05-19 21:04:36","http://20.24.23.52:52672/Mozi.m","offline","malware_download","Mozi","20.24.23.52","20.24.23.52","8075","SG"
"2021-05-14 21:55:14","http://20.97.23.106/a-r.m-5.Sakura","offline","malware_download","bashlite|elf|gafgyt","20.97.23.106","20.97.23.106","8075","US"
"2021-05-14 21:55:12","http://20.97.23.106/m-6.8-k.Sakura","offline","malware_download","bashlite|elf|gafgyt","20.97.23.106","20.97.23.106","8075","US"
"2021-05-14 21:55:03","http://20.97.23.106/Sakura.sh","offline","malware_download","shellscript","20.97.23.106","20.97.23.106","8075","US"
"2021-05-14 21:52:15","http://20.97.23.106/m-i.p-s.Sakura","offline","malware_download","elf","20.97.23.106","20.97.23.106","8075","US"
"2021-05-14 21:52:12","http://20.97.23.106/s-h.4-.Sakura","offline","malware_download","","20.97.23.106","20.97.23.106","8075","US"
"2021-05-14 21:51:19","http://20.97.23.106/i-5.8-6.Sakura","offline","malware_download","bashlite|elf|gafgyt","20.97.23.106","20.97.23.106","8075","US"
"2021-05-14 21:51:18","http://20.97.23.106/a-r.m-4.Sakura","offline","malware_download","bashlite|elf|gafgyt","20.97.23.106","20.97.23.106","8075","US"
"2021-05-14 21:51:18","http://20.97.23.106/p-p.c-.Sakura","offline","malware_download","bashlite|elf|gafgyt","20.97.23.106","20.97.23.106","8075","US"
"2021-05-14 21:51:17","http://20.97.23.106/a-r.m-7.Sakura","offline","malware_download","bashlite|elf|gafgyt","20.97.23.106","20.97.23.106","8075","US"
"2021-05-14 21:51:16","http://20.97.23.106/x-3.2-.Sakura","offline","malware_download","bashlite|elf|gafgyt","20.97.23.106","20.97.23.106","8075","US"
"2021-05-14 21:47:15","http://20.97.23.106/a-r.m-6.Sakura","offline","malware_download","bashlite|elf|gafgyt","20.97.23.106","20.97.23.106","8075","US"
"2021-05-14 21:46:11","http://20.97.23.106/x-8.6-.Sakura","offline","malware_download","bashlite|elf|gafgyt","20.97.23.106","20.97.23.106","8075","US"
"2021-05-13 15:34:12","http://1.186.151.219:34156/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2021-05-13 13:03:04","http://157.55.173.72/cool/windows.exe","offline","malware_download","exe|RedLineStealer","157.55.173.72","157.55.173.72","8075","US"
"2021-05-13 00:00:06","http://157.55.173.72/xbinns/image.exe","offline","malware_download","exe|RedLineStealer","157.55.173.72","157.55.173.72","8075","US"
"2021-05-12 11:26:05","http://157.55.173.72/goose/docsc.exe","offline","malware_download","exe|Formbook|opendir","157.55.173.72","157.55.173.72","8075","US"
"2021-05-10 09:04:33","http://20.24.79.183:42978/Mozi.m","offline","malware_download","Mozi","20.24.79.183","20.24.79.183","8075","HK"
"2021-05-10 03:03:39","http://20.24.74.191:50222/Mozi.m","offline","malware_download","Mozi","20.24.74.191","20.24.74.191","8075","HK"
"2021-05-04 20:30:05","http://20.52.180.47/Windows_Update.exe","offline","malware_download","exe|njrat","20.52.180.47","20.52.180.47","8075","DE"
"2021-04-30 12:04:41","http://20.24.23.219:53926/Mozi.m","offline","malware_download","Mozi","20.24.23.219","20.24.23.219","8075","SG"
"2021-04-28 06:28:04","http://40.117.139.198/Backup_WtlSonZur95.bin","offline","malware_download","encrypted|GuLoader","40.117.139.198","40.117.139.198","8075","US"
"2021-04-26 12:04:34","http://20.24.23.210:39501/Mozi.m","offline","malware_download","Mozi","20.24.23.210","20.24.23.210","8075","SG"
"2021-04-20 03:04:36","http://20.24.49.77:57349/Mozi.m","offline","malware_download","Mozi","20.24.49.77","20.24.49.77","8075","SG"
"2021-04-18 17:28:18","http://191.235.242.172/bins/a-r.m-5.SNOOPY","offline","malware_download","elf","191.235.242.172","191.235.242.172","8075","BR"
"2021-04-18 17:28:15","http://191.235.242.172/bins/s-h.4-.SNOOPY","offline","malware_download","elf","191.235.242.172","191.235.242.172","8075","BR"
"2021-04-18 17:28:13","http://191.235.242.172/bins/a-r.m-6.SNOOPY","offline","malware_download","elf","191.235.242.172","191.235.242.172","8075","BR"
"2021-04-18 17:28:12","http://191.235.242.172/bins/m-p.s-l.SNOOPY","offline","malware_download","elf","191.235.242.172","191.235.242.172","8075","BR"
"2021-04-18 17:28:12","http://191.235.242.172/bins/p-p.c-.SNOOPY","offline","malware_download","elf","191.235.242.172","191.235.242.172","8075","BR"
"2021-04-18 17:28:10","http://191.235.242.172/bins/m-6.8-k.SNOOPY","offline","malware_download","elf","191.235.242.172","191.235.242.172","8075","BR"
"2021-04-18 17:28:09","http://191.235.242.172/bins/a-r.m-4.SNOOPY","offline","malware_download","elf","191.235.242.172","191.235.242.172","8075","BR"
"2021-04-18 17:28:09","http://191.235.242.172/bins/a-r.m-7.SNOOPY","offline","malware_download","elf","191.235.242.172","191.235.242.172","8075","BR"
"2021-04-18 17:28:06","http://191.235.242.172/bins/x-8.6-.SNOOPY","offline","malware_download","elf","191.235.242.172","191.235.242.172","8075","BR"
"2021-04-18 17:28:05","http://191.235.242.172/bins/i-5.8-6.SNOOPY","offline","malware_download","elf","191.235.242.172","191.235.242.172","8075","BR"
"2021-04-18 17:28:05","http://191.235.242.172/bins/m-i.p-s.SNOOPY","offline","malware_download","elf","191.235.242.172","191.235.242.172","8075","BR"
"2021-04-18 17:28:05","http://191.235.242.172/bins/x-3.2-.SNOOPY","offline","malware_download","elf","191.235.242.172","191.235.242.172","8075","BR"
"2021-04-15 20:34:09","http://1.186.151.219:34817/Mozi.a","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2021-04-15 16:52:14","https://forms.saurashtrauniversity.edu/clavicle.php","offline","malware_download","doc|Hancitor","forms.saurashtrauniversity.edu","20.219.188.156","8075","IN"
"2021-04-15 16:52:14","https://forms.saurashtrauniversity.edu/photomask.php","offline","malware_download","doc|Hancitor","forms.saurashtrauniversity.edu","20.219.188.156","8075","IN"
"2021-04-15 16:52:13","https://forms.saurashtrauniversity.edu/believing.php","offline","malware_download","doc|Hancitor","forms.saurashtrauniversity.edu","20.219.188.156","8075","IN"
"2021-04-15 16:52:13","https://forms.saurashtrauniversity.edu/catholic.php","offline","malware_download","doc|Hancitor","forms.saurashtrauniversity.edu","20.219.188.156","8075","IN"
"2021-04-15 16:52:05","https://forms.saurashtrauniversity.edu/ablebodied.php","offline","malware_download","doc|Hancitor","forms.saurashtrauniversity.edu","20.219.188.156","8075","IN"
"2021-04-09 01:07:04","http://13.82.179.221/asm/doc.exe","offline","malware_download","exe","13.82.179.221","13.82.179.221","8075","US"
"2021-04-05 15:03:43","http://20.24.24.99:57947/Mozi.m","offline","malware_download","Mozi","20.24.24.99","20.24.24.99","8075","SG"
"2021-04-05 06:12:37","http://20.24.49.233:51499/Mozi.a","offline","malware_download","","20.24.49.233","20.24.49.233","8075","SG"
"2021-04-02 06:43:36","http://20.24.23.158:39890/Mozi.a","offline","malware_download","","20.24.23.158","20.24.23.158","8075","SG"
"2021-03-30 18:04:37","http://20.21.152.58:42791/Mozi.m","offline","malware_download","Mozi","20.21.152.58","20.21.152.58","8075","QA"
"2021-03-27 03:04:42","http://20.21.155.156:44266/Mozi.m","offline","malware_download","Mozi","20.21.155.156","20.21.155.156","8075","QA"
"2021-03-27 00:59:10","http://40.88.2.151/lmaoWTF/loligang.spc","offline","malware_download","elf|mirai","40.88.2.151","40.88.2.151","8075","US"
"2021-03-27 00:02:13","http://40.88.2.151/lmaoWTF/loligang.sh4","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-27 00:02:12","http://40.88.2.151/lmaoWTF/loligang.arm","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-27 00:02:06","http://40.88.2.151/lmaoWTF/loligang.arm6","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-27 00:02:06","http://40.88.2.151/lmaoWTF/loligang.arm7","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-27 00:02:06","http://40.88.2.151/lmaoWTF/loligang.mips","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-27 00:02:06","http://40.88.2.151/lmaoWTF/loligang.x86","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-27 00:02:05","http://40.88.2.151/lmaoWTF/loligang.arm5","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-27 00:02:05","http://40.88.2.151/lmaoWTF/loligang.m68k","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-27 00:02:05","http://40.88.2.151/lmaoWTF/loligang.mpsl","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-27 00:02:05","http://40.88.2.151/lmaoWTF/loligang.ppc","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-26 23:24:10","http://40.88.2.151/bins/sora.spc","offline","malware_download","elf|mirai","40.88.2.151","40.88.2.151","8075","US"
"2021-03-26 23:02:19","http://40.88.2.151/bins/sora.arm6","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-26 23:02:19","http://40.88.2.151/bins/sora.x86","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-26 23:02:07","http://40.88.2.151/bins/sora.m68k","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-26 23:02:07","http://40.88.2.151/bins/sora.ppc","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-26 23:02:07","http://40.88.2.151/bins/sora.sh4","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-26 23:02:06","http://40.88.2.151/bins/sora.arm5","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-26 23:02:06","http://40.88.2.151/bins/sora.arm7","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-26 23:02:05","http://40.88.2.151/bins/sora.arm","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-26 23:02:05","http://40.88.2.151/bins/sora.mips","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-26 23:02:05","http://40.88.2.151/bins/sora.mpsl","offline","malware_download","elf","40.88.2.151","40.88.2.151","8075","US"
"2021-03-24 03:03:34","http://20.24.23.181:43475/Mozi.m","offline","malware_download","Mozi","20.24.23.181","20.24.23.181","8075","SG"
"2021-03-22 12:04:41","http://20.24.23.173:34924/Mozi.m","offline","malware_download","Mozi","20.24.23.173","20.24.23.173","8075","SG"
"2021-03-12 16:05:07","http://13.82.179.221/dms/office.exe","offline","malware_download","ave|AveMariaRAT|maria","13.82.179.221","13.82.179.221","8075","US"
"2021-03-11 14:13:12","http://191.235.79.130/secF.zip","offline","malware_download","BanLoad","191.235.79.130","191.235.79.130","8075","BR"
"2021-03-10 20:30:05","http://20.185.42.197/slaves/hinatasocute.spc","offline","malware_download","elf|mirai","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 18:11:04","http://20.185.42.197/slaves/hinatasocute.arm","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 18:11:04","http://20.185.42.197/slaves/hinatasocute.arm5","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 18:11:04","http://20.185.42.197/slaves/hinatasocute.arm6","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 18:11:04","http://20.185.42.197/slaves/hinatasocute.arm7","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 18:11:04","http://20.185.42.197/slaves/hinatasocute.m68k","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 18:11:04","http://20.185.42.197/slaves/hinatasocute.mips","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 18:11:04","http://20.185.42.197/slaves/hinatasocute.mpsl","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 18:11:04","http://20.185.42.197/slaves/hinatasocute.ppc","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 18:11:04","http://20.185.42.197/slaves/hinatasocute.sh4","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 18:11:04","http://20.185.42.197/slaves/hinatasocute.x86","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 09:45:16","https://active-re.com/wp-includes/mainn/jlnp_xTZFotGBpl24.bin","offline","malware_download","encrypted|GuLoader","active-re.com","20.106.1.32","8075","US"
"2021-03-10 09:45:10","https://active-re.com/wp-includes/backk/jlnp_xTZFotGBpl24.bin","offline","malware_download","encrypted|GuLoader","active-re.com","20.106.1.32","8075","US"
"2021-03-10 06:02:06","http://20.185.42.197/slaves/arm6","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 06:02:06","http://20.185.42.197/slaves/arm7","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 06:02:06","http://20.185.42.197/slaves/m68k","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 06:02:06","http://20.185.42.197/slaves/mpsl","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 06:02:06","http://20.185.42.197/slaves/ppc","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 06:02:06","http://20.185.42.197/slaves/sh4","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 06:02:06","http://20.185.42.197/slaves/x86","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 06:02:05","http://20.185.42.197/slaves/arm","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-10 06:02:05","http://20.185.42.197/slaves/mips","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-08 14:56:09","https://okuru.wtf/drot/i/ate/dog/xmrig2.exe","offline","malware_download","exe","okuru.wtf","172.172.168.240","8075","US"
"2021-03-08 14:25:08","https://blog.sidmach.com/app/","offline","malware_download","fedex","blog.sidmach.com","23.97.214.177","8075","NL"
"2021-03-08 13:03:10","https://nen.vacad.net/pkg/","offline","malware_download","fedex","nen.vacad.net","104.214.236.115","8075","NL"
"2021-03-05 23:01:04","http://20.185.42.197/bins/meerkat.spc","offline","malware_download","elf|mirai","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 21:02:05","http://20.185.42.197/bins/meerkat.arm7","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 21:02:05","http://20.185.42.197/bins/meerkat.mpsl","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 21:02:05","http://20.185.42.197/bins/meerkat.sh4","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 21:02:04","http://20.185.42.197/bins/meerkat.arm","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 21:02:04","http://20.185.42.197/bins/meerkat.arm5","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 21:02:04","http://20.185.42.197/bins/meerkat.arm6","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 21:02:04","http://20.185.42.197/bins/meerkat.m68k","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 21:02:04","http://20.185.42.197/bins/meerkat.mips","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 21:02:04","http://20.185.42.197/bins/meerkat.ppc","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 21:02:04","http://20.185.42.197/bins/meerkat.x86","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 16:42:05","http://20.185.42.197/bins/x86","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 16:42:04","http://20.185.42.197/bins/arm4","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 16:42:04","http://20.185.42.197/bins/arm5","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 16:42:04","http://20.185.42.197/bins/arm6","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 16:42:04","http://20.185.42.197/bins/arm7","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 16:42:04","http://20.185.42.197/bins/m68k","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 16:42:04","http://20.185.42.197/bins/mips","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 16:42:04","http://20.185.42.197/bins/mpsl","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 16:42:04","http://20.185.42.197/bins/ppc","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-05 16:42:04","http://20.185.42.197/bins/sh4","offline","malware_download","elf","20.185.42.197","20.185.42.197","8075","US"
"2021-03-03 16:05:04","http://52.152.130.178/sh","offline","malware_download","shellscript","52.152.130.178","52.152.130.178","8075","US"
"2021-02-20 11:34:05","http://1.186.232.135:46769/Mozi.m","offline","malware_download","elf|Mozi","1.186.232.135","1.186.232.135","8075","GB"
"2021-02-11 16:18:07","http://104.41.24.30/assailant.arm4","offline","malware_download","elf","104.41.24.30","104.41.24.30","8075","BR"
"2021-02-11 16:18:07","http://104.41.24.30/assailant.arm6","offline","malware_download","elf","104.41.24.30","104.41.24.30","8075","BR"
"2021-02-11 16:18:07","http://104.41.24.30/assailant.m68k","offline","malware_download","elf","104.41.24.30","104.41.24.30","8075","BR"
"2021-02-11 16:18:05","http://104.41.24.30/assailant.arm5","offline","malware_download","elf","104.41.24.30","104.41.24.30","8075","BR"
"2021-02-11 16:18:05","http://104.41.24.30/assailant.arm7","offline","malware_download","elf","104.41.24.30","104.41.24.30","8075","BR"
"2021-02-11 16:18:05","http://104.41.24.30/assailant.i686","offline","malware_download","elf","104.41.24.30","104.41.24.30","8075","BR"
"2021-02-11 16:18:05","http://104.41.24.30/assailant.mips","offline","malware_download","elf","104.41.24.30","104.41.24.30","8075","BR"
"2021-02-11 16:18:05","http://104.41.24.30/assailant.mpsl","offline","malware_download","elf","104.41.24.30","104.41.24.30","8075","BR"
"2021-02-11 16:18:05","http://104.41.24.30/assailant.ppc","offline","malware_download","elf","104.41.24.30","104.41.24.30","8075","BR"
"2021-02-11 16:18:05","http://104.41.24.30/assailant.sh4","offline","malware_download","elf","104.41.24.30","104.41.24.30","8075","BR"
"2021-02-11 16:18:05","http://104.41.24.30/assailant.sparc","offline","malware_download","elf","104.41.24.30","104.41.24.30","8075","BR"
"2021-02-11 16:18:05","http://104.41.24.30/assailant.x86","offline","malware_download","elf","104.41.24.30","104.41.24.30","8075","BR"
"2021-02-11 16:18:04","http://104.41.24.30/assailant.i586","offline","malware_download","elf","104.41.24.30","104.41.24.30","8075","BR"
"2021-02-09 10:12:05","http://52.152.130.178/SBIDIOT/arm","offline","malware_download","","52.152.130.178","52.152.130.178","8075","US"
"2021-02-09 10:12:05","http://52.152.130.178/SBIDIOT/ppc","offline","malware_download","","52.152.130.178","52.152.130.178","8075","US"
"2021-02-09 10:12:03","http://52.152.130.178/SBIDIOT/arm6","offline","malware_download","","52.152.130.178","52.152.130.178","8075","US"
"2021-02-09 10:12:03","http://52.152.130.178/SBIDIOT/arm7","offline","malware_download","","52.152.130.178","52.152.130.178","8075","US"
"2021-02-09 10:12:03","http://52.152.130.178/SBIDIOT/m68k","offline","malware_download","","52.152.130.178","52.152.130.178","8075","US"
"2021-02-09 10:12:03","http://52.152.130.178/SBIDIOT/mips","offline","malware_download","","52.152.130.178","52.152.130.178","8075","US"
"2021-02-09 10:12:03","http://52.152.130.178/SBIDIOT/mpsl","offline","malware_download","","52.152.130.178","52.152.130.178","8075","US"
"2021-02-09 10:12:03","http://52.152.130.178/SBIDIOT/root","offline","malware_download","","52.152.130.178","52.152.130.178","8075","US"
"2021-02-09 10:12:03","http://52.152.130.178/SBIDIOT/rtk","offline","malware_download","","52.152.130.178","52.152.130.178","8075","US"
"2021-02-09 10:12:03","http://52.152.130.178/SBIDIOT/sh4","offline","malware_download","","52.152.130.178","52.152.130.178","8075","US"
"2021-02-09 10:12:03","http://52.152.130.178/SBIDIOT/zte","offline","malware_download","","52.152.130.178","52.152.130.178","8075","US"
"2021-02-08 12:56:04","http://104.41.24.30/bins.sh","offline","malware_download","shellscript","104.41.24.30","104.41.24.30","8075","BR"
"2021-02-08 06:37:05","http://1.186.151.219:43889/Mozi.a","offline","malware_download","Mirai","1.186.151.219","1.186.151.219","8075","GB"
"2021-02-04 10:43:06","http://51.116.180.169/SBIDIOT/arm","offline","malware_download","elf","51.116.180.169","51.116.180.169","8075","DE"
"2021-02-04 10:43:06","http://51.116.180.169/SBIDIOT/root","offline","malware_download","elf","51.116.180.169","51.116.180.169","8075","DE"
"2021-02-04 10:43:06","http://51.116.180.169/SBIDIOT/zte","offline","malware_download","elf","51.116.180.169","51.116.180.169","8075","DE"
"2021-02-04 10:43:04","http://51.116.180.169/SBIDIOT/arm6","offline","malware_download","elf","51.116.180.169","51.116.180.169","8075","DE"
"2021-02-04 10:43:04","http://51.116.180.169/SBIDIOT/arm7","offline","malware_download","elf","51.116.180.169","51.116.180.169","8075","DE"
"2021-02-04 10:43:04","http://51.116.180.169/SBIDIOT/m68k","offline","malware_download","elf","51.116.180.169","51.116.180.169","8075","DE"
"2021-02-04 10:43:04","http://51.116.180.169/SBIDIOT/mips","offline","malware_download","elf","51.116.180.169","51.116.180.169","8075","DE"
"2021-02-04 10:43:04","http://51.116.180.169/SBIDIOT/mpsl","offline","malware_download","elf","51.116.180.169","51.116.180.169","8075","DE"
"2021-02-04 10:43:04","http://51.116.180.169/SBIDIOT/ppc","offline","malware_download","elf","51.116.180.169","51.116.180.169","8075","DE"
"2021-02-04 10:43:04","http://51.116.180.169/SBIDIOT/rtk","offline","malware_download","elf","51.116.180.169","51.116.180.169","8075","DE"
"2021-02-04 10:43:04","http://51.116.180.169/SBIDIOT/sh4","offline","malware_download","elf","51.116.180.169","51.116.180.169","8075","DE"
"2021-02-04 10:43:04","http://51.116.180.169/SBIDIOT/x86","offline","malware_download","elf","51.116.180.169","51.116.180.169","8075","DE"
"2021-02-04 10:43:04","http://51.116.180.169/sh","offline","malware_download","shellscript","51.116.180.169","51.116.180.169","8075","DE"
"2021-01-31 22:52:05","http://20.79.41.2/bins/Ares.arm6","offline","malware_download","elf","20.79.41.2","20.79.41.2","8075","DE"
"2021-01-31 22:52:05","http://20.79.41.2/bins/Ares.mips","offline","malware_download","elf","20.79.41.2","20.79.41.2","8075","DE"
"2021-01-31 22:52:05","http://20.79.41.2/bins/Ares.mpsl","offline","malware_download","elf","20.79.41.2","20.79.41.2","8075","DE"
"2021-01-31 22:52:05","http://20.79.41.2/bins/Ares.x86","offline","malware_download","elf","20.79.41.2","20.79.41.2","8075","DE"
"2021-01-31 22:52:04","http://20.79.41.2/bins/Ares.m68k","offline","malware_download","elf","20.79.41.2","20.79.41.2","8075","DE"
"2021-01-31 22:52:03","http://20.79.41.2/bins/Ares.arm","offline","malware_download","elf","20.79.41.2","20.79.41.2","8075","DE"
"2021-01-31 22:52:03","http://20.79.41.2/bins/Ares.arm4","offline","malware_download","elf","20.79.41.2","20.79.41.2","8075","DE"
"2021-01-31 22:52:03","http://20.79.41.2/bins/Ares.arm5","offline","malware_download","elf","20.79.41.2","20.79.41.2","8075","DE"
"2021-01-31 22:52:03","http://20.79.41.2/bins/Ares.arm7","offline","malware_download","elf","20.79.41.2","20.79.41.2","8075","DE"
"2021-01-31 22:52:03","http://20.79.41.2/bins/Ares.ppc","offline","malware_download","elf","20.79.41.2","20.79.41.2","8075","DE"
"2021-01-31 22:52:03","http://20.79.41.2/bins/Ares.sh4","offline","malware_download","elf","20.79.41.2","20.79.41.2","8075","DE"
"2021-01-29 01:50:04","http://51.13.64.39/sh4","offline","malware_download","bashlite|elf|gafgyt","51.13.64.39","51.13.64.39","8075","NO"
"2021-01-29 01:48:04","http://51.13.64.39/arm4","offline","malware_download","bashlite|elf|gafgyt","51.13.64.39","51.13.64.39","8075","NO"
"2021-01-29 01:48:04","http://51.13.64.39/arm6","offline","malware_download","bashlite|elf|gafgyt","51.13.64.39","51.13.64.39","8075","NO"
"2021-01-29 01:48:04","http://51.13.64.39/arm7","offline","malware_download","bashlite|elf|gafgyt","51.13.64.39","51.13.64.39","8075","NO"
"2021-01-29 01:48:04","http://51.13.64.39/mips","offline","malware_download","bashlite|elf|gafgyt","51.13.64.39","51.13.64.39","8075","NO"
"2021-01-29 01:48:04","http://51.13.64.39/sparc","offline","malware_download","bashlite|elf|gafgyt","51.13.64.39","51.13.64.39","8075","NO"
"2021-01-29 01:48:04","http://51.13.64.39/x86","offline","malware_download","bashlite|elf|gafgyt","51.13.64.39","51.13.64.39","8075","NO"
"2021-01-29 01:44:03","http://51.13.64.39/i686","offline","malware_download","bashlite|elf|gafgyt","51.13.64.39","51.13.64.39","8075","NO"
"2021-01-26 06:11:03","http://20.79.40.254/bins/Ares.mips","offline","malware_download","elf","20.79.40.254","20.79.40.254","8075","DE"
"2021-01-26 06:10:04","http://20.79.40.254/bins/Ares.m68k","offline","malware_download","elf|mirai","20.79.40.254","20.79.40.254","8075","DE"
"2021-01-26 06:10:04","http://20.79.40.254/bins/Ares.mpsl","offline","malware_download","elf|mirai","20.79.40.254","20.79.40.254","8075","DE"
"2021-01-26 06:09:03","http://20.79.40.254/bins/Ares.arm5","offline","malware_download","elf|mirai","20.79.40.254","20.79.40.254","8075","DE"
"2021-01-26 06:09:03","http://20.79.40.254/bins/Ares.arm7","offline","malware_download","elf|mirai","20.79.40.254","20.79.40.254","8075","DE"
"2021-01-26 06:05:04","http://20.79.40.254/bins/Ares.arm","offline","malware_download","elf|mirai","20.79.40.254","20.79.40.254","8075","DE"
"2021-01-26 06:05:04","http://20.79.40.254/bins/Ares.arm6","offline","malware_download","elf|mirai","20.79.40.254","20.79.40.254","8075","DE"
"2021-01-26 06:05:04","http://20.79.40.254/bins/Ares.ppc","offline","malware_download","elf","20.79.40.254","20.79.40.254","8075","DE"
"2021-01-26 06:05:04","http://20.79.40.254/bins/Ares.spc","offline","malware_download","elf|mirai","20.79.40.254","20.79.40.254","8075","DE"
"2021-01-26 06:01:03","http://20.79.40.254/bins/Ares.sh4","offline","malware_download","elf|mirai","20.79.40.254","20.79.40.254","8075","DE"
"2021-01-26 05:58:03","http://20.79.40.254/Ares.sh","offline","malware_download","script","20.79.40.254","20.79.40.254","8075","DE"
"2021-01-26 03:04:11","http://20.79.40.254/bins/Ares.x86","offline","malware_download","32-bit|ELF|x86-32","20.79.40.254","20.79.40.254","8075","DE"
"2021-01-23 06:01:03","http://technologydistilled.com/a-nurse-ss8d9/z/","offline","malware_download","emotet|epoch2|exe","technologydistilled.com","104.43.140.101","8075","US"
"2021-01-22 09:11:05","https://technologydistilled.com/a-nurse-ss8d9/z/","offline","malware_download","emotet|epoch2|exe|heodo","technologydistilled.com","104.43.140.101","8075","US"
"2021-01-20 08:11:04","http://40.84.128.101/Binarys/Owari.spc","offline","malware_download","elf|mirai","40.84.128.101","40.84.128.101","8075","US"
"2021-01-20 08:07:02","http://20.52.157.117/lmaoWTF/loligang.spc","offline","malware_download","elf|mirai","20.52.157.117","20.52.157.117","8075","DE"
"2021-01-20 08:07:02","http://20.52.157.117/Pemex.sh","offline","malware_download","shellscript","20.52.157.117","20.52.157.117","8075","DE"
"2021-01-20 07:22:32","http://20.52.157.117/lmaoWTF/loligang.arm","offline","malware_download","elf","20.52.157.117","20.52.157.117","8075","DE"
"2021-01-20 07:22:04","http://20.52.157.117/lmaoWTF/loligang.m68k","offline","malware_download","elf","20.52.157.117","20.52.157.117","8075","DE"
"2021-01-20 07:22:04","http://20.52.157.117/lmaoWTF/loligang.mpsl","offline","malware_download","elf","20.52.157.117","20.52.157.117","8075","DE"
"2021-01-20 07:20:19","http://20.52.157.117/lmaoWTF/loligang.x86","offline","malware_download","elf|mirai","20.52.157.117","20.52.157.117","8075","DE"
"2021-01-20 07:20:07","http://20.52.157.117/lmaoWTF/loligang.ppc","offline","malware_download","elf|mirai","20.52.157.117","20.52.157.117","8075","DE"
"2021-01-20 07:20:05","http://20.52.157.117/lmaoWTF/loligang.arm5","offline","malware_download","elf|mirai","20.52.157.117","20.52.157.117","8075","DE"
"2021-01-20 07:20:05","http://20.52.157.117/lmaoWTF/loligang.arm7","offline","malware_download","elf|mirai","20.52.157.117","20.52.157.117","8075","DE"
"2021-01-20 07:20:04","http://20.52.157.117/lmaoWTF/loligang.arm6","offline","malware_download","elf|mirai","20.52.157.117","20.52.157.117","8075","DE"
"2021-01-20 07:16:33","http://20.52.157.117/bin.sh","offline","malware_download","shellscript","20.52.157.117","20.52.157.117","8075","DE"
"2021-01-20 07:16:18","http://20.52.157.117/lmaoWTF/loligang.sh4","offline","malware_download","elf|mirai","20.52.157.117","20.52.157.117","8075","DE"
"2021-01-20 07:16:03","http://20.52.157.117/lmaoWTF/loligang.mips","offline","malware_download","elf|mirai","20.52.157.117","20.52.157.117","8075","DE"
"2021-01-20 05:42:04","http://40.84.128.101/Binarys/Owari.arm","offline","malware_download","elf","40.84.128.101","40.84.128.101","8075","US"
"2021-01-20 05:42:04","http://40.84.128.101/Binarys/Owari.arm5","offline","malware_download","elf","40.84.128.101","40.84.128.101","8075","US"
"2021-01-20 05:42:04","http://40.84.128.101/Binarys/Owari.arm6","offline","malware_download","elf","40.84.128.101","40.84.128.101","8075","US"
"2021-01-20 05:42:04","http://40.84.128.101/Binarys/Owari.arm7","offline","malware_download","elf","40.84.128.101","40.84.128.101","8075","US"
"2021-01-20 05:42:04","http://40.84.128.101/Binarys/Owari.m68k","offline","malware_download","elf","40.84.128.101","40.84.128.101","8075","US"
"2021-01-20 05:42:04","http://40.84.128.101/Binarys/Owari.mips","offline","malware_download","elf","40.84.128.101","40.84.128.101","8075","US"
"2021-01-20 05:42:04","http://40.84.128.101/Binarys/Owari.mpsl","offline","malware_download","elf","40.84.128.101","40.84.128.101","8075","US"
"2021-01-20 05:42:04","http://40.84.128.101/Binarys/Owari.ppc","offline","malware_download","elf","40.84.128.101","40.84.128.101","8075","US"
"2021-01-20 05:42:04","http://40.84.128.101/Binarys/Owari.sh4","offline","malware_download","elf","40.84.128.101","40.84.128.101","8075","US"
"2021-01-20 05:42:04","http://40.84.128.101/Binarys/Owari.x86","offline","malware_download","elf|Mirai","40.84.128.101","40.84.128.101","8075","US"
"2021-01-20 00:04:08","http://1.186.151.219:53623/Mozi.m","offline","malware_download","Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2021-01-14 04:41:04","https://solicon.us/allam-cycle-1c4gn/f5z/","offline","malware_download","emotet|epoch2|exe|Heodo","solicon.us","52.172.204.196","8075","IN"
"2021-01-14 02:16:05","http://ndoki.org/wp-content/O5F0XOYQQtEZTQCZZfwN6/","offline","malware_download","doc|emotet|epoch2|Heodo","ndoki.org","40.85.190.10","8075","US"
"2021-01-13 23:31:12","https://ndoki.org/wp-content/O5F0XOYQQtEZTQCZZfwN6/","offline","malware_download","doc|emotet|epoch2|Heodo","ndoki.org","40.85.190.10","8075","US"
"2021-01-12 18:18:05","http://solicon.us/allam-cycle-1c4gn/f5z/","offline","malware_download","emotet|epoch2|exe|heodo","solicon.us","52.172.204.196","8075","IN"
"2021-01-12 16:16:03","https://ferrari.clabris.se/compliment.php","offline","malware_download","","ferrari.clabris.se","40.112.69.156","8075","IE"
"2021-01-12 14:25:05","https://mhc.clabris.se/doll.php","offline","malware_download","","mhc.clabris.se","40.112.69.156","8075","IE"
"2021-01-12 12:02:04","https://fjr.clabris.se/texan.php","offline","malware_download","","fjr.clabris.se","40.112.69.156","8075","IE"
"2021-01-12 11:42:03","https://burstner.clabris.se/simulate.php","offline","malware_download","","burstner.clabris.se","40.112.69.156","8075","IE"
"2021-01-08 23:55:04","http://20.52.177.23/lmaoWTF/loligang.arm","offline","malware_download","elf|mirai","20.52.177.23","20.52.177.23","8075","DE"
"2021-01-08 23:55:04","http://20.52.177.23/lmaoWTF/loligang.spc","offline","malware_download","elf|mirai","20.52.177.23","20.52.177.23","8075","DE"
"2021-01-08 23:34:03","http://20.52.177.23/lmaoWTF/loligang.x86","offline","malware_download","elf|mirai","20.52.177.23","20.52.177.23","8075","DE"
"2021-01-08 23:30:04","http://20.52.177.23/lmaoWTF/loligang.arm6","offline","malware_download","elf|mirai","20.52.177.23","20.52.177.23","8075","DE"
"2021-01-08 23:30:04","http://20.52.177.23/lmaoWTF/loligang.mips","offline","malware_download","elf|mirai","20.52.177.23","20.52.177.23","8075","DE"
"2021-01-08 23:30:04","http://20.52.177.23/lmaoWTF/loligang.sh4","offline","malware_download","elf|mirai","20.52.177.23","20.52.177.23","8075","DE"
"2021-01-08 23:29:03","http://20.52.177.23/lmaoWTF/loligang.arm5","offline","malware_download","elf|mirai","20.52.177.23","20.52.177.23","8075","DE"
"2021-01-08 23:29:03","http://20.52.177.23/lmaoWTF/loligang.arm7","offline","malware_download","elf|mirai","20.52.177.23","20.52.177.23","8075","DE"
"2021-01-08 23:29:03","http://20.52.177.23/lmaoWTF/loligang.mpsl","offline","malware_download","elf|mirai","20.52.177.23","20.52.177.23","8075","DE"
"2021-01-08 23:29:03","http://20.52.177.23/lmaoWTF/loligang.ppc","offline","malware_download","elf|mirai","20.52.177.23","20.52.177.23","8075","DE"
"2021-01-08 23:29:02","http://20.52.177.23/Pemex.sh","offline","malware_download","shellscript","20.52.177.23","20.52.177.23","8075","DE"
"2021-01-08 23:26:03","http://20.52.177.23/lmaoWTF/loligang.m68k","offline","malware_download","elf|mirai","20.52.177.23","20.52.177.23","8075","DE"
"2021-01-07 00:30:04","http://13.78.133.250/bins/arm5?ddos","offline","malware_download","ddos|elf|mirai","13.78.133.250","13.78.133.250","8075","US"
"2021-01-06 16:47:03","http://13.78.133.250/bins/mips","offline","malware_download","DDoS Bot|elf|mirai","13.78.133.250","13.78.133.250","8075","US"
"2021-01-06 16:47:03","http://13.78.133.250/bins/mpsl","offline","malware_download","DDoS Bot|elf|mirai","13.78.133.250","13.78.133.250","8075","US"
"2021-01-06 16:47:03","http://13.78.133.250/bins/x86","offline","malware_download","DDoS Bot|elf|mirai","13.78.133.250","13.78.133.250","8075","US"
"2021-01-06 16:40:04","http://13.78.133.250/bins/arm","offline","malware_download","DDoS Bot|elf|mirai","13.78.133.250","13.78.133.250","8075","US"
"2021-01-06 16:40:04","http://13.78.133.250/bins/arm5","offline","malware_download","DDoS Bot|elf|mirai","13.78.133.250","13.78.133.250","8075","US"
"2021-01-06 16:40:04","http://13.78.133.250/bins/arm6","offline","malware_download","DDoS Bot|elf|mirai","13.78.133.250","13.78.133.250","8075","US"
"2021-01-04 14:42:03","http://52.186.65.2/Snoopy.mips","offline","malware_download","bashlite|elf|gafgyt","52.186.65.2","52.186.65.2","8075","US"
"2021-01-04 14:39:03","http://52.186.65.2/Snoopy.arm4","offline","malware_download","bashlite|elf|gafgyt","52.186.65.2","52.186.65.2","8075","US"
"2021-01-04 14:38:04","http://52.186.65.2/Snoopy.mpsl","offline","malware_download","bashlite|elf|gafgyt","52.186.65.2","52.186.65.2","8075","US"
"2021-01-04 14:38:03","http://52.186.65.2/Snoopy.arm5","offline","malware_download","bashlite|elf|gafgyt","52.186.65.2","52.186.65.2","8075","US"
"2021-01-04 14:38:03","http://52.186.65.2/Snoopy.arm6","offline","malware_download","bashlite|elf|gafgyt","52.186.65.2","52.186.65.2","8075","US"
"2021-01-04 14:38:03","http://52.186.65.2/Snoopy.sh","offline","malware_download","shellscript","52.186.65.2","52.186.65.2","8075","US"
"2021-01-04 14:38:03","http://52.186.65.2/Snoopy.sparc","offline","malware_download","bashlite|elf|gafgyt","52.186.65.2","52.186.65.2","8075","US"
"2021-01-04 14:38:03","http://52.186.65.2/Snoopy.x86","offline","malware_download","bashlite|elf|gafgyt","52.186.65.2","52.186.65.2","8075","US"
"2021-01-04 14:34:03","http://52.186.65.2/Snoopy.ppc","offline","malware_download","bashlite|elf|gafgyt","52.186.65.2","52.186.65.2","8075","US"
"2020-12-31 23:28:05","https://catchpoolshetlands.co.uk/border-design-fjk/ohTJ/","offline","malware_download","Emotet|exe|Heodo","catchpoolshetlands.co.uk","52.173.77.140","8075","US"
"2020-12-30 22:26:06","http://catchpoolshetlands.co.uk/border-design-fjk/ohTJ/","offline","malware_download","emotet|epoch2|exe|heodo","catchpoolshetlands.co.uk","52.173.77.140","8075","US"
"2020-12-30 16:11:03","http://goldcoastoffice365.com/temp/5gjsf0VITWB00iRTRBdvDn7DWWxzxaxRDtULTFmsIHvZJA6V/","offline","malware_download","doc|emotet|epoch2|Heodo","goldcoastoffice365.com","52.163.122.115","8075","SG"
"2020-12-30 15:29:02","http://goldcoastoffice365.com.au/temp/Sxb0Kx1cCv7vlazsatX7vqIxyzTTeykbjedPB8b7HhWi0BO/","offline","malware_download","doc|emotet|epoch2|Heodo","goldcoastoffice365.com.au","52.163.122.115","8075","SG"
"2020-12-30 07:12:05","http://thetradepad.co.uk/test/w/","offline","malware_download","emotet|epoch2|exe|heodo","thetradepad.co.uk","40.68.153.106","8075","NL"
"2020-12-29 18:17:07","http://narmadasamagra.org/wp-content/mpeZwhQgAKTT1E0qIY1QdrVWEgxKpdkT9mLPDkoh1CTyeTw9UQ4z3oR/","offline","malware_download","doc|emotet|epoch2|Heodo","narmadasamagra.org","20.204.169.124","8075","IN"
"2020-12-29 14:43:06","http://ezi-pos.com/categoryl/x/","offline","malware_download","emotet|epoch1|exe|Heodo","ezi-pos.com","20.74.132.236","8075","AE"
"2020-12-27 17:46:04","http://13.68.254.127/Snoopy.mips","offline","malware_download","bashlite|elf|gafgyt","13.68.254.127","13.68.254.127","8075","US"
"2020-12-27 17:46:03","http://13.68.254.127/Snoopy.arm4","offline","malware_download","bashlite|elf|gafgyt","13.68.254.127","13.68.254.127","8075","US"
"2020-12-27 17:46:03","http://13.68.254.127/Snoopy.arm5","offline","malware_download","bashlite|elf|gafgyt","13.68.254.127","13.68.254.127","8075","US"
"2020-12-27 17:46:03","http://13.68.254.127/Snoopy.arm6","offline","malware_download","bashlite|elf|gafgyt","13.68.254.127","13.68.254.127","8075","US"
"2020-12-27 17:46:03","http://13.68.254.127/Snoopy.mpsl","offline","malware_download","bashlite|elf|gafgyt","13.68.254.127","13.68.254.127","8075","US"
"2020-12-27 17:46:03","http://13.68.254.127/Snoopy.ppc","offline","malware_download","bashlite|elf|gafgyt","13.68.254.127","13.68.254.127","8075","US"
"2020-12-27 17:42:03","http://13.68.254.127/Snoopy.sh","offline","malware_download","shellscript","13.68.254.127","13.68.254.127","8075","US"
"2020-12-27 17:42:03","http://13.68.254.127/Snoopy.sparc","offline","malware_download","bashlite|elf|gafgyt","13.68.254.127","13.68.254.127","8075","US"
"2020-12-27 17:42:03","http://13.68.254.127/Snoopy.x86","offline","malware_download","bashlite|elf|gafgyt","13.68.254.127","13.68.254.127","8075","US"
"2020-12-27 14:57:03","http://52.183.81.128/armv6l","offline","malware_download","bashlite|elf|gafgyt","52.183.81.128","52.183.81.128","8075","US"
"2020-12-27 14:54:04","http://52.183.81.128/armv4l","offline","malware_download","bashlite|elf|gafgyt","52.183.81.128","52.183.81.128","8075","US"
"2020-12-27 14:54:04","http://52.183.81.128/i586","offline","malware_download","bashlite|elf|gafgyt","52.183.81.128","52.183.81.128","8075","US"
"2020-12-27 14:54:04","http://52.183.81.128/m68k","offline","malware_download","bashlite|elf|gafgyt","52.183.81.128","52.183.81.128","8075","US"
"2020-12-27 14:53:04","http://52.183.81.128/mipsel","offline","malware_download","bashlite|elf|gafgyt","52.183.81.128","52.183.81.128","8075","US"
"2020-12-27 14:49:04","http://52.183.81.128/axisbins.sh","offline","malware_download","shellscript","52.183.81.128","52.183.81.128","8075","US"
"2020-12-27 14:48:04","http://52.183.81.128/sparc","offline","malware_download","bashlite|elf|gafgyt","52.183.81.128","52.183.81.128","8075","US"
"2020-12-27 14:47:04","http://52.183.81.128/armv5l","offline","malware_download","bashlite|elf|gafgyt","52.183.81.128","52.183.81.128","8075","US"
"2020-12-27 14:47:04","http://52.183.81.128/powerpc","offline","malware_download","bashlite|elf|gafgyt","52.183.81.128","52.183.81.128","8075","US"
"2020-12-27 14:47:04","http://52.183.81.128/x86","offline","malware_download","bashlite|elf|gafgyt","52.183.81.128","52.183.81.128","8075","US"
"2020-12-26 17:15:06","http://52.247.220.158/armv5l","offline","malware_download","bashlite|elf|gafgyt","52.247.220.158","52.247.220.158","8075","US"
"2020-12-26 17:15:06","http://52.247.220.158/armv6l","offline","malware_download","bashlite|elf|gafgyt","52.247.220.158","52.247.220.158","8075","US"
"2020-12-26 17:15:06","http://52.247.220.158/mipsel","offline","malware_download","bashlite|elf|gafgyt","52.247.220.158","52.247.220.158","8075","US"
"2020-12-26 17:15:06","http://52.247.220.158/powerpc","offline","malware_download","bashlite|elf|gafgyt","52.247.220.158","52.247.220.158","8075","US"
"2020-12-26 17:15:06","http://52.247.220.158/x86","offline","malware_download","bashlite|elf|gafgyt","52.247.220.158","52.247.220.158","8075","US"
"2020-12-26 17:15:05","http://52.247.220.158/i686","offline","malware_download","bashlite|elf|gafgyt","52.247.220.158","52.247.220.158","8075","US"
"2020-12-26 17:15:05","http://52.247.220.158/sh4","offline","malware_download","bashlite|elf|gafgyt","52.247.220.158","52.247.220.158","8075","US"
"2020-12-26 17:11:04","http://52.247.220.158/mips","offline","malware_download","bashlite|elf|gafgyt","52.247.220.158","52.247.220.158","8075","US"
"2020-12-26 17:11:03","http://52.247.220.158/axisbins.sh","offline","malware_download","shellscript","52.247.220.158","52.247.220.158","8075","US"
"2020-12-26 17:10:05","http://52.247.220.158/armv4l","offline","malware_download","bashlite|elf|gafgyt","52.247.220.158","52.247.220.158","8075","US"
"2020-12-26 17:10:05","http://52.247.220.158/i586","offline","malware_download","bashlite|elf|gafgyt","52.247.220.158","52.247.220.158","8075","US"
"2020-12-26 17:10:05","http://52.247.220.158/m68k","offline","malware_download","bashlite|elf|gafgyt","52.247.220.158","52.247.220.158","8075","US"
"2020-12-26 17:10:05","http://52.247.220.158/sparc","offline","malware_download","bashlite|elf|gafgyt","52.247.220.158","52.247.220.158","8075","US"
"2020-12-24 07:38:04","http://20.68.192.170/armv5l","offline","malware_download","bashlite|elf|gafgyt","20.68.192.170","20.68.192.170","8075","GB"
"2020-12-24 07:38:04","http://20.68.192.170/i586","offline","malware_download","bashlite|elf|gafgyt","20.68.192.170","20.68.192.170","8075","GB"
"2020-12-24 07:38:03","http://20.68.192.170/x86","offline","malware_download","bashlite|elf|gafgyt","20.68.192.170","20.68.192.170","8075","GB"
"2020-12-24 07:37:03","http://20.68.192.170/armv4l","offline","malware_download","bashlite|elf|gafgyt","20.68.192.170","20.68.192.170","8075","GB"
"2020-12-24 07:37:03","http://20.68.192.170/armv6l","offline","malware_download","bashlite|elf|gafgyt","20.68.192.170","20.68.192.170","8075","GB"
"2020-12-24 07:37:03","http://20.68.192.170/m68k","offline","malware_download","bashlite|elf|gafgyt","20.68.192.170","20.68.192.170","8075","GB"
"2020-12-24 07:37:03","http://20.68.192.170/sh4","offline","malware_download","bashlite|elf|gafgyt","20.68.192.170","20.68.192.170","8075","GB"
"2020-12-24 07:34:03","http://20.68.192.170/mips","offline","malware_download","bashlite|elf|gafgyt","20.68.192.170","20.68.192.170","8075","GB"
"2020-12-24 07:34:03","http://20.68.192.170/sparc","offline","malware_download","bashlite|elf|gafgyt","20.68.192.170","20.68.192.170","8075","GB"
"2020-12-24 07:33:03","http://20.68.192.170/i686","offline","malware_download","bashlite|elf|gafgyt","20.68.192.170","20.68.192.170","8075","GB"
"2020-12-24 07:33:03","http://20.68.192.170/mipsel","offline","malware_download","bashlite|elf|gafgyt","20.68.192.170","20.68.192.170","8075","GB"
"2020-12-24 07:33:03","http://20.68.192.170/powerpc","offline","malware_download","bashlite|elf|gafgyt","20.68.192.170","20.68.192.170","8075","GB"
"2020-12-24 07:33:03","http://20.68.192.170/Xamplebins.sh","offline","malware_download","shellscript","20.68.192.170","20.68.192.170","8075","GB"
"2020-12-21 21:19:04","http://1.186.151.219:41802/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-12-21 17:40:04","http://catchpoolshetlands.co.uk/border-design-fjk/8fGEiO7xg7WfdRWDoQ/","offline","malware_download","doc|emotet|epoch2|Heodo","catchpoolshetlands.co.uk","52.173.77.140","8075","US"
"2020-12-21 17:12:04","http://51.104.243.215/wp-content/1m1phEKnm7Yxx/","offline","malware_download","doc|emotet|epoch2|Heodo","51.104.243.215","51.104.243.215","8075","GB"
"2020-12-21 17:04:09","http://goldcoastoffice365.com/temp/X/","offline","malware_download","Cambot|emotet|epoch1|exe|heodo","goldcoastoffice365.com","52.163.122.115","8075","SG"
"2020-12-21 05:49:04","http://1.186.151.219:37167/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-12-17 11:32:04","http://52.169.42.251/d/xd.x86","offline","malware_download","elf","52.169.42.251","52.169.42.251","8075","IE"
"2020-12-17 11:32:03","http://52.169.42.251/d/xd.sh4","offline","malware_download","elf","52.169.42.251","52.169.42.251","8075","IE"
"2020-12-17 11:31:04","http://52.169.42.251/d/xd.mips","offline","malware_download","elf","52.169.42.251","52.169.42.251","8075","IE"
"2020-12-17 11:31:03","http://52.169.42.251/d/xd.arm","offline","malware_download","elf","52.169.42.251","52.169.42.251","8075","IE"
"2020-12-17 11:31:03","http://52.169.42.251/d/xd.arm5","offline","malware_download","elf","52.169.42.251","52.169.42.251","8075","IE"
"2020-12-17 11:31:03","http://52.169.42.251/d/xd.arm6","offline","malware_download","elf","52.169.42.251","52.169.42.251","8075","IE"
"2020-12-17 11:31:03","http://52.169.42.251/d/xd.arm7","offline","malware_download","elf","52.169.42.251","52.169.42.251","8075","IE"
"2020-12-17 11:31:03","http://52.169.42.251/d/xd.m68k","offline","malware_download","elf","52.169.42.251","52.169.42.251","8075","IE"
"2020-12-17 11:31:03","http://52.169.42.251/d/xd.mpsl","offline","malware_download","elf","52.169.42.251","52.169.42.251","8075","IE"
"2020-12-17 11:31:03","http://52.169.42.251/d/xd.ppc","offline","malware_download","elf","52.169.42.251","52.169.42.251","8075","IE"
"2020-12-16 05:04:04","http://1.186.151.219:54309/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-12-16 02:05:07","http://51.116.179.1/SBIDIOT/root","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-16 02:05:04","http://51.116.179.1/SBIDIOT/mips","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-16 02:05:04","http://51.116.179.1/SBIDIOT/ppc","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-16 02:05:04","http://51.116.179.1/sh","offline","malware_download","shellscript","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-16 02:01:03","http://51.116.179.1/SBIDIOT/arm6","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-16 02:01:03","http://51.116.179.1/SBIDIOT/mpsl","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-16 02:01:03","http://51.116.179.1/SBIDIOT/x86","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-16 01:59:04","http://51.116.179.1/SBIDIOT/rtk","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-16 01:59:03","http://51.116.179.1/SBIDIOT/arm","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-16 01:59:03","http://51.116.179.1/SBIDIOT/arm7","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-16 01:59:03","http://51.116.179.1/SBIDIOT/m68k","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-16 01:59:03","http://51.116.179.1/SBIDIOT/sh4","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-16 01:59:03","http://51.116.179.1/SBIDIOT/zte","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-14 12:43:03","http://13.77.209.33/SBIDIOT/ppc","offline","malware_download","bashlite|elf|gafgyt","13.77.209.33","13.77.209.33","8075","US"
"2020-12-14 12:42:03","http://13.77.209.33/SBIDIOT/arm","offline","malware_download","bashlite|elf|gafgyt","13.77.209.33","13.77.209.33","8075","US"
"2020-12-14 12:42:03","http://13.77.209.33/SBIDIOT/arm6","offline","malware_download","bashlite|elf|gafgyt","13.77.209.33","13.77.209.33","8075","US"
"2020-12-14 12:42:03","http://13.77.209.33/SBIDIOT/mips","offline","malware_download","bashlite|elf|gafgyt","13.77.209.33","13.77.209.33","8075","US"
"2020-12-14 12:42:03","http://13.77.209.33/SBIDIOT/mpsl","offline","malware_download","bashlite|elf|gafgyt","13.77.209.33","13.77.209.33","8075","US"
"2020-12-14 12:42:03","http://13.77.209.33/SBIDIOT/x86","offline","malware_download","bashlite|elf|gafgyt","13.77.209.33","13.77.209.33","8075","US"
"2020-12-14 12:42:03","http://13.77.209.33/SBIDIOT/zte","offline","malware_download","bashlite|elf|gafgyt","13.77.209.33","13.77.209.33","8075","US"
"2020-12-14 12:41:04","http://13.77.209.33/SBIDIOT/root","offline","malware_download","bashlite|elf|gafgyt","13.77.209.33","13.77.209.33","8075","US"
"2020-12-14 12:41:04","http://13.77.209.33/SBIDIOT/rtk","offline","malware_download","bashlite|elf|gafgyt","13.77.209.33","13.77.209.33","8075","US"
"2020-12-14 12:33:03","http://13.77.209.33/SBIDIOT/arm7","offline","malware_download","bashlite|elf|gafgyt","13.77.209.33","13.77.209.33","8075","US"
"2020-12-14 12:33:03","http://13.77.209.33/sh","offline","malware_download","shellscript","13.77.209.33","13.77.209.33","8075","US"
"2020-12-14 07:15:03","http://51.116.179.1/ghoul.sh","offline","malware_download","","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-14 02:53:03","http://51.116.179.1/armv4l","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-14 02:53:03","http://51.116.179.1/sparc","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-14 02:53:03","http://51.116.179.1/x86","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-14 02:52:03","http://51.116.179.1/armv5l","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-14 02:52:03","http://51.116.179.1/i586","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-14 02:52:03","http://51.116.179.1/mips","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-14 02:51:04","http://51.116.179.1/m68k","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-14 02:51:03","http://51.116.179.1/armv7l","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-14 02:51:03","http://51.116.179.1/i686","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-14 02:51:03","http://51.116.179.1/powerpc","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-14 02:51:03","http://51.116.179.1/sh4","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-14 02:47:04","http://51.116.179.1/mipsel","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-14 02:47:03","http://51.116.179.1/armv6l","offline","malware_download","bashlite|elf|gafgyt","51.116.179.1","51.116.179.1","8075","DE"
"2020-12-12 11:19:16","http://13.66.50.148/svnS.zip","offline","malware_download","spy|Vadokrist","13.66.50.148","13.66.50.148","8075","US"
"2020-12-12 11:19:16","http://13.84.160.222/svnS","offline","malware_download","spy|Vadokrist","13.84.160.222","13.84.160.222","8075","US"
"2020-12-10 04:23:06","http://52.255.199.232/docsx/docsx.txt","offline","malware_download","AveMariaRAT|exe","52.255.199.232","52.255.199.232","8075","US"
"2020-12-09 11:19:06","http://1.186.151.219:36846/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-12-08 17:57:36","https://fjr.clabris.se/gilding.php","offline","malware_download","dll|dridex","fjr.clabris.se","40.112.69.156","8075","IE"
"2020-12-08 17:57:18","https://fjr.clabris.se/baba.php","offline","malware_download","dll|dridex","fjr.clabris.se","40.112.69.156","8075","IE"
"2020-12-08 17:57:05","https://fjr.clabris.se/release.php","offline","malware_download","dll|dridex","fjr.clabris.se","40.112.69.156","8075","IE"
"2020-12-08 17:56:22","https://burstner.clabris.se/dogfish.php","offline","malware_download","dll|dridex","burstner.clabris.se","40.112.69.156","8075","IE"
"2020-12-08 13:07:04","http://20.52.156.38/snype.mpsl","offline","malware_download","bashlite|elf|gafgyt","20.52.156.38","20.52.156.38","8075","DE"
"2020-12-08 13:07:03","http://20.52.156.38/snype.arm4","offline","malware_download","bashlite|elf|gafgyt","20.52.156.38","20.52.156.38","8075","DE"
"2020-12-08 13:07:03","http://20.52.156.38/snype.arm5","offline","malware_download","bashlite|elf|gafgyt","20.52.156.38","20.52.156.38","8075","DE"
"2020-12-08 13:07:03","http://20.52.156.38/snype.ppc","offline","malware_download","bashlite|elf|gafgyt","20.52.156.38","20.52.156.38","8075","DE"
"2020-12-08 13:07:03","http://20.52.156.38/snype.x86","offline","malware_download","bashlite|elf|gafgyt","20.52.156.38","20.52.156.38","8075","DE"
"2020-12-08 13:03:03","http://20.52.156.38/snype.arm6","offline","malware_download","bashlite|elf|gafgyt","20.52.156.38","20.52.156.38","8075","DE"
"2020-12-08 13:03:02","http://20.52.156.38/snype.sparc","offline","malware_download","bashlite|elf|gafgyt","20.52.156.38","20.52.156.38","8075","DE"
"2020-12-08 13:02:03","http://20.52.156.38/snype.mips","offline","malware_download","bashlite|elf|gafgyt","20.52.156.38","20.52.156.38","8075","DE"
"2020-12-08 10:25:04","http://40.87.121.159/i686","offline","malware_download","bashlite|elf|gafgyt","40.87.121.159","40.87.121.159","8075","US"
"2020-12-08 10:25:04","http://40.87.121.159/mips","offline","malware_download","bashlite|elf|gafgyt","40.87.121.159","40.87.121.159","8075","US"
"2020-12-08 10:25:04","http://40.87.121.159/powerpc","offline","malware_download","bashlite|elf|gafgyt","40.87.121.159","40.87.121.159","8075","US"
"2020-12-08 10:25:04","http://40.87.121.159/x86","offline","malware_download","bashlite|elf|gafgyt","40.87.121.159","40.87.121.159","8075","US"
"2020-12-08 10:25:03","http://40.87.121.159/axisbins.sh","offline","malware_download","shellscript","40.87.121.159","40.87.121.159","8075","US"
"2020-12-08 10:21:03","http://40.87.121.159/armv4l","offline","malware_download","bashlite|elf|gafgyt","40.87.121.159","40.87.121.159","8075","US"
"2020-12-08 10:21:03","http://40.87.121.159/armv5l","offline","malware_download","bashlite|elf|gafgyt","40.87.121.159","40.87.121.159","8075","US"
"2020-12-08 10:21:03","http://40.87.121.159/sh4","offline","malware_download","bashlite|elf|gafgyt","40.87.121.159","40.87.121.159","8075","US"
"2020-12-08 10:21:03","http://40.87.121.159/sparc","offline","malware_download","bashlite|elf|gafgyt","40.87.121.159","40.87.121.159","8075","US"
"2020-12-08 10:19:08","http://40.87.121.159/armv6l","offline","malware_download","bashlite|elf|gafgyt","40.87.121.159","40.87.121.159","8075","US"
"2020-12-08 10:19:07","http://40.87.121.159/i586","offline","malware_download","bashlite|elf|gafgyt","40.87.121.159","40.87.121.159","8075","US"
"2020-12-08 10:19:04","http://40.87.121.159/m68k","offline","malware_download","bashlite|elf|gafgyt","40.87.121.159","40.87.121.159","8075","US"
"2020-12-08 10:19:03","http://40.87.121.159/mipsel","offline","malware_download","bashlite|elf|gafgyt","40.87.121.159","40.87.121.159","8075","US"
"2020-12-07 07:31:04","http://51.116.191.24/snype.ppc","offline","malware_download","bashlite|elf|gafgyt","51.116.191.24","51.116.191.24","8075","DE"
"2020-12-07 07:31:04","http://51.116.191.24/snype.sparc","offline","malware_download","bashlite|elf|gafgyt","51.116.191.24","51.116.191.24","8075","DE"
"2020-12-07 07:31:03","http://51.116.191.24/snype.arm4","offline","malware_download","bashlite|elf|gafgyt","51.116.191.24","51.116.191.24","8075","DE"
"2020-12-07 07:31:03","http://51.116.191.24/snype.arm5","offline","malware_download","bashlite|elf|gafgyt","51.116.191.24","51.116.191.24","8075","DE"
"2020-12-07 07:31:03","http://51.116.191.24/snype.mips","offline","malware_download","bashlite|elf|gafgyt","51.116.191.24","51.116.191.24","8075","DE"
"2020-12-07 07:31:03","http://51.116.191.24/snype.mpsl","offline","malware_download","bashlite|elf|gafgyt","51.116.191.24","51.116.191.24","8075","DE"
"2020-12-07 07:27:03","http://51.116.191.24/snype.arm6","offline","malware_download","bashlite|elf|gafgyt","51.116.191.24","51.116.191.24","8075","DE"
"2020-12-07 07:27:03","http://51.116.191.24/snype.sh","offline","malware_download","shellscript","51.116.191.24","51.116.191.24","8075","DE"
"2020-12-07 07:27:03","http://51.116.191.24/snype.x86","offline","malware_download","bashlite|elf|gafgyt","51.116.191.24","51.116.191.24","8075","DE"
"2020-12-06 15:41:04","http://52.255.172.167/p-p.c-.ASUNA","offline","malware_download","bashlite|elf|gafgyt","52.255.172.167","52.255.172.167","8075","US"
"2020-12-06 15:41:04","http://52.255.172.167/x-3.2-.ASUNA","offline","malware_download","bashlite|elf|gafgyt","52.255.172.167","52.255.172.167","8075","US"
"2020-12-06 15:37:03","http://52.255.172.167/a-r.m-6.ASUNA","offline","malware_download","bashlite|elf|gafgyt","52.255.172.167","52.255.172.167","8075","US"
"2020-12-06 15:37:03","http://52.255.172.167/i-5.8-6.ASUNA","offline","malware_download","bashlite|elf|gafgyt","52.255.172.167","52.255.172.167","8075","US"
"2020-12-06 15:37:03","http://52.255.172.167/s-h.4-.ASUNA","offline","malware_download","bashlite|elf|gafgyt","52.255.172.167","52.255.172.167","8075","US"
"2020-12-06 15:36:07","http://52.255.172.167/a-r.m-7.ASUNA","offline","malware_download","bashlite|elf|gafgyt","52.255.172.167","52.255.172.167","8075","US"
"2020-12-06 15:36:03","http://52.255.172.167/a-r.m-5.ASUNA","offline","malware_download","bashlite|elf|gafgyt","52.255.172.167","52.255.172.167","8075","US"
"2020-12-06 15:35:08","http://52.255.172.167/a-r.m-4.ASUNA","offline","malware_download","bashlite|elf|gafgyt","52.255.172.167","52.255.172.167","8075","US"
"2020-12-06 15:35:05","http://52.255.172.167/m-p.s-l.ASUNA","offline","malware_download","bashlite|elf|gafgyt","52.255.172.167","52.255.172.167","8075","US"
"2020-12-06 15:35:05","http://52.255.172.167/x-8.6-.ASUNA","offline","malware_download","bashlite|elf|gafgyt","52.255.172.167","52.255.172.167","8075","US"
"2020-12-06 15:08:03","http://52.255.172.167/ASUNA.sh","offline","malware_download","script","52.255.172.167","52.255.172.167","8075","US"
"2020-12-06 13:42:04","http://52.255.172.167/m-i.p-s.ASUNA","offline","malware_download","32-bit|ELF|MIPS","52.255.172.167","52.255.172.167","8075","US"
"2020-12-01 10:43:19","http://13.65.210.32/keyP","offline","malware_download","","13.65.210.32","13.65.210.32","8075","US"
"2020-12-01 10:43:12","http://13.84.164.70/sshP.zip","offline","malware_download","","13.84.164.70","13.84.164.70","8075","US"
"2020-12-01 10:22:04","http://1.186.151.219:60375/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-11-25 14:59:07","https://burstner.clabris.se/ucjk7st.zip","offline","malware_download","dridex|Quakbot","burstner.clabris.se","40.112.69.156","8075","IE"
"2020-11-22 13:55:04","http://40.115.6.3/powerpc","offline","malware_download","elf|gafgyt","40.115.6.3","40.115.6.3","8075","NL"
"2020-11-22 13:55:04","http://40.115.6.3/sh4","offline","malware_download","elf|gafgyt","40.115.6.3","40.115.6.3","8075","NL"
"2020-11-22 13:55:04","http://40.115.6.3/sparc","offline","malware_download","elf|gafgyt","40.115.6.3","40.115.6.3","8075","NL"
"2020-11-22 13:54:03","http://40.115.6.3/armv6l","offline","malware_download","elf|gafgyt","40.115.6.3","40.115.6.3","8075","NL"
"2020-11-22 13:54:03","http://40.115.6.3/i586","offline","malware_download","elf|gafgyt","40.115.6.3","40.115.6.3","8075","NL"
"2020-11-22 13:54:03","http://40.115.6.3/i686","offline","malware_download","elf|gafgyt","40.115.6.3","40.115.6.3","8075","NL"
"2020-11-22 13:54:03","http://40.115.6.3/m68k","offline","malware_download","elf|gafgyt","40.115.6.3","40.115.6.3","8075","NL"
"2020-11-22 13:54:03","http://40.115.6.3/mips","offline","malware_download","elf|gafgyt","40.115.6.3","40.115.6.3","8075","NL"
"2020-11-22 13:54:03","http://40.115.6.3/mipsel","offline","malware_download","elf|gafgyt","40.115.6.3","40.115.6.3","8075","NL"
"2020-11-22 12:02:04","http://40.115.6.3/armv4l","offline","malware_download","elf","40.115.6.3","40.115.6.3","8075","NL"
"2020-11-22 12:02:04","http://40.115.6.3/armv5l","offline","malware_download","elf","40.115.6.3","40.115.6.3","8075","NL"
"2020-11-22 04:19:04","http://1.186.151.219:39182/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-11-18 09:49:05","http://1.186.151.219:32951/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-11-18 00:49:36","http://13.90.39.244/sysxu","offline","malware_download","64-bit|ELF|x86-64","13.90.39.244","13.90.39.244","8075","US"
"2020-11-17 19:04:08","http://13.90.152.156/powerpc","offline","malware_download","elf","13.90.152.156","13.90.152.156","8075","US"
"2020-11-17 19:04:07","http://13.90.152.156/armv5l","offline","malware_download","elf","13.90.152.156","13.90.152.156","8075","US"
"2020-11-17 19:04:07","http://13.90.152.156/i586","offline","malware_download","elf","13.90.152.156","13.90.152.156","8075","US"
"2020-11-17 19:04:06","http://13.90.152.156/sparc","offline","malware_download","elf","13.90.152.156","13.90.152.156","8075","US"
"2020-11-17 19:04:04","http://13.90.152.156/armv4l","offline","malware_download","elf","13.90.152.156","13.90.152.156","8075","US"
"2020-11-17 19:04:04","http://13.90.152.156/i686","offline","malware_download","elf","13.90.152.156","13.90.152.156","8075","US"
"2020-11-17 19:04:04","http://13.90.152.156/m68k","offline","malware_download","elf","13.90.152.156","13.90.152.156","8075","US"
"2020-11-17 19:03:04","http://13.90.152.156/armv6l","offline","malware_download","elf","13.90.152.156","13.90.152.156","8075","US"
"2020-11-17 19:03:04","http://13.90.152.156/mips","offline","malware_download","elf","13.90.152.156","13.90.152.156","8075","US"
"2020-11-17 19:03:04","http://13.90.152.156/mipsel","offline","malware_download","elf","13.90.152.156","13.90.152.156","8075","US"
"2020-11-17 19:03:04","http://13.90.152.156/sh4","offline","malware_download","elf","13.90.152.156","13.90.152.156","8075","US"
"2020-11-17 19:03:04","http://13.90.152.156/x86","offline","malware_download","elf","13.90.152.156","13.90.152.156","8075","US"
"2020-11-16 14:02:19","http://axisrehab-wordpress.ripedev.com.au/o0ch0ojd0.zip","offline","malware_download","Dridex","axisrehab-wordpress.ripedev.com.au","20.213.140.173","8075","AU"
"2020-11-15 05:50:11","http://191.235.65.153/sshd","offline","malware_download","elf|gafgyt","191.235.65.153","191.235.65.153","8075","BR"
"2020-11-15 05:50:10","http://191.235.65.153/cron","offline","malware_download","elf|gafgyt","191.235.65.153","191.235.65.153","8075","BR"
"2020-11-15 05:50:10","http://191.235.65.153/ftp","offline","malware_download","elf|gafgyt","191.235.65.153","191.235.65.153","8075","BR"
"2020-11-15 05:50:10","http://191.235.65.153/openssh","offline","malware_download","elf|gafgyt","191.235.65.153","191.235.65.153","8075","BR"
"2020-11-15 05:50:10","http://191.235.65.153/pftp","offline","malware_download","elf|gafgyt","191.235.65.153","191.235.65.153","8075","BR"
"2020-11-15 05:50:10","http://191.235.65.153/wget","offline","malware_download","elf|gafgyt","191.235.65.153","191.235.65.153","8075","BR"
"2020-11-15 05:50:07","http://191.235.65.153/apache2","offline","malware_download","elf|gafgyt","191.235.65.153","191.235.65.153","8075","BR"
"2020-11-15 05:50:07","http://191.235.65.153/ntpd","offline","malware_download","elf|gafgyt","191.235.65.153","191.235.65.153","8075","BR"
"2020-11-15 05:50:07","http://191.235.65.153/tftp","offline","malware_download","elf|gafgyt","191.235.65.153","191.235.65.153","8075","BR"
"2020-11-15 05:50:06","http://191.235.65.153/nut","offline","malware_download","elf|gafgyt","191.235.65.153","191.235.65.153","8075","BR"
"2020-11-15 05:50:06","http://191.235.65.153/sh","offline","malware_download","elf|gafgyt","191.235.65.153","191.235.65.153","8075","BR"
"2020-11-14 17:04:05","http://1.186.151.219:42562/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-11-11 14:31:12","https://fjr.clabris.se/vgw2ufi.jpg","offline","malware_download","dll|Dridex","fjr.clabris.se","40.112.69.156","8075","IE"
"2020-11-11 11:04:09","http://1.186.53.31:48646/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.53.31","1.186.53.31","8075","GB"
"2020-11-11 08:05:13","http://salud.eastus.cloudapp.azure.com/azs23g64.zip","offline","malware_download","AutoHotkey|mekotio|ZIP","salud.eastus.cloudapp.azure.com","20.115.109.163","8075","US"
"2020-11-06 19:04:03","http://1.186.53.31:46400/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.53.31","1.186.53.31","8075","GB"
"2020-11-06 15:52:06","http://1.186.232.135:33076/bin.sh","offline","malware_download","32-bit|ARM|ELF|Mirai","1.186.232.135","1.186.232.135","8075","GB"
"2020-11-06 05:19:32","http://1.186.151.219:49596/Mozi.a","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-11-06 04:34:05","http://1.186.53.31:46400/Mozi.a","offline","malware_download","elf|Mirai|Mozi","1.186.53.31","1.186.53.31","8075","GB"
"2020-11-05 02:13:45","http://internal.wpress.dk/bqah5tpg.zip","offline","malware_download","dll|dridex","internal.wpress.dk","20.52.50.37","8075","DE"
"2020-11-03 16:38:04","http://dac.wpress.dk/accommodate.php","offline","malware_download","Dridex","dac.wpress.dk","20.52.50.37","8075","DE"
"2020-11-03 16:38:03","http://aaren.wpress.dk/deal.php","offline","malware_download","Dridex","aaren.wpress.dk","20.52.50.37","8075","DE"
"2020-11-03 16:38:03","http://www.steak.wpress.dk/finish.php","offline","malware_download","Dridex","www.steak.wpress.dk","20.52.50.37","8075","DE"
"2020-11-03 16:35:06","http://roche-m2s.wpress.dk/increase.php","offline","malware_download","","roche-m2s.wpress.dk","20.52.50.37","8075","DE"
"2020-11-03 15:09:08","http://fdss.org.nz/ds/1.gif","offline","malware_download","exe|Qakbot|qbot|QuakBot","fdss.org.nz","20.36.106.96","8075","AU"
"2020-11-03 14:25:06","http://phaseswebshop.wpress.dk/appoint.php","offline","malware_download","doc","phaseswebshop.wpress.dk","20.52.50.37","8075","DE"
"2020-11-02 14:27:07","http://uhj.metisonline.se/r3m2rga.zip","offline","malware_download","dll|Dridex","uhj.metisonline.se","13.69.228.51","8075","IE"
"2020-11-02 08:40:05","http://13.90.228.87/excel/images.exe","offline","malware_download","AveMariaRAT|exe|opendir","13.90.228.87","13.90.228.87","8075","US"
"2020-11-02 00:04:39","http://172.168.46.148:58767/Mozi.m","offline","malware_download","Mozi","172.168.46.148","172.168.46.148","8075","US"
"2020-11-01 04:34:05","http://1.186.53.31:43552/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.53.31","1.186.53.31","8075","GB"
"2020-10-31 23:19:07","http://1.186.55.25:46726/Mozi.a","offline","malware_download","elf|Mirai|Mozi","1.186.55.25","1.186.55.25","8075","GB"
"2020-10-30 10:19:08","http://1.186.151.219:42548/Mozi.a","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-10-30 05:57:08","http://www.tz004.com/ad_files/a0/","offline","malware_download","emotet|epoch1|exe|heodo","www.tz004.com","168.63.151.129","8075","HK"
"2020-10-30 01:37:06","https://help.hizuko.com/groovy-count/oct/0xmvft0c9nff/","offline","malware_download","doc|emotet|epoch1|Heodo","help.hizuko.com","23.96.103.159","8075","US"
"2020-10-29 20:04:05","http://1.186.53.31:35396/Mozi.a","offline","malware_download","elf|Mirai|Mozi","1.186.53.31","1.186.53.31","8075","GB"
"2020-10-29 19:19:04","http://attenstyle.com/wp-admin/pB/","offline","malware_download","emotet|epoch1|exe|heodo","attenstyle.com","20.9.42.17","8075","US"
"2020-10-29 15:27:04","http://ezi-pos.com/categoryl/LphwqB1xxxJ96UhY2ZugDbZoiIfYSBjL6ZH/","offline","malware_download","doc|emotet|epoch2|Heodo","ezi-pos.com","20.74.132.236","8075","AE"
"2020-10-29 11:38:34","http://measuresquare.com/sitepage/Scan/8rfacIDzvJ5yu/","offline","malware_download","doc|emotet|epoch1","measuresquare.com","20.150.215.76","8075","US"
"2020-10-29 10:14:08","https://measuresquare.com/sitepage/Scan/8rfacIDzvJ5yu/","offline","malware_download","doc|emotet|epoch1|Heodo","measuresquare.com","20.150.215.76","8075","US"
"2020-10-28 17:04:05","http://1.186.55.25:58774/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.55.25","1.186.55.25","8075","GB"
"2020-10-27 17:33:05","http://ezi-pos.com/categoryl/v17Xi18t2Lpq51f8TVWEW7iV5X8MCKrZ05N061N0ChY6h0LdpdCaYEH6sbT0PYt9zFLEE/","offline","malware_download","doc|Emotet|epoch2|Heodo","ezi-pos.com","20.74.132.236","8075","AE"
"2020-10-27 09:59:03","https://employeradvice.ie/edukclone/sites/4yoKnXJqpA/","offline","malware_download","doc|Emotet|epoch1|Heodo","employeradvice.ie","51.140.146.130","8075","GB"
"2020-10-27 08:44:04","http://attenstyle.com/wp-admin/utZ9zYTIoWJmPJVVs9Vv2U28NVApW2R8bMp/","offline","malware_download","doc|emotet|epoch2|Heodo","attenstyle.com","20.9.42.17","8075","US"
"2020-10-27 04:56:06","https://help.hizuko.com/groovy-count/47HLm/INC/238785/9ymyqfn7z0y-165424/","offline","malware_download","doc|emotet|epoch3|Heodo","help.hizuko.com","23.96.103.159","8075","US"
"2020-10-27 04:47:06","https://help.hizuko.com/groovy-count/FILE/pkiadn813d-00034986/","offline","malware_download","doc|emotet|epoch3|Heodo","help.hizuko.com","23.96.103.159","8075","US"
"2020-10-26 20:19:04","http://1.186.53.31:55308/Mozi.a","offline","malware_download","elf|Mirai|Mozi","1.186.53.31","1.186.53.31","8075","GB"
"2020-10-25 02:04:06","http://1.186.55.25:51718/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.55.25","1.186.55.25","8075","GB"
"2020-10-21 23:04:08","http://goldcoastoffice365.com/temp/Document/pppSSSYqLY/","offline","malware_download","doc|emotet|epoch1|Heodo","goldcoastoffice365.com","52.163.122.115","8075","SG"
"2020-10-21 16:19:05","http://1.186.55.25:35750/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.55.25","1.186.55.25","8075","GB"
"2020-10-21 14:10:05","http://goldcoastoffice365.com.au/temp/Pages/oELBN0YOwEQ6ieJTsfj0/","offline","malware_download","doc|emotet|epoch1|Heodo","goldcoastoffice365.com.au","52.163.122.115","8075","SG"
"2020-10-21 06:49:05","http://1.186.151.219:59272/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-10-21 00:46:06","https://www.workex.jobs/blog/718017006/in70g-00089/","offline","malware_download","doc|emotet|epoch3|Heodo","www.workex.jobs","168.63.217.218","8075","HK"
"2020-10-20 20:34:05","http://1.186.55.25:46340/Mozi.a","offline","malware_download","elf|Mirai|Mozi","1.186.55.25","1.186.55.25","8075","GB"
"2020-10-20 14:56:05","http://tz004.com/ad_files/DOC/P69hLdPAOs/","offline","malware_download","doc|emotet|epoch1|Heodo","tz004.com","168.63.151.129","8075","HK"
"2020-10-20 12:44:04","http://www.tz004.com/ad_files/DOC/P69hLdPAOs/","offline","malware_download","doc|emotet|epoch1|Heodo","www.tz004.com","168.63.151.129","8075","HK"
"2020-10-20 11:13:04","http://catchpoolshetlands.co.uk/content/Pages/SqVbLAXz7E39/","offline","malware_download","doc|emotet|epoch1|Heodo","catchpoolshetlands.co.uk","52.173.77.140","8075","US"
"2020-10-20 10:33:07","http://www.unipoconsulting.com/alate/attachments/attachments/4723/jOFtg/","offline","malware_download","doc|emotet|epoch3|Heodo","www.unipoconsulting.com","172.191.139.61","8075","US"
"2020-10-19 12:09:07","https://help.hizuko.com/groovy-count/iY/","offline","malware_download","emotet|epoch1|exe|Heodo","help.hizuko.com","23.96.103.159","8075","US"
"2020-10-18 16:04:05","http://1.186.151.219:49596/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-10-18 01:19:04","http://1.186.55.25:49369/i","offline","malware_download","32-bit|ARM|ELF|Mirai","1.186.55.25","1.186.55.25","8075","GB"
"2020-10-18 00:55:05","http://1.186.55.25:49369/bin.sh","offline","malware_download","32-bit|ARM|ELF|Mirai","1.186.55.25","1.186.55.25","8075","GB"
"2020-10-08 07:21:03","http://13.69.134.240/Demon.arm5","offline","malware_download","bashlite|elf|gafgyt","13.69.134.240","13.69.134.240","8075","IE"
"2020-10-08 07:17:03","http://13.69.134.240/Demon.i686","offline","malware_download","bashlite|elf|gafgyt","13.69.134.240","13.69.134.240","8075","IE"
"2020-10-08 07:16:03","http://13.69.134.240/Demon.sh4","offline","malware_download","bashlite|elf|gafgyt","13.69.134.240","13.69.134.240","8075","IE"
"2020-10-08 07:15:04","http://13.69.134.240/Demon.arm7","offline","malware_download","bashlite|elf|gafgyt","13.69.134.240","13.69.134.240","8075","IE"
"2020-10-08 07:15:04","http://13.69.134.240/Demon.i586","offline","malware_download","bashlite|elf|gafgyt","13.69.134.240","13.69.134.240","8075","IE"
"2020-10-08 07:09:03","http://13.69.134.240/Demon.x86","offline","malware_download","bashlite|elf|gafgyt","13.69.134.240","13.69.134.240","8075","IE"
"2020-10-08 07:08:03","http://13.69.134.240/Demon.mpsl","offline","malware_download","bashlite|elf|gafgyt","13.69.134.240","13.69.134.240","8075","IE"
"2020-10-08 07:07:03","http://13.69.134.240/Demon.m68k","offline","malware_download","bashlite|elf|gafgyt","13.69.134.240","13.69.134.240","8075","IE"
"2020-10-08 07:07:03","http://13.69.134.240/Demon.sparc","offline","malware_download","bashlite|elf|gafgyt","13.69.134.240","13.69.134.240","8075","IE"
"2020-10-08 07:01:04","http://13.69.134.240/Demon.mips","offline","malware_download","bashlite|elf|gafgyt","13.69.134.240","13.69.134.240","8075","IE"
"2020-10-08 07:01:04","http://13.69.134.240/Demon.ppc","offline","malware_download","bashlite|elf|gafgyt","13.69.134.240","13.69.134.240","8075","IE"
"2020-10-08 06:57:03","http://13.69.134.240/Demon.arm6","offline","malware_download","bashlite|elf|gafgyt","13.69.134.240","13.69.134.240","8075","IE"
"2020-10-08 06:55:04","http://13.69.134.240/Demon.arm4","offline","malware_download","bashlite|elf|gafgyt","13.69.134.240","13.69.134.240","8075","IE"
"2020-10-08 04:46:03","http://13.69.134.240/bins.sh","offline","malware_download","shellscript","13.69.134.240","13.69.134.240","8075","IE"
"2020-10-08 04:39:05","http://1.186.151.219:54847/Mozi.a","offline","malware_download","elf|Mirai","1.186.151.219","1.186.151.219","8075","GB"
"2020-10-06 02:49:05","http://1.186.55.25:56925/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.55.25","1.186.55.25","8075","GB"
"2020-10-05 15:03:34","http://172.176.217.167:52718/Mozi.m","offline","malware_download","Mozi","172.176.217.167","172.176.217.167","8075","US"
"2020-10-03 02:49:04","http://1.186.55.25:57072/Mozi.a","offline","malware_download","elf|Mirai|Mozi","1.186.55.25","1.186.55.25","8075","GB"
"2020-10-02 20:04:06","http://1.186.151.219:32886/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-10-02 09:30:37","https://goexploreindia.in/build_all_moMoUCxMRU224.bin","offline","malware_download","encrypted|GuLoader","goexploreindia.in","20.118.48.5","8075","US"
"2020-10-02 09:30:35","https://goexploreindia.in/tkanilux_klWFCENDDZ82.bin","offline","malware_download","encrypted|GuLoader","goexploreindia.in","20.118.48.5","8075","US"
"2020-10-01 21:41:12","http://www.tz004.com/ad_files/hbGeCBM/","offline","malware_download","emotet|epoch3|exe|Heodo","www.tz004.com","168.63.151.129","8075","HK"
"2020-10-01 07:11:09","https://goexploreindia.in/build_0NY_rpcfyCFK184.bin","offline","malware_download","encrypted|GuLoader","goexploreindia.in","20.118.48.5","8075","US"
"2020-10-01 07:11:09","https://goexploreindia.in/Pony_al_uKaUDxle43.bin","offline","malware_download","encrypted|GuLoader","goexploreindia.in","20.118.48.5","8075","US"
"2020-09-30 14:08:05","http://goldcoastoffice365.com/temp/INC/2CXnBe3it2/","offline","malware_download","doc|emotet|epoch1|Heodo","goldcoastoffice365.com","52.163.122.115","8075","SG"
"2020-09-30 07:03:08","https://goexploreindia.in/0ny_FoyjpCKyMJ221.bin","offline","malware_download","encrypted|GuLoader","goexploreindia.in","20.118.48.5","8075","US"
"2020-09-29 07:08:10","http://tz004.com/ad_files/vmbmtb/","offline","malware_download","doc|emotet|epoch2|Heodo","tz004.com","168.63.151.129","8075","HK"
"2020-09-29 07:08:05","https://dev-diplomatique.primaestudio.com/sys-cache/LLC/3rnje/","offline","malware_download","doc|emotet|epoch2|Heodo","dev-diplomatique.primaestudio.com","52.254.68.208","8075","US"
"2020-09-29 06:34:08","http://1.186.151.219:46728/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-09-28 09:16:06","https://goexploreindia.in/home/build_OOO_ZZKntOQCL78.bin","offline","malware_download","encrypted|GuLoader","goexploreindia.in","20.118.48.5","8075","US"
"2020-09-27 04:19:06","http://1.186.151.219:49752/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-09-24 23:45:06","http://goldcoastoffice365.com/temp/9HCdvrEa/","offline","malware_download","emotet|epoch3|exe|heodo","goldcoastoffice365.com","52.163.122.115","8075","SG"
"2020-09-24 18:06:20","http://chams290.duckdns.org/po83.png","offline","malware_download","banload|brazil|ousaban","chams290.duckdns.org","52.252.47.3","8075","US"
"2020-09-24 12:05:07","http://goldcoastoffice365.com.au/temp/FILE/ieBFc89ffPgMRX/","offline","malware_download","doc|emotet|epoch1|Heodo","goldcoastoffice365.com.au","52.163.122.115","8075","SG"
"2020-09-23 23:58:09","http://tz004.com/ad_files/Pages/SZ4h4EnW1PUdyui/","offline","malware_download","doc|emotet|epoch1|Heodo","tz004.com","168.63.151.129","8075","HK"
"2020-09-23 23:56:11","http://www.tz004.com/ad_files/Overview/hante3496439239015vj791pmsu6tns97j/","offline","malware_download","doc|emotet|epoch2|Heodo","www.tz004.com","168.63.151.129","8075","HK"
"2020-09-23 21:49:05","http://1.186.55.25:48916/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.55.25","1.186.55.25","8075","GB"
"2020-09-23 08:04:04","http://1.186.55.25:35722/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.55.25","1.186.55.25","8075","GB"
"2020-09-22 23:21:08","https://cloudraks.com/attribute/GR/","offline","malware_download","emotet|epoch2|exe|Heodo","cloudraks.com","13.67.9.3","8075","SG"
"2020-09-22 13:21:20","http://goldcoastoffice365.com/temp/RAr9U/","offline","malware_download","emotet|epoch2|exe|Heodo","goldcoastoffice365.com","52.163.122.115","8075","SG"
"2020-09-22 08:18:10","http://goldcoastoffice365.com.au/temp/report/5awgnu04p6u/","offline","malware_download","doc|emotet|epoch2|Heodo","goldcoastoffice365.com.au","52.163.122.115","8075","SG"
"2020-09-21 09:40:09","http://aquarius.com.br/9hv3/esp/EHSmAJcYxP1ic60fz/","offline","malware_download","doc|emotet|epoch1|Heodo","aquarius.com.br","191.232.188.173","8075","BR"
"2020-09-19 20:49:04","http://1.186.151.219:56215/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-09-18 17:02:13","http://137.116.209.126/p-p.c-.Sakura","offline","malware_download","elf","137.116.209.126","137.116.209.126","8075","NL"
"2020-09-18 17:02:12","http://137.116.209.126/m-6.8-k.Sakura","offline","malware_download","elf","137.116.209.126","137.116.209.126","8075","NL"
"2020-09-18 17:02:09","http://137.116.209.126/i-5.8-6.Sakura","offline","malware_download","elf","137.116.209.126","137.116.209.126","8075","NL"
"2020-09-18 17:02:09","http://137.116.209.126/x-3.2-.Sakura","offline","malware_download","elf","137.116.209.126","137.116.209.126","8075","NL"
"2020-09-18 17:02:07","http://137.116.209.126/s-h.4-.Sakura","offline","malware_download","elf","137.116.209.126","137.116.209.126","8075","NL"
"2020-09-18 17:02:06","http://137.116.209.126/a-r.m-4.Sakura","offline","malware_download","elf","137.116.209.126","137.116.209.126","8075","NL"
"2020-09-18 17:02:05","http://137.116.209.126/a-r.m-5.Sakura","offline","malware_download","elf","137.116.209.126","137.116.209.126","8075","NL"
"2020-09-18 17:02:05","http://137.116.209.126/m-p.s-l.Sakura","offline","malware_download","elf","137.116.209.126","137.116.209.126","8075","NL"
"2020-09-18 17:02:03","http://137.116.209.126/a-r.m-6.Sakura","offline","malware_download","elf","137.116.209.126","137.116.209.126","8075","NL"
"2020-09-18 17:02:03","http://137.116.209.126/a-r.m-7.Sakura","offline","malware_download","elf","137.116.209.126","137.116.209.126","8075","NL"
"2020-09-18 17:02:03","http://137.116.209.126/m-i.p-s.Sakura","offline","malware_download","elf","137.116.209.126","137.116.209.126","8075","NL"
"2020-09-18 17:02:03","http://137.116.209.126/x-8.6-.Sakura","offline","malware_download","elf","137.116.209.126","137.116.209.126","8075","NL"
"2020-09-18 04:51:05","http://1.186.53.31:47845/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.53.31","1.186.53.31","8075","GB"
"2020-09-18 04:20:09","http://1.186.146.210:46133/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.146.210","1.186.146.210","8075","GB"
"2020-09-18 01:42:06","http://138.91.32.176/Spoofed/RebornGang.ppc","offline","malware_download","elf|mirai","138.91.32.176","138.91.32.176","8075","SG"
"2020-09-18 01:42:05","http://138.91.32.176/Spoofed/RebornGang.m68k","offline","malware_download","elf|mirai","138.91.32.176","138.91.32.176","8075","SG"
"2020-09-18 01:42:04","http://138.91.32.176/Spoofed/RebornGang.arm","offline","malware_download","elf|mirai","138.91.32.176","138.91.32.176","8075","SG"
"2020-09-18 01:42:04","http://138.91.32.176/Spoofed/RebornGang.arm5","offline","malware_download","elf|mirai","138.91.32.176","138.91.32.176","8075","SG"
"2020-09-18 01:42:04","http://138.91.32.176/Spoofed/RebornGang.mips","offline","malware_download","elf|mirai","138.91.32.176","138.91.32.176","8075","SG"
"2020-09-18 01:42:04","http://138.91.32.176/Spoofed/RebornGang.mpsl","offline","malware_download","elf|mirai","138.91.32.176","138.91.32.176","8075","SG"
"2020-09-18 01:42:04","http://138.91.32.176/Spoofed/RebornGang.spc","offline","malware_download","elf|mirai","138.91.32.176","138.91.32.176","8075","SG"
"2020-09-18 01:42:04","http://138.91.32.176/Spoofed/RebornGang.x86","offline","malware_download","elf|mirai","138.91.32.176","138.91.32.176","8075","SG"
"2020-09-18 01:41:03","http://138.91.32.176/Spoofed/RebornGang.arm6","offline","malware_download","elf|mirai","138.91.32.176","138.91.32.176","8075","SG"
"2020-09-18 01:41:03","http://138.91.32.176/Spoofed/RebornGang.arm7","offline","malware_download","elf|mirai","138.91.32.176","138.91.32.176","8075","SG"
"2020-09-18 01:41:03","http://138.91.32.176/Spoofed/RebornGang.sh4","offline","malware_download","elf|mirai","138.91.32.176","138.91.32.176","8075","SG"
"2020-09-17 15:15:06","http://goldcoastoffice365.com/temp/Document/qmftzk2rs9i/","offline","malware_download","doc|emotet|epoch2|Heodo","goldcoastoffice365.com","52.163.122.115","8075","SG"
"2020-09-17 08:34:05","http://1.186.53.31:33957/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.53.31","1.186.53.31","8075","GB"
"2020-09-17 04:13:03","http://20.186.96.165/Sakura.sh","offline","malware_download","shellscript","20.186.96.165","20.186.96.165","8075","US"
"2020-09-17 04:05:06","http://20.186.96.165/a-r.m-7.Sakura","offline","malware_download","elf","20.186.96.165","20.186.96.165","8075","US"
"2020-09-17 04:05:06","http://20.186.96.165/i-5.8-6.Sakura","offline","malware_download","elf","20.186.96.165","20.186.96.165","8075","US"
"2020-09-17 04:05:06","http://20.186.96.165/m-6.8-k.Sakura","offline","malware_download","elf","20.186.96.165","20.186.96.165","8075","US"
"2020-09-17 04:05:06","http://20.186.96.165/x-3.2-.Sakura","offline","malware_download","elf","20.186.96.165","20.186.96.165","8075","US"
"2020-09-17 04:05:06","http://20.186.96.165/x-8.6-.Sakura","offline","malware_download","elf","20.186.96.165","20.186.96.165","8075","US"
"2020-09-17 04:05:05","http://20.186.96.165/a-r.m-4.Sakura","offline","malware_download","elf","20.186.96.165","20.186.96.165","8075","US"
"2020-09-17 04:05:05","http://20.186.96.165/a-r.m-5.Sakura","offline","malware_download","elf","20.186.96.165","20.186.96.165","8075","US"
"2020-09-17 04:05:05","http://20.186.96.165/a-r.m-6.Sakura","offline","malware_download","elf","20.186.96.165","20.186.96.165","8075","US"
"2020-09-17 04:05:05","http://20.186.96.165/m-i.p-s.Sakura","offline","malware_download","elf","20.186.96.165","20.186.96.165","8075","US"
"2020-09-17 04:05:05","http://20.186.96.165/m-p.s-l.Sakura","offline","malware_download","elf","20.186.96.165","20.186.96.165","8075","US"
"2020-09-17 04:05:05","http://20.186.96.165/p-p.c-.Sakura","offline","malware_download","elf","20.186.96.165","20.186.96.165","8075","US"
"2020-09-17 04:05:04","http://20.186.96.165/s-h.4-.Sakura","offline","malware_download","elf","20.186.96.165","20.186.96.165","8075","US"
"2020-09-17 04:04:05","http://1.186.55.25:36202/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.55.25","1.186.55.25","8075","GB"
"2020-09-16 22:27:12","https://maxis-wp.sunagolearn.com/wp-content/0LGKWRWL5APU/sg3g70097394229863uzcc0f8z76vwyru/","offline","malware_download","doc|emotet|epoch2|heodo","maxis-wp.sunagolearn.com","172.188.49.76","8075","SG"
"2020-09-16 16:19:14","https://cloudraks.com/wp-admin/Document/","offline","malware_download","doc|emotet|epoch2|heodo","cloudraks.com","13.67.9.3","8075","SG"
"2020-09-16 16:14:07","https://cloudraks.com/wp-admin/parts_service/JYPaM9i4jw/","offline","malware_download","doc|emotet|epoch1|heodo","cloudraks.com","13.67.9.3","8075","SG"
"2020-09-15 11:43:06","http://goldcoastoffice365.com/temp/wQ/","offline","malware_download","emotet|epoch1|exe|Heodo","goldcoastoffice365.com","52.163.122.115","8075","SG"
"2020-09-14 20:43:04","https://maxis-wp.sunagolearn.com/wp-content/http:/public/HN3j0ELxyrDZQeq/","offline","malware_download","doc|emotet|epoch1|Heodo","maxis-wp.sunagolearn.com","172.188.49.76","8075","SG"
"2020-09-14 13:56:44","https://maxis-wp.sunagolearn.com/wp-content/http://public/HN3j0ELxyrDZQeq/","offline","malware_download","doc|emotet|epoch1|heodo","maxis-wp.sunagolearn.com","172.188.49.76","8075","SG"
"2020-09-14 11:04:52","http://1.186.53.31:58908/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.53.31","1.186.53.31","8075","GB"
"2020-09-08 02:13:03","http://168.62.218.152/menace_sh4","offline","malware_download","bashlite|elf|gafgyt","168.62.218.152","168.62.218.152","8075","US"
"2020-09-08 02:10:03","http://168.62.218.152/menace_powerpc","offline","malware_download","bashlite|elf|gafgyt","168.62.218.152","168.62.218.152","8075","US"
"2020-09-08 02:09:04","http://168.62.218.152/menace_mipsel","offline","malware_download","bashlite|elf|gafgyt","168.62.218.152","168.62.218.152","8075","US"
"2020-09-08 02:09:03","http://168.62.218.152/menace_arm7","offline","malware_download","bashlite|elf|gafgyt","168.62.218.152","168.62.218.152","8075","US"
"2020-09-08 02:08:04","http://168.62.218.152/menace_sparc","offline","malware_download","bashlite|elf|gafgyt","168.62.218.152","168.62.218.152","8075","US"
"2020-09-08 02:03:03","http://168.62.218.152/menace_arm5","offline","malware_download","bashlite|elf|gafgyt","168.62.218.152","168.62.218.152","8075","US"
"2020-09-08 02:03:03","http://168.62.218.152/menace_mips","offline","malware_download","bashlite|elf|gafgyt","168.62.218.152","168.62.218.152","8075","US"
"2020-09-08 01:58:03","http://168.62.218.152/menace_arm4","offline","malware_download","bashlite|elf|gafgyt","168.62.218.152","168.62.218.152","8075","US"
"2020-09-08 01:57:03","http://168.62.218.152/menace_64","offline","malware_download","bashlite|elf|gafgyt","168.62.218.152","168.62.218.152","8075","US"
"2020-09-08 01:57:03","http://168.62.218.152/menace_m68","offline","malware_download","bashlite|elf|gafgyt","168.62.218.152","168.62.218.152","8075","US"
"2020-09-08 01:53:03","http://168.62.218.152/menace_i5","offline","malware_download","bashlite|elf|gafgyt","168.62.218.152","168.62.218.152","8075","US"
"2020-09-08 01:53:03","http://168.62.218.152/menace_i6","offline","malware_download","bashlite|elf|gafgyt","168.62.218.152","168.62.218.152","8075","US"
"2020-09-08 01:47:03","http://168.62.218.152/menace.sh","offline","malware_download","shellscript","168.62.218.152","168.62.218.152","8075","US"
"2020-09-07 18:49:03","http://40.84.141.196/Spoofed/RebornGang.arm5","offline","malware_download","elf|mirai","40.84.141.196","40.84.141.196","8075","US"
"2020-09-07 18:49:03","http://40.84.141.196/Spoofed/RebornGang.arm6","offline","malware_download","elf|mirai","40.84.141.196","40.84.141.196","8075","US"
"2020-09-07 18:44:03","http://40.84.141.196/Spoofed/RebornGang.arm7","offline","malware_download","elf|mirai","40.84.141.196","40.84.141.196","8075","US"
"2020-09-07 18:44:03","http://40.84.141.196/Spoofed/RebornGang.ppc","offline","malware_download","elf|mirai","40.84.141.196","40.84.141.196","8075","US"
"2020-09-07 18:44:03","http://40.84.141.196/Spoofed/RebornGang.sh4","offline","malware_download","elf|mirai","40.84.141.196","40.84.141.196","8075","US"
"2020-09-07 18:43:03","http://40.84.141.196/Spoofed/RebornGang.arm4","offline","malware_download","elf|mirai","40.84.141.196","40.84.141.196","8075","US"
"2020-09-07 18:43:03","http://40.84.141.196/Spoofed/RebornGang.m68k","offline","malware_download","elf|mirai","40.84.141.196","40.84.141.196","8075","US"
"2020-09-07 18:43:03","http://40.84.141.196/Spoofed/RebornGang.mips","offline","malware_download","elf|mirai","40.84.141.196","40.84.141.196","8075","US"
"2020-09-07 18:43:03","http://40.84.141.196/Spoofed/RebornGang.mpsl","offline","malware_download","elf|mirai","40.84.141.196","40.84.141.196","8075","US"
"2020-09-07 18:43:03","http://40.84.141.196/Spoofed/RebornGang.x86","offline","malware_download","elf|mirai","40.84.141.196","40.84.141.196","8075","US"
"2020-09-07 18:34:03","http://40.84.141.196/Pemex.sh","offline","malware_download","shellscript","40.84.141.196","40.84.141.196","8075","US"
"2020-09-07 09:00:04","http://191.232.166.194/login.arm","offline","malware_download","elf|mirai","191.232.166.194","191.232.166.194","8075","BR"
"2020-09-07 08:59:04","http://191.232.166.194/login.spc","offline","malware_download","elf|mirai","191.232.166.194","191.232.166.194","8075","BR"
"2020-09-07 07:46:03","http://191.232.166.194/login.arm5","offline","malware_download","elf|mirai","191.232.166.194","191.232.166.194","8075","BR"
"2020-09-07 07:46:03","http://191.232.166.194/login.arm6","offline","malware_download","elf|mirai","191.232.166.194","191.232.166.194","8075","BR"
"2020-09-07 07:46:03","http://191.232.166.194/login.mips","offline","malware_download","elf|mirai","191.232.166.194","191.232.166.194","8075","BR"
"2020-09-07 07:46:03","http://191.232.166.194/login.x86","offline","malware_download","elf|mirai","191.232.166.194","191.232.166.194","8075","BR"
"2020-09-07 07:46:03","http://191.232.166.194/Pemex.sh","offline","malware_download","shellscript","191.232.166.194","191.232.166.194","8075","BR"
"2020-09-07 07:43:04","http://191.232.166.194/login.m68k","offline","malware_download","elf|mirai","191.232.166.194","191.232.166.194","8075","BR"
"2020-09-07 07:42:04","http://191.232.166.194/login.arm7","offline","malware_download","elf|mirai","191.232.166.194","191.232.166.194","8075","BR"
"2020-09-07 07:42:04","http://191.232.166.194/login.mpsl","offline","malware_download","elf|mirai","191.232.166.194","191.232.166.194","8075","BR"
"2020-09-07 07:42:04","http://191.232.166.194/login.ppc","offline","malware_download","elf|mirai","191.232.166.194","191.232.166.194","8075","BR"
"2020-09-07 07:42:04","http://191.232.166.194/login.sh4","offline","malware_download","elf|mirai","191.232.166.194","191.232.166.194","8075","BR"
"2020-09-04 09:02:04","http://goldcoastoffice365.com.au/temp/invoice/sjz8vco1o19/06hr22141545123d5e2mdjojchldx/","offline","malware_download","doc|emotet|epoch2|heodo","goldcoastoffice365.com.au","52.163.122.115","8075","SG"
"2020-09-03 22:34:07","http://goldcoastoffice365.com/temp/swift/jbpn6pn4m8/","offline","malware_download","doc|Emotet|epoch2|Heodo","goldcoastoffice365.com","52.163.122.115","8075","SG"
"2020-08-31 12:06:01","http://goldcoastoffice365.com/temp/JVjhjq/","offline","malware_download","emotet|epoch3|exe|Heodo","goldcoastoffice365.com","52.163.122.115","8075","SG"
"2020-08-29 12:19:04","http://1.186.151.219:50766/Mozi.m","offline","malware_download","elf|Mirai|Mozi","1.186.151.219","1.186.151.219","8075","GB"
"2020-08-28 21:50:10","http://goldcoastoffice365.com.au/temp/OCT/","offline","malware_download","doc|emotet|epoch2|heodo","goldcoastoffice365.com.au","52.163.122.115","8075","SG"
"2020-08-25 13:30:15","http://wuvyish.com/wp-content/D9/","offline","malware_download","Emotet|epoch1|exe|Heodo","wuvyish.com","104.210.38.149","8075","US"
"2020-08-25 13:30:15","http://wuvyish.com/wp-content/D9/","offline","malware_download","Emotet|epoch1|exe|Heodo","wuvyish.com","40.112.243.19","8075","US"
"2020-08-20 17:53:11","https://mickreevesmodels.co.uk/micks_chat/3zZLrK/","offline","malware_download","emotet|epoch2|exe|Heodo","mickreevesmodels.co.uk","20.3.34.31","8075","US"
"2020-08-18 10:13:43","https://mickreevesmodels.co.uk/micks_chat/bzqL9/","offline","malware_download","emotet|epoch1|exe|heodo","mickreevesmodels.co.uk","20.3.34.31","8075","US"
"2020-08-15 04:22:02","http://13.85.152.27/Hilix.sh","offline","malware_download","shellscript","13.85.152.27","13.85.152.27","8075","US"
"2020-08-14 10:45:37","http://13.85.152.27/bins/Hilix.ppc","offline","malware_download","elf|mirai","13.85.152.27","13.85.152.27","8075","US"
"2020-08-14 10:45:34","http://13.85.152.27/bins/Hilix.arm6","offline","malware_download","elf|mirai","13.85.152.27","13.85.152.27","8075","US"
"2020-08-14 10:45:32","http://13.85.152.27/bins/Hilix.arm5","offline","malware_download","elf|mirai","13.85.152.27","13.85.152.27","8075","US"
"2020-08-14 10:45:29","http://13.85.152.27/bins/Hilix.mpsl","offline","malware_download","elf|mirai","13.85.152.27","13.85.152.27","8075","US"
"2020-08-14 10:45:27","http://13.85.152.27/bins/Hilix.mips","offline","malware_download","elf|mirai","13.85.152.27","13.85.152.27","8075","US"
"2020-08-14 10:45:24","http://13.85.152.27/bins/Hilix.arm","offline","malware_download","elf|mirai","13.85.152.27","13.85.152.27","8075","US"
"2020-08-14 10:45:22","http://13.85.152.27/bins/Hilix.m68k","offline","malware_download","elf|mirai","13.85.152.27","13.85.152.27","8075","US"
"2020-08-14 10:37:16","http://13.85.152.27/bins/Hilix.spc","offline","malware_download","elf|mirai","13.85.152.27","13.85.152.27","8075","US"
"2020-08-14 10:36:07","http://13.85.152.27/bins/Hilix.sh4","offline","malware_download","elf|mirai","13.85.152.27","13.85.152.27","8075","US"
"2020-08-14 10:36:05","http://13.85.152.27/bins/Hilix.arm7","offline","malware_download","elf|mirai","13.85.152.27","13.85.152.27","8075","US"
"2020-08-14 09:45:14","http://zanella.com.ar/downloads/balance/zp8lq5lx9rx/","offline","malware_download","doc|emotet|epoch2|heodo","zanella.com.ar","20.49.104.55","8075","US"
"2020-08-13 23:59:03","http://13.85.152.27/bins/Hilix.x86","offline","malware_download","32-bit|ELF|x86-32","13.85.152.27","13.85.152.27","8075","US"
"2020-08-13 05:39:18","http://13.85.152.27/SnOoPy.sh","offline","malware_download","script","13.85.152.27","13.85.152.27","8075","US"
"2020-08-13 05:32:04","http://13.85.152.27/m-i.p-s.SNOOPY","offline","malware_download","32-bit|ELF|MIPS","13.85.152.27","13.85.152.27","8075","US"
"2020-08-13 02:29:04","https://btobconnection.com/wp-admin/6erujnljmtap/","offline","malware_download","doc|emotet|epoch2|heodo","btobconnection.com","4.224.244.18","8075","IN"
"2020-08-10 11:57:07","https://btobconnection.com/wp-admin/7248714-ZM6x1lqoGm6Mv2s-section/close-area/hfy7zv7-11x42x/","offline","malware_download","doc|emotet|epoch1|heodo","btobconnection.com","4.224.244.18","8075","IN"
"2020-08-06 07:37:06","http://52.252.7.14/lmaoWTF/loligang.x86","offline","malware_download","elf","52.252.7.14","52.252.7.14","8075","US"
"2020-08-04 06:49:04","http://40.125.65.33/async.txt","offline","malware_download","opendir|rtf","40.125.65.33","40.125.65.33","8075","US"
"2020-08-04 06:48:14","http://40.125.65.33/fud.doc","offline","malware_download","doc|opendir","40.125.65.33","40.125.65.33","8075","US"
"2020-08-04 06:48:11","http://40.125.65.33/async.rtf","offline","malware_download","opendir|rtf","40.125.65.33","40.125.65.33","8075","US"
"2020-08-04 06:48:08","http://40.125.65.33/loader.plg","offline","malware_download","exe|opendir","40.125.65.33","40.125.65.33","8075","US"
"2020-08-04 06:48:05","http://40.125.65.33/sample.docx","offline","malware_download","docx|opendir","40.125.65.33","40.125.65.33","8075","US"
"2020-08-04 06:47:07","http://40.125.65.33/payload-obfuscated-final.docx","offline","malware_download","docx|opendir","40.125.65.33","40.125.65.33","8075","US"
"2020-08-04 06:47:05","http://40.125.65.33/payload-final.xlsx","offline","malware_download","opendir|xlsx","40.125.65.33","40.125.65.33","8075","US"
"2020-08-04 06:47:03","http://40.125.65.33/payload-final.docx","offline","malware_download","docx|opendir","40.125.65.33","40.125.65.33","8075","US"
"2020-08-04 05:28:38","http://104.44.143.28/bd23.php","offline","malware_download","","104.44.143.28","104.44.143.28","8075","US"
"2020-08-02 13:38:03","http://40.125.65.33/test.doc","offline","malware_download","rtf","40.125.65.33","40.125.65.33","8075","US"
"2020-08-02 13:34:11","http://40.125.65.33/orcus.exe","offline","malware_download","AgentTesla|exe","40.125.65.33","40.125.65.33","8075","US"
"2020-08-02 13:34:06","http://40.125.65.33/Leads.exe","offline","malware_download","exe","40.125.65.33","40.125.65.33","8075","US"
"2020-08-02 07:39:03","http://52.175.150.108/file/?cliente=vsmithfulcher@prepaidlegal.com","offline","malware_download","zip","52.175.150.108","52.175.150.108","8075","JP"
"2020-07-31 14:59:03","http://mickreevesmodels.co.uk/micks_chat/5_6w_c14/","offline","malware_download","emotet|epoch2|exe","mickreevesmodels.co.uk","20.3.34.31","8075","US"
"2020-07-31 03:21:04","http://40.115.137.217/sensi.sh","offline","malware_download","shellscript","40.115.137.217","40.115.137.217","8075","JP"
"2020-07-31 00:07:59","https://mickreevesmodels.co.uk/micks_chat/5_6w_c14/","offline","malware_download","emotet|epoch2|exe|heodo","mickreevesmodels.co.uk","20.3.34.31","8075","US"
"2020-07-23 03:30:17","http://suibe.net/wp-content/uckdBH/","offline","malware_download","doc|emotet|epoch3|Heodo","suibe.net","40.115.181.57","8075","JP"
"2020-07-20 22:04:11","https://easeupnow.com/wp-admin/T5/","offline","malware_download","Downloader.Upatre|emotet|epoch1|exe|Heodo","easeupnow.com","4.224.248.90","8075","IN"
"2020-07-03 08:40:26","http://20.151.19.163/lmaoWTF/loligang.ppc","offline","malware_download","elf|mirai","20.151.19.163","20.151.19.163","8075","CA"
"2020-07-03 08:40:23","http://20.151.19.163/lmaoWTF/loligang.spc","offline","malware_download","elf|mirai","20.151.19.163","20.151.19.163","8075","CA"
"2020-07-03 08:40:21","http://20.151.19.163/lmaoWTF/loligang.mpsl","offline","malware_download","elf|mirai","20.151.19.163","20.151.19.163","8075","CA"
"2020-07-03 08:40:19","http://20.151.19.163/lmaoWTF/loligang.mips","offline","malware_download","elf|mirai","20.151.19.163","20.151.19.163","8075","CA"
"2020-07-03 08:40:17","http://20.151.19.163/lmaoWTF/loligang.m68k","offline","malware_download","elf|mirai","20.151.19.163","20.151.19.163","8075","CA"
"2020-07-03 08:40:15","http://20.151.19.163/lmaoWTF/loligang.sh4","offline","malware_download","elf|mirai","20.151.19.163","20.151.19.163","8075","CA"
"2020-07-03 08:40:13","http://20.151.19.163/lmaoWTF/loligang.arm7","offline","malware_download","elf|mirai","20.151.19.163","20.151.19.163","8075","CA"
"2020-07-03 08:40:11","http://20.151.19.163/lmaoWTF/loligang.arm6","offline","malware_download","elf|mirai","20.151.19.163","20.151.19.163","8075","CA"
"2020-07-03 08:40:09","http://20.151.19.163/lmaoWTF/loligang.arm5","offline","malware_download","elf|mirai","20.151.19.163","20.151.19.163","8075","CA"
"2020-07-03 08:40:06","http://20.151.19.163/lmaoWTF/loligang.arm","offline","malware_download","elf|mirai","20.151.19.163","20.151.19.163","8075","CA"
"2020-07-03 08:40:04","http://20.151.19.163/lmaoWTF/loligang.x86","offline","malware_download","elf|mirai","20.151.19.163","20.151.19.163","8075","CA"
"2020-07-02 17:41:03","http://20.151.19.163/Pemex.sh","offline","malware_download","script","20.151.19.163","20.151.19.163","8075","CA"
"2020-06-27 19:48:35","http://52.138.20.234/yoyobins.sh","offline","malware_download","script","52.138.20.234","52.138.20.234","8075","CA"
"2020-06-27 04:37:12","http://52.138.20.234/mipsel","offline","malware_download","bashlite|elf|gafgyt","52.138.20.234","52.138.20.234","8075","CA"
"2020-06-27 04:37:09","http://52.138.20.234/armv6l","offline","malware_download","bashlite|elf|gafgyt","52.138.20.234","52.138.20.234","8075","CA"
"2020-06-27 04:37:07","http://52.138.20.234/sh4","offline","malware_download","bashlite|elf|gafgyt","52.138.20.234","52.138.20.234","8075","CA"
"2020-06-27 04:37:05","http://52.138.20.234/armv5l","offline","malware_download","bashlite|elf|gafgyt","52.138.20.234","52.138.20.234","8075","CA"
"2020-06-27 04:37:03","http://52.138.20.234/powerpc","offline","malware_download","bashlite|elf|gafgyt","52.138.20.234","52.138.20.234","8075","CA"
"2020-06-27 04:33:05","http://52.138.20.234/i686","offline","malware_download","bashlite|elf|gafgyt","52.138.20.234","52.138.20.234","8075","CA"
"2020-06-27 04:33:03","http://52.138.20.234/armv4l","offline","malware_download","bashlite|elf|gafgyt","52.138.20.234","52.138.20.234","8075","CA"
"2020-06-27 04:32:07","http://52.138.20.234/x86","offline","malware_download","bashlite|elf|gafgyt","52.138.20.234","52.138.20.234","8075","CA"
"2020-06-27 04:32:05","http://52.138.20.234/m68k","offline","malware_download","bashlite|elf|gafgyt","52.138.20.234","52.138.20.234","8075","CA"
"2020-06-27 04:32:03","http://52.138.20.234/i586","offline","malware_download","bashlite|elf|gafgyt","52.138.20.234","52.138.20.234","8075","CA"
"2020-06-27 03:19:03","http://52.138.20.234/mips","offline","malware_download","32-bit|ELF|MIPS","52.138.20.234","52.138.20.234","8075","CA"
"2020-06-10 18:15:21","http://bencalizo.duckdns.org/kay.exe","offline","malware_download","AgentTesla|exe|opendir","bencalizo.duckdns.org","52.251.53.210","8075","US"
"2020-06-10 18:14:48","http://bencalizo.duckdns.org/oj.exe","offline","malware_download","AgentTesla|exe|opendir","bencalizo.duckdns.org","52.251.53.210","8075","US"
"2020-06-10 18:14:11","http://bencalizo.duckdns.org/musky.exe","offline","malware_download","AgentTesla|exe|opendir","bencalizo.duckdns.org","52.251.53.210","8075","US"
"2020-06-04 12:35:06","http://gyankendra.com/pubusrxe/KTEQ_14611_03062020.zip","offline","malware_download","Qakbot|Quakbot|zip","gyankendra.com","20.193.159.20","8075","IN"
"2020-05-31 06:54:21","http://13.68.214.202/addings/taste_pwozmQUF144.bin","offline","malware_download","encrypted|GuLoader","13.68.214.202","13.68.214.202","8075","US"
"2020-05-20 18:24:26","http://104.45.193.98/swrgiuhguhwrguiwetu/x86","offline","malware_download","","104.45.193.98","104.45.193.98","8075","US"
"2020-05-20 18:24:23","http://104.45.193.98/swrgiuhguhwrguiwetu/mips","offline","malware_download","","104.45.193.98","104.45.193.98","8075","US"
"2020-05-20 18:24:21","http://104.45.193.98/swrgiuhguhwrguiwetu/arm7","offline","malware_download","","104.45.193.98","104.45.193.98","8075","US"
"2020-05-20 18:24:18","http://104.45.193.98/swrgiuhguhwrguiwetu/arm6","offline","malware_download","","104.45.193.98","104.45.193.98","8075","US"
"2020-05-20 18:24:16","http://104.45.193.98/swrgiuhguhwrguiwetu/arm","offline","malware_download","","104.45.193.98","104.45.193.98","8075","US"
"2020-05-20 18:24:13","http://104.45.193.98/swrgiuhguhwrguiwetu/arm5","offline","malware_download","","104.45.193.98","104.45.193.98","8075","US"
"2020-05-20 18:24:11","http://104.45.193.98/swrgiuhguhwrguiwetu/sh4","offline","malware_download","","104.45.193.98","104.45.193.98","8075","US"
"2020-05-20 18:24:08","http://104.45.193.98/swrgiuhguhwrguiwetu/m68k","offline","malware_download","","104.45.193.98","104.45.193.98","8075","US"
"2020-05-20 18:24:06","http://104.45.193.98/swrgiuhguhwrguiwetu/ppc","offline","malware_download","","104.45.193.98","104.45.193.98","8075","US"
"2020-05-20 18:24:03","http://104.45.193.98/swrgiuhguhwrguiwetu/mpsl","offline","malware_download","","104.45.193.98","104.45.193.98","8075","US"
"2020-05-18 14:15:23","http://137.135.119.41/swrgiuhguhwrguiwetu/x86_64","offline","malware_download","","137.135.119.41","137.135.119.41","8075","US"
"2020-05-18 14:15:21","http://137.135.119.41/swrgiuhguhwrguiwetu/x86","offline","malware_download","","137.135.119.41","137.135.119.41","8075","US"
"2020-05-18 14:15:19","http://137.135.119.41/swrgiuhguhwrguiwetu/sh4","offline","malware_download","","137.135.119.41","137.135.119.41","8075","US"
"2020-05-18 14:15:16","http://137.135.119.41/swrgiuhguhwrguiwetu/ppc","offline","malware_download","","137.135.119.41","137.135.119.41","8075","US"
"2020-05-18 14:15:14","http://137.135.119.41/swrgiuhguhwrguiwetu/mpsl","offline","malware_download","","137.135.119.41","137.135.119.41","8075","US"
"2020-05-18 14:15:11","http://137.135.119.41/swrgiuhguhwrguiwetu/mips","offline","malware_download","","137.135.119.41","137.135.119.41","8075","US"
"2020-05-18 14:15:09","http://137.135.119.41/swrgiuhguhwrguiwetu/m68k","offline","malware_download","","137.135.119.41","137.135.119.41","8075","US"
"2020-05-18 14:15:06","http://137.135.119.41/swrgiuhguhwrguiwetu/arm6","offline","malware_download","","137.135.119.41","137.135.119.41","8075","US"
"2020-05-18 14:15:04","http://137.135.119.41/swrgiuhguhwrguiwetu/arm5","offline","malware_download","","137.135.119.41","137.135.119.41","8075","US"
"2020-05-17 05:56:11","http://137.135.119.41/swrgiuhguhwrguiwetu/arm","offline","malware_download","elf","137.135.119.41","137.135.119.41","8075","US"
"2020-05-17 05:56:04","http://137.135.119.41/swrgiuhguhwrguiwetu/arm7","offline","malware_download","elf","137.135.119.41","137.135.119.41","8075","US"
"2020-05-07 09:52:35","http://52.255.143.183/AB4g5/Extendo.arm5","offline","malware_download","elf|mirai","52.255.143.183","52.255.143.183","8075","US"
"2020-05-07 09:52:03","http://52.255.143.183/AB4g5/Extendo.m68k","offline","malware_download","elf|mirai","52.255.143.183","52.255.143.183","8075","US"
"2020-05-07 09:48:39","http://52.255.143.183/AB4g5/Extendo.ppc","offline","malware_download","elf|mirai","52.255.143.183","52.255.143.183","8075","US"
"2020-05-07 09:48:05","http://52.255.143.183/AB4g5/Extendo.arm7","offline","malware_download","elf|mirai","52.255.143.183","52.255.143.183","8075","US"
"2020-05-07 09:45:04","http://52.255.143.183/AB4g5/Extendo.sh4","offline","malware_download","elf|mirai","52.255.143.183","52.255.143.183","8075","US"
"2020-05-07 09:44:09","http://52.255.143.183/AB4g5/Extendo.arm6","offline","malware_download","elf|mirai","52.255.143.183","52.255.143.183","8075","US"
"2020-05-07 09:44:07","http://52.255.143.183/AB4g5/Extendo.arm","offline","malware_download","elf|mirai","52.255.143.183","52.255.143.183","8075","US"
"2020-05-07 09:44:05","http://52.255.143.183/AB4g5/Extendo.mpsl","offline","malware_download","elf|mirai","52.255.143.183","52.255.143.183","8075","US"
"2020-05-07 09:41:13","http://52.255.143.183/AB4g5/Extendo.spc","offline","malware_download","elf|mirai","52.255.143.183","52.255.143.183","8075","US"
"2020-05-07 09:40:39","http://52.255.143.183/AB4g5/Extendo.mips","offline","malware_download","elf","52.255.143.183","52.255.143.183","8075","US"
"2020-05-07 08:47:40","http://52.255.143.183/AB4g5/Extendo.x86","offline","malware_download","elf","52.255.143.183","52.255.143.183","8075","US"
"2020-05-04 12:43:03","http://40.85.183.45/cock/cock.exe","offline","malware_download","FormBook","40.85.183.45","40.85.183.45","8075","US"
"2020-04-30 10:15:04","http://23.99.177.235/ratty/ratty.exe","offline","malware_download","AveMariaRAT","23.99.177.235","23.99.177.235","8075","US"
"2020-04-23 17:44:04","https://www.nextgenclub.org/sites/default/files/001929789917491/index.php","offline","malware_download","CHL|geofenced|MetaMorfo|zip","www.nextgenclub.org","52.148.193.244","8075","NL"
"2020-04-21 18:48:28","https://male.profertil.ro/wp-content/uploads/2020/04/evolving/90188.zip","offline","malware_download","Qakbot|qbot|spx101|zip","male.profertil.ro","20.238.11.181","8075","IE"
"2020-04-21 14:23:52","https://male.profertil.ro/wp-content/uploads/2020/04/evolving/522812015/522812015.zip","offline","malware_download","Qakbot|qbot|spx101|zip","male.profertil.ro","20.238.11.181","8075","IE"
"2020-04-18 16:06:23","http://104.211.28.157/powerpc","offline","malware_download","bashlite|elf|gafgyt","104.211.28.157","104.211.28.157","8075","US"
"2020-04-18 16:06:20","http://104.211.28.157/m68k","offline","malware_download","bashlite|elf|gafgyt","104.211.28.157","104.211.28.157","8075","US"
"2020-04-18 16:06:18","http://104.211.28.157/armv4l","offline","malware_download","bashlite|elf|gafgyt","104.211.28.157","104.211.28.157","8075","US"
"2020-04-18 16:06:16","http://104.211.28.157/i686","offline","malware_download","bashlite|elf|gafgyt","104.211.28.157","104.211.28.157","8075","US"
"2020-04-18 16:06:13","http://104.211.28.157/armv5l","offline","malware_download","bashlite|elf|gafgyt","104.211.28.157","104.211.28.157","8075","US"
"2020-04-18 16:06:11","http://104.211.28.157/sh4","offline","malware_download","bashlite|elf|gafgyt","104.211.28.157","104.211.28.157","8075","US"
"2020-04-18 16:06:09","http://104.211.28.157/armv6l","offline","malware_download","bashlite|elf|gafgyt","104.211.28.157","104.211.28.157","8075","US"
"2020-04-18 16:06:06","http://104.211.28.157/i586","offline","malware_download","bashlite|elf|gafgyt","104.211.28.157","104.211.28.157","8075","US"
"2020-04-18 16:06:04","http://104.211.28.157/mipsel","offline","malware_download","bashlite|elf|gafgyt","104.211.28.157","104.211.28.157","8075","US"
"2020-04-18 16:02:06","http://104.211.28.157/x86","offline","malware_download","bashlite|elf|gafgyt","104.211.28.157","104.211.28.157","8075","US"
"2020-04-18 16:02:03","http://104.211.28.157/sparc","offline","malware_download","bashlite|elf|gafgyt","104.211.28.157","104.211.28.157","8075","US"
"2020-04-18 15:46:04","http://104.211.28.157/mips","offline","malware_download","elf","104.211.28.157","104.211.28.157","8075","US"
"2020-04-18 15:38:16","http://104.211.28.157/cummiesbins.sh","offline","malware_download","","104.211.28.157","104.211.28.157","8075","US"
"2020-04-17 17:17:20","http://13.77.122.15/mdstrittol.iso","offline","malware_download","","13.77.122.15","13.77.122.15","8075","US"
"2020-04-17 17:17:07","http://13.77.122.15/HENRIQUEFATALITY2.iso","offline","malware_download","","13.77.122.15","13.77.122.15","8075","US"
"2020-04-17 17:12:06","http://13.77.122.15/marrom.iso","offline","malware_download","","13.77.122.15","13.77.122.15","8075","US"
"2020-04-16 14:54:35","https://www.aminach.co.il/wp-content/themes/calliope/beads/246943/246943.zip","offline","malware_download","Qakbot|qbot|spx97|zip","www.aminach.co.il","13.107.246.45","8075","US"
"2020-04-15 22:51:22","http://aminach.co.il/wp-content/themes/calliope/beads/8843593.zip","offline","malware_download","Qakbot|qbot|spx97|zip","aminach.co.il","52.178.221.92","8075","IE"
"2020-04-08 01:30:23","http://104.40.17.31/Demon.arm4","offline","malware_download","bashlite|elf|gafgyt","104.40.17.31","104.40.17.31","8075","US"
"2020-04-08 01:30:16","http://104.40.17.31/Demon.mips","offline","malware_download","bashlite|elf|gafgyt","104.40.17.31","104.40.17.31","8075","US"
"2020-04-08 01:26:18","http://104.40.17.31/Demon.sparc","offline","malware_download","bashlite|elf|gafgyt","104.40.17.31","104.40.17.31","8075","US"
"2020-04-08 01:26:11","http://104.40.17.31/Demon.mpsl","offline","malware_download","bashlite|elf|gafgyt","104.40.17.31","104.40.17.31","8075","US"
"2020-04-08 01:26:08","http://104.40.17.31/Demon.ppc","offline","malware_download","bashlite|elf|gafgyt","104.40.17.31","104.40.17.31","8075","US"
"2020-04-08 01:26:03","http://104.40.17.31/Demon.arm5","offline","malware_download","bashlite|elf|gafgyt","104.40.17.31","104.40.17.31","8075","US"
"2020-04-08 01:22:17","http://104.40.17.31/Demon.x86","offline","malware_download","bashlite|elf|gafgyt","104.40.17.31","104.40.17.31","8075","US"
"2020-04-06 17:14:04","http://40.118.200.57/docs/file.exe","offline","malware_download","exe|formbook","40.118.200.57","40.118.200.57","8075","US"
"2020-03-28 19:34:51","https://hoayeuthuong-my.sharepoint.com/:u:/p/ketoan/EfnD_rdevgVJmoX4EILxp5wBtTUtqxQ8H5mRTLAIo44ypQ?e=ZBNPel&download=1","offline","malware_download","encrypted|GuLoader","hoayeuthuong-my.sharepoint.com","13.107.136.10","8075","US"
"2020-03-28 19:34:51","https://hoayeuthuong-my.sharepoint.com/:u:/p/ketoan/EfnD_rdevgVJmoX4EILxp5wBtTUtqxQ8H5mRTLAIo44ypQ?e=ZBNPel&download=1","offline","malware_download","encrypted|GuLoader","hoayeuthuong-my.sharepoint.com","13.107.138.10","8075","US"
"2020-03-26 16:17:36","http://52.171.138.139/Gfunfinytr3.iso","offline","malware_download","encoded|zip","52.171.138.139","52.171.138.139","8075","US"
"2020-03-21 18:06:27","https://fmglogistics-my.sharepoint.com/:u:/g/personal/cfs-hph_fmgloballogistics_com/ERsOmAyRPt1LugXad3YE3JkBLWfoPa6RgMVHCG57ayJM3Q?e=Xz1zLv&download=1","offline","malware_download","encrypted|GuLoader","fmglogistics-my.sharepoint.com","13.107.136.10","8075","US"
"2020-03-21 18:06:27","https://fmglogistics-my.sharepoint.com/:u:/g/personal/cfs-hph_fmgloballogistics_com/ERsOmAyRPt1LugXad3YE3JkBLWfoPa6RgMVHCG57ayJM3Q?e=Xz1zLv&download=1","offline","malware_download","encrypted|GuLoader","fmglogistics-my.sharepoint.com","13.107.138.10","8075","US"
"2020-03-19 18:21:04","http://168.63.44.66/busy/bin_encrypted_C19292F.bin","offline","malware_download","encrypted|GuLoader","168.63.44.66","168.63.44.66","8075","IE"
"2020-03-19 17:48:12","http://104.45.217.127:443/Monopolytoolk3.iso","offline","malware_download","banload","104.45.217.127","104.45.217.127","8075","US"
"2020-02-29 06:52:04","http://13.92.226.218/time/FB__encrypted_8B121EF.bin","offline","malware_download","encrypted|RAT|RemcosRAT","13.92.226.218","13.92.226.218","8075","US"
"2020-02-29 06:34:47","http://13.92.226.218/doc/FB__995F.exe","offline","malware_download","exe","13.92.226.218","13.92.226.218","8075","US"
"2020-02-25 04:59:10","http://84.81.219.32:50034/.i","offline","malware_download","elf|hajime","84.81.219.32","84.81.219.32","8075","GB"
"2020-02-24 15:34:03","http://13.95.31.136/pida/Document-8557573844858475755586.pdf.zip","offline","malware_download","zip","13.95.31.136","13.95.31.136","8075","NL"
"2020-02-07 02:51:05","http://creationsbyannmarie.com/attachments/","offline","malware_download","doc|emotet|epoch2|Heodo","creationsbyannmarie.com","20.15.160.155","8075","US"
"2020-02-06 21:42:48","http://is4340.azurewebsites.net/wp-admin/DOC/","offline","malware_download","doc|emotet|epoch2|Heodo","is4340.azurewebsites.net","20.40.202.10","8075","US"
"2020-02-06 17:30:07","http://sepi.org.br/admin/assets/uploads/parts_service/61ywox9d8/","offline","malware_download","doc|emotet|epoch2|Heodo","sepi.org.br","191.235.228.35","8075","BR"
"2020-02-05 23:18:07","http://www.orgchem.iisc.ac.in/wp-content/LLC/","offline","malware_download","doc|emotet|epoch2|Heodo","www.orgchem.iisc.ac.in","13.71.53.212","8075","IN"
"2020-02-04 11:20:22","http://empower4talent.com/calendar/protected_resource/external_space/RykJtF_4g8jdHex53kw5y/","offline","malware_download","doc|emotet|epoch1|Heodo","empower4talent.com","52.173.28.95","8075","US"
"2020-02-03 22:40:21","https://bookdigger.azurewebsites.net/wp-admin/axNJZ7533/","offline","malware_download","emotet|epoch1|exe|heodo","bookdigger.azurewebsites.net","104.211.97.138","8075","IN"
"2020-02-03 12:07:04","http://mcs.samesoftware.com/9jxvzpr/abierto-L4Wh9-liAA7H03qi/80hj8hxf-o3gigjt1me39nfn-profile/bf6hq4tcgzj68s-v11s/","offline","malware_download","doc|emotet|epoch1|Heodo","mcs.samesoftware.com","23.100.82.185","8075","US"
"2020-01-31 21:32:04","http://mcs.samesoftware.com/9jxvzpr/vQBjnSjl/","offline","malware_download","doc|emotet|epoch3|heodo","mcs.samesoftware.com","23.100.82.185","8075","US"
"2020-01-31 16:02:04","http://devbase.com.tr/87/Overview/bv7dtqia/uy6me47741-527-t08rr879j609q0qq/","offline","malware_download","doc|emotet|epoch2|heodo","devbase.com.tr","20.50.2.16","8075","NL"
"2020-01-31 03:21:06","https://afges.org/onlineservicewellsfargo/closed_h50q3o2y_k3rgxm6jdw0m/091763285906_7finwQSAif35wxB_portal/4bx68_1xux8z8/","offline","malware_download","doc|emotet|epoch1|Heodo","afges.org","40.79.130.129","8075","FR"
"2020-01-31 03:06:05","https://magnopyrol.com/87/open_array/sb82t_msy7npxganq_660291924_oulZdMjwZ0CpYp/2171741077_Tk0aSeaI3O1owz9/","offline","malware_download","doc|emotet|epoch1|Heodo","magnopyrol.com","20.88.56.32","8075","US"
"2020-01-30 22:32:05","http://empower4talent.com/calendar/swift/ok9syy7/","offline","malware_download","doc|emotet|epoch2|heodo","empower4talent.com","52.173.28.95","8075","US"
"2020-01-29 16:52:08","http://mcs.samesoftware.com/9jxvzpr/private-zone/tx8v1q4-pf6sfq-98614629202-zXsG3rX3i/He6x5qeNAV-c8lfMtkngjIw9k/","offline","malware_download","doc|emotet|epoch1|Heodo","mcs.samesoftware.com","23.100.82.185","8075","US"
"2020-01-29 12:22:07","https://drivemotorsport.ca/calendar/wHcbu/","offline","malware_download","doc|emotet|epoch3|heodo","drivemotorsport.ca","52.175.202.25","8075","US"
"2020-01-29 08:01:05","http://beta.pterosol.com/common_aussf02vcqd9_x3p0wzygn2pvc1r/verified_portal/84540780_yK99NiKqyF5zI4/","offline","malware_download","doc|emotet|epoch1|Heodo","beta.pterosol.com","52.236.156.31","8075","NL"
"2020-01-29 00:37:05","http://projectsinpanvel.com/calendar/x2myu-fdq-606254/","offline","malware_download","doc|emotet|epoch3|Heodo","projectsinpanvel.com","52.172.39.101","8075","IN"
"2020-01-28 17:58:08","http://empower4talent.com/calendar/uf475/","offline","malware_download","emotet|epoch1|exe|heodo","empower4talent.com","52.173.28.95","8075","US"
"2020-01-28 11:08:19","http://devbase.com.tr/demo/browse/","offline","malware_download","doc|emotet|epoch2|heodo","devbase.com.tr","20.50.2.16","8075","NL"
"2020-01-28 06:34:04","https://dev-advice.resumenerd.com/wp-admin/css/jlPeGjc/","offline","malware_download","emotet|epoch2|exe|heodo","dev-advice.resumenerd.com","4.204.208.205","8075","CA"
"2020-01-28 04:39:03","https://motulclassic.co.uk/css/DOC/vgf067819-864260403-d3vk9olm/","offline","malware_download","doc|emotet|epoch2|heodo","motulclassic.co.uk","13.94.188.227","8075","NL"
"2020-01-28 01:11:10","https://afges.org/wp-admin/Scan/","offline","malware_download","doc|emotet|epoch2|heodo","afges.org","40.79.130.129","8075","FR"
"2020-01-28 01:07:04","https://magnopyrol.com/87/cz5ms86lkzoa-6awjs733-resource/external-dxmar2feruo02-rq3tqfs4z5y/64Uq7ERAO-134zduMc9/","offline","malware_download","doc|emotet|epoch1|Heodo","magnopyrol.com","20.88.56.32","8075","US"
"2020-01-24 22:37:04","https://cdt-students.wp.horizon.ac.uk/wp-content/Overview/nq9flolk33/mrjsn-8393565-63762-556l7afgucf-osv07vps165/","offline","malware_download","doc|emotet|epoch2|heodo","cdt-students.wp.horizon.ac.uk","40.115.2.71","8075","NL"
"2020-01-24 19:30:11","https://afges.org/wp-admin/kXtCXPB/","offline","malware_download","doc|emotet|epoch3|heodo","afges.org","40.79.130.129","8075","FR"
"2020-01-24 18:21:05","https://magnopyrol.com/wp-admin/eTrac/82w62dg8cg0m/tpoq-4931565-6656810-wnc6-q9r5md871sz/","offline","malware_download","doc|emotet|epoch2|heodo","magnopyrol.com","20.88.56.32","8075","US"
"2020-01-24 12:12:34","http://keithpritchard.co.uk/yg52p/OCT/69c958r5i4rp/q1ik31-0097-336386796-7akmjc1mh-trt7xldwez/","offline","malware_download","doc|emotet|epoch2|Heodo","keithpritchard.co.uk","51.132.189.13","8075","GB"
"2020-01-24 06:45:07","http://wtc-chandigarh.org/4k4t2zs/report/4i9gv3ogtit/oy865u-803080-662986-aip8c-8kvzy8ty2/","offline","malware_download","doc|emotet|epoch2|Heodo","wtc-chandigarh.org","20.119.8.31","8075","US"
"2020-01-23 14:53:03","https://motulclassic.co.uk/css/paclm/","offline","malware_download","doc|emotet|epoch2|heodo","motulclassic.co.uk","13.94.188.227","8075","NL"
"2020-01-23 00:37:07","http://projectsinpanvel.com/calendar/096491705-OUdJAqwvEA-module/test-profile/BHkv1x-nlanjdljf1oy/","offline","malware_download","doc|emotet|epoch1|Heodo|word2007","projectsinpanvel.com","52.172.39.101","8075","IN"
"2020-01-21 11:08:24","http://wtc-chandigarh.org/4k4t2zs/hZD761/","offline","malware_download","emotet|epoch1|exe|Heodo","wtc-chandigarh.org","20.119.8.31","8075","US"
"2020-01-21 07:28:06","http://beta.pterosol.com/IyKHVY/","offline","malware_download","doc|emotet|epoch3|Heodo","beta.pterosol.com","52.236.156.31","8075","NL"
"2020-01-21 03:26:03","http://support.m2mservices.com/wp-includes/o5rk-cgfh-90/","offline","malware_download","doc|emotet|epoch3|Heodo","support.m2mservices.com","20.114.209.110","8075","US"
"2020-01-18 01:36:06","http://wtc-chandigarh.org/4k4t2zs/ubpfy-5oli-4934/","offline","malware_download","doc|emotet|epoch3|Heodo","wtc-chandigarh.org","20.119.8.31","8075","US"
"2020-01-17 11:19:03","http://support.m2mservices.com/wp-includes/INC/bwpfmyc-757833-7173-az4pe6g4-rn2c/","offline","malware_download","doc|emotet|epoch2|heodo","support.m2mservices.com","20.114.209.110","8075","US"
"2020-01-17 04:34:07","http://projectsinpanvel.com/calendar/ZVLHScCH/","offline","malware_download","doc|emotet|epoch3|heodo","projectsinpanvel.com","52.172.39.101","8075","IN"
"2020-01-16 12:14:09","http://beta.pterosol.com/Reporting/3w70wjr33/lb-868-824677-9pzzuh5uj-jsl18/","offline","malware_download","doc|emotet|epoch2|heodo","beta.pterosol.com","52.236.156.31","8075","NL"
"2020-01-16 06:45:22","http://wtc-chandigarh.org/ahs/private_ly8nlfymus7_cz2z0tbj9/additional_XKQZdpa7x_3nqQz9GB/oyxz_yt25z/","offline","malware_download","doc|emotet|epoch1|Heodo","wtc-chandigarh.org","20.119.8.31","8075","US"
"2020-01-15 11:57:13","http://191.239.243.112/documento/tt.jpg","offline","malware_download","","191.239.243.112","191.239.243.112","8075","BR"
"2020-01-15 11:57:12","http://191.239.243.112/documento/nycolombia14.jpg","offline","malware_download","","191.239.243.112","191.239.243.112","8075","BR"
"2020-01-15 11:57:11","http://191.239.243.112/documento/njnyan14.jpg","offline","malware_download","","191.239.243.112","191.239.243.112","8075","BR"
"2020-01-15 11:57:10","http://191.239.243.112/documento/njexp05jan.jpg","offline","malware_download","","191.239.243.112","191.239.243.112","8075","BR"
"2020-01-15 11:57:10","http://191.239.243.112/documento/njnyan05jan.jpg","offline","malware_download","","191.239.243.112","191.239.243.112","8075","BR"
"2020-01-15 11:57:09","http://191.239.243.112/documento/nano.jpg","offline","malware_download","","191.239.243.112","191.239.243.112","8075","BR"
"2020-01-15 11:57:07","http://191.239.243.112/documento/documento.doc","offline","malware_download","njrat","191.239.243.112","191.239.243.112","8075","BR"
"2020-01-15 11:57:04","http://191.239.243.112/documento/ddd14.doc","offline","malware_download","njrat","191.239.243.112","191.239.243.112","8075","BR"
"2020-01-15 11:57:02","http://191.239.243.112/documento/cdt.jpg","offline","malware_download","","191.239.243.112","191.239.243.112","8075","BR"
"2020-01-15 11:56:08","http://191.239.243.112/documento/attack.jpg","offline","malware_download","","191.239.243.112","191.239.243.112","8075","BR"
"2020-01-15 04:31:58","https://gw.daelimcloud.com/WebSite/Mail/AttachedFile/LargeFileDownload.aspx?KEY=ODgTUlEPTQ0MjgzNTQmRklEPTc2OTc4MTImVFJDSz1ZJk1OT1RJPU4%3d","offline","malware_download","doc|emotet|epoch1","gw.daelimcloud.com","20.249.203.226","8075","KR"
"2020-01-15 02:33:04","http://projectsinpanvel.com/calendar/report/voz7ku-69302211-926-22qvv7nokjg-6uuo16y/","offline","malware_download","doc|emotet|epoch2|heodo","projectsinpanvel.com","52.172.39.101","8075","IN"
"2020-01-14 15:40:05","https://www.tecnicasreunidas.es/wp-admin/esp/lb6l47/p1ytr7r-0415866-38139-81mi9vu94t-ybhjsng4g/","offline","malware_download","doc|emotet|epoch2|heodo","www.tecnicasreunidas.es","40.114.176.133","8075","NL"
"2020-01-14 13:52:10","http://premium.pinkermoda.com/banners/lLBzzHBU/","offline","malware_download","emotet|epoch3|exe|Heodo","premium.pinkermoda.com","13.69.60.255","8075","NL"
"2019-12-26 23:33:24","http://www.voyantvision.net/Scan674251.doc","offline","malware_download","doc|PredatorStealer","www.voyantvision.net","13.107.246.45","8075","US"
"2019-12-26 23:33:21","http://www.voyantvision.net/Scan647166.doc","offline","malware_download","doc|PredatorStealer","www.voyantvision.net","13.107.246.45","8075","US"
"2019-12-26 16:03:12","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_9555.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 16:03:06","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/payment_receipt_6218.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:50:29","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_8233.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:50:23","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_8180.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:50:16","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_7919.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:50:10","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_7899.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:50:03","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_6679.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:49:57","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_6338.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:49:51","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_6300.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:49:44","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_4702.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:49:38","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_3941.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:49:32","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_3577.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:49:26","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_3067.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:49:19","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_2876.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:49:13","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_2737.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:49:07","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_1766.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:49:01","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_1326.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:48:54","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_1015.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:48:47","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/scheldule_0260.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:48:36","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/purchase_order_9504.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:48:30","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/purchase_order_9170.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:48:22","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/purchase_order_8716.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:48:17","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/purchase_order_7612.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:48:11","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/purchase_order_7487.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:48:04","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/purchase_order_6862.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:47:59","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/purchase_order_6804.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:47:53","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/purchase_order_6123.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:47:44","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/purchase_order_5313.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:47:36","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/purchase_order_5289.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:47:22","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/purchase_order_5010.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:47:16","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/purchase_order_3249.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:47:10","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/purchase_order_2148.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:47:03","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/payment_receipt_7815.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:46:56","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/payment_receipt_7797.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:46:50","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/purchase_order_1963.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:46:44","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/purchase_order_0433.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:46:38","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/purchase_order_0074.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:46:32","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/payment_receipt_8860.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:46:00","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/payment_receipt_8087.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:45:54","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/payment_receipt_7899.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:45:49","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/payment_receipt_5526.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:45:42","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/payment_receipt_3174.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:45:36","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/payment_receipt_1904.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:45:30","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/order_9952.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:45:24","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/order_9690.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:45:18","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/order_9163.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:45:12","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/order_8713.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:45:06","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/order_8459.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:45:00","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/order_8289.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:44:54","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/order_7010.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:44:48","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/order_6767.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:44:42","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/order_5966.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:44:36","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/order_5339.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:44:30","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/order_4674.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:44:24","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/order_3403.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:44:19","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/order_2266.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:44:13","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/order_1710.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:44:07","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/order_0061.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:44:01","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/inoice_6873.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:43:55","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/inoice_6611.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:43:49","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/inoice_5566.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:43:44","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/inoice_5205.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:43:38","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/inoice_5108.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:43:31","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/inoice_4436.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:43:25","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/inoice_3656.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:43:19","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/inoice_3270.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:43:13","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/inoice_2055.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:43:08","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/inoice_1421.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:43:02","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/inoice_0760.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:42:56","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/inoice_0282.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:42:50","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/inoice_0052.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:42:44","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/eFax_from_9813.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:42:38","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/eFax_from_9209.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:42:33","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/eFax_from_6656.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:42:26","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/eFax_from_6055.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:42:19","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/eFax_from_5213.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:42:14","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/eFax_from_4607.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:42:08","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/eFax_from_4244.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:42:03","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/eFax_from_2005.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:41:57","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/eFax_from_0368.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:41:52","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/application_to_fill_8519.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:41:46","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/application_to_fill_8514.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:41:41","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/application_to_fill_8166.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:41:35","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/application_to_fill_8160.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:41:29","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/application_to_fill_7539.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:41:22","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/application_to_fill_6416.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:41:17","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/application_to_fill_6388.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:41:11","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/application_to_fill_5139.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:41:05","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/application_to_fill_4440.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:40:59","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/application_to_fill_4059.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:40:53","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/application_to_fill_3504.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:40:48","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/application_to_fill_3043.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:40:42","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/application_to_fill_0759.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:40:35","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/application_to_fill_0350.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-26 15:40:28","http://mooipilates.com/node_modules/form-data/node_modules/mime-types/12262/application_to_fill_0115.doc","offline","malware_download","doc|icedID","mooipilates.com","20.8.132.166","8075","NL"
"2019-12-25 14:39:56","http://172.168.1.120:54165/Mozi.m","offline","malware_download","elf","172.168.1.120","172.168.1.120","8075","US"
"2019-12-23 13:23:11","http://172.177.110.119:60345/Mozi.m","offline","malware_download","elf","172.177.110.119","172.177.110.119","8075","US"
"2019-12-23 06:43:21","http://1.186.151.219:59485/Mozi.m","offline","malware_download","elf","1.186.151.219","1.186.151.219","8075","GB"
"2019-12-20 22:31:06","http://www.wavesgroup.com/wavesgroup.com/lm/16yjmld688i5/0vxo5-38796-104081542-kxvspi-pctfnbvrzm5/","offline","malware_download","doc|emotet|epoch2|heodo","www.wavesgroup.com","20.192.98.161","8075","IN"
"2019-12-20 14:45:05","http://apartmentsinpanvel.com/banana/tyuu6-79-21149/","offline","malware_download","doc|emotet|epoch3|heodo","apartmentsinpanvel.com","52.172.39.101","8075","IN"
"2019-12-20 03:33:11","http://www.london789.com/wp-includes/hYn7sa9BpC-DRcrMWiRO-box/9Sm6U-rz9O2iwyj-warehouse/gy4iynih4439ca6-03123tw3x/","offline","malware_download","doc|emotet|epoch1","www.london789.com","20.82.13.59","8075","NL"
"2019-12-20 02:45:04","https://www.groupe-kpar3.com/wp-content/uploads/personal_array/verified_space/uc1hr7_t39991/","offline","malware_download","doc|emotet|epoch1|Heodo","www.groupe-kpar3.com","52.169.117.14","8075","IE"
"2019-12-20 00:33:05","https://test.inertrain.com/ox1rq9-rmi4-454/en8tqo-hgb4-09/","offline","malware_download","doc|emotet|epoch3|heodo","test.inertrain.com","52.151.26.230","8075","US"
"2019-12-19 18:25:03","https://blackwolf-securite.fr/son/1Nh/","offline","malware_download","doc|emotet|epoch3|heodo","blackwolf-securite.fr","51.103.45.117","8075","FR"
"2019-12-19 13:44:05","https://www.london789.com/wp-includes/hYn7sa9BpC-DRcrMWiRO-box/9Sm6U-rz9O2iwyj-warehouse/gy4iynih4439ca6-03123tw3x/","offline","malware_download","doc|emotet|epoch1|Heodo","www.london789.com","20.82.13.59","8075","NL"
"2019-12-19 04:48:10","https://gw.daelimcloud.com/WebSite/Mail/AttachedFile/LargeFileDownload.aspx?KEY=MjQTUlEPTQyNzIyNzYmRklEPTc0MjcyNTMmVFJDSz1ZJk1OT1RJPU4%3d","offline","malware_download","doc|emotet|epoch3","gw.daelimcloud.com","20.249.203.226","8075","KR"
"2019-12-18 13:15:56","http://frcenv.com.au/phonebook/common_array/verified_portal/9507947578831_2vCZnfI0laBxql/","offline","malware_download","doc|emotet|epoch1","frcenv.com.au","20.162.230.165","8075","GB"
"2019-12-17 22:57:30","https://www.groupe-kpar3.com/wp-content/uploads/LLC/","offline","malware_download","doc|emotet|epoch2|Heodo","www.groupe-kpar3.com","52.169.117.14","8075","IE"
"2019-12-17 18:46:04","http://ighf.info/wp-includes/10wsi5k3pgkw/06p4rvz-093226-09152-hfpa-exmhq/","offline","malware_download","doc|emotet|epoch2|Heodo","ighf.info","40.112.93.223","8075","IE"
"2019-12-17 17:22:05","http://projectsinpanvel.com/calendar/multifunctional_box/verifiable_profile/8LHHzEAH_vmcyo1r2hn/","offline","malware_download","doc|emotet|epoch1|Heodo","projectsinpanvel.com","52.172.39.101","8075","IN"
"2019-12-17 01:38:02","http://www.caldas-pires.pt/wp-content/themes/alterna/css/797677/1s0p-098-35380574-4mdb7-ef3cv4xr0/","offline","malware_download","doc|emotet|epoch2|heodo","www.caldas-pires.pt","40.99.150.120","8075","DE"
"2019-12-17 01:38:02","http://www.caldas-pires.pt/wp-content/themes/alterna/css/797677/1s0p-098-35380574-4mdb7-ef3cv4xr0/","offline","malware_download","doc|emotet|epoch2|heodo","www.caldas-pires.pt","52.98.152.168","8075","DE"
"2019-12-17 01:38:02","http://www.caldas-pires.pt/wp-content/themes/alterna/css/797677/1s0p-098-35380574-4mdb7-ef3cv4xr0/","offline","malware_download","doc|emotet|epoch2|heodo","www.caldas-pires.pt","52.98.152.200","8075","DE"
"2019-12-17 01:38:02","http://www.caldas-pires.pt/wp-content/themes/alterna/css/797677/1s0p-098-35380574-4mdb7-ef3cv4xr0/","offline","malware_download","doc|emotet|epoch2|heodo","www.caldas-pires.pt","52.98.175.8","8075","DE"
"2019-12-17 01:38:02","http://www.caldas-pires.pt/wp-content/themes/alterna/css/797677/1s0p-098-35380574-4mdb7-ef3cv4xr0/","offline","malware_download","doc|emotet|epoch2|heodo","www.caldas-pires.pt","52.98.179.40","8075","DE"
"2019-12-17 01:38:02","http://www.caldas-pires.pt/wp-content/themes/alterna/css/797677/1s0p-098-35380574-4mdb7-ef3cv4xr0/","offline","malware_download","doc|emotet|epoch2|heodo","www.caldas-pires.pt","52.98.179.56","8075","DE"
"2019-12-17 01:38:02","http://www.caldas-pires.pt/wp-content/themes/alterna/css/797677/1s0p-098-35380574-4mdb7-ef3cv4xr0/","offline","malware_download","doc|emotet|epoch2|heodo","www.caldas-pires.pt","52.98.241.168","8075","DE"
"2019-12-17 01:38:02","http://www.caldas-pires.pt/wp-content/themes/alterna/css/797677/1s0p-098-35380574-4mdb7-ef3cv4xr0/","offline","malware_download","doc|emotet|epoch2|heodo","www.caldas-pires.pt","52.98.243.24","8075","DE"
"2019-12-16 23:30:04","https://test.inertrain.com/ox1rq9-rmi4-454/DSVRHO2ORO3/hzhduki/","offline","malware_download","doc|emotet|epoch2|heodo","test.inertrain.com","52.151.26.230","8075","US"
"2019-12-13 21:34:04","http://www.caldas-pires.pt/wp-content/themes/alterna/css/7qnog-okil-69448/","offline","malware_download","doc|emotet|epoch3|heodo","www.caldas-pires.pt","40.99.150.120","8075","DE"
"2019-12-13 21:34:04","http://www.caldas-pires.pt/wp-content/themes/alterna/css/7qnog-okil-69448/","offline","malware_download","doc|emotet|epoch3|heodo","www.caldas-pires.pt","52.98.152.168","8075","DE"
"2019-12-13 21:34:04","http://www.caldas-pires.pt/wp-content/themes/alterna/css/7qnog-okil-69448/","offline","malware_download","doc|emotet|epoch3|heodo","www.caldas-pires.pt","52.98.152.200","8075","DE"
"2019-12-13 21:34:04","http://www.caldas-pires.pt/wp-content/themes/alterna/css/7qnog-okil-69448/","offline","malware_download","doc|emotet|epoch3|heodo","www.caldas-pires.pt","52.98.175.8","8075","DE"
"2019-12-13 21:34:04","http://www.caldas-pires.pt/wp-content/themes/alterna/css/7qnog-okil-69448/","offline","malware_download","doc|emotet|epoch3|heodo","www.caldas-pires.pt","52.98.179.40","8075","DE"
"2019-12-13 21:34:04","http://www.caldas-pires.pt/wp-content/themes/alterna/css/7qnog-okil-69448/","offline","malware_download","doc|emotet|epoch3|heodo","www.caldas-pires.pt","52.98.179.56","8075","DE"
"2019-12-13 21:34:04","http://www.caldas-pires.pt/wp-content/themes/alterna/css/7qnog-okil-69448/","offline","malware_download","doc|emotet|epoch3|heodo","www.caldas-pires.pt","52.98.241.168","8075","DE"
"2019-12-13 21:34:04","http://www.caldas-pires.pt/wp-content/themes/alterna/css/7qnog-okil-69448/","offline","malware_download","doc|emotet|epoch3|heodo","www.caldas-pires.pt","52.98.243.24","8075","DE"
"2019-12-13 19:13:02","https://www.groupe-kpar3.com/hqb/INC/","offline","malware_download","doc|emotet|epoch2|heodo","www.groupe-kpar3.com","52.169.117.14","8075","IE"
"2019-12-13 09:22:14","https://test.inertrain.com/ox1rq9-rmi4-454/","offline","malware_download","doc|emotet|epoch3|heodo","test.inertrain.com","52.151.26.230","8075","US"
"2019-12-11 17:47:35","http://www.stpetersfbd.ac.in/cgi-bin/XeZHUH/","offline","malware_download","doc|emotet|epoch3|heodo","www.stpetersfbd.ac.in","20.192.170.8","8075","IN"
"2019-12-11 16:20:03","https://web.councilbox.com/img/HOL/","offline","malware_download","doc|emotet|epoch3|heodo","web.councilbox.com","52.143.19.233","8075","NL"
"2019-12-11 09:41:07","https://sp344-my.sharepoint.com/:u:/g/personal/aleksandra_dyniec_sp344_onmicrosoft_com/EQudehlMV3pAoHGXonjO_fgBgcaCHDcHwwhzjnVt7ZROXg?download=1","offline","malware_download","gozi|ITA|vbs|zip","sp344-my.sharepoint.com","52.107.243.192","8075","DE"
"2019-12-11 09:41:07","https://sp344-my.sharepoint.com/:u:/g/personal/aleksandra_dyniec_sp344_onmicrosoft_com/EQudehlMV3pAoHGXonjO_fgBgcaCHDcHwwhzjnVt7ZROXg?download=1","offline","malware_download","gozi|ITA|vbs|zip","sp344-my.sharepoint.com","52.107.243.196","8075","DE"
"2019-12-11 09:41:07","https://sp344-my.sharepoint.com/:u:/g/personal/aleksandra_dyniec_sp344_onmicrosoft_com/EQudehlMV3pAoHGXonjO_fgBgcaCHDcHwwhzjnVt7ZROXg?download=1","offline","malware_download","gozi|ITA|vbs|zip","sp344-my.sharepoint.com","52.107.243.66","8075","DE"
"2019-12-11 09:41:07","https://sp344-my.sharepoint.com/:u:/g/personal/aleksandra_dyniec_sp344_onmicrosoft_com/EQudehlMV3pAoHGXonjO_fgBgcaCHDcHwwhzjnVt7ZROXg?download=1","offline","malware_download","gozi|ITA|vbs|zip","sp344-my.sharepoint.com","52.107.243.75","8075","DE"
"2019-12-11 07:29:03","https://sp344-my.sharepoint.com/personal/aleksandra_dyniec_sp344_onmicrosoft_com/Documents/Udost%c4%99pnione%20wszystkim/Nuovo%20documento%201.zip?&originalPath=aHR0cHM6Ly9zcDM0NC1teS5zaGFyZXBvaW50LmNvbS86dTovZy9wZXJzb25hbC9hbGVrc2FuZHJhX2R5bmllY19zcDM0NF9vbm1pY3Jvc29mdF9jb20vRVF1ZGVobE1WM3BBb0hHWG9uak9fZmdCZ2NhQ0hEY0h3d2h6am5WdDdaUk9YZz9ydGltZT1meHB3S1FwLTEwZw","offline","malware_download","","sp344-my.sharepoint.com","52.107.243.192","8075","DE"
"2019-12-11 07:29:03","https://sp344-my.sharepoint.com/personal/aleksandra_dyniec_sp344_onmicrosoft_com/Documents/Udost%c4%99pnione%20wszystkim/Nuovo%20documento%201.zip?&originalPath=aHR0cHM6Ly9zcDM0NC1teS5zaGFyZXBvaW50LmNvbS86dTovZy9wZXJzb25hbC9hbGVrc2FuZHJhX2R5bmllY19zcDM0NF9vbm1pY3Jvc29mdF9jb20vRVF1ZGVobE1WM3BBb0hHWG9uak9fZmdCZ2NhQ0hEY0h3d2h6am5WdDdaUk9YZz9ydGltZT1meHB3S1FwLTEwZw","offline","malware_download","","sp344-my.sharepoint.com","52.107.243.196","8075","DE"
"2019-12-11 07:29:03","https://sp344-my.sharepoint.com/personal/aleksandra_dyniec_sp344_onmicrosoft_com/Documents/Udost%c4%99pnione%20wszystkim/Nuovo%20documento%201.zip?&originalPath=aHR0cHM6Ly9zcDM0NC1teS5zaGFyZXBvaW50LmNvbS86dTovZy9wZXJzb25hbC9hbGVrc2FuZHJhX2R5bmllY19zcDM0NF9vbm1pY3Jvc29mdF9jb20vRVF1ZGVobE1WM3BBb0hHWG9uak9fZmdCZ2NhQ0hEY0h3d2h6am5WdDdaUk9YZz9ydGltZT1meHB3S1FwLTEwZw","offline","malware_download","","sp344-my.sharepoint.com","52.107.243.66","8075","DE"
"2019-12-11 07:29:03","https://sp344-my.sharepoint.com/personal/aleksandra_dyniec_sp344_onmicrosoft_com/Documents/Udost%c4%99pnione%20wszystkim/Nuovo%20documento%201.zip?&originalPath=aHR0cHM6Ly9zcDM0NC1teS5zaGFyZXBvaW50LmNvbS86dTovZy9wZXJzb25hbC9hbGVrc2FuZHJhX2R5bmllY19zcDM0NF9vbm1pY3Jvc29mdF9jb20vRVF1ZGVobE1WM3BBb0hHWG9uak9fZmdCZ2NhQ0hEY0h3d2h6am5WdDdaUk9YZz9ydGltZT1meHB3S1FwLTEwZw","offline","malware_download","","sp344-my.sharepoint.com","52.107.243.75","8075","DE"
"2019-12-10 18:51:40","http://104.41.57.113/wp-content/themes/Overview/65871m38/","offline","malware_download","doc|emotet|epoch2|Heodo","104.41.57.113","104.41.57.113","8075","BR"
"2019-12-10 18:00:47","https://efforts.srdivinetouch.org/12xb36i/personal-65507664-eMixu/open-area/Ich83f-6Gi24z1I3a/","offline","malware_download","doc|emotet|epoch1|Heodo","efforts.srdivinetouch.org","137.135.93.220","8075","US"
"2019-12-10 17:42:10","https://www.cigpcl.com/wp-admin/9674/","offline","malware_download","emotet|epoch1|exe|Heodo","www.cigpcl.com","52.148.72.231","8075","SG"
"2019-12-10 17:22:05","https://bookabus.sg/wp-includes/Scan/","offline","malware_download","doc|emotet|epoch2|Heodo","bookabus.sg","20.184.25.80","8075","SG"
"2019-12-09 14:13:19","https://web.councilbox.com/img/cgv/","offline","malware_download","emotet|epoch2|exe|Heodo","web.councilbox.com","52.143.19.233","8075","NL"
"2019-12-05 16:03:09","https://test.inertrain.com/AwqR0/5twkautdb5-6531oloc-8876388/","offline","malware_download","emotet|epoch3|exe|Heodo","test.inertrain.com","52.151.26.230","8075","US"
"2019-12-05 10:18:05","https://sp344-my.sharepoint.com/:u:/g/personal/aleksandra_dyniec_sp344_onmicrosoft_com/Ebs2E32pwkxJugvJbYlEgUUBe986pqBF_-n6XyFXaCZWgg?download=1","offline","malware_download","gozi|ITA|vbs|zip","sp344-my.sharepoint.com","52.107.243.192","8075","DE"
"2019-12-05 10:18:05","https://sp344-my.sharepoint.com/:u:/g/personal/aleksandra_dyniec_sp344_onmicrosoft_com/Ebs2E32pwkxJugvJbYlEgUUBe986pqBF_-n6XyFXaCZWgg?download=1","offline","malware_download","gozi|ITA|vbs|zip","sp344-my.sharepoint.com","52.107.243.196","8075","DE"
"2019-12-05 10:18:05","https://sp344-my.sharepoint.com/:u:/g/personal/aleksandra_dyniec_sp344_onmicrosoft_com/Ebs2E32pwkxJugvJbYlEgUUBe986pqBF_-n6XyFXaCZWgg?download=1","offline","malware_download","gozi|ITA|vbs|zip","sp344-my.sharepoint.com","52.107.243.66","8075","DE"
"2019-12-05 10:18:05","https://sp344-my.sharepoint.com/:u:/g/personal/aleksandra_dyniec_sp344_onmicrosoft_com/Ebs2E32pwkxJugvJbYlEgUUBe986pqBF_-n6XyFXaCZWgg?download=1","offline","malware_download","gozi|ITA|vbs|zip","sp344-my.sharepoint.com","52.107.243.75","8075","DE"
"2019-12-04 10:53:37","https://diverfarming-my.sharepoint.com/:u:/g/personal/josef_maestre_diverfarming_onmicrosoft_com/EeJOI4hdjqlNgYcCMClhRVgB-2dxQDyyHGIP-8xRo1WFhA?download=1","offline","malware_download","gozi|ITA|VBS|zip","diverfarming-my.sharepoint.com","52.107.225.8","8075","DE"
"2019-12-04 10:53:37","https://diverfarming-my.sharepoint.com/:u:/g/personal/josef_maestre_diverfarming_onmicrosoft_com/EeJOI4hdjqlNgYcCMClhRVgB-2dxQDyyHGIP-8xRo1WFhA?download=1","offline","malware_download","gozi|ITA|VBS|zip","diverfarming-my.sharepoint.com","52.107.243.216","8075","DE"
"2019-12-04 10:53:37","https://diverfarming-my.sharepoint.com/:u:/g/personal/josef_maestre_diverfarming_onmicrosoft_com/EeJOI4hdjqlNgYcCMClhRVgB-2dxQDyyHGIP-8xRo1WFhA?download=1","offline","malware_download","gozi|ITA|VBS|zip","diverfarming-my.sharepoint.com","52.107.243.217","8075","DE"
"2019-12-04 10:53:37","https://diverfarming-my.sharepoint.com/:u:/g/personal/josef_maestre_diverfarming_onmicrosoft_com/EeJOI4hdjqlNgYcCMClhRVgB-2dxQDyyHGIP-8xRo1WFhA?download=1","offline","malware_download","gozi|ITA|VBS|zip","diverfarming-my.sharepoint.com","52.107.243.68","8075","DE"
"2019-12-04 10:53:37","https://diverfarming-my.sharepoint.com/:u:/g/personal/josef_maestre_diverfarming_onmicrosoft_com/EeJOI4hdjqlNgYcCMClhRVgB-2dxQDyyHGIP-8xRo1WFhA?download=1","offline","malware_download","gozi|ITA|VBS|zip","diverfarming-my.sharepoint.com","52.107.243.80","8075","DE"
"2019-12-04 10:53:37","https://diverfarming-my.sharepoint.com/:u:/g/personal/josef_maestre_diverfarming_onmicrosoft_com/EeJOI4hdjqlNgYcCMClhRVgB-2dxQDyyHGIP-8xRo1WFhA?download=1","offline","malware_download","gozi|ITA|VBS|zip","diverfarming-my.sharepoint.com","52.107.243.84","8075","DE"
"2019-12-04 10:53:37","https://diverfarming-my.sharepoint.com/:u:/g/personal/josef_maestre_diverfarming_onmicrosoft_com/EeJOI4hdjqlNgYcCMClhRVgB-2dxQDyyHGIP-8xRo1WFhA?download=1","offline","malware_download","gozi|ITA|VBS|zip","diverfarming-my.sharepoint.com","52.107.243.88","8075","DE"
"2019-12-04 10:53:37","https://diverfarming-my.sharepoint.com/:u:/g/personal/josef_maestre_diverfarming_onmicrosoft_com/EeJOI4hdjqlNgYcCMClhRVgB-2dxQDyyHGIP-8xRo1WFhA?download=1","offline","malware_download","gozi|ITA|VBS|zip","diverfarming-my.sharepoint.com","52.107.243.94","8075","DE"
"2019-12-02 07:16:11","https://cigpcl.com/wp-admin/4ipf/","offline","malware_download","emotet|epoch2|exe|Heodo","cigpcl.com","52.148.72.231","8075","SG"
"2019-11-25 22:55:05","http://www.militaryrelocationpro.org/sites/default/","offline","malware_download","doc|emotet|epoch2","www.militaryrelocationpro.org","40.122.70.208","8075","US"
"2019-11-22 20:32:23","http://luantao.org/calendar/7532946/","offline","malware_download","emotet|epoch1|exe|Heodo","luantao.org","172.191.52.161","8075","US"
"2019-11-19 10:24:14","http://luantao.org/calendar/y3FGjN7V/","offline","malware_download","emotet|epoch2|exe|Heodo","luantao.org","172.191.52.161","8075","US"
"2019-11-13 07:31:03","http://respectsolution.com/wp-admin/0d0572/","offline","malware_download","emotet|epoch1|exe|Heodo","respectsolution.com","20.8.132.166","8075","NL"
"2019-11-06 17:34:20","http://respectsolution.com/wp-admin/css/3yvg/","offline","malware_download","emotet|epoch2|exe|Heodo","respectsolution.com","20.8.132.166","8075","NL"
"2019-11-06 06:47:21","https://blog.vq-cars.uk/calendar/64o-d99bihn-87989783/","offline","malware_download","emotet|epoch3|exe|Heodo","blog.vq-cars.uk","51.140.181.93","8075","GB"
"2019-11-05 13:02:18","http://mbncanada.ca/sjh7s/xOEuUj/","offline","malware_download","emotet|epoch3|exe|Heodo","mbncanada.ca","20.48.202.169","8075","CA"
"2019-11-05 00:03:27","http://supersellerfl.com/wp-content/Qdo5n02ur9/","offline","malware_download","emotet|epoch2|exe|Heodo","supersellerfl.com","40.114.114.153","8075","US"
"2019-10-30 11:50:40","http://ssun.info/wp-content/uploads/HfYt0/","offline","malware_download","emotet|epoch2|exe|Heodo","ssun.info","51.136.54.57","8075","NL"
"2019-10-29 12:42:18","http://evaki.azurewebsites.net/wp-admin/8gbfyr9/","offline","malware_download","Emotet|epoch1|exe|Heodo","evaki.azurewebsites.net","20.105.216.20","8075","NL"
"2019-10-16 02:41:04","https://tracyk12mnus-my.sharepoint.com:443/:w:/g/personal/23henscha_tracy_k12_mn_us/EWf5vZKcxx9Ih_0dYXBRuV0BF-tXMIs0mG0koj5pTSeHTA?e=6c79Kx&download=1","offline","malware_download","doc|Ostap|Trickbot","tracyk12mnus-my.sharepoint.com","52.107.225.1","8075","DE"
"2019-10-16 02:41:04","https://tracyk12mnus-my.sharepoint.com:443/:w:/g/personal/23henscha_tracy_k12_mn_us/EWf5vZKcxx9Ih_0dYXBRuV0BF-tXMIs0mG0koj5pTSeHTA?e=6c79Kx&download=1","offline","malware_download","doc|Ostap|Trickbot","tracyk12mnus-my.sharepoint.com","52.107.243.193","8075","DE"
"2019-10-16 02:41:04","https://tracyk12mnus-my.sharepoint.com:443/:w:/g/personal/23henscha_tracy_k12_mn_us/EWf5vZKcxx9Ih_0dYXBRuV0BF-tXMIs0mG0koj5pTSeHTA?e=6c79Kx&download=1","offline","malware_download","doc|Ostap|Trickbot","tracyk12mnus-my.sharepoint.com","52.107.243.197","8075","DE"
"2019-10-16 02:41:04","https://tracyk12mnus-my.sharepoint.com:443/:w:/g/personal/23henscha_tracy_k12_mn_us/EWf5vZKcxx9Ih_0dYXBRuV0BF-tXMIs0mG0koj5pTSeHTA?e=6c79Kx&download=1","offline","malware_download","doc|Ostap|Trickbot","tracyk12mnus-my.sharepoint.com","52.107.243.71","8075","DE"
"2019-10-16 02:41:04","https://tracyk12mnus-my.sharepoint.com:443/:w:/g/personal/23henscha_tracy_k12_mn_us/EWf5vZKcxx9Ih_0dYXBRuV0BF-tXMIs0mG0koj5pTSeHTA?e=6c79Kx&download=1","offline","malware_download","doc|Ostap|Trickbot","tracyk12mnus-my.sharepoint.com","52.107.243.76","8075","DE"
"2019-10-16 02:41:04","https://tracyk12mnus-my.sharepoint.com:443/:w:/g/personal/23henscha_tracy_k12_mn_us/EWf5vZKcxx9Ih_0dYXBRuV0BF-tXMIs0mG0koj5pTSeHTA?e=6c79Kx&download=1","offline","malware_download","doc|Ostap|Trickbot","tracyk12mnus-my.sharepoint.com","52.107.243.81","8075","DE"
"2019-10-16 02:41:04","https://tracyk12mnus-my.sharepoint.com:443/:w:/g/personal/23henscha_tracy_k12_mn_us/EWf5vZKcxx9Ih_0dYXBRuV0BF-tXMIs0mG0koj5pTSeHTA?e=6c79Kx&download=1","offline","malware_download","doc|Ostap|Trickbot","tracyk12mnus-my.sharepoint.com","52.107.243.88","8075","DE"
"2019-10-16 02:41:04","https://tracyk12mnus-my.sharepoint.com:443/:w:/g/personal/23henscha_tracy_k12_mn_us/EWf5vZKcxx9Ih_0dYXBRuV0BF-tXMIs0mG0koj5pTSeHTA?e=6c79Kx&download=1","offline","malware_download","doc|Ostap|Trickbot","tracyk12mnus-my.sharepoint.com","52.107.243.94","8075","DE"
"2019-10-12 22:10:03","http://52.170.151.92/lmaoWTF/loligang.mips","offline","malware_download","elf|mirai","52.170.151.92","52.170.151.92","8075","US"
"2019-10-12 22:09:33","http://52.170.151.92/lmaoWTF/loligang.ppc","offline","malware_download","elf","52.170.151.92","52.170.151.92","8075","US"
"2019-10-12 22:09:31","http://52.170.151.92/lmaoWTF/loligang.arm6","offline","malware_download","elf","52.170.151.92","52.170.151.92","8075","US"
"2019-10-12 22:09:24","http://52.170.151.92/lmaoWTF/loligang.arm5","offline","malware_download","elf|mirai","52.170.151.92","52.170.151.92","8075","US"
"2019-10-12 22:09:23","http://52.170.151.92/lmaoWTF/loligang.sh4","offline","malware_download","elf|mirai","52.170.151.92","52.170.151.92","8075","US"
"2019-10-12 22:09:17","http://52.170.151.92/lmaoWTF/loligang.m68k","offline","malware_download","elf|mirai","52.170.151.92","52.170.151.92","8075","US"
"2019-10-12 22:09:15","http://52.170.151.92/lmaoWTF/loligang.spc","offline","malware_download","elf|mirai","52.170.151.92","52.170.151.92","8075","US"
"2019-10-12 22:00:20","http://52.170.151.92/lmaoWTF/loligang.arm","offline","malware_download","elf|mirai","52.170.151.92","52.170.151.92","8075","US"
"2019-10-12 22:00:17","http://52.170.151.92/lmaoWTF/loligang.mpsl","offline","malware_download","elf|mirai","52.170.151.92","52.170.151.92","8075","US"
"2019-10-12 22:00:03","http://52.170.151.92/lmaoWTF/loligang.x86","offline","malware_download","elf|mirai","52.170.151.92","52.170.151.92","8075","US"
"2019-10-12 21:58:03","http://52.170.151.92/lmaoWTF/loligang.arm7","offline","malware_download","elf|mirai","52.170.151.92","52.170.151.92","8075","US"
"2019-10-11 16:00:19","http://www.noblesproperties.com/calendar/w4d009/","offline","malware_download","emotet|epoch1|exe|Heodo","www.noblesproperties.com","52.178.77.149","8075","NL"
"2019-10-11 13:28:35","https://www.noblesproperties.com/calendar/w4d009/","offline","malware_download","emotet|epoch1|exe|Heodo","www.noblesproperties.com","52.178.77.149","8075","NL"
"2019-10-08 20:42:20","https://www.noblesproperties.com/calendar/FmjmLwf/","offline","malware_download","emotet|epoch3|exe|heodo","www.noblesproperties.com","52.178.77.149","8075","NL"
"2019-10-08 07:53:46","https://pceim-my.sharepoint.com/:u:/g/personal/projets_pceim_ca/EW1yrCNS17VFpamthQtIouABSnDlRvS5VluXq0hbhAo39A?download=1&locale=en_AU","offline","malware_download","AUS|gozi|NZL|vbs|zip","pceim-my.sharepoint.com","52.107.225.8","8075","DE"
"2019-10-08 07:53:46","https://pceim-my.sharepoint.com/:u:/g/personal/projets_pceim_ca/EW1yrCNS17VFpamthQtIouABSnDlRvS5VluXq0hbhAo39A?download=1&locale=en_AU","offline","malware_download","AUS|gozi|NZL|vbs|zip","pceim-my.sharepoint.com","52.107.243.199","8075","DE"
"2019-10-08 07:53:46","https://pceim-my.sharepoint.com/:u:/g/personal/projets_pceim_ca/EW1yrCNS17VFpamthQtIouABSnDlRvS5VluXq0hbhAo39A?download=1&locale=en_AU","offline","malware_download","AUS|gozi|NZL|vbs|zip","pceim-my.sharepoint.com","52.107.243.210","8075","DE"
"2019-10-08 07:53:46","https://pceim-my.sharepoint.com/:u:/g/personal/projets_pceim_ca/EW1yrCNS17VFpamthQtIouABSnDlRvS5VluXq0hbhAo39A?download=1&locale=en_AU","offline","malware_download","AUS|gozi|NZL|vbs|zip","pceim-my.sharepoint.com","52.107.243.215","8075","DE"
"2019-10-08 07:53:46","https://pceim-my.sharepoint.com/:u:/g/personal/projets_pceim_ca/EW1yrCNS17VFpamthQtIouABSnDlRvS5VluXq0hbhAo39A?download=1&locale=en_AU","offline","malware_download","AUS|gozi|NZL|vbs|zip","pceim-my.sharepoint.com","52.107.243.70","8075","DE"
"2019-10-08 07:53:46","https://pceim-my.sharepoint.com/:u:/g/personal/projets_pceim_ca/EW1yrCNS17VFpamthQtIouABSnDlRvS5VluXq0hbhAo39A?download=1&locale=en_AU","offline","malware_download","AUS|gozi|NZL|vbs|zip","pceim-my.sharepoint.com","52.107.243.72","8075","DE"
"2019-10-08 07:53:46","https://pceim-my.sharepoint.com/:u:/g/personal/projets_pceim_ca/EW1yrCNS17VFpamthQtIouABSnDlRvS5VluXq0hbhAo39A?download=1&locale=en_AU","offline","malware_download","AUS|gozi|NZL|vbs|zip","pceim-my.sharepoint.com","52.107.243.94","8075","DE"
"2019-10-08 07:53:46","https://pceim-my.sharepoint.com/:u:/g/personal/projets_pceim_ca/EW1yrCNS17VFpamthQtIouABSnDlRvS5VluXq0hbhAo39A?download=1&locale=en_AU","offline","malware_download","AUS|gozi|NZL|vbs|zip","pceim-my.sharepoint.com","52.107.243.95","8075","DE"
"2019-10-04 08:50:03","http://www.vogliagrafica.com/jc9a/9kiuzfzr_33njmng1-22034494/","offline","malware_download","Emotet|epoch2|exe|Heodo","www.vogliagrafica.com","40.114.199.51","8075","NL"
"2019-09-30 15:14:06","https://jrfamericorps-my.sharepoint.com/:w:/g/personal/samantha_cruz_jrfnj_org/ETo4SZqmKJxFhO9uH3uaXagBFw7WTFnriMiIZNFEHulYGw?e=iLT1z1&amp","offline","malware_download","Doc|Ostap|Trickbot","jrfamericorps-my.sharepoint.com","52.107.225.1","8075","DE"
"2019-09-30 15:14:06","https://jrfamericorps-my.sharepoint.com/:w:/g/personal/samantha_cruz_jrfnj_org/ETo4SZqmKJxFhO9uH3uaXagBFw7WTFnriMiIZNFEHulYGw?e=iLT1z1&amp","offline","malware_download","Doc|Ostap|Trickbot","jrfamericorps-my.sharepoint.com","52.107.243.193","8075","DE"
"2019-09-30 15:14:06","https://jrfamericorps-my.sharepoint.com/:w:/g/personal/samantha_cruz_jrfnj_org/ETo4SZqmKJxFhO9uH3uaXagBFw7WTFnriMiIZNFEHulYGw?e=iLT1z1&amp","offline","malware_download","Doc|Ostap|Trickbot","jrfamericorps-my.sharepoint.com","52.107.243.218","8075","DE"
"2019-09-30 15:14:06","https://jrfamericorps-my.sharepoint.com/:w:/g/personal/samantha_cruz_jrfnj_org/ETo4SZqmKJxFhO9uH3uaXagBFw7WTFnriMiIZNFEHulYGw?e=iLT1z1&amp","offline","malware_download","Doc|Ostap|Trickbot","jrfamericorps-my.sharepoint.com","52.107.243.71","8075","DE"
"2019-09-30 15:14:06","https://jrfamericorps-my.sharepoint.com/:w:/g/personal/samantha_cruz_jrfnj_org/ETo4SZqmKJxFhO9uH3uaXagBFw7WTFnriMiIZNFEHulYGw?e=iLT1z1&amp","offline","malware_download","Doc|Ostap|Trickbot","jrfamericorps-my.sharepoint.com","52.107.243.75","8075","DE"
"2019-09-30 15:14:06","https://jrfamericorps-my.sharepoint.com/:w:/g/personal/samantha_cruz_jrfnj_org/ETo4SZqmKJxFhO9uH3uaXagBFw7WTFnriMiIZNFEHulYGw?e=iLT1z1&amp","offline","malware_download","Doc|Ostap|Trickbot","jrfamericorps-my.sharepoint.com","52.107.243.77","8075","DE"
"2019-09-30 15:14:06","https://jrfamericorps-my.sharepoint.com/:w:/g/personal/samantha_cruz_jrfnj_org/ETo4SZqmKJxFhO9uH3uaXagBFw7WTFnriMiIZNFEHulYGw?e=iLT1z1&amp","offline","malware_download","Doc|Ostap|Trickbot","jrfamericorps-my.sharepoint.com","52.107.243.84","8075","DE"
"2019-09-30 15:14:06","https://jrfamericorps-my.sharepoint.com/:w:/g/personal/samantha_cruz_jrfnj_org/ETo4SZqmKJxFhO9uH3uaXagBFw7WTFnriMiIZNFEHulYGw?e=iLT1z1&amp","offline","malware_download","Doc|Ostap|Trickbot","jrfamericorps-my.sharepoint.com","52.107.243.94","8075","DE"
"2019-09-23 08:15:15","https://seasidetales.com/wp-includes/DOC/YIgAkwoUfJvHdT/","offline","malware_download","doc|emotet|epoch2|Heodo","seasidetales.com","13.82.150.184","8075","US"
"2019-09-20 09:36:37","http://kusumo.web.id/wp-content/themes/twentynineteen/fonts/doc/","offline","malware_download","js|Ransomware|RUS|Troldesh|zip","kusumo.web.id","104.215.190.165","8075","SG"
"2019-09-18 08:03:23","https://myjmcedu-my.sharepoint.com/:u:/g/personal/library_jmc_edu_au/ETWwH4JnhgBDmh9P8V82nLABO4NuMq3oFMuPerE0YkCvrQ?download=1&source=myob","offline","malware_download","AUS|Gozi|NZL|vbs|zip","myjmcedu-my.sharepoint.com","13.107.136.10","8075","US"
"2019-09-18 08:03:23","https://myjmcedu-my.sharepoint.com/:u:/g/personal/library_jmc_edu_au/ETWwH4JnhgBDmh9P8V82nLABO4NuMq3oFMuPerE0YkCvrQ?download=1&source=myob","offline","malware_download","AUS|Gozi|NZL|vbs|zip","myjmcedu-my.sharepoint.com","13.107.138.10","8075","US"
"2019-09-10 21:21:02","https://albionhillpropertydevelo-my.sharepoint.com/:u:/g/personal/accounts_leicesterstudents_co_uk/Ea94j2Pp5mhMu8p5Sn7qxYAB_XhwhwpPWIo32J-HWYfP4Q?download=1&locale=en_CA?78ImAzLRMPZ=78ImAzLRMPZ&cta=viewinvoicenow","offline","malware_download","CAN|Trickbot|VBS|zip","albionhillpropertydevelo-my.sharepoint.com","13.107.136.10","8075","US"
"2019-09-10 21:21:02","https://albionhillpropertydevelo-my.sharepoint.com/:u:/g/personal/accounts_leicesterstudents_co_uk/Ea94j2Pp5mhMu8p5Sn7qxYAB_XhwhwpPWIo32J-HWYfP4Q?download=1&locale=en_CA?78ImAzLRMPZ=78ImAzLRMPZ&cta=viewinvoicenow","offline","malware_download","CAN|Trickbot|VBS|zip","albionhillpropertydevelo-my.sharepoint.com","13.107.138.10","8075","US"
"2019-09-10 06:19:03","https://asiaticcarpets-my.sharepoint.com/:u:/g/personal/jeya_asiatic_co_uk/EVA1ZX5-w2pIh0pxR6x7RzwBDDurQ261lWjE42tp103ZFw?download=1&locale=en_AU","offline","malware_download","AUS|Gozi|VBS|zip","asiaticcarpets-my.sharepoint.com","13.107.136.10","8075","US"
"2019-09-10 06:19:03","https://asiaticcarpets-my.sharepoint.com/:u:/g/personal/jeya_asiatic_co_uk/EVA1ZX5-w2pIh0pxR6x7RzwBDDurQ261lWjE42tp103ZFw?download=1&locale=en_AU","offline","malware_download","AUS|Gozi|VBS|zip","asiaticcarpets-my.sharepoint.com","13.107.138.10","8075","US"
"2019-09-06 07:44:09","https://pazcomau-my.sharepoint.com/:u:/g/personal/fred_davi_baronforge_com_au/EbdlB1vOnENFspqlpBZI-0ABHSKT3nrEh-EIpetlpcb0FQ?download=1&language=au","offline","malware_download","AUS|Gozi|vbs|zip","pazcomau-my.sharepoint.com","13.107.136.10","8075","US"
"2019-09-06 07:44:09","https://pazcomau-my.sharepoint.com/:u:/g/personal/fred_davi_baronforge_com_au/EbdlB1vOnENFspqlpBZI-0ABHSKT3nrEh-EIpetlpcb0FQ?download=1&language=au","offline","malware_download","AUS|Gozi|vbs|zip","pazcomau-my.sharepoint.com","13.107.138.10","8075","US"
"2019-09-06 07:40:07","https://0414605256-my.sharepoint.com/:u:/g/personal/david_tranquilrenovations_com_au/EZkoV8JYbtlPs6plcRvv7c8Bkrv2yrYmELqnHaxBFFxlmw?download=1&company=Infinite_Electronics_International","offline","malware_download","CAN|Trickbot|VBS|zip","0414605256-my.sharepoint.com","13.107.136.10","8075","US"
"2019-09-06 07:40:07","https://0414605256-my.sharepoint.com/:u:/g/personal/david_tranquilrenovations_com_au/EZkoV8JYbtlPs6plcRvv7c8Bkrv2yrYmELqnHaxBFFxlmw?download=1&company=Infinite_Electronics_International","offline","malware_download","CAN|Trickbot|VBS|zip","0414605256-my.sharepoint.com","13.107.138.10","8075","US"
"2019-09-02 18:08:05","http://kusumo.web.id/wp-content/themes/twentynineteen/inc/2c.jpg","offline","malware_download","exe|Troldesh","kusumo.web.id","104.215.190.165","8075","SG"
"2019-09-02 17:51:14","http://kusumo.web.id/wp-content/themes/twentynineteen/inc/1c.jpg","offline","malware_download","exe|Troldesh","kusumo.web.id","104.215.190.165","8075","SG"
"2019-08-30 13:01:04","https://customerplus-my.sharepoint.com/:u:/g/personal/kirk_dobie_customerplus_co_uk/EcTI8pf3DjBDntwVqLiQx5wB89S1igmIJHg5IGPLcs_sYw?download=1&sage=gb&b=12","offline","malware_download","GBR|Gozi|vbs|zip","customerplus-my.sharepoint.com","13.107.136.10","8075","US"
"2019-08-30 13:01:04","https://customerplus-my.sharepoint.com/:u:/g/personal/kirk_dobie_customerplus_co_uk/EcTI8pf3DjBDntwVqLiQx5wB89S1igmIJHg5IGPLcs_sYw?download=1&sage=gb&b=12","offline","malware_download","GBR|Gozi|vbs|zip","customerplus-my.sharepoint.com","13.107.138.10","8075","US"
"2019-08-29 11:00:03","http://13.75.76.78/hqmb/cmd.exe","offline","malware_download","#DESKTOP-group|#md5:124a78c92b50af3bcfcba6daaae471db|#NanoCoreRAT","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-29 08:19:03","https://frcegroup-my.sharepoint.com/personal/shah_frce-group_co_uk/Documents/Xero.zip","offline","malware_download","AUS|Gozi|NZL|vbs|zip","frcegroup-my.sharepoint.com","13.107.136.10","8075","US"
"2019-08-29 08:19:03","https://frcegroup-my.sharepoint.com/personal/shah_frce-group_co_uk/Documents/Xero.zip","offline","malware_download","AUS|Gozi|NZL|vbs|zip","frcegroup-my.sharepoint.com","13.107.138.10","8075","US"
"2019-08-21 19:36:38","http://13.67.107.73/yzuv/kal.jpg","offline","malware_download","exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-21 19:36:20","http://13.67.107.73/yzuv/daka.jpg","offline","malware_download","exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-21 19:36:10","http://13.67.107.73/yzuv/210ri.exe","offline","malware_download","AgentTesla|exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-21 19:36:05","http://13.67.107.73/yzuv/chrome.exe","offline","malware_download","AgentTesla|exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-21 15:02:04","https://cappagh-my.sharepoint.com/:u:/g/personal/siobhain_cappagh_co_uk/EZSZppe2EFlAg2r-ajw_xegBmZCsfERfqIHjze97FPVjxQ?download=1","offline","malware_download","CAN|Trickbot|vbs|zip","cappagh-my.sharepoint.com","13.107.136.10","8075","US"
"2019-08-21 15:02:04","https://cappagh-my.sharepoint.com/:u:/g/personal/siobhain_cappagh_co_uk/EZSZppe2EFlAg2r-ajw_xegBmZCsfERfqIHjze97FPVjxQ?download=1","offline","malware_download","CAN|Trickbot|vbs|zip","cappagh-my.sharepoint.com","13.107.138.10","8075","US"
"2019-08-20 09:47:52","http://13.67.95.191/x86","offline","malware_download","elf","13.67.95.191","13.67.95.191","8075","SG"
"2019-08-20 09:47:49","http://13.67.95.191/arm7","offline","malware_download","elf","13.67.95.191","13.67.95.191","8075","SG"
"2019-08-20 09:47:45","http://13.67.95.191/arm6","offline","malware_download","elf","13.67.95.191","13.67.95.191","8075","SG"
"2019-08-20 09:47:42","http://13.67.95.191/arm5","offline","malware_download","elf","13.67.95.191","13.67.95.191","8075","SG"
"2019-08-20 09:47:11","http://13.67.95.191/arm4","offline","malware_download","elf","13.67.95.191","13.67.95.191","8075","SG"
"2019-08-20 09:47:08","http://13.67.95.191/mipsel","offline","malware_download","elf","13.67.95.191","13.67.95.191","8075","SG"
"2019-08-20 09:47:04","http://13.67.95.191/mips","offline","malware_download","elf","13.67.95.191","13.67.95.191","8075","SG"
"2019-08-15 17:23:06","http://40.89.172.209/bins/a.x86","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:23:04","http://40.89.172.209/bins/a.mpsl","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:23:03","http://40.89.172.209/bins/a.arm7","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:22:04","http://40.89.172.209/bins/a.arm5","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:22:02","http://40.89.172.209/bins/a.arm","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:21:02","http://40.89.172.209/bins/dstrtn.i686","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:20:13","http://40.89.172.209/bins/dstrtn.kill","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:20:11","http://40.89.172.209/bins/dstrtn.sh4","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:20:09","http://40.89.172.209/bins/dstrtn.ppc","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:20:03","http://40.89.172.209/bins/dstrtn.spc","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:19:12","http://40.89.172.209/bins/dstrtn.mpsl","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:19:10","http://40.89.172.209/bins/dstrtn.mips","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:19:08","http://40.89.172.209/bins/dstrtn.m68k","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:19:06","http://40.89.172.209/bins/dstrtn.arm7","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:19:04","http://40.89.172.209/bins/dstrtn.arm6","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:19:02","http://40.89.172.209/bins/dstrtn.arm5","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:18:07","http://40.89.172.209/bins/dstrtn.arc","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:18:05","http://40.89.172.209/bins/dstrtn.arm","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 17:18:03","http://40.89.172.209/bins/dstrtn.x86","offline","malware_download","elf|mirai","40.89.172.209","40.89.172.209","8075","FR"
"2019-08-15 09:24:04","http://13.67.107.73/yzuv/hstt.jpg","offline","malware_download","exe|KPOTStealer","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-15 08:53:06","http://13.67.107.73/yzuv/hst.jpg","offline","malware_download","exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-14 13:07:07","https://troopwebhost.blob.core.windows.net/troop114tallahassee/Hennfam_2018101861037770535.doc","offline","malware_download","doc","troopwebhost.blob.core.windows.net","20.60.62.4","8075","US"
"2019-08-14 13:07:04","http://downloads.medpak.com/downloads/fdb/db06jul2016.exe","offline","malware_download","exe","downloads.medpak.com","20.60.62.4","8075","US"
"2019-08-14 10:44:03","http://40.114.13.117/lmaoWTF/loligang.ppc","offline","malware_download","elf|mirai","40.114.13.117","40.114.13.117","8075","US"
"2019-08-14 09:59:16","http://40.114.13.117/lmaoWTF/loligang.m68k","offline","malware_download","elf|mirai","40.114.13.117","40.114.13.117","8075","US"
"2019-08-14 09:59:14","http://40.114.13.117/lmaoWTF/loligang.arm","offline","malware_download","elf|mirai","40.114.13.117","40.114.13.117","8075","US"
"2019-08-14 09:59:12","http://40.114.13.117/lmaoWTF/loligang.arm5","offline","malware_download","elf","40.114.13.117","40.114.13.117","8075","US"
"2019-08-14 09:59:10","http://40.114.13.117/lmaoWTF/loligang.sh4","offline","malware_download","elf","40.114.13.117","40.114.13.117","8075","US"
"2019-08-14 09:59:07","http://40.114.13.117/lmaoWTF/loligang.arm6","offline","malware_download","elf|mirai","40.114.13.117","40.114.13.117","8075","US"
"2019-08-14 09:59:05","http://40.114.13.117/lmaoWTF/loligang.arm7","offline","malware_download","elf|mirai","40.114.13.117","40.114.13.117","8075","US"
"2019-08-14 09:59:03","http://40.114.13.117/lmaoWTF/loligang.mips","offline","malware_download","elf|mirai","40.114.13.117","40.114.13.117","8075","US"
"2019-08-14 09:51:03","http://40.114.13.117/lmaoWTF/loligang.x86","offline","malware_download","elf|mirai","40.114.13.117","40.114.13.117","8075","US"
"2019-08-13 20:16:06","http://13.67.107.73/amtq/out-441441271.ps1","offline","malware_download","nanocore|ps1|rat","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-11 13:08:02","http://40.89.175.73/bins/a.mpsl","offline","malware_download","elf","40.89.175.73","40.89.175.73","8075","FR"
"2019-08-11 13:06:05","http://40.89.175.73/bins/distortion.kill","offline","malware_download","elf","40.89.175.73","40.89.175.73","8075","FR"
"2019-08-11 13:06:03","http://40.89.175.73/bins/distortion.mpsl","offline","malware_download","elf","40.89.175.73","40.89.175.73","8075","FR"
"2019-08-11 05:24:15","http://40.89.175.73/bins/a.arm7","offline","malware_download","elf","40.89.175.73","40.89.175.73","8075","FR"
"2019-08-11 05:24:13","http://40.89.175.73/bins/a.arm","offline","malware_download","elf","40.89.175.73","40.89.175.73","8075","FR"
"2019-08-11 05:24:11","http://40.89.175.73/bins/a.arm5","offline","malware_download","elf","40.89.175.73","40.89.175.73","8075","FR"
"2019-08-11 05:24:09","http://40.89.175.73/bins/distortion.x86","offline","malware_download","elf","40.89.175.73","40.89.175.73","8075","FR"
"2019-08-11 05:24:07","http://40.89.175.73/bins/a.x86","offline","malware_download","elf","40.89.175.73","40.89.175.73","8075","FR"
"2019-08-11 05:24:05","http://40.89.175.73/bins/distortion.m68k","offline","malware_download","elf|mirai","40.89.175.73","40.89.175.73","8075","FR"
"2019-08-11 05:24:04","http://40.89.175.73/bins/distortion.mips","offline","malware_download","elf|mirai","40.89.175.73","40.89.175.73","8075","FR"
"2019-08-11 05:24:02","http://40.89.175.73/bins/distortion.ppc","offline","malware_download","elf|mirai","40.89.175.73","40.89.175.73","8075","FR"
"2019-08-11 05:23:03","http://40.89.175.73/bins/distortion.sh4","offline","malware_download","elf|mirai","40.89.175.73","40.89.175.73","8075","FR"
"2019-08-11 04:24:05","http://40.89.175.73/bins/distortion.arm","offline","malware_download","elf|mirai","40.89.175.73","40.89.175.73","8075","FR"
"2019-08-11 04:24:03","http://40.89.175.73/bins/distortion.arm7","offline","malware_download","elf|mirai","40.89.175.73","40.89.175.73","8075","FR"
"2019-08-08 16:06:44","http://13.67.107.73/bnpl/update_Protected.exe","offline","malware_download","njrat","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-08 16:06:25","http://13.75.76.78/aptb/success.exe","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-08 16:06:21","http://13.75.76.78/aptb/printout.exe","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-08 16:06:17","http://13.75.76.78/aptb/out-1379808530.hta","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-08 16:06:15","http://13.75.76.78/aptb/dami.exe","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-08 16:06:11","http://13.75.76.78/aptb/crpoba.exe","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-08 16:06:06","http://13.75.76.78/aptb/crpSA.exe","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-08 12:16:06","http://13.67.107.73/bnpl/System_update_zone1.exe","offline","malware_download","exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-08 07:07:09","http://13.67.107.73/yzuv/Software.exe","offline","malware_download","exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-08 07:07:05","http://13.67.107.73/yzuv/dak.jpg","offline","malware_download","exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-08 00:07:09","http://13.75.76.78/aptb/printz.exe","offline","malware_download","exe","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-07 19:28:12","http://13.75.76.78/stfx/COMPUTER-FAX.PDF2.exe","offline","malware_download","exe","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-07 17:08:03","http://13.75.76.78/rhnq/readerdc_en_ka_cra_install.exe","offline","malware_download","exe","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-07 16:24:02","http://13.75.76.78/rhnq/remhta.hta","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-07 16:23:25","http://13.75.76.78/rhnq/remps1.ps1","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-07 16:23:22","http://13.75.76.78/rhnq/remcos_agent1002_Protected.exe","offline","malware_download","RemcosRAT","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-07 16:23:19","http://13.75.76.78/rhnq/qusps1.ps1","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-07 16:23:17","http://13.75.76.78/rhnq/qushta.hta","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-07 16:23:15","http://13.75.76.78/rhnq/qus1003_Protected.exe","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-07 16:23:11","http://13.75.76.78/rhnq/nanps1.ps1","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-07 16:23:08","http://13.75.76.78/rhnq/nanhta.hta","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-07 16:23:06","http://13.75.76.78/rhnq/nandns1004_Protected.exe","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 11:55:03","http://23.101.170.52/lmaoWTF/loligang.arm5","offline","malware_download","elf|mirai","23.101.170.52","23.101.170.52","8075","US"
"2019-08-06 11:55:02","http://23.101.170.52/lmaoWTF/loligang.m68k","offline","malware_download","elf|mirai","23.101.170.52","23.101.170.52","8075","US"
"2019-08-06 11:54:02","http://23.101.170.52/lmaoWTF/loligang.ppc","offline","malware_download","elf|mirai","23.101.170.52","23.101.170.52","8075","US"
"2019-08-06 11:35:03","http://23.101.170.52/lmaoWTF/loligang.arm6","offline","malware_download","elf|mirai","23.101.170.52","23.101.170.52","8075","US"
"2019-08-06 09:11:08","http://23.101.170.52/lmaoWTF/loligang.arm7","offline","malware_download","elf|mirai","23.101.170.52","23.101.170.52","8075","US"
"2019-08-06 09:10:24","http://23.101.170.52/lmaoWTF/loligang.arm","offline","malware_download","elf|mirai","23.101.170.52","23.101.170.52","8075","US"
"2019-08-06 09:10:13","http://23.101.170.52/lmaoWTF/loligang.mips","offline","malware_download","elf|mirai","23.101.170.52","23.101.170.52","8075","US"
"2019-08-06 08:47:02","http://23.101.170.52/lmaoWTF/loligang.x86","offline","malware_download","elf|mirai","23.101.170.52","23.101.170.52","8075","US"
"2019-08-06 06:10:07","http://13.67.107.73/yzuv/M0ZIlla.exe","offline","malware_download","exe|HawkEye","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-06 05:58:44","http://13.75.76.78/hqmb/TEST1.exe","offline","malware_download","NanoCore","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:58:42","http://13.75.76.78/andd/out-84354708.ps1","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:58:39","http://13.75.76.78/cjjz/out-1154644886.ps1","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:58:36","http://13.75.76.78/zycz/temm.ps1","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:58:33","http://13.75.76.78/zycz/out-1784277829.ps1","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:58:28","http://13.75.76.78/zycz/out-1771186496.hta","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:58:26","http://13.75.76.78/zycz/out-1756476887.hta","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:58:25","http://13.75.76.78/zycz/out-1444424296.ps1","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:58:18","http://13.75.76.78/zycz/out-1377699218.ps1","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:58:09","http://13.75.76.78/zycz/out-1039179475.ps1","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:58:01","http://13.75.76.78/zycz/out-611133081.hta","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:57:59","http://13.75.76.78/zycz/out-257455466.ps1","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:57:51","http://13.75.76.78/zycz/out-151564620.ps1","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:57:42","http://13.75.76.78/zycz/out-2198193.ps1","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:57:32","http://13.75.76.78/zycz/20007.ps1","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:57:05","http://13.75.76.78/zycz/0383.ps1","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:56:41","http://13.75.76.78/stfx/out-454148433.hta","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:56:39","http://13.75.76.78/stfx/out-188262491.hta","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:56:37","http://13.75.76.78/stfx/out-35962009.hta","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:56:35","http://13.75.76.78/stfx/crpdamian.exe","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:56:15","http://13.75.76.78/stfx/OBA.exe","offline","malware_download","HawkEye","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:48:12","http://13.75.76.78/hqmb/nana.exe","offline","malware_download","nanocore","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 05:09:09","http://13.75.76.78/hqmb/djaz.exe","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 03:52:06","http://13.75.76.78/zycz/sbsnss.exe","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-06 03:48:15","http://13.75.76.78/cjjz/fud101.exe","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-05 22:37:23","http://13.75.76.78/kzqe/svchost.exe","offline","malware_download","exe","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-05 22:37:19","http://13.75.76.78/kzqe/telex2.exe","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-05 22:37:09","http://13.75.76.78/kzqe/newworka.exe","offline","malware_download","AveMariaRAT","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-05 22:36:38","http://13.75.76.78/kzqe/adaeze.exe","offline","malware_download","AveMariaRAT","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-05 22:36:06","http://13.75.76.78/kzqe/Windowsupdate.exe","offline","malware_download","","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-05 22:19:08","http://13.75.76.78/kzqe/taskhost.exe","offline","malware_download","FormBook","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-05 15:29:53","http://13.75.76.78/andd/2018_Tax_Document.zip","offline","malware_download","zip","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-05 15:29:48","http://13.75.76.78/andd/Host_output39E0C00.exe","offline","malware_download","exe","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-05 15:29:08","http://13.75.76.78/stfx/COMPUTER-AX.PDF.exe","offline","malware_download","AveMariaRAT|exe","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-05 15:24:11","http://13.75.76.78/stfx/document.exe","offline","malware_download","exe|HawkEye","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-05 15:24:02","http://13.75.76.78/stfx/COMPUTER-FAX.PDF.rtf.zip","offline","malware_download","zip","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-05 15:20:04","http://13.75.76.78/stfx/xwre.exe","offline","malware_download","exe","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-05 15:00:12","http://13.75.76.78/stfx/COMPUTER-FAX.PDF.exe","offline","malware_download","exe","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-05 14:40:04","http://13.75.76.78/andd/Michael_Personal_Profile_Financial_Statement.pdf.zip","offline","malware_download","zip","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-05 14:32:14","http://13.75.76.78/andd/Host_outputF07F1DF.exe","offline","malware_download","exe","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-05 12:24:07","http://13.75.76.78/hqmb/test%20run.exe","offline","malware_download","exe","13.75.76.78","13.75.76.78","8075","HK"
"2019-08-04 19:12:15","http://13.67.107.73/yzuv/out-428343732.ps1","offline","malware_download","ps1","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-04 19:12:12","http://13.67.107.73/yzuv/Windows.exe","offline","malware_download","AgentTesla|exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-04 19:12:09","http://13.67.107.73/yzuv/Mozilla.exe","offline","malware_download","AgentTesla|exe|HawkEye","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-04 19:12:04","http://13.67.107.73/yzuv/83437.ps1","offline","malware_download","ps1","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-04 19:11:05","http://13.67.107.73/yzuv/out-548884873.ps1","offline","malware_download","ps1","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-04 04:40:02","http://40.89.161.108/lmaoWTF/loligang.x86","offline","malware_download","elf|mirai","40.89.161.108","40.89.161.108","8075","FR"
"2019-08-04 04:39:11","http://40.89.161.108/lmaoWTF/loligang.ppc","offline","malware_download","elf|mirai","40.89.161.108","40.89.161.108","8075","FR"
"2019-08-04 04:39:09","http://40.89.161.108/lmaoWTF/loligang.spc","offline","malware_download","elf|mirai","40.89.161.108","40.89.161.108","8075","FR"
"2019-08-04 04:39:07","http://40.89.161.108/lmaoWTF/loligang.sh4","offline","malware_download","elf|mirai","40.89.161.108","40.89.161.108","8075","FR"
"2019-08-04 04:39:06","http://40.89.161.108/lmaoWTF/loligang.mpsl","offline","malware_download","elf|mirai","40.89.161.108","40.89.161.108","8075","FR"
"2019-08-04 04:39:04","http://40.89.161.108/lmaoWTF/loligang.mips","offline","malware_download","elf|mirai","40.89.161.108","40.89.161.108","8075","FR"
"2019-08-04 04:39:02","http://40.89.161.108/lmaoWTF/loligang.m68k","offline","malware_download","elf|mirai","40.89.161.108","40.89.161.108","8075","FR"
"2019-08-04 04:38:08","http://40.89.161.108/lmaoWTF/loligang.arm7","offline","malware_download","elf|mirai","40.89.161.108","40.89.161.108","8075","FR"
"2019-08-04 04:38:06","http://40.89.161.108/lmaoWTF/loligang.arm6","offline","malware_download","elf|mirai","40.89.161.108","40.89.161.108","8075","FR"
"2019-08-04 04:38:04","http://40.89.161.108/lmaoWTF/loligang.arm5","offline","malware_download","elf|mirai","40.89.161.108","40.89.161.108","8075","FR"
"2019-08-04 04:38:02","http://40.89.161.108/lmaoWTF/loligang.arm","offline","malware_download","elf|mirai","40.89.161.108","40.89.161.108","8075","FR"
"2019-08-03 23:17:03","http://52.163.201.250/id/tspy_spy_a.exe","offline","malware_download","exe","52.163.201.250","52.163.201.250","8075","SG"
"2019-08-03 21:27:03","http://52.163.201.250/id/invoice.exe","offline","malware_download","exe","52.163.201.250","52.163.201.250","8075","SG"
"2019-08-03 21:05:12","http://138.91.123.160/lmaoWTF/loligang.sh4","offline","malware_download","elf|mirai","138.91.123.160","138.91.123.160","8075","US"
"2019-08-03 21:05:07","http://138.91.123.160/lmaoWTF/loligang.arm5","offline","malware_download","elf|mirai","138.91.123.160","138.91.123.160","8075","US"
"2019-08-03 21:05:03","http://138.91.123.160/lmaoWTF/loligang.arm","offline","malware_download","elf|mirai","138.91.123.160","138.91.123.160","8075","US"
"2019-08-03 21:00:10","http://138.91.123.160/lmaoWTF/loligang.ppc","offline","malware_download","elf|mirai","138.91.123.160","138.91.123.160","8075","US"
"2019-08-03 21:00:08","http://138.91.123.160/lmaoWTF/loligang.arm6","offline","malware_download","elf|mirai","138.91.123.160","138.91.123.160","8075","US"
"2019-08-03 21:00:06","http://138.91.123.160/lmaoWTF/loligang.mips","offline","malware_download","elf|mirai","138.91.123.160","138.91.123.160","8075","US"
"2019-08-03 21:00:04","http://138.91.123.160/lmaoWTF/loligang.arm7","offline","malware_download","elf|mirai","138.91.123.160","138.91.123.160","8075","US"
"2019-08-03 20:59:02","http://138.91.123.160/lmaoWTF/loligang.m68k","offline","malware_download","elf|mirai","138.91.123.160","138.91.123.160","8075","US"
"2019-08-03 17:22:11","http://138.91.123.160/lmaoWTF/loligang.x86","offline","malware_download","elf|mirai","138.91.123.160","138.91.123.160","8075","US"
"2019-08-03 04:08:03","http://zopro.duckdns.org/CbsMsg.zip","offline","malware_download","zip","zopro.duckdns.org","172.201.160.25","8075","NL"
"2019-08-02 18:12:03","http://13.67.107.73/bnpl/systemupdate_Protected.exe","offline","malware_download","exe|njrat","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-02 18:07:13","http://13.67.107.73/bnpl/binary.exe","offline","malware_download","exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-02 18:07:08","http://13.67.107.73/bnpl/System_update_zone.exe","offline","malware_download","exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-02 18:07:03","http://13.67.107.73/bnpl/systemupdate_security.exe","offline","malware_download","exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-02 15:41:10","http://13.67.107.73/bnpl/systemupdate_Protected1.exe","offline","malware_download","exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-02 13:33:03","https://dpack365-my.sharepoint.com/:u:/g/personal/accounts_dpack_co_uk/EcypMiQEuIVGlp3Pd29y2hwB9hT9t__7pCG45vY83NneSg?download=1","offline","malware_download","GBR|Gozi|vbs|zip","dpack365-my.sharepoint.com","13.107.136.10","8075","US"
"2019-08-02 13:33:03","https://dpack365-my.sharepoint.com/:u:/g/personal/accounts_dpack_co_uk/EcypMiQEuIVGlp3Pd29y2hwB9hT9t__7pCG45vY83NneSg?download=1","offline","malware_download","GBR|Gozi|vbs|zip","dpack365-my.sharepoint.com","13.107.138.10","8075","US"
"2019-08-01 12:32:07","http://13.67.107.73/amtq/Server.exe","offline","malware_download","exe|NanoCore","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-01 07:30:50","http://13.67.107.73/bfxq/promo.exe","offline","malware_download","AZORult|exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-01 07:30:34","http://13.67.107.73/bfxq/green_promo.exe","offline","malware_download","AZORult|exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-01 07:30:24","http://13.67.107.73/bfxq/ekatpromo.exe","offline","malware_download","AZORult|exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-01 07:30:10","http://13.67.107.73/bfxq/LegacyCleaner.exe","offline","malware_download","exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-08-01 07:30:04","http://13.67.107.73/bfxq/regedit_true.exe","offline","malware_download","exe","13.67.107.73","13.67.107.73","8075","SG"
"2019-07-23 13:57:06","https://tewhareruruhauomeri-my.sharepoint.com/:u:/g/personal/accounts_tewhare_org_nz/EbD4VssEFNdMrHhckki8iIEBkDXe6wdy-Ye11TAu_fHTOA?download=1","offline","malware_download","GBR|Gozi|vbs|zip","tewhareruruhauomeri-my.sharepoint.com","52.107.225.8","8075","DE"
"2019-07-23 13:57:06","https://tewhareruruhauomeri-my.sharepoint.com/:u:/g/personal/accounts_tewhare_org_nz/EbD4VssEFNdMrHhckki8iIEBkDXe6wdy-Ye11TAu_fHTOA?download=1","offline","malware_download","GBR|Gozi|vbs|zip","tewhareruruhauomeri-my.sharepoint.com","52.107.243.195","8075","DE"
"2019-07-23 13:57:06","https://tewhareruruhauomeri-my.sharepoint.com/:u:/g/personal/accounts_tewhare_org_nz/EbD4VssEFNdMrHhckki8iIEBkDXe6wdy-Ye11TAu_fHTOA?download=1","offline","malware_download","GBR|Gozi|vbs|zip","tewhareruruhauomeri-my.sharepoint.com","52.107.243.216","8075","DE"
"2019-07-23 13:57:06","https://tewhareruruhauomeri-my.sharepoint.com/:u:/g/personal/accounts_tewhare_org_nz/EbD4VssEFNdMrHhckki8iIEBkDXe6wdy-Ye11TAu_fHTOA?download=1","offline","malware_download","GBR|Gozi|vbs|zip","tewhareruruhauomeri-my.sharepoint.com","52.107.243.70","8075","DE"
"2019-07-23 13:57:06","https://tewhareruruhauomeri-my.sharepoint.com/:u:/g/personal/accounts_tewhare_org_nz/EbD4VssEFNdMrHhckki8iIEBkDXe6wdy-Ye11TAu_fHTOA?download=1","offline","malware_download","GBR|Gozi|vbs|zip","tewhareruruhauomeri-my.sharepoint.com","52.107.243.84","8075","DE"
"2019-07-23 13:57:06","https://tewhareruruhauomeri-my.sharepoint.com/:u:/g/personal/accounts_tewhare_org_nz/EbD4VssEFNdMrHhckki8iIEBkDXe6wdy-Ye11TAu_fHTOA?download=1","offline","malware_download","GBR|Gozi|vbs|zip","tewhareruruhauomeri-my.sharepoint.com","52.107.243.88","8075","DE"
"2019-07-23 13:57:06","https://tewhareruruhauomeri-my.sharepoint.com/:u:/g/personal/accounts_tewhare_org_nz/EbD4VssEFNdMrHhckki8iIEBkDXe6wdy-Ye11TAu_fHTOA?download=1","offline","malware_download","GBR|Gozi|vbs|zip","tewhareruruhauomeri-my.sharepoint.com","52.107.243.91","8075","DE"
"2019-07-23 13:57:06","https://tewhareruruhauomeri-my.sharepoint.com/:u:/g/personal/accounts_tewhare_org_nz/EbD4VssEFNdMrHhckki8iIEBkDXe6wdy-Ye11TAu_fHTOA?download=1","offline","malware_download","GBR|Gozi|vbs|zip","tewhareruruhauomeri-my.sharepoint.com","52.107.243.94","8075","DE"
"2019-07-23 08:14:10","https://housemart-my.sharepoint.com/:u:/g/personal/craig_housemart_co_nz/EYIpUus9lf1Jg_i0vUtIBSQBmtfdWPW6Z5-x6hXvDG_skQ?download=1","offline","malware_download","AUS|Gozi|NZL|VBS|zip","housemart-my.sharepoint.com","13.107.136.10","8075","US"
"2019-07-23 08:14:10","https://housemart-my.sharepoint.com/:u:/g/personal/craig_housemart_co_nz/EYIpUus9lf1Jg_i0vUtIBSQBmtfdWPW6Z5-x6hXvDG_skQ?download=1","offline","malware_download","AUS|Gozi|NZL|VBS|zip","housemart-my.sharepoint.com","13.107.138.10","8075","US"
"2019-07-23 08:14:08","https://duxnz-my.sharepoint.com/:u:/g/personal/admin_duxfinancial_co_nz/EaDgQJOJAnNKrSo3GWNB1iABr_HyU9PPS0IckUkYiXy62A?download=1","offline","malware_download","AUS|Gozi|NZL|VBS|zip","duxnz-my.sharepoint.com","13.107.136.10","8075","US"
"2019-07-23 08:14:08","https://duxnz-my.sharepoint.com/:u:/g/personal/admin_duxfinancial_co_nz/EaDgQJOJAnNKrSo3GWNB1iABr_HyU9PPS0IckUkYiXy62A?download=1","offline","malware_download","AUS|Gozi|NZL|VBS|zip","duxnz-my.sharepoint.com","13.107.138.10","8075","US"
"2019-07-16 21:03:03","https://lasauvegardedunord-my.sharepoint.com/:u:/g/personal/jbbourgeois_lasauvegardedunord_fr/EdUbJv7fMAFKhmyo3FXbx58BCpwoRVHOxTKZxf9vt_ZA1Q?download=1","offline","malware_download","GBR|Gozi|vbs|zip","lasauvegardedunord-my.sharepoint.com","13.107.136.10","8075","US"
"2019-07-16 21:03:03","https://lasauvegardedunord-my.sharepoint.com/:u:/g/personal/jbbourgeois_lasauvegardedunord_fr/EdUbJv7fMAFKhmyo3FXbx58BCpwoRVHOxTKZxf9vt_ZA1Q?download=1","offline","malware_download","GBR|Gozi|vbs|zip","lasauvegardedunord-my.sharepoint.com","13.107.138.10","8075","US"
"2019-07-16 20:32:04","https://otagohospice-my.sharepoint.com/:u:/g/personal/glenda_hall_otagohospice_co_nz/EQeMcJS1jmtMpJRv1LOpBYcBAw3fJ51zatOqkxNZSKrVqg?download=1","offline","malware_download","CAN|Trickbot|vbs|zip","otagohospice-my.sharepoint.com","13.107.136.10","8075","US"
"2019-07-16 20:32:04","https://otagohospice-my.sharepoint.com/:u:/g/personal/glenda_hall_otagohospice_co_nz/EQeMcJS1jmtMpJRv1LOpBYcBAw3fJ51zatOqkxNZSKrVqg?download=1","offline","malware_download","CAN|Trickbot|vbs|zip","otagohospice-my.sharepoint.com","13.107.138.10","8075","US"
"2019-07-04 09:59:05","https://starkeyhearingtechnologies-my.sharepoint.com/:u:/g/personal/lemmott_ihear_com_au/EWawUgwzkU5Ktggtmfqxid0B0cHCZpQCrhtWglLRvKKjKA?download=1","offline","malware_download","GBR|Gozi|VBS|zip","starkeyhearingtechnologies-my.sharepoint.com","52.107.225.1","8075","DE"
"2019-07-04 09:59:05","https://starkeyhearingtechnologies-my.sharepoint.com/:u:/g/personal/lemmott_ihear_com_au/EWawUgwzkU5Ktggtmfqxid0B0cHCZpQCrhtWglLRvKKjKA?download=1","offline","malware_download","GBR|Gozi|VBS|zip","starkeyhearingtechnologies-my.sharepoint.com","52.107.225.8","8075","DE"
"2019-07-04 09:59:05","https://starkeyhearingtechnologies-my.sharepoint.com/:u:/g/personal/lemmott_ihear_com_au/EWawUgwzkU5Ktggtmfqxid0B0cHCZpQCrhtWglLRvKKjKA?download=1","offline","malware_download","GBR|Gozi|VBS|zip","starkeyhearingtechnologies-my.sharepoint.com","52.107.243.215","8075","DE"
"2019-07-04 09:59:05","https://starkeyhearingtechnologies-my.sharepoint.com/:u:/g/personal/lemmott_ihear_com_au/EWawUgwzkU5Ktggtmfqxid0B0cHCZpQCrhtWglLRvKKjKA?download=1","offline","malware_download","GBR|Gozi|VBS|zip","starkeyhearingtechnologies-my.sharepoint.com","52.107.243.68","8075","DE"
"2019-07-04 09:59:05","https://starkeyhearingtechnologies-my.sharepoint.com/:u:/g/personal/lemmott_ihear_com_au/EWawUgwzkU5Ktggtmfqxid0B0cHCZpQCrhtWglLRvKKjKA?download=1","offline","malware_download","GBR|Gozi|VBS|zip","starkeyhearingtechnologies-my.sharepoint.com","52.107.243.71","8075","DE"
"2019-07-04 09:59:05","https://starkeyhearingtechnologies-my.sharepoint.com/:u:/g/personal/lemmott_ihear_com_au/EWawUgwzkU5Ktggtmfqxid0B0cHCZpQCrhtWglLRvKKjKA?download=1","offline","malware_download","GBR|Gozi|VBS|zip","starkeyhearingtechnologies-my.sharepoint.com","52.107.243.74","8075","DE"
"2019-07-04 09:59:05","https://starkeyhearingtechnologies-my.sharepoint.com/:u:/g/personal/lemmott_ihear_com_au/EWawUgwzkU5Ktggtmfqxid0B0cHCZpQCrhtWglLRvKKjKA?download=1","offline","malware_download","GBR|Gozi|VBS|zip","starkeyhearingtechnologies-my.sharepoint.com","52.107.243.75","8075","DE"
"2019-07-04 09:59:05","https://starkeyhearingtechnologies-my.sharepoint.com/:u:/g/personal/lemmott_ihear_com_au/EWawUgwzkU5Ktggtmfqxid0B0cHCZpQCrhtWglLRvKKjKA?download=1","offline","malware_download","GBR|Gozi|VBS|zip","starkeyhearingtechnologies-my.sharepoint.com","52.107.243.84","8075","DE"
"2019-07-04 09:56:06","https://ottowayengineeringptyltd-my.sharepoint.com/:u:/g/personal/david_evans_ferretti-international_com_au/EZFnR25EVABJthUXLuEZTqcBPqXyJunSxf2TYhqEOGXiQg?download=1","offline","malware_download","GBR|Gozi|VBS|zip","ottowayengineeringptyltd-my.sharepoint.com","13.107.136.10","8075","US"
"2019-07-04 09:56:06","https://ottowayengineeringptyltd-my.sharepoint.com/:u:/g/personal/david_evans_ferretti-international_com_au/EZFnR25EVABJthUXLuEZTqcBPqXyJunSxf2TYhqEOGXiQg?download=1","offline","malware_download","GBR|Gozi|VBS|zip","ottowayengineeringptyltd-my.sharepoint.com","13.107.138.10","8075","US"
"2019-07-03 08:35:05","https://pulsemarkets-my.sharepoint.com/:u:/g/personal/ailiadis_pulsemarkets_com_au/EftogfldoVJBmkyPNQRy6XkBhbdVxL4i0WsF43UZYX9eoA?download=1","offline","malware_download","AUS|Gozi|NZL|VBS|zip","pulsemarkets-my.sharepoint.com","13.107.136.10","8075","US"
"2019-07-03 08:35:05","https://pulsemarkets-my.sharepoint.com/:u:/g/personal/ailiadis_pulsemarkets_com_au/EftogfldoVJBmkyPNQRy6XkBhbdVxL4i0WsF43UZYX9eoA?download=1","offline","malware_download","AUS|Gozi|NZL|VBS|zip","pulsemarkets-my.sharepoint.com","13.107.138.10","8075","US"
"2019-06-27 18:13:03","https://pblnz-my.sharepoint.com/:u:/g/personal/stuart_thompson_gxh_co_nz/ETFlSFOQEjxLtb5pTpzkWw0BKMkCyGJcjKkVlW_PN9_kyw?download=1","offline","malware_download","Gozi|NZL|VBS|zip","pblnz-my.sharepoint.com","52.107.225.8","8075","DE"
"2019-06-27 18:13:03","https://pblnz-my.sharepoint.com/:u:/g/personal/stuart_thompson_gxh_co_nz/ETFlSFOQEjxLtb5pTpzkWw0BKMkCyGJcjKkVlW_PN9_kyw?download=1","offline","malware_download","Gozi|NZL|VBS|zip","pblnz-my.sharepoint.com","52.107.243.192","8075","DE"
"2019-06-27 18:13:03","https://pblnz-my.sharepoint.com/:u:/g/personal/stuart_thompson_gxh_co_nz/ETFlSFOQEjxLtb5pTpzkWw0BKMkCyGJcjKkVlW_PN9_kyw?download=1","offline","malware_download","Gozi|NZL|VBS|zip","pblnz-my.sharepoint.com","52.107.243.217","8075","DE"
"2019-06-27 18:13:03","https://pblnz-my.sharepoint.com/:u:/g/personal/stuart_thompson_gxh_co_nz/ETFlSFOQEjxLtb5pTpzkWw0BKMkCyGJcjKkVlW_PN9_kyw?download=1","offline","malware_download","Gozi|NZL|VBS|zip","pblnz-my.sharepoint.com","52.107.243.72","8075","DE"
"2019-06-27 18:13:03","https://pblnz-my.sharepoint.com/:u:/g/personal/stuart_thompson_gxh_co_nz/ETFlSFOQEjxLtb5pTpzkWw0BKMkCyGJcjKkVlW_PN9_kyw?download=1","offline","malware_download","Gozi|NZL|VBS|zip","pblnz-my.sharepoint.com","52.107.243.74","8075","DE"
"2019-06-27 18:13:03","https://pblnz-my.sharepoint.com/:u:/g/personal/stuart_thompson_gxh_co_nz/ETFlSFOQEjxLtb5pTpzkWw0BKMkCyGJcjKkVlW_PN9_kyw?download=1","offline","malware_download","Gozi|NZL|VBS|zip","pblnz-my.sharepoint.com","52.107.243.75","8075","DE"
"2019-06-27 18:13:03","https://pblnz-my.sharepoint.com/:u:/g/personal/stuart_thompson_gxh_co_nz/ETFlSFOQEjxLtb5pTpzkWw0BKMkCyGJcjKkVlW_PN9_kyw?download=1","offline","malware_download","Gozi|NZL|VBS|zip","pblnz-my.sharepoint.com","52.107.243.76","8075","DE"
"2019-06-27 18:13:03","https://pblnz-my.sharepoint.com/:u:/g/personal/stuart_thompson_gxh_co_nz/ETFlSFOQEjxLtb5pTpzkWw0BKMkCyGJcjKkVlW_PN9_kyw?download=1","offline","malware_download","Gozi|NZL|VBS|zip","pblnz-my.sharepoint.com","52.107.243.85","8075","DE"
"2019-06-20 11:08:06","https://folder.nvfms.org/invoice.php","offline","malware_download","","folder.nvfms.org","23.101.123.81","8075","US"
"2019-06-18 16:07:03","http://104.214.58.211/file.exe","offline","malware_download","exe|NanoCore|RAT|RemcosRAT","104.214.58.211","104.214.58.211","8075","US"
"2019-06-14 07:50:07","http://zopro.duckdns.org/cbsmsg1.zip","offline","malware_download","zip","zopro.duckdns.org","172.201.160.25","8075","NL"
"2019-05-29 22:12:11","http://tncnet.com/images/yh050r_w6ser-9083/","offline","malware_download","emotet|epoch2|exe|Heodo","tncnet.com","52.226.18.39","8075","US"
"2019-05-29 13:43:07","https://coretechnilogypartners-my.sharepoint.com/:u:/g/personal/georgiaf_coretp_com_au/EY0DMJbOopNPqs0YmU-HX44BnAsKpI2_fHRydGObWXL4bA?download=1","offline","malware_download","GBR|Gozi|vbs|zip","coretechnilogypartners-my.sharepoint.com","13.107.136.10","8075","US"
"2019-05-29 13:43:07","https://coretechnilogypartners-my.sharepoint.com/:u:/g/personal/georgiaf_coretp_com_au/EY0DMJbOopNPqs0YmU-HX44BnAsKpI2_fHRydGObWXL4bA?download=1","offline","malware_download","GBR|Gozi|vbs|zip","coretechnilogypartners-my.sharepoint.com","13.107.138.10","8075","US"
"2019-05-28 13:32:03","http://lightlab.mohawkgroup.com/wp-admin/fs50vz-mylh5-maetkj/","offline","malware_download","doc|emotet|epoch2|Heodo","lightlab.mohawkgroup.com","13.92.94.20","8075","US"
"2019-05-23 10:07:03","http://bookntravel.pk/cgi-bin/o3vhc-2c8imr-vecux/","offline","malware_download","doc|emotet|epoch2|Heodo","bookntravel.pk","20.108.89.240","8075","GB"
"2019-05-20 20:58:14","http://mickreevesmodels.co.uk/micks_chat/INC/KfNJTKdmSYiueWhbqeYVzigbOaUj/","offline","malware_download","doc|Emotet|epoch2|Heodo","mickreevesmodels.co.uk","20.3.34.31","8075","US"
"2019-05-20 01:18:23","http://40.117.63.160/wget","offline","malware_download","bashlite|elf|gafgyt","40.117.63.160","40.117.63.160","8075","US"
"2019-05-20 01:18:19","http://40.117.63.160/bash","offline","malware_download","bashlite|elf|gafgyt","40.117.63.160","40.117.63.160","8075","US"
"2019-05-20 01:18:17","http://40.117.63.160/apache2","offline","malware_download","bashlite|elf|gafgyt","40.117.63.160","40.117.63.160","8075","US"
"2019-05-20 01:18:16","http://40.117.63.160/sh","offline","malware_download","bashlite|elf|gafgyt","40.117.63.160","40.117.63.160","8075","US"
"2019-05-20 01:18:14","http://40.117.63.160/pftp","offline","malware_download","bashlite|elf|gafgyt","40.117.63.160","40.117.63.160","8075","US"
"2019-05-20 01:18:13","http://40.117.63.160/ftp","offline","malware_download","bashlite|elf|gafgyt","40.117.63.160","40.117.63.160","8075","US"
"2019-05-20 01:18:11","http://40.117.63.160/nut","offline","malware_download","bashlite|elf|gafgyt","40.117.63.160","40.117.63.160","8075","US"
"2019-05-20 01:18:10","http://40.117.63.160/openssh","offline","malware_download","bashlite|elf|gafgyt","40.117.63.160","40.117.63.160","8075","US"
"2019-05-20 01:18:08","http://40.117.63.160/tftp","offline","malware_download","bashlite|elf|gafgyt","40.117.63.160","40.117.63.160","8075","US"
"2019-05-20 01:11:06","http://40.117.63.160/ntpd","offline","malware_download","bashlite|elf|gafgyt","40.117.63.160","40.117.63.160","8075","US"
"2019-05-18 05:57:30","http://168.62.61.200/yakuza.x86","offline","malware_download","bashlite|elf|gafgyt","168.62.61.200","168.62.61.200","8075","US"
"2019-05-18 05:57:29","http://168.62.61.200/yakuza.arm4","offline","malware_download","bashlite|elf|gafgyt","168.62.61.200","168.62.61.200","8075","US"
"2019-05-18 05:57:27","http://168.62.61.200/yakuza.sh4","offline","malware_download","bashlite|elf|gafgyt","168.62.61.200","168.62.61.200","8075","US"
"2019-05-18 05:57:25","http://168.62.61.200/yakuza.m68k","offline","malware_download","bashlite|elf|gafgyt","168.62.61.200","168.62.61.200","8075","US"
"2019-05-18 05:57:22","http://168.62.61.200/yakuza.i586","offline","malware_download","bashlite|elf|gafgyt","168.62.61.200","168.62.61.200","8075","US"
"2019-05-18 05:57:19","http://168.62.61.200/yakuza.arm6","offline","malware_download","bashlite|elf|gafgyt","168.62.61.200","168.62.61.200","8075","US"
"2019-05-18 05:57:15","http://168.62.61.200/yakuza.mips","offline","malware_download","bashlite|elf|gafgyt","168.62.61.200","168.62.61.200","8075","US"
"2019-05-18 05:57:13","http://168.62.61.200/yakuza.ppc","offline","malware_download","bashlite|elf|gafgyt","168.62.61.200","168.62.61.200","8075","US"
"2019-05-18 05:57:09","http://168.62.61.200/yakuza.mpsl","offline","malware_download","bashlite|elf|gafgyt","168.62.61.200","168.62.61.200","8075","US"
"2019-05-18 05:57:05","http://168.62.61.200/yakuza.x32","offline","malware_download","bashlite|elf|gafgyt","168.62.61.200","168.62.61.200","8075","US"
"2019-05-16 07:56:07","https://johoco2029-my.sharepoint.com/:u:/g/personal/shelley_willmore_hickorys_co_uk/EQvpikTw1VhJszHGoyAqKh8Bec1YqJCVjY9z7rNXx-X1ew?download=1","offline","malware_download","AUS|Gozi|vbs|zip","johoco2029-my.sharepoint.com","13.107.136.10","8075","US"
"2019-05-16 07:56:07","https://johoco2029-my.sharepoint.com/:u:/g/personal/shelley_willmore_hickorys_co_uk/EQvpikTw1VhJszHGoyAqKh8Bec1YqJCVjY9z7rNXx-X1ew?download=1","offline","malware_download","AUS|Gozi|vbs|zip","johoco2029-my.sharepoint.com","13.107.138.10","8075","US"
"2019-05-10 14:23:12","http://23.101.6.109/malwaresample4-28.exe","offline","malware_download","exe","23.101.6.109","23.101.6.109","8075","HK"
"2019-05-10 14:18:16","http://23.101.6.109/malwaresample4-26.exe","offline","malware_download","exe","23.101.6.109","23.101.6.109","8075","HK"
"2019-05-10 12:55:51","http://23.101.6.109/malwaresample4-22.exe","offline","malware_download","exe","23.101.6.109","23.101.6.109","8075","HK"
"2019-05-10 11:54:14","http://23.101.6.109/malwaresample4-21.exe","offline","malware_download","exe","23.101.6.109","23.101.6.109","8075","HK"
"2019-05-05 17:14:07","http://40.68.153.230/mal2/fabdade5b17d7c8b4c05d29d544c3da9c54902b744e769a2d2147c91eb49260e_idHvfjVI1P.bin","offline","malware_download","exe|NanoCore","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 17:14:03","http://40.68.153.230/mal2/c954c779dce4e404431b1590bd4633daa94e3c7c07b27394a15bda784c071c03_DPnLPQ6iUQ.bin","offline","malware_download","exe|NanoCore","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 17:10:03","http://40.68.153.230/mal2/c3453c92b81203b093cfa8a26b9050bd51391554c4bbdee04059623e4c0e7e87_yQNExQKAHY.bin","offline","malware_download","exe","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 15:44:03","http://40.68.153.230/mal/cbcbb25bf429bcbf62bfd52318955f38a14057b14554b388fc59ceeb0a07177c.bin","offline","malware_download","rtf","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 15:40:04","http://40.68.153.230/mal/454a6b857017504870fc2602ea994303e76fd9b461148b766446f4052dd67144.bin","offline","malware_download","doc|Emotet|Heodo","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 15:40:03","http://40.68.153.230/mal/6c49079f7eebde4474b071e271d7d6aaba87f00656fd3a413614d529fb3c2933.bin","offline","malware_download","doc|Emotet|Heodo","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 15:40:03","http://40.68.153.230/mal/c83e2477a2c5ce14657f6161bd92b6ac7af220289a11e8d0fdbe707f4746f383.bin","offline","malware_download","doc|Emotet|Heodo","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 15:36:18","http://40.68.153.230/mal2/40e57f8fd2340696b7ee85be5b95777f7caefa5db48f386cdf85ffbbebac3151.bin","offline","malware_download","exe|Formbook","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 15:36:10","http://40.68.153.230/mal/044b90ae2c5d7cfef284d86d420d2fecc0b3921238ca4ca98d887c7c3d36cc34.bin","offline","malware_download","Emotet|exe|Heodo","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 15:36:08","http://40.68.153.230/mal2/96e0d7bde792037742b7ba07e40ac9fb085946ef597ebb4354ac435312bd27a9.bin","offline","malware_download","exe","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 15:31:37","http://40.68.153.230/mal2/81082fe9603a2de82ec5442406493ca9f84557837ce39440caf3832a15dd2efa.bin","offline","malware_download","AgentTesla|rtf","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 15:31:25","http://40.68.153.230/mal2/03026aead7a832ca72d05ccd5356bc3475b98b4695b6b73ba24fd65faf336447.bin","offline","malware_download","exe|Loki","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 15:31:05","http://40.68.153.230/mal/a58b1cd465ab3b197b63e4a55acfd718c7a7d3a893e2f46128359ec374303ca7.bin","offline","malware_download","doc|Emotet|Heodo","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 15:31:02","http://40.68.153.230/mal/76f3802b4ad5976e989e3c3e3870df43887fbcb935f730db3ce1d3b708494619.bin","offline","malware_download","doc|Emotet|Heodo","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 15:03:17","http://40.68.153.230/mal4/c9c308c9410017e83abae037025f698c676aaeaa3db30c5fc42c1748e2d313cd.exe","offline","malware_download","exe","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 14:59:08","http://40.68.153.230/mal3/71e48c1151903a7d2ccf74da16f599597cf5b7557e3bd24de0f9af5534b394e2_nF04iwvazC.exe","offline","malware_download","exe|Formbook","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 14:59:07","http://40.68.153.230/mal3/defdd348ef2f8842b2528ddd6733cc096ad01ea3fb4ca028f50f72e9c7afa152.exe","offline","malware_download","exe","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 14:55:06","http://40.68.153.230/mal3/ec9d2e4ef51929bf62efc1bab0789cd2c3c85d067613308570f2ddcd271e9468.exe","offline","malware_download","exe","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 14:55:04","http://40.68.153.230/mal3/da88a3976774e05a486dfc8006f957eda7e524830599cfbb9714dce5aac666d3.exe","offline","malware_download","exe|Loki","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-05 14:51:03","http://40.68.153.230/mal3/1458be78f55705d44f707565f7ef047869be5190d3e60b799e7ae0177d4ffccb.exe","offline","malware_download","exe|Loki","40.68.153.230","40.68.153.230","8075","NL"
"2019-05-04 04:59:03","http://13.76.158.123/Malware/ALY/Windows6.1-KB3102810-x86.exe","offline","malware_download","exe|GandCrab","13.76.158.123","13.76.158.123","8075","SG"
"2019-05-04 04:54:05","http://13.76.158.123/Malware/KS/GandCrab.exe","offline","malware_download","exe|GandCrab","13.76.158.123","13.76.158.123","8075","SG"
"2019-05-04 04:40:06","http://13.76.158.123/Malware/SL/GandCrab.exe","offline","malware_download","exe|GandCrab","13.76.158.123","13.76.158.123","8075","SG"
"2019-05-04 04:32:05","http://13.76.158.123/Malware/GandCrab.exe","offline","malware_download","exe|GandCrab","13.76.158.123","13.76.158.123","8075","SG"
"2019-05-04 04:31:12","http://13.76.158.123/Malware/ALF/GandCrab.exe","offline","malware_download","exe|GandCrab","13.76.158.123","13.76.158.123","8075","SG"
"2019-05-04 04:27:12","http://13.76.158.123/Malware/DC/GandCrab.exe","offline","malware_download","exe|GandCrab","13.76.158.123","13.76.158.123","8075","SG"
"2019-05-04 04:22:33","http://13.76.158.123/Malware/CT/GandCrab.exe","offline","malware_download","exe|GandCrab","13.76.158.123","13.76.158.123","8075","SG"
"2019-05-03 00:16:02","http://academic.ie/error/Scan/8ygdtxqmxnx0i6f343n4g1dxmk98_easz9a21i5-90983660/","offline","malware_download","doc|emotet|epoch2|Heodo","academic.ie","52.166.79.254","8075","NL"
"2019-05-02 15:26:05","http://blog.moonlightortho.com/wp-includes/sec.accounts.docs.net/","offline","malware_download","doc|emotet|epoch1|Heodo","blog.moonlightortho.com","20.215.12.2","8075","PL"
"2019-05-02 14:52:05","https://flyoz-my.sharepoint.com/:u:/g/personal/accounts_flyoz_com_au/EQUjaGVZpCNDi5EnBAIOECMBdhxXPnPLVEX4qwbS7t3i0Q?e=UlFjuC&download=1","offline","malware_download","GBR|Gozi|vbs|zip","flyoz-my.sharepoint.com","13.107.136.10","8075","US"
"2019-05-02 14:52:05","https://flyoz-my.sharepoint.com/:u:/g/personal/accounts_flyoz_com_au/EQUjaGVZpCNDi5EnBAIOECMBdhxXPnPLVEX4qwbS7t3i0Q?e=UlFjuC&download=1","offline","malware_download","GBR|Gozi|vbs|zip","flyoz-my.sharepoint.com","13.107.138.10","8075","US"
"2019-05-02 06:00:20","http://equipares.org/site/wp-content/uploads/2018/agvlv16v64t0_44u9e0cr-5813176666637/","offline","malware_download","Emotet|Heodo","equipares.org","20.83.155.187","8075","US"
"2019-05-01 17:31:08","https://www.plvan.com/wp-content/vPTKWuAOUoglbXLQxJufgAVZbW/","offline","malware_download","emotet|epoch2|exe|Heodo","www.plvan.com","4.172.200.125","8075","CA"
"2019-05-01 15:39:03","http://just-bee.nl/wp-admin/trust.myaccount.send.com/","offline","malware_download","doc|emotet|epoch1|Heodo","just-bee.nl","51.144.47.17","8075","NL"
"2019-04-30 20:03:05","http://mickreevesmodels.co.uk/micks_chat/FILE/UAduuYQEihX/","offline","malware_download","Emotet|Heodo","mickreevesmodels.co.uk","20.3.34.31","8075","US"
"2019-04-30 16:32:02","http://academic.ie/error/Scan/NdAZdy7OhL8u/","offline","malware_download","doc|emotet|epoch2|Heodo","academic.ie","52.166.79.254","8075","NL"
"2019-04-30 14:41:06","https://gmreng-my.sharepoint.com/:u:/g/personal/reg_perkins_gmreng_com_au/Ee0OWS5w5jRKkt7kohe1BdEBzPuSER_oT8PY8sKEfLph8w?e=zxZkGy&download=1","offline","malware_download","GBR|Gozi|vbs|zip","gmreng-my.sharepoint.com","13.107.136.10","8075","US"
"2019-04-30 14:41:06","https://gmreng-my.sharepoint.com/:u:/g/personal/reg_perkins_gmreng_com_au/Ee0OWS5w5jRKkt7kohe1BdEBzPuSER_oT8PY8sKEfLph8w?e=zxZkGy&download=1","offline","malware_download","GBR|Gozi|vbs|zip","gmreng-my.sharepoint.com","13.107.138.10","8075","US"
"2019-04-30 07:18:06","https://igacarlos-my.sharepoint.com/:u:/g/personal/igatamworth_carlosiga_com_au/EbVpoIkcPKFGvlQIVe3WFFIBdbFTkvB4dzrYZPf1RXWfTg?e=IwuSE5&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","igacarlos-my.sharepoint.com","13.107.136.10","8075","US"
"2019-04-30 07:18:06","https://igacarlos-my.sharepoint.com/:u:/g/personal/igatamworth_carlosiga_com_au/EbVpoIkcPKFGvlQIVe3WFFIBdbFTkvB4dzrYZPf1RXWfTg?e=IwuSE5&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","igacarlos-my.sharepoint.com","13.107.138.10","8075","US"
"2019-04-30 07:17:09","https://hyclor-my.sharepoint.com/:u:/g/personal/michelle_vollmer_hyclor_com_au/EQ4eNH-bHYRErA5j-6ozjFYBFMRCsQErqUFCzZmBMBS9ag?e=sDwlRs&download=1","offline","malware_download","AUS|gozi|NZL|vbs|zip","hyclor-my.sharepoint.com","52.107.243.196","8075","DE"
"2019-04-30 07:17:09","https://hyclor-my.sharepoint.com/:u:/g/personal/michelle_vollmer_hyclor_com_au/EQ4eNH-bHYRErA5j-6ozjFYBFMRCsQErqUFCzZmBMBS9ag?e=sDwlRs&download=1","offline","malware_download","AUS|gozi|NZL|vbs|zip","hyclor-my.sharepoint.com","52.107.243.215","8075","DE"
"2019-04-30 07:17:09","https://hyclor-my.sharepoint.com/:u:/g/personal/michelle_vollmer_hyclor_com_au/EQ4eNH-bHYRErA5j-6ozjFYBFMRCsQErqUFCzZmBMBS9ag?e=sDwlRs&download=1","offline","malware_download","AUS|gozi|NZL|vbs|zip","hyclor-my.sharepoint.com","52.107.243.71","8075","DE"
"2019-04-30 07:17:09","https://hyclor-my.sharepoint.com/:u:/g/personal/michelle_vollmer_hyclor_com_au/EQ4eNH-bHYRErA5j-6ozjFYBFMRCsQErqUFCzZmBMBS9ag?e=sDwlRs&download=1","offline","malware_download","AUS|gozi|NZL|vbs|zip","hyclor-my.sharepoint.com","52.107.243.74","8075","DE"
"2019-04-30 07:17:09","https://hyclor-my.sharepoint.com/:u:/g/personal/michelle_vollmer_hyclor_com_au/EQ4eNH-bHYRErA5j-6ozjFYBFMRCsQErqUFCzZmBMBS9ag?e=sDwlRs&download=1","offline","malware_download","AUS|gozi|NZL|vbs|zip","hyclor-my.sharepoint.com","52.107.243.75","8075","DE"
"2019-04-30 07:17:09","https://hyclor-my.sharepoint.com/:u:/g/personal/michelle_vollmer_hyclor_com_au/EQ4eNH-bHYRErA5j-6ozjFYBFMRCsQErqUFCzZmBMBS9ag?e=sDwlRs&download=1","offline","malware_download","AUS|gozi|NZL|vbs|zip","hyclor-my.sharepoint.com","52.107.243.82","8075","DE"
"2019-04-30 07:17:09","https://hyclor-my.sharepoint.com/:u:/g/personal/michelle_vollmer_hyclor_com_au/EQ4eNH-bHYRErA5j-6ozjFYBFMRCsQErqUFCzZmBMBS9ag?e=sDwlRs&download=1","offline","malware_download","AUS|gozi|NZL|vbs|zip","hyclor-my.sharepoint.com","52.107.243.85","8075","DE"
"2019-04-30 07:17:09","https://hyclor-my.sharepoint.com/:u:/g/personal/michelle_vollmer_hyclor_com_au/EQ4eNH-bHYRErA5j-6ozjFYBFMRCsQErqUFCzZmBMBS9ag?e=sDwlRs&download=1","offline","malware_download","AUS|gozi|NZL|vbs|zip","hyclor-my.sharepoint.com","52.107.243.91","8075","DE"
"2019-04-30 06:43:19","http://191.238.212.31/bins/hoho.x86","offline","malware_download","elf|mirai","191.238.212.31","191.238.212.31","8075","BR"
"2019-04-30 06:43:15","http://191.238.212.31/bins/hoho.spc","offline","malware_download","elf|mirai","191.238.212.31","191.238.212.31","8075","BR"
"2019-04-30 06:43:13","http://191.238.212.31/bins/hoho.sh4","offline","malware_download","elf|mirai","191.238.212.31","191.238.212.31","8075","BR"
"2019-04-30 06:43:10","http://191.238.212.31/bins/hoho.ppc","offline","malware_download","elf|mirai","191.238.212.31","191.238.212.31","8075","BR"
"2019-04-30 06:43:08","http://191.238.212.31/bins/hoho.mpsl","offline","malware_download","elf|mirai","191.238.212.31","191.238.212.31","8075","BR"
"2019-04-30 06:43:06","http://191.238.212.31/bins/hoho.mips","offline","malware_download","elf|mirai","191.238.212.31","191.238.212.31","8075","BR"
"2019-04-30 06:43:02","http://191.238.212.31/bins/hoho.m68k","offline","malware_download","elf|mirai","191.238.212.31","191.238.212.31","8075","BR"
"2019-04-30 06:43:01","http://191.238.212.31/bins/hoho.arm7","offline","malware_download","elf|mirai","191.238.212.31","191.238.212.31","8075","BR"
"2019-04-30 06:42:58","http://191.238.212.31/bins/hoho.arm6","offline","malware_download","elf|mirai","191.238.212.31","191.238.212.31","8075","BR"
"2019-04-30 06:42:55","http://191.238.212.31/bins/hoho.arm5","offline","malware_download","elf|mirai","191.238.212.31","191.238.212.31","8075","BR"
"2019-04-30 06:42:54","http://191.238.212.31/bins/hoho.arm","offline","malware_download","elf|mirai","191.238.212.31","191.238.212.31","8075","BR"
"2019-04-29 11:54:10","http://equipares.org/site/wp-content/uploads/2018/ktphjnz-bhtmwzc-dkcpy/","offline","malware_download","Emotet|Heodo","equipares.org","20.83.155.187","8075","US"
"2019-04-29 06:48:10","https://grangeresources-my.sharepoint.com/:u:/g/personal/subert_grangerocproperty_com_au/EStdkClw6xtKuwd7aZaSmygB4zcwjkZZUi6q-rPl88JcVg?e=MdAw6Y&download=1","offline","malware_download","AUS|Gozi|vbs|zip","grangeresources-my.sharepoint.com","13.107.136.10","8075","US"
"2019-04-29 06:48:10","https://grangeresources-my.sharepoint.com/:u:/g/personal/subert_grangerocproperty_com_au/EStdkClw6xtKuwd7aZaSmygB4zcwjkZZUi6q-rPl88JcVg?e=MdAw6Y&download=1","offline","malware_download","AUS|Gozi|vbs|zip","grangeresources-my.sharepoint.com","13.107.138.10","8075","US"
"2019-04-26 12:15:13","http://tncnet.com/images/QdnF-ROpIu1OBUb5sKZ_eVeiygnR-qKT/","offline","malware_download","doc|emotet|epoch1","tncnet.com","52.226.18.39","8075","US"
"2019-04-25 15:06:04","http://academic.ie/error/Habd-NHMdLDOCKg9YOF_mzZaXhKU-H5/","offline","malware_download","doc|emotet|epoch1","academic.ie","52.166.79.254","8075","NL"
"2019-04-25 09:34:05","https://qualitatexpertises-my.sharepoint.com/:u:/g/personal/m_kirichian_qualitat_fr/Edu7Ju84_NBFkbfdTeVt5twBZVq5HVKD4xL5vcLMMCLfdg?e=0yQVlE&download=1","offline","malware_download","GBR|gozi|vbs|zip","qualitatexpertises-my.sharepoint.com","13.107.136.10","8075","US"
"2019-04-25 09:34:05","https://qualitatexpertises-my.sharepoint.com/:u:/g/personal/m_kirichian_qualitat_fr/Edu7Ju84_NBFkbfdTeVt5twBZVq5HVKD4xL5vcLMMCLfdg?e=0yQVlE&download=1","offline","malware_download","GBR|gozi|vbs|zip","qualitatexpertises-my.sharepoint.com","13.107.138.10","8075","US"
"2019-04-23 23:14:05","http://mickreevesmodels.co.uk/micks_chat/DOC/g1gr5L0vR/","offline","malware_download","Emotet|Heodo","mickreevesmodels.co.uk","20.3.34.31","8075","US"
"2019-04-17 21:14:03","http://mickreevesmodels.co.uk/micks_chat/Kbryx-JQt7LPlCzZZTM4T_UtLhjkKS-zTe/","offline","malware_download","doc|emotet|epoch1","mickreevesmodels.co.uk","20.3.34.31","8075","US"
"2019-04-12 19:06:15","http://52.229.167.181/product.exe","offline","malware_download","exe","52.229.167.181","52.229.167.181","8075","HK"
"2019-04-12 18:54:44","http://netimoveis.me/wp-content/gcABx-dxHHevlAGfxfQy_DbVHvajk-iV/","offline","malware_download","doc|emotet|epoch2","netimoveis.me","191.232.242.19","8075","BR"
"2019-04-12 13:41:42","http://52.229.167.181/20190316/malwaresample4-17.exe","offline","malware_download","exe|opendir","52.229.167.181","52.229.167.181","8075","HK"
"2019-04-12 13:40:07","http://52.229.167.181/20190316/malwaresample4-16.exe","offline","malware_download","exe|opendir","52.229.167.181","52.229.167.181","8075","HK"
"2019-04-12 13:38:52","http://52.229.167.181/20190316/malwaresample4-14.exe","offline","malware_download","exe|opendir","52.229.167.181","52.229.167.181","8075","HK"
"2019-04-12 13:37:26","http://52.229.167.181/20190316/malwaresample4-13.exe","offline","malware_download","exe|opendir","52.229.167.181","52.229.167.181","8075","HK"
"2019-04-12 13:36:42","http://52.229.167.181/20190316/malwaresample3-17.exe","offline","malware_download","exe|opendir","52.229.167.181","52.229.167.181","8075","HK"
"2019-04-12 13:36:00","http://52.229.167.181/20190316/malwaresample3-16.exe","offline","malware_download","exe|opendir","52.229.167.181","52.229.167.181","8075","HK"
"2019-04-12 13:35:42","http://52.229.167.181/20190316/malwaresample2-13.exe","offline","malware_download","exe|opendir","52.229.167.181","52.229.167.181","8075","HK"
"2019-04-12 13:35:28","http://52.229.167.181/20190316/malwaresample2-12.exe","offline","malware_download","exe|opendir","52.229.167.181","52.229.167.181","8075","HK"
"2019-04-12 13:35:08","http://52.229.167.181/20190316/malwaresample2-11.exe","offline","malware_download","exe|opendir","52.229.167.181","52.229.167.181","8075","HK"
"2019-04-12 13:34:55","http://52.229.167.181/20190316/malwaresample1-8.exe","offline","malware_download","exe|opendir","52.229.167.181","52.229.167.181","8075","HK"
"2019-04-12 13:34:46","http://52.229.167.181/20190316/malwaresample1-7.exe","offline","malware_download","exe|opendir","52.229.167.181","52.229.167.181","8075","HK"
"2019-04-12 13:34:32","http://52.229.167.181/20190316/malwaresample1-6.exe","offline","malware_download","exe|opendir","52.229.167.181","52.229.167.181","8075","HK"
"2019-04-12 04:55:06","https://netimoveis.me/wp-content/w65332x-0s9f3v-fxdkos/","offline","malware_download","doc|emotet|epoch2","netimoveis.me","191.232.242.19","8075","BR"
"2019-04-11 22:01:02","https://www.netimoveis.me/wp-content/gcABx-dxHHevlAGfxfQy_DbVHvajk-iV/","offline","malware_download","doc|emotet|epoch2|Heodo","www.netimoveis.me","191.232.242.19","8075","BR"
"2019-04-11 20:50:07","http://netimoveis.me/wp-content/w65332x-0s9f3v-fxdkos/","offline","malware_download","emotet|epoch2","netimoveis.me","191.232.242.19","8075","BR"
"2019-04-11 14:23:08","https://www.netimoveis.me/wp-content/w65332x-0s9f3v-fxdkos/","offline","malware_download","Emotet|Heodo","www.netimoveis.me","191.232.242.19","8075","BR"
"2019-04-11 09:57:06","https://lorrainestockagemanutention-my.sharepoint.com/:u:/g/personal/aschaff_lsmanutention_fr/ERPLA0uMDB1Mp3iTDODWM_EBqaBpfFmCye7QPtgl4HV1Xg?e=BMcVyM&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","lorrainestockagemanutention-my.sharepoint.com","52.107.243.196","8075","DE"
"2019-04-11 09:57:06","https://lorrainestockagemanutention-my.sharepoint.com/:u:/g/personal/aschaff_lsmanutention_fr/ERPLA0uMDB1Mp3iTDODWM_EBqaBpfFmCye7QPtgl4HV1Xg?e=BMcVyM&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","lorrainestockagemanutention-my.sharepoint.com","52.107.243.198","8075","DE"
"2019-04-11 09:57:06","https://lorrainestockagemanutention-my.sharepoint.com/:u:/g/personal/aschaff_lsmanutention_fr/ERPLA0uMDB1Mp3iTDODWM_EBqaBpfFmCye7QPtgl4HV1Xg?e=BMcVyM&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","lorrainestockagemanutention-my.sharepoint.com","52.107.243.199","8075","DE"
"2019-04-11 09:57:06","https://lorrainestockagemanutention-my.sharepoint.com/:u:/g/personal/aschaff_lsmanutention_fr/ERPLA0uMDB1Mp3iTDODWM_EBqaBpfFmCye7QPtgl4HV1Xg?e=BMcVyM&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","lorrainestockagemanutention-my.sharepoint.com","52.107.243.216","8075","DE"
"2019-04-11 09:57:06","https://lorrainestockagemanutention-my.sharepoint.com/:u:/g/personal/aschaff_lsmanutention_fr/ERPLA0uMDB1Mp3iTDODWM_EBqaBpfFmCye7QPtgl4HV1Xg?e=BMcVyM&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","lorrainestockagemanutention-my.sharepoint.com","52.107.243.77","8075","DE"
"2019-04-11 09:57:06","https://lorrainestockagemanutention-my.sharepoint.com/:u:/g/personal/aschaff_lsmanutention_fr/ERPLA0uMDB1Mp3iTDODWM_EBqaBpfFmCye7QPtgl4HV1Xg?e=BMcVyM&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","lorrainestockagemanutention-my.sharepoint.com","52.107.243.80","8075","DE"
"2019-04-11 09:57:06","https://lorrainestockagemanutention-my.sharepoint.com/:u:/g/personal/aschaff_lsmanutention_fr/ERPLA0uMDB1Mp3iTDODWM_EBqaBpfFmCye7QPtgl4HV1Xg?e=BMcVyM&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","lorrainestockagemanutention-my.sharepoint.com","52.107.243.85","8075","DE"
"2019-04-11 09:57:06","https://lorrainestockagemanutention-my.sharepoint.com/:u:/g/personal/aschaff_lsmanutention_fr/ERPLA0uMDB1Mp3iTDODWM_EBqaBpfFmCye7QPtgl4HV1Xg?e=BMcVyM&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","lorrainestockagemanutention-my.sharepoint.com","52.107.243.88","8075","DE"
"2019-04-11 06:59:03","http://kristacomputers.com/wp-admin/tdui-9w11b5b-omsp/","offline","malware_download","Emotet|Heodo","kristacomputers.com","40.122.193.165","8075","US"
"2019-04-11 06:45:10","http://52.143.166.165/lmaoWTF/loligang.mips","offline","malware_download","elf|mirai","52.143.166.165","52.143.166.165","8075","FR"
"2019-04-11 06:38:19","http://52.143.166.165/lmaoWTF/loligang.arm6","offline","malware_download","elf|mirai","52.143.166.165","52.143.166.165","8075","FR"
"2019-04-11 06:38:02","http://52.143.166.165/lmaoWTF/loligang.sh4","offline","malware_download","elf|mirai","52.143.166.165","52.143.166.165","8075","FR"
"2019-04-11 06:37:08","http://52.143.166.165/lmaoWTF/loligang.ppc","offline","malware_download","elf|mirai","52.143.166.165","52.143.166.165","8075","FR"
"2019-04-11 06:31:09","http://52.143.166.165/lmaoWTF/loligang.mpsl","offline","malware_download","elf|mirai","52.143.166.165","52.143.166.165","8075","FR"
"2019-04-11 06:31:02","http://52.143.166.165/lmaoWTF/loligang.arm5","offline","malware_download","elf|mirai","52.143.166.165","52.143.166.165","8075","FR"
"2019-04-11 06:30:21","http://52.143.166.165/lmaoWTF/loligang.m68k","offline","malware_download","elf|mirai","52.143.166.165","52.143.166.165","8075","FR"
"2019-04-11 06:30:19","http://52.143.166.165/lmaoWTF/loligang.x86","offline","malware_download","elf|mirai","52.143.166.165","52.143.166.165","8075","FR"
"2019-04-11 06:30:07","http://52.143.166.165/lmaoWTF/loligang.arm7","offline","malware_download","elf|mirai","52.143.166.165","52.143.166.165","8075","FR"
"2019-04-11 03:41:08","https://304519ermhes-my.sharepoint.com/:u:/g/personal/centreouest_ermhes_fr/EVLrJEGhS_9GlYwL_W5wX_ABrdJC7_1mFXog8XexWb2HQQ?e=lfr5HW&download=1","offline","malware_download","GBR|Gozi|vbs|zip","304519ermhes-my.sharepoint.com","13.107.136.10","8075","US"
"2019-04-11 03:41:08","https://304519ermhes-my.sharepoint.com/:u:/g/personal/centreouest_ermhes_fr/EVLrJEGhS_9GlYwL_W5wX_ABrdJC7_1mFXog8XexWb2HQQ?e=lfr5HW&download=1","offline","malware_download","GBR|Gozi|vbs|zip","304519ermhes-my.sharepoint.com","13.107.138.10","8075","US"
"2019-04-11 02:32:02","https://netimoveis.me/wp-content/wa4ps7-zuytpyo-ljeyawg/","offline","malware_download","doc|emotet|epoch2","netimoveis.me","191.232.242.19","8075","BR"
"2019-04-10 17:17:08","http://netimoveis.me/wp-content/wa4ps7-zuytpyo-ljeyawg/","offline","malware_download","doc|emotet|epoch2","netimoveis.me","191.232.242.19","8075","BR"
"2019-04-10 08:08:02","https://standbyme-my.sharepoint.com/:u:/g/personal/jf_olivier_standbyme_fr/EdvQ52RRcXROqlZQmthwPdABrOZ7-ZzdjTBuNuxVqtEauw?e=DwOsfv&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","standbyme-my.sharepoint.com","13.107.136.10","8075","US"
"2019-04-10 08:08:02","https://standbyme-my.sharepoint.com/:u:/g/personal/jf_olivier_standbyme_fr/EdvQ52RRcXROqlZQmthwPdABrOZ7-ZzdjTBuNuxVqtEauw?e=DwOsfv&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","standbyme-my.sharepoint.com","13.107.138.10","8075","US"
"2019-04-09 18:49:03","https://www.netimoveis.me/wp-content/CwEj-pX3lAuPvHZZTsQ_KgaqDapBJ-Rl/","offline","malware_download","Emotet|Heodo","www.netimoveis.me","191.232.242.19","8075","BR"
"2019-04-09 13:59:04","https://www.netimoveis.me/wp-content/wa4ps7-zuytpyo-ljeyawg/","offline","malware_download","Emotet|Heodo","www.netimoveis.me","191.232.242.19","8075","BR"
"2019-04-09 06:28:02","http://kristacomputers.com/error/nw5vy-nrx6tb-iwtrcv/","offline","malware_download","Emotet|Heodo","kristacomputers.com","40.122.193.165","8075","US"
"2019-04-08 14:20:09","http://kristacomputers.com/error/nIkbn-iIKF31agCsrMy7z_SRzkzjRJP-b9J/","offline","malware_download","doc|emotet|epoch2|Heodo","kristacomputers.com","40.122.193.165","8075","US"
"2019-04-07 07:40:56","http://40.84.129.6/telnetd","offline","malware_download","elf|gafgyt","40.84.129.6","40.84.129.6","8075","US"
"2019-04-07 07:40:55","http://40.84.129.6/apache2","offline","malware_download","elf|gafgyt","40.84.129.6","40.84.129.6","8075","US"
"2019-04-07 07:40:52","http://40.84.129.6/nut","offline","malware_download","elf|gafgyt","40.84.129.6","40.84.129.6","8075","US"
"2019-04-07 07:40:48","http://40.84.129.6/sh","offline","malware_download","elf|gafgyt","40.84.129.6","40.84.129.6","8075","US"
"2019-04-07 07:40:42","http://40.84.129.6/pftp","offline","malware_download","elf|gafgyt","40.84.129.6","40.84.129.6","8075","US"
"2019-04-07 07:40:39","http://40.84.129.6/ftp","offline","malware_download","elf|gafgyt","40.84.129.6","40.84.129.6","8075","US"
"2019-04-07 07:40:37","http://40.84.129.6/cron","offline","malware_download","elf|gafgyt","40.84.129.6","40.84.129.6","8075","US"
"2019-04-07 07:40:32","http://40.84.129.6/wget","offline","malware_download","elf|gafgyt","40.84.129.6","40.84.129.6","8075","US"
"2019-04-07 07:40:28","http://40.84.129.6/tftp","offline","malware_download","elf|gafgyt","40.84.129.6","40.84.129.6","8075","US"
"2019-04-07 07:40:25","http://40.84.129.6/bash","offline","malware_download","elf|gafgyt","40.84.129.6","40.84.129.6","8075","US"
"2019-04-07 07:40:21","http://40.84.129.6/openssh","offline","malware_download","elf|gafgyt","40.84.129.6","40.84.129.6","8075","US"
"2019-04-07 07:40:16","http://40.84.129.6/sshd","offline","malware_download","elf|gafgyt","40.84.129.6","40.84.129.6","8075","US"
"2019-04-07 07:40:11","http://40.84.129.6/ntpd","offline","malware_download","elf|gafgyt","40.84.129.6","40.84.129.6","8075","US"
"2019-04-04 11:46:03","https://netimoveis.me/wp-content/sec.accs.send.biz/","offline","malware_download","doc","netimoveis.me","191.232.242.19","8075","BR"
"2019-04-04 07:55:39","http://netimoveis.me/wp-content/sec.accs.send.biz/","offline","malware_download","emotet|epoch1","netimoveis.me","191.232.242.19","8075","BR"
"2019-04-03 19:02:06","https://www.netimoveis.me/wp-content/sec.accs.send.biz/","offline","malware_download","doc|emotet|epoch1|Heodo","www.netimoveis.me","191.232.242.19","8075","BR"
"2019-04-01 12:31:03","https://higginstonnacomau-my.sharepoint.com/:u:/g/personal/brigitte_higginstonna_com_au/EbjxZCITuLBOtmOmHwz1j84BGYylk7cxa9OudGF8WlYfvw?e=latVFB&download=1","offline","malware_download","DEU|Gozi|vbs|zip","higginstonnacomau-my.sharepoint.com","13.107.136.10","8075","US"
"2019-04-01 12:31:03","https://higginstonnacomau-my.sharepoint.com/:u:/g/personal/brigitte_higginstonna_com_au/EbjxZCITuLBOtmOmHwz1j84BGYylk7cxa9OudGF8WlYfvw?e=latVFB&download=1","offline","malware_download","DEU|Gozi|vbs|zip","higginstonnacomau-my.sharepoint.com","13.107.138.10","8075","US"
"2019-04-01 09:35:05","https://uaccountancy-my.sharepoint.com/:u:/g/personal/s_nawaz_uaccountancy_co_uk/EbtDa3RaM21DrbKOX8wvPRwBvQXj4rtT_kTWc3QysAgkOQ?e=l8q90h&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","uaccountancy-my.sharepoint.com","13.107.136.10","8075","US"
"2019-04-01 09:35:05","https://uaccountancy-my.sharepoint.com/:u:/g/personal/s_nawaz_uaccountancy_co_uk/EbtDa3RaM21DrbKOX8wvPRwBvQXj4rtT_kTWc3QysAgkOQ?e=l8q90h&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","uaccountancy-my.sharepoint.com","13.107.138.10","8075","US"
"2019-03-27 08:44:33","https://habenprop-my.sharepoint.com/:u:/g/personal/amber_haben_com_au/EUI7x0XnFMpHm1h6qM1jntoBdrpxVe0WvNW5USyTpntUYw?e=TnWihI&download=1","offline","malware_download","AUS|gozi|NZL|vbs|zip","habenprop-my.sharepoint.com","13.107.136.10","8075","US"
"2019-03-27 08:44:33","https://habenprop-my.sharepoint.com/:u:/g/personal/amber_haben_com_au/EUI7x0XnFMpHm1h6qM1jntoBdrpxVe0WvNW5USyTpntUYw?e=TnWihI&download=1","offline","malware_download","AUS|gozi|NZL|vbs|zip","habenprop-my.sharepoint.com","13.107.138.10","8075","US"
"2019-03-26 09:33:06","https://glowarmcentral-my.sharepoint.com/:u:/g/personal/barry_lundie_glowarm_co_uk/EQ0H5w80rH9FhVv0O4bWX0ABuof-xa5w9V4GS1GVteI6aQ?e=EqKNej&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","glowarmcentral-my.sharepoint.com","13.107.136.10","8075","US"
"2019-03-26 09:33:06","https://glowarmcentral-my.sharepoint.com/:u:/g/personal/barry_lundie_glowarm_co_uk/EQ0H5w80rH9FhVv0O4bWX0ABuof-xa5w9V4GS1GVteI6aQ?e=EqKNej&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","glowarmcentral-my.sharepoint.com","13.107.138.10","8075","US"
"2019-03-26 09:33:05","https://bricrm-my.sharepoint.com/:u:/g/personal/sharnih_bri_org_au/Eeur6yM-bdFGpHOSTa12NG8B5GQ6rD-6p9XgIQB4ULRd6w?e=kogJkd&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","bricrm-my.sharepoint.com","13.107.136.10","8075","US"
"2019-03-26 09:33:05","https://bricrm-my.sharepoint.com/:u:/g/personal/sharnih_bri_org_au/Eeur6yM-bdFGpHOSTa12NG8B5GQ6rD-6p9XgIQB4ULRd6w?e=kogJkd&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","bricrm-my.sharepoint.com","13.107.138.10","8075","US"
"2019-03-26 06:34:25","http://bytecoder.in/styleswitch/Tracking-Number-7NCT59260654662915/Mar-26-19-02-18-02/","offline","malware_download","","bytecoder.in","20.119.76.238","8075","US"
"2019-03-26 00:38:23","http://40.87.92.185/wp-content/secure.myaccount.send.com/","offline","malware_download","emotet|epoch1|Heodo","40.87.92.185","40.87.92.185","8075","US"
"2019-03-25 16:38:04","http://theinitiative.com/initiative2/sec.myaccount.docs.net/","offline","malware_download","doc|emotet|epoch1|Heodo","theinitiative.com","20.83.254.28","8075","US"
"2019-03-25 08:18:45","http://tenmax.azurewebsites.net/wp-includes/Y77-2994822440652965.zip","offline","malware_download","DEU|exe|Nymaim|zip","tenmax.azurewebsites.net","65.52.160.119","8075","HK"
"2019-03-25 00:21:10","https://tahuneairwalk-my.sharepoint.com/:u:/g/personal/bookings_tahuneairwalk_com_au/EQxCUFT0vzBLr1GfQLcHIgcB3u7lsjkSbPgvhdZ9iDdSUA?e=fgmQJD&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","tahuneairwalk-my.sharepoint.com","13.107.136.10","8075","US"
"2019-03-25 00:21:10","https://tahuneairwalk-my.sharepoint.com/:u:/g/personal/bookings_tahuneairwalk_com_au/EQxCUFT0vzBLr1GfQLcHIgcB3u7lsjkSbPgvhdZ9iDdSUA?e=fgmQJD&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","tahuneairwalk-my.sharepoint.com","13.107.138.10","8075","US"
"2019-03-24 17:36:21","http://unilevercopabr.mbiz20.net/portal/mseriesdesktopinstallers/mseriesdesktop.initialversion.exe","offline","malware_download","Adware.Generic|exe","unilevercopabr.mbiz20.net","52.167.190.199","8075","US"
"2019-03-21 20:52:07","http://theinitiative.com/initiative2/secure.myacc.docs.net/","offline","malware_download","doc|emotet|epoch1|Heodo","theinitiative.com","20.83.254.28","8075","US"
"2019-03-21 00:25:10","https://ccamatil1-my.sharepoint.com/:u:/g/personal/john_mason_ccamatil_com1/Ea-twgQWpdFFhIpSX2gMAMQBGNG-_9AWDjrF6y8iqgHsfQ?e=63a6Bp&download=1","offline","malware_download","AUS|gozi|NZL|VBS|zip","ccamatil1-my.sharepoint.com","13.107.136.10","8075","US"
"2019-03-21 00:25:10","https://ccamatil1-my.sharepoint.com/:u:/g/personal/john_mason_ccamatil_com1/Ea-twgQWpdFFhIpSX2gMAMQBGNG-_9AWDjrF6y8iqgHsfQ?e=63a6Bp&download=1","offline","malware_download","AUS|gozi|NZL|VBS|zip","ccamatil1-my.sharepoint.com","13.107.138.10","8075","US"
"2019-03-21 00:24:44","https://www.netimoveis.me/wp-content/sendincverif/service/secure/EN_en/032019/","offline","malware_download","doc|emotet|heodo|Zegost","www.netimoveis.me","191.232.242.19","8075","BR"
"2019-03-20 21:48:57","http://exploit.netreaperlab.com/files/malware/archive/2018mar13-backup/wannacry/wannacry1.exe","offline","malware_download","exe|WannaCry","exploit.netreaperlab.com","172.208.104.174","8075","US"
"2019-03-20 21:39:05","http://exploit.netreaperlab.com/files/malware/archive/2018mar13-backup/petya-maybe/petya-maybe.exe","offline","malware_download","exe","exploit.netreaperlab.com","172.208.104.174","8075","US"
"2019-03-20 21:38:04","http://exploit.netreaperlab.com/files/malware/archive2/conficker%20binaries/1db5476c766555c9995b25d19f97b9bc.exe","offline","malware_download","exe","exploit.netreaperlab.com","172.208.104.174","8075","US"
"2019-03-20 21:26:06","http://exploit.netreaperlab.com/files/MALWARE/ARCHIVE2/CryptoLocker/Cryptolocker.exe","offline","malware_download","exe","exploit.netreaperlab.com","172.208.104.174","8075","US"
"2019-03-20 21:25:21","http://exploit.netreaperlab.com/files/MALWARE/ARCHIVE2/ZeusBankingVersion_26Nov2013/invoice_2318362983713_823931342io.pdf.exe","offline","malware_download","exe|Rootkit.ZeroAccess","exploit.netreaperlab.com","172.208.104.174","8075","US"
"2019-03-20 21:24:09","http://exploit.netreaperlab.com/files/malware/archive/2018mar13-backup/cerber/pitupi2-ransom.exe","offline","malware_download","exe|Locky","exploit.netreaperlab.com","172.208.104.174","8075","US"
"2019-03-20 21:03:11","http://exploit.netreaperlab.com/files/MALWARE/ARCHIVE2/CryptoLocker/1002.exe","offline","malware_download","exe","exploit.netreaperlab.com","172.208.104.174","8075","US"
"2019-03-20 17:55:07","http://exploit.netreaperlab.com/files/MALWARE/ARCHIVE2/CryptoLocker/1003.exe","offline","malware_download","exe","exploit.netreaperlab.com","172.208.104.174","8075","US"
"2019-03-20 14:12:15","https://signandbadge-my.sharepoint.com/:u:/g/personal/orders_signandbadge_com_au/EYZ-STpdPaNPoxtgoJgXRrMBMoJMx-8wSXkmKxfbg9CNGQ?e=7EmjjU&download=1","offline","malware_download","GBR|Gozi|VBS|zip","signandbadge-my.sharepoint.com","13.107.136.10","8075","US"
"2019-03-20 14:12:15","https://signandbadge-my.sharepoint.com/:u:/g/personal/orders_signandbadge_com_au/EYZ-STpdPaNPoxtgoJgXRrMBMoJMx-8wSXkmKxfbg9CNGQ?e=7EmjjU&download=1","offline","malware_download","GBR|Gozi|VBS|zip","signandbadge-my.sharepoint.com","13.107.138.10","8075","US"
"2019-03-15 23:05:13","http://www.e-365.com/mysql/trust.myaccount.send.net/","offline","malware_download","doc|Emotet|Heodo","www.e-365.com","20.78.36.50","8075","JP"
"2019-03-15 20:30:05","http://www.666999365.com/wp-admin/2b8i-rrhod-hcoyeqd/","offline","malware_download","doc|emotet|epoch2|Heodo","www.666999365.com","20.255.219.23","8075","HK"
"2019-03-13 16:05:04","https://varoproperty-my.sharepoint.com/:u:/g/personal/accounts_varoproperty_com_au/EdB9cSCnjW1Mg8dWGLB0XDgBXPINipZ7XE9XMD6J30VOvw?e=uDMb17&download=1","offline","malware_download","GBR|Gozi|vbs|zip","varoproperty-my.sharepoint.com","13.107.136.10","8075","US"
"2019-03-13 16:05:04","https://varoproperty-my.sharepoint.com/:u:/g/personal/accounts_varoproperty_com_au/EdB9cSCnjW1Mg8dWGLB0XDgBXPINipZ7XE9XMD6J30VOvw?e=uDMb17&download=1","offline","malware_download","GBR|Gozi|vbs|zip","varoproperty-my.sharepoint.com","13.107.138.10","8075","US"
"2019-03-12 19:06:06","http://fitchburgchamber.com/members/Intuit_US_CA/info/RD/terms/KqBKQ-ECDT_OpZtr-u6/","offline","malware_download","doc|Emotet|Heodo","fitchburgchamber.com","20.25.91.29","8075","US"
"2019-03-12 16:24:08","https://thepat-my.sharepoint.com/:u:/g/personal/scole_ventrus_org_uk/EaWSUsP4uUhDlEqZtS_xDR8B6mis9agDowf9G16cExclvA?e=aPMheo&download=1","offline","malware_download","GBR|gozi|vbs|zip","thepat-my.sharepoint.com","13.107.136.10","8075","US"
"2019-03-12 16:24:08","https://thepat-my.sharepoint.com/:u:/g/personal/scole_ventrus_org_uk/EaWSUsP4uUhDlEqZtS_xDR8B6mis9agDowf9G16cExclvA?e=aPMheo&download=1","offline","malware_download","GBR|gozi|vbs|zip","thepat-my.sharepoint.com","13.107.138.10","8075","US"
"2019-03-07 14:03:05","https://famint-my.sharepoint.com/:u:/g/personal/jason_faminternational_com_au/ESlWkibHDQhOsS3Y3BpOiUMBjlfFNlrB6nhH8vXFUjq7ow?e=tZdyzm&download=1","offline","malware_download","GBR|Gozi|vbs|zip","famint-my.sharepoint.com","13.107.136.10","8075","US"
"2019-03-07 14:03:05","https://famint-my.sharepoint.com/:u:/g/personal/jason_faminternational_com_au/ESlWkibHDQhOsS3Y3BpOiUMBjlfFNlrB6nhH8vXFUjq7ow?e=tZdyzm&download=1","offline","malware_download","GBR|Gozi|vbs|zip","famint-my.sharepoint.com","13.107.138.10","8075","US"
"2019-03-06 19:32:20","http://elmleblanc-prescription.fr/wp-includes/nax85-rf2lge-vvjy.view/","offline","malware_download","","elmleblanc-prescription.fr","20.224.54.68","8075","NL"
"2019-03-05 18:56:14","http://camionesfaw.cl/assets/sendincverif/legal/sec/En_en/2019-03/","offline","malware_download","Emotet|Heodo","camionesfaw.cl","20.119.144.19","8075","US"
"2019-03-05 07:33:11","https://acgb-my.sharepoint.com/:u:/g/personal/k_griffin_grief_org_au/Ea4Jopa9-zFKnRUS3_i4hzgBwpu9DzF_sMnc6PxD_v1IGA?e=hW5Zoy&download=1","offline","malware_download","AUS|exe|Gozi|NZL","acgb-my.sharepoint.com","13.107.136.10","8075","US"
"2019-03-05 07:33:11","https://acgb-my.sharepoint.com/:u:/g/personal/k_griffin_grief_org_au/Ea4Jopa9-zFKnRUS3_i4hzgBwpu9DzF_sMnc6PxD_v1IGA?e=hW5Zoy&download=1","offline","malware_download","AUS|exe|Gozi|NZL","acgb-my.sharepoint.com","13.107.138.10","8075","US"
"2019-03-05 07:33:06","https://kellywealth-my.sharepoint.com/:u:/g/personal/office_kellywealth_com_au/EfFgUDZzmpJMj3vxC_aawdABEw9-JKZFPgD-T_N6YCbEoA?e=nKR4IT&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","kellywealth-my.sharepoint.com","13.107.136.10","8075","US"
"2019-03-05 07:33:06","https://kellywealth-my.sharepoint.com/:u:/g/personal/office_kellywealth_com_au/EfFgUDZzmpJMj3vxC_aawdABEw9-JKZFPgD-T_N6YCbEoA?e=nKR4IT&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","kellywealth-my.sharepoint.com","13.107.138.10","8075","US"
"2019-03-05 04:24:03","http://168.62.186.228/wp-admin/sendincsec/legal/sec/EN/032019/","offline","malware_download","doc|emotet|epoch1|Heodo","168.62.186.228","168.62.186.228","8075","US"
"2019-03-04 00:55:25","http://52.172.7.16/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.7.16","52.172.7.16","8075","IN"
"2019-03-04 00:55:24","http://52.172.1.101/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.1.101","52.172.1.101","8075","IN"
"2019-03-04 00:55:23","http://52.172.12.142/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.12.142","52.172.12.142","8075","IN"
"2019-03-04 00:55:22","http://52.172.48.206/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.48.206","52.172.48.206","8075","IN"
"2019-03-04 00:55:21","http://52.172.13.154/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.13.154","52.172.13.154","8075","IN"
"2019-03-04 00:55:19","http://13.71.118.234/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","13.71.118.234","13.71.118.234","8075","IN"
"2019-03-04 00:55:18","http://52.172.43.150/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.43.150","52.172.43.150","8075","IN"
"2019-03-04 00:55:17","http://52.172.43.18/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.43.18","52.172.43.18","8075","IN"
"2019-03-04 00:55:16","http://52.172.24.60/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.24.60","52.172.24.60","8075","IN"
"2019-03-04 00:55:15","http://52.172.14.40/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.14.40","52.172.14.40","8075","IN"
"2019-03-04 00:55:14","http://52.172.38.191/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.38.191","52.172.38.191","8075","IN"
"2019-03-04 00:55:12","http://52.172.9.22/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.9.22","52.172.9.22","8075","IN"
"2019-03-04 00:55:11","http://52.172.12.74/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.12.74","52.172.12.74","8075","IN"
"2019-03-04 00:55:09","http://52.172.0.191/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.0.191","52.172.0.191","8075","IN"
"2019-03-04 00:55:08","http://52.172.12.125/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.12.125","52.172.12.125","8075","IN"
"2019-03-04 00:55:06","http://52.172.14.51/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.14.51","52.172.14.51","8075","IN"
"2019-03-04 00:55:03","http://52.172.43.31/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.43.31","52.172.43.31","8075","IN"
"2019-03-04 00:28:05","http://52.172.55.241/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.55.241","52.172.55.241","8075","IN"
"2019-03-04 00:18:02","http://52.172.4.179/DOCX_AnexoN785989868.jar","offline","malware_download","jar|java|loader","52.172.4.179","52.172.4.179","8075","IN"
"2019-03-01 09:25:32","https://cgdpartners-my.sharepoint.com/:u:/g/personal/florina_cgdpartners_com_au/EW-dIRCXi1NAphyfYscL9CcBIY-aQnCLB3IHWMxIF6cs8w?e=kSeij5&download=1","offline","malware_download","AUS|Gozi|js|NZL|zip","cgdpartners-my.sharepoint.com","13.107.136.10","8075","US"
"2019-03-01 09:25:32","https://cgdpartners-my.sharepoint.com/:u:/g/personal/florina_cgdpartners_com_au/EW-dIRCXi1NAphyfYscL9CcBIY-aQnCLB3IHWMxIF6cs8w?e=kSeij5&download=1","offline","malware_download","AUS|Gozi|js|NZL|zip","cgdpartners-my.sharepoint.com","13.107.138.10","8075","US"
"2019-03-01 09:25:14","https://valsorg-my.sharepoint.com/:u:/g/personal/accounts_vals_org_au/EX7tulxqupJNj8p3QOJk_8IBxrYdFJpzqjVsKdXR7dRTAA?e=84iDFN&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","valsorg-my.sharepoint.com","13.107.136.10","8075","US"
"2019-03-01 09:25:14","https://valsorg-my.sharepoint.com/:u:/g/personal/accounts_vals_org_au/EX7tulxqupJNj8p3QOJk_8IBxrYdFJpzqjVsKdXR7dRTAA?e=84iDFN&download=1","offline","malware_download","AUS|Gozi|NZL|vbs|zip","valsorg-my.sharepoint.com","13.107.138.10","8075","US"
"2019-02-26 03:13:43","https://manager.blob.core.windows.net/update2019/Update_2019.010.20098.exe","offline","malware_download","exe","manager.blob.core.windows.net","191.235.250.36","8075","BR"
"2019-02-25 22:08:16","https://goldsealfinance-my.sharepoint.com/:u:/g/personal/admin_goldsealfinance_com_au/EQ2S37ezhedAhtXyu29Ya9YBPTDfk2FZ6nneUSk-iKPu_g?e=IcEzO9&download=1","offline","malware_download","AUS|Gozi|Zipped-VBS","goldsealfinance-my.sharepoint.com","13.107.136.10","8075","US"
"2019-02-25 22:08:16","https://goldsealfinance-my.sharepoint.com/:u:/g/personal/admin_goldsealfinance_com_au/EQ2S37ezhedAhtXyu29Ya9YBPTDfk2FZ6nneUSk-iKPu_g?e=IcEzO9&download=1","offline","malware_download","AUS|Gozi|Zipped-VBS","goldsealfinance-my.sharepoint.com","13.107.138.10","8075","US"
"2019-02-25 08:09:05","https://humesolutions-my.sharepoint.com/:u:/g/personal/roshim_remagine_com_au/EdWykZu7PqpMomMul2cCevwBFEDwharTlMQKqJTe7HCwSQ?e=2fdSxJ&download=1","offline","malware_download","AUS|Gozi|NZL|Zipped-VBS","humesolutions-my.sharepoint.com","13.107.136.10","8075","US"
"2019-02-25 08:09:05","https://humesolutions-my.sharepoint.com/:u:/g/personal/roshim_remagine_com_au/EdWykZu7PqpMomMul2cCevwBFEDwharTlMQKqJTe7HCwSQ?e=2fdSxJ&download=1","offline","malware_download","AUS|Gozi|NZL|Zipped-VBS","humesolutions-my.sharepoint.com","13.107.138.10","8075","US"
"2019-02-22 08:42:36","https://oliverbrown-my.sharepoint.com/:u:/g/personal/isaac_oliverbrown_org_uk/EVAQK3jEHgxAo9QvfGZ9YtkBiNAcjRqaD6F1AuCLPsXe2A?e=38XYzZ&download=1","offline","malware_download","AUS|Gozi|zipped-VBS","oliverbrown-my.sharepoint.com","13.107.136.10","8075","US"
"2019-02-22 08:42:36","https://oliverbrown-my.sharepoint.com/:u:/g/personal/isaac_oliverbrown_org_uk/EVAQK3jEHgxAo9QvfGZ9YtkBiNAcjRqaD6F1AuCLPsXe2A?e=38XYzZ&download=1","offline","malware_download","AUS|Gozi|zipped-VBS","oliverbrown-my.sharepoint.com","13.107.138.10","8075","US"
"2019-02-21 22:31:55","http://jachtklubelektron.pl/organization/online/thrust/list/2KiDx09dESihhwpLgfW/","offline","malware_download","doc|emotet|epoch1|Heodo","jachtklubelektron.pl","20.215.248.31","8075","PL"
"2019-02-21 22:30:04","http://innuvem.com/secure/account/thrust/read/U0iISSf9L5jHGDkGKl8aQqWz/","offline","malware_download","doc|Emotet|Heodo","innuvem.com","40.88.23.26","8075","US"
"2019-02-21 22:07:16","http://innuvem.com/secure/account/thrust/read/U0iISSf9L5jHGDkGKl8aQqWz","offline","malware_download","doc","innuvem.com","40.88.23.26","8075","US"
"2019-02-21 12:15:18","http://13.73.162.155/De/IGGIYNZKGL8673935/Rechnung/Rechnungszahlung/","offline","malware_download","emotet|epoch2|Heodo","13.73.162.155","13.73.162.155","8075","NL"
"2019-02-21 09:13:03","http://13.73.162.155/De/IGGIYNZKGL8673935/Rechnung/Rechnungszahlung//","offline","malware_download","Emotet|Heodo","13.73.162.155","13.73.162.155","8075","NL"
"2019-02-20 12:32:06","https://lymphcare-my.sharepoint.com/:u:/g/personal/jtaylor_lymphcare_co_uk/ERNWo8CTY5RIsS9s7POgUqEBTthcq_CJ20HOkrMivXsYQg?e=MAAODw&download=1","offline","malware_download","GBR|Gozi|zipped-vbs","lymphcare-my.sharepoint.com","52.107.243.193","8075","DE"
"2019-02-20 12:32:06","https://lymphcare-my.sharepoint.com/:u:/g/personal/jtaylor_lymphcare_co_uk/ERNWo8CTY5RIsS9s7POgUqEBTthcq_CJ20HOkrMivXsYQg?e=MAAODw&download=1","offline","malware_download","GBR|Gozi|zipped-vbs","lymphcare-my.sharepoint.com","52.107.243.216","8075","DE"
"2019-02-20 12:32:06","https://lymphcare-my.sharepoint.com/:u:/g/personal/jtaylor_lymphcare_co_uk/ERNWo8CTY5RIsS9s7POgUqEBTthcq_CJ20HOkrMivXsYQg?e=MAAODw&download=1","offline","malware_download","GBR|Gozi|zipped-vbs","lymphcare-my.sharepoint.com","52.107.243.66","8075","DE"
"2019-02-20 12:32:06","https://lymphcare-my.sharepoint.com/:u:/g/personal/jtaylor_lymphcare_co_uk/ERNWo8CTY5RIsS9s7POgUqEBTthcq_CJ20HOkrMivXsYQg?e=MAAODw&download=1","offline","malware_download","GBR|Gozi|zipped-vbs","lymphcare-my.sharepoint.com","52.107.243.91","8075","DE"
"2019-02-20 09:12:05","https://callblocker-my.sharepoint.com/:u:/g/personal/chrissy_sandbrook_cprglobaltech_com/EdXwKqfjiZRJsveY99aVwm0B_SLNPpSW0fgFkXzHyZeBvg?e=CBDfhb&download=1","offline","malware_download","GBR|Gozi|Zipped-vbs","callblocker-my.sharepoint.com","52.107.243.192","8075","DE"
"2019-02-20 09:12:05","https://callblocker-my.sharepoint.com/:u:/g/personal/chrissy_sandbrook_cprglobaltech_com/EdXwKqfjiZRJsveY99aVwm0B_SLNPpSW0fgFkXzHyZeBvg?e=CBDfhb&download=1","offline","malware_download","GBR|Gozi|Zipped-vbs","callblocker-my.sharepoint.com","52.107.243.196","8075","DE"
"2019-02-20 09:12:05","https://callblocker-my.sharepoint.com/:u:/g/personal/chrissy_sandbrook_cprglobaltech_com/EdXwKqfjiZRJsveY99aVwm0B_SLNPpSW0fgFkXzHyZeBvg?e=CBDfhb&download=1","offline","malware_download","GBR|Gozi|Zipped-vbs","callblocker-my.sharepoint.com","52.107.243.198","8075","DE"
"2019-02-20 09:12:05","https://callblocker-my.sharepoint.com/:u:/g/personal/chrissy_sandbrook_cprglobaltech_com/EdXwKqfjiZRJsveY99aVwm0B_SLNPpSW0fgFkXzHyZeBvg?e=CBDfhb&download=1","offline","malware_download","GBR|Gozi|Zipped-vbs","callblocker-my.sharepoint.com","52.107.243.217","8075","DE"
"2019-02-20 09:12:05","https://callblocker-my.sharepoint.com/:u:/g/personal/chrissy_sandbrook_cprglobaltech_com/EdXwKqfjiZRJsveY99aVwm0B_SLNPpSW0fgFkXzHyZeBvg?e=CBDfhb&download=1","offline","malware_download","GBR|Gozi|Zipped-vbs","callblocker-my.sharepoint.com","52.107.243.71","8075","DE"
"2019-02-20 09:12:05","https://callblocker-my.sharepoint.com/:u:/g/personal/chrissy_sandbrook_cprglobaltech_com/EdXwKqfjiZRJsveY99aVwm0B_SLNPpSW0fgFkXzHyZeBvg?e=CBDfhb&download=1","offline","malware_download","GBR|Gozi|Zipped-vbs","callblocker-my.sharepoint.com","52.107.243.74","8075","DE"
"2019-02-20 09:12:05","https://callblocker-my.sharepoint.com/:u:/g/personal/chrissy_sandbrook_cprglobaltech_com/EdXwKqfjiZRJsveY99aVwm0B_SLNPpSW0fgFkXzHyZeBvg?e=CBDfhb&download=1","offline","malware_download","GBR|Gozi|Zipped-vbs","callblocker-my.sharepoint.com","52.107.243.76","8075","DE"
"2019-02-20 09:12:05","https://callblocker-my.sharepoint.com/:u:/g/personal/chrissy_sandbrook_cprglobaltech_com/EdXwKqfjiZRJsveY99aVwm0B_SLNPpSW0fgFkXzHyZeBvg?e=CBDfhb&download=1","offline","malware_download","GBR|Gozi|Zipped-vbs","callblocker-my.sharepoint.com","52.107.243.91","8075","DE"
"2019-02-19 16:30:03","http://13.73.162.155/US_us/xerox/pTlV-KGU7_KavS-Hr/","offline","malware_download","Emotet|Heodo","13.73.162.155","13.73.162.155","8075","NL"
"2019-02-15 17:03:06","https://attgb-my.sharepoint.com/:u:/g/personal/s_bassett_attgb_co_uk/EavkSd9jq9REpq_WnglNek8BbFUtiUv6mMivLqYsrXUNjw?e=QcHqBn&download=1","offline","malware_download","AUS|Gozi|zipped-vbs","attgb-my.sharepoint.com","13.107.136.10","8075","US"
"2019-02-15 17:03:06","https://attgb-my.sharepoint.com/:u:/g/personal/s_bassett_attgb_co_uk/EavkSd9jq9REpq_WnglNek8BbFUtiUv6mMivLqYsrXUNjw?e=QcHqBn&download=1","offline","malware_download","AUS|Gozi|zipped-vbs","attgb-my.sharepoint.com","13.107.138.10","8075","US"
"2019-02-15 17:03:04","https://photographers-my.sharepoint.com/:u:/g/personal/photo_timstubbings_com/EdnZfG7rLlZBiAOM7KnX04ABm9Fvqg0B3mHDfs73kROmUw?e=EIpknx&download=1","offline","malware_download","AUS|Gozi|zipped-vbs","photographers-my.sharepoint.com","52.107.243.194","8075","DE"
"2019-02-15 17:03:04","https://photographers-my.sharepoint.com/:u:/g/personal/photo_timstubbings_com/EdnZfG7rLlZBiAOM7KnX04ABm9Fvqg0B3mHDfs73kROmUw?e=EIpknx&download=1","offline","malware_download","AUS|Gozi|zipped-vbs","photographers-my.sharepoint.com","52.107.243.196","8075","DE"
"2019-02-15 17:03:04","https://photographers-my.sharepoint.com/:u:/g/personal/photo_timstubbings_com/EdnZfG7rLlZBiAOM7KnX04ABm9Fvqg0B3mHDfs73kROmUw?e=EIpknx&download=1","offline","malware_download","AUS|Gozi|zipped-vbs","photographers-my.sharepoint.com","52.107.243.216","8075","DE"
"2019-02-15 17:03:04","https://photographers-my.sharepoint.com/:u:/g/personal/photo_timstubbings_com/EdnZfG7rLlZBiAOM7KnX04ABm9Fvqg0B3mHDfs73kROmUw?e=EIpknx&download=1","offline","malware_download","AUS|Gozi|zipped-vbs","photographers-my.sharepoint.com","52.107.243.217","8075","DE"
"2019-02-15 17:03:04","https://photographers-my.sharepoint.com/:u:/g/personal/photo_timstubbings_com/EdnZfG7rLlZBiAOM7KnX04ABm9Fvqg0B3mHDfs73kROmUw?e=EIpknx&download=1","offline","malware_download","AUS|Gozi|zipped-vbs","photographers-my.sharepoint.com","52.107.243.77","8075","DE"
"2019-02-15 17:03:04","https://photographers-my.sharepoint.com/:u:/g/personal/photo_timstubbings_com/EdnZfG7rLlZBiAOM7KnX04ABm9Fvqg0B3mHDfs73kROmUw?e=EIpknx&download=1","offline","malware_download","AUS|Gozi|zipped-vbs","photographers-my.sharepoint.com","52.107.243.80","8075","DE"
"2019-02-15 17:03:04","https://photographers-my.sharepoint.com/:u:/g/personal/photo_timstubbings_com/EdnZfG7rLlZBiAOM7KnX04ABm9Fvqg0B3mHDfs73kROmUw?e=EIpknx&download=1","offline","malware_download","AUS|Gozi|zipped-vbs","photographers-my.sharepoint.com","52.107.243.84","8075","DE"
"2019-02-15 17:03:04","https://photographers-my.sharepoint.com/:u:/g/personal/photo_timstubbings_com/EdnZfG7rLlZBiAOM7KnX04ABm9Fvqg0B3mHDfs73kROmUw?e=EIpknx&download=1","offline","malware_download","AUS|Gozi|zipped-vbs","photographers-my.sharepoint.com","52.107.243.91","8075","DE"
"2019-02-14 13:27:07","http://wineswap.com.au/US_us/aNMn-Nb_A-ire/","offline","malware_download","Emotet|Heodo","wineswap.com.au","20.70.127.135","8075","AU"
"2019-02-14 09:19:03","https://trickybiz-my.sharepoint.com/:u:/g/personal/sam_trickybusiness_com/EbGSk4zqd_NBgeUCzpl4MAMBBh0lz6f6kqRMXfXTnE4GeA?e=IBcrVr&download=1","offline","malware_download","AUS|Gozi|Zipped-VBS","trickybiz-my.sharepoint.com","13.107.136.10","8075","US"
"2019-02-14 09:19:03","https://trickybiz-my.sharepoint.com/:u:/g/personal/sam_trickybusiness_com/EbGSk4zqd_NBgeUCzpl4MAMBBh0lz6f6kqRMXfXTnE4GeA?e=IBcrVr&download=1","offline","malware_download","AUS|Gozi|Zipped-VBS","trickybiz-my.sharepoint.com","13.107.138.10","8075","US"
"2019-02-13 20:14:05","http://52.236.174.152/jvWJzuX5kVly/","offline","malware_download","emotet|epoch2|exe|Heodo","52.236.174.152","52.236.174.152","8075","NL"
"2019-02-13 19:37:08","http://104.211.226.28/En/file/SgIS-4TUmZ_cTftxeU-xTR/","offline","malware_download","doc|emotet|epoch2|Heodo","104.211.226.28","104.211.226.28","8075","IN"
"2019-02-13 16:40:43","http://40.69.23.131/US_us/company/New_invoice/PpUcl-3bjaO_X-s42/","offline","malware_download","doc|emotet|epoch2|Heodo","40.69.23.131","40.69.23.131","8075","IE"
"2019-02-13 13:43:04","http://13.92.177.54/corporation/Copy_Invoice/oYHZ-DU3_FMxI-vE/","offline","malware_download","Emotet|Heodo","13.92.177.54","13.92.177.54","8075","US"
"2019-02-11 20:56:05","http://104.211.226.28/secure.myacc.send.net/","offline","malware_download","emotet|Heodo","104.211.226.28","104.211.226.28","8075","IN"
"2019-02-11 19:12:03","http://52.236.174.152/doc/New_invoice/OwcFW-cQVA_RD-lXj/","offline","malware_download","emotet|epoch2|Heodo","52.236.174.152","52.236.174.152","8075","NL"
"2019-02-11 17:20:57","http://40.117.254.165/llc/lLotL-gYw_VcoeSlLq-vv/","offline","malware_download","doc|emotet|epoch2|Heodo","40.117.254.165","40.117.254.165","8075","US"
"2019-02-11 15:39:03","http://40.69.23.131/8oyfkox0mn/","offline","malware_download","emotet|epoch1|exe|Heodo","40.69.23.131","40.69.23.131","8075","IE"
"2019-02-11 13:55:02","http://13.92.177.54/secure.accs.send.net/","offline","malware_download","doc|emotet|epoch1|Heodo","13.92.177.54","13.92.177.54","8075","US"
"2019-02-11 11:14:06","http://86.91.10.91/wordpress/DE_de/LXPDQSKNC6740889/de/Hilfestellung/","offline","malware_download","Emotet|Heodo","86.91.10.91","86.91.10.91","8075","GB"
"2019-02-11 10:50:03","http://40.84.134.182/DE/FBLDHRLRQ6013107/Dokumente/DETAILS/","offline","malware_download","Emotet|Heodo","40.84.134.182","40.84.134.182","8075","US"
"2019-02-10 10:44:05","http://40.121.158.163/bins.sh","offline","malware_download","elf","40.121.158.163","40.121.158.163","8075","US"
"2019-02-07 08:18:10","https://designerhomeextensions-my.sharepoint.com/:u:/g/personal/loreta_designerhomeextensions_com_au/ERdHUVuasOlAtwm9SktmBkABtHQj-wmF_VABiCXTZDIWew?e=1ZuFUj&download=1","offline","malware_download","AUS|Gozi|zipped-VBS","designerhomeextensions-my.sharepoint.com","13.107.136.10","8075","US"
"2019-02-07 08:18:10","https://designerhomeextensions-my.sharepoint.com/:u:/g/personal/loreta_designerhomeextensions_com_au/ERdHUVuasOlAtwm9SktmBkABtHQj-wmF_VABiCXTZDIWew?e=1ZuFUj&download=1","offline","malware_download","AUS|Gozi|zipped-VBS","designerhomeextensions-my.sharepoint.com","13.107.138.10","8075","US"
"2019-02-05 22:12:33","http://fitchburgchamber.com/xeHj_XYrF-ofeY/NY4/Payments/2019-02/","offline","malware_download","doc|emotet|epoch1|Heodo","fitchburgchamber.com","20.25.91.29","8075","US"
"2019-02-05 15:27:12","https://drapacific-my.sharepoint.com/:u:/g/personal/abirch_g-s_com_au/ERtpiqYVrc1Coodce7MLkWUBorQock-WdimWlfA5e7esDQ?e=ymIMeP&download=1","offline","malware_download","GBR|Gozi|zipped-vbs","drapacific-my.sharepoint.com","13.107.136.10","8075","US"
"2019-02-05 15:27:12","https://drapacific-my.sharepoint.com/:u:/g/personal/abirch_g-s_com_au/ERtpiqYVrc1Coodce7MLkWUBorQock-WdimWlfA5e7esDQ?e=ymIMeP&download=1","offline","malware_download","GBR|Gozi|zipped-vbs","drapacific-my.sharepoint.com","13.107.138.10","8075","US"
"2019-02-05 00:07:10","http://baselicastudiolegale.it/CSBNm_XqfM-ZLXGILt/wu5/Clients/022019/","offline","malware_download","doc|emotet|epoch1|Heodo","baselicastudiolegale.it","13.81.7.21","8075","NL"
"2019-01-30 16:35:11","https://gsncloud-my.sharepoint.com/:u:/g/personal/lpower_gsn_com_au/ESQIlQzDaD9KnDCE0qnDTYgBqDrFTzxNTx8qvRWFJg9l1w?e=wlUeWV&download=1","offline","malware_download","GBR|Gozi|zipped-VBS","gsncloud-my.sharepoint.com","13.107.136.10","8075","US"
"2019-01-30 16:35:11","https://gsncloud-my.sharepoint.com/:u:/g/personal/lpower_gsn_com_au/ESQIlQzDaD9KnDCE0qnDTYgBqDrFTzxNTx8qvRWFJg9l1w?e=wlUeWV&download=1","offline","malware_download","GBR|Gozi|zipped-VBS","gsncloud-my.sharepoint.com","13.107.138.10","8075","US"
"2019-01-30 14:42:04","http://fyo.com/wp-content/uploads/vTFC-xx_uhnS-s8/V75/invoicing/En_us/Outstanding-Invoices/","offline","malware_download","emotet|epoch2","fyo.com","52.251.53.68","8075","US"
"2019-01-29 03:21:03","http://40.121.158.163/DankyDanky.arm4","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-29 03:20:05","http://40.121.158.163/DankyDanky.mips","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-29 03:20:04","http://40.121.158.163/DankyDanky.mpsl","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-29 03:20:03","http://40.121.158.163/DankyDanky.x86","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-29 03:20:02","http://40.121.158.163/DankyDanky.sparc","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-29 03:19:04","http://40.121.158.163/DankyDanky.i586","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-29 03:01:05","http://40.121.158.163/DankyDanky.ppc","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-29 03:01:03","http://40.121.158.163/DankyDanky.i686","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-29 03:00:04","http://40.121.158.163/DankyDanky.m68k","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-29 03:00:03","http://40.121.158.163/DankyDanky.arm6","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-29 02:59:05","http://40.121.158.163/DankyDanky.arm7","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-29 02:55:19","http://40.121.158.163/DankyDanky.arm5","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-28 22:47:39","http://www.fyo.com/wp-content/uploads/vTFC-xx_uhnS-s8/V75/invoicing/En_us/Outstanding-Invoices/","offline","malware_download","doc|emotet|epoch2|Heodo","www.fyo.com","52.251.53.68","8075","US"
"2019-01-28 17:18:11","http://universitytransplantcenter.com/templates/utc/images/utc/sserv.jpg","offline","malware_download","exe","universitytransplantcenter.com","13.66.80.152","8075","US"
"2019-01-28 16:11:19","http://universitytransplantcenter.com/templates/utc/html/com_content/article/image/cdf.png","offline","malware_download","exe|ransomware|shade|troldesh","universitytransplantcenter.com","13.66.80.152","8075","US"
"2019-01-28 16:11:12","http://universitytransplantcenter.com/templates/utc/html/com_content/article/image/sserv.jpg","offline","malware_download","exe|ransomware|shade|troldesh","universitytransplantcenter.com","13.66.80.152","8075","US"
"2019-01-25 11:47:51","http://quik.reviews/wp-content/themes/areview/fonts/fonts/mxr.pdf","offline","malware_download","exe|Ransomware.Troldesh|Troldesh","quik.reviews","13.68.182.127","8075","US"
"2019-01-25 02:12:03","http://40.121.158.163/sniff","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-25 02:12:02","http://40.121.158.163/dirtysex","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-25 02:11:03","http://40.121.158.163/aids","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-25 02:11:03","http://40.121.158.163/nipplesd","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-25 02:11:02","http://40.121.158.163/webserver","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-25 02:10:10","http://40.121.158.163/eatyourd","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-25 02:10:04","http://40.121.158.163/weed","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-25 02:01:03","http://40.121.158.163/coke","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-25 02:01:02","http://40.121.158.163/jizzind","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-25 02:00:07","http://40.121.158.163/cashd","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-25 02:00:06","http://40.121.158.163/suckond","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-25 02:00:05","http://40.121.158.163/nutforme","offline","malware_download","bashlite|elf|gafgyt","40.121.158.163","40.121.158.163","8075","US"
"2019-01-23 09:57:03","http://blskcollege.co.in/barry.exe","offline","malware_download","exe|Formbook","blskcollege.co.in","20.40.53.2","8075","IN"
"2019-01-23 09:39:06","http://blskcollege.co.in/o.exe","offline","malware_download","exe|Formbook","blskcollege.co.in","20.40.53.2","8075","IN"
"2019-01-23 09:08:14","http://blskcollege.co.in/setiva.exe","offline","malware_download","Formbook","blskcollege.co.in","20.40.53.2","8075","IN"
"2019-01-22 07:34:06","https://lusimon-my.sharepoint.com/:u:/g/personal/knoxia_lusimon_com_au/Ed0rHtJkJa9BtlNzjDwF_owBrDHjol1_SOoA6ujlZjSkTg?e=lIT55H&download=1","offline","malware_download","AUS|Gozi|NZL|zipped-VBS","lusimon-my.sharepoint.com","13.107.136.10","8075","US"
"2019-01-22 07:34:06","https://lusimon-my.sharepoint.com/:u:/g/personal/knoxia_lusimon_com_au/Ed0rHtJkJa9BtlNzjDwF_owBrDHjol1_SOoA6ujlZjSkTg?e=lIT55H&download=1","offline","malware_download","AUS|Gozi|NZL|zipped-VBS","lusimon-my.sharepoint.com","13.107.138.10","8075","US"
"2019-01-18 07:59:04","https://romeosretail-my.sharepoint.com/:u:/g/personal/robertw_romeosretail_com_au/EQua73EfXbhIgOjDjNVCONkBkHKBWY0dBfLsud-4vNDhhw?e=gGvhYe&download=1","offline","malware_download","AUS|Gozi|zipped-VBS","romeosretail-my.sharepoint.com","13.107.136.10","8075","US"
"2019-01-18 07:59:04","https://romeosretail-my.sharepoint.com/:u:/g/personal/robertw_romeosretail_com_au/EQua73EfXbhIgOjDjNVCONkBkHKBWY0dBfLsud-4vNDhhw?e=gGvhYe&download=1","offline","malware_download","AUS|Gozi|zipped-VBS","romeosretail-my.sharepoint.com","13.107.138.10","8075","US"
"2019-01-16 12:37:04","https://malbacptyltd-my.sharepoint.com/:u:/g/personal/jim_malbac_com_au/Eei9SsBAlvhBiHxiKdD3ihUBZ_0-4WKRUQzGLUekfmgurw?e=Bzc4Z1&download=1","offline","malware_download","AUS|Gozi|zipped-VBS","malbacptyltd-my.sharepoint.com","13.107.136.10","8075","US"
"2019-01-16 12:37:04","https://malbacptyltd-my.sharepoint.com/:u:/g/personal/jim_malbac_com_au/Eei9SsBAlvhBiHxiKdD3ihUBZ_0-4WKRUQzGLUekfmgurw?e=Bzc4Z1&download=1","offline","malware_download","AUS|Gozi|zipped-VBS","malbacptyltd-my.sharepoint.com","13.107.138.10","8075","US"
"2019-01-14 13:30:08","http://chat-pal.com/46L3tNj/","offline","malware_download","emotet|epoch1|exe|Heodo","chat-pal.com","20.50.64.7","8075","IE"
"2019-01-04 19:18:05","https://debzaccholkonsult.com/rundll.exe","offline","malware_download","Gandcrab","debzaccholkonsult.com","13.89.172.6","8075","US"
"2019-01-03 09:48:05","https://iquestcon-my.sharepoint.com/:u:/g/personal/marciana_nathan_iquest_com_au/ETDn9Dgq169JsBAqqtRxzL0BLgtJgehX0_hy4BcV5PczYg?e=bdfeGc&download=1","offline","malware_download","AUS|Gozi|zipped-VBS","iquestcon-my.sharepoint.com","13.107.136.10","8075","US"
"2019-01-03 09:48:05","https://iquestcon-my.sharepoint.com/:u:/g/personal/marciana_nathan_iquest_com_au/ETDn9Dgq169JsBAqqtRxzL0BLgtJgehX0_hy4BcV5PczYg?e=bdfeGc&download=1","offline","malware_download","AUS|Gozi|zipped-VBS","iquestcon-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-27 03:02:05","https://abbottech-my.sharepoint.com/:u:/g/personal/nthompson_abbottech_com_au/EW70SbE2zVZKmO0sylvJLl4BKfkfjrTTRliGlcfHpbOvHw?e=y2HPaf&download=1","offline","malware_download","AUS|Gozi|Zipped-VBS","abbottech-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-27 03:02:05","https://abbottech-my.sharepoint.com/:u:/g/personal/nthompson_abbottech_com_au/EW70SbE2zVZKmO0sylvJLl4BKfkfjrTTRliGlcfHpbOvHw?e=y2HPaf&download=1","offline","malware_download","AUS|Gozi|Zipped-VBS","abbottech-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-21 10:48:04","https://supamidland-my.sharepoint.com/:u:/g/personal/sarah_p_pmkgroup_com_au/EWsrJWgkgxZCnmQsH9SWgQ0BclohRunz9_CBTamNWqIeUw?e=b6fEuc&download=1","offline","malware_download","CHE|gozi|zipped-vbs","supamidland-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-21 10:48:04","https://supamidland-my.sharepoint.com/:u:/g/personal/sarah_p_pmkgroup_com_au/EWsrJWgkgxZCnmQsH9SWgQ0BclohRunz9_CBTamNWqIeUw?e=b6fEuc&download=1","offline","malware_download","CHE|gozi|zipped-vbs","supamidland-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-19 23:28:25","http://net96.it/ismmE-gYm_PVM-d3/Ref/45234762US_us/Invoice/","offline","malware_download","emotet|epoch2|Heodo","net96.it","40.91.205.36","8075","NL"
"2018-12-19 19:04:05","https://guardianchildcare-my.sharepoint.com/:u:/g/personal/preston_guardian_edu_au/Ee1iLcGIyU5Ngs_TcnChZiABA7275MKBG7zl8rbXHhWQHw?e=itGPMt&download=1","offline","malware_download","CHE|Gozi|vbs|zip","guardianchildcare-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-19 19:04:05","https://guardianchildcare-my.sharepoint.com/:u:/g/personal/preston_guardian_edu_au/Ee1iLcGIyU5Ngs_TcnChZiABA7275MKBG7zl8rbXHhWQHw?e=itGPMt&download=1","offline","malware_download","CHE|Gozi|vbs|zip","guardianchildcare-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-19 10:38:05","https://hiscoutereast-my.sharepoint.com/:u:/g/personal/office_hiscmelboutereast_com_au/EW_3qTn1dJxDlJr6ks9uaQ8BswI6_E-gnPHgLO6ANNn4CA?e=uiik1j&download=1","offline","malware_download","GBR|Gozi|zipped-VBS","hiscoutereast-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-19 10:38:05","https://hiscoutereast-my.sharepoint.com/:u:/g/personal/office_hiscmelboutereast_com_au/EW_3qTn1dJxDlJr6ks9uaQ8BswI6_E-gnPHgLO6ANNn4CA?e=uiik1j&download=1","offline","malware_download","GBR|Gozi|zipped-VBS","hiscoutereast-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-18 23:58:28","http://cedutica.com/Amazon/Details/122018/","offline","malware_download","emotet|epoch1|Heodo","cedutica.com","20.40.202.5","8075","US"
"2018-12-18 16:58:06","http://www.cedutica.com/Amazon/Details/122018/","offline","malware_download","emotet|epoch1|Heodo","www.cedutica.com","20.40.202.5","8075","US"
"2018-12-18 12:41:05","https://centralwellbeing-my.sharepoint.com/:u:/g/personal/alana_centralwellbeing_com_au/ET8nHzFLIINHvOSBYn97C9ABn-T1iquQFVLKnsBCCtEx3A?e=tTJTHq&download=1","offline","malware_download","GBR|Gozi|Zipped-VBS","centralwellbeing-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-18 12:41:05","https://centralwellbeing-my.sharepoint.com/:u:/g/personal/alana_centralwellbeing_com_au/ET8nHzFLIINHvOSBYn97C9ABn-T1iquQFVLKnsBCCtEx3A?e=tTJTHq&download=1","offline","malware_download","GBR|Gozi|Zipped-VBS","centralwellbeing-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-18 06:08:05","https://aodeli-my.sharepoint.com/:u:/g/personal/admin_aodeli_com_au/ES8WYpjS3hRMrjqMlQLjKgkBNEkwJyzw8bT99MYfDYO-lA?e=bkMiey&download=1","offline","malware_download","AUS|Gozi|Zipped-VBS","aodeli-my.sharepoint.com","52.107.225.8","8075","DE"
"2018-12-18 06:08:05","https://aodeli-my.sharepoint.com/:u:/g/personal/admin_aodeli_com_au/ES8WYpjS3hRMrjqMlQLjKgkBNEkwJyzw8bT99MYfDYO-lA?e=bkMiey&download=1","offline","malware_download","AUS|Gozi|Zipped-VBS","aodeli-my.sharepoint.com","52.107.243.198","8075","DE"
"2018-12-18 06:08:05","https://aodeli-my.sharepoint.com/:u:/g/personal/admin_aodeli_com_au/ES8WYpjS3hRMrjqMlQLjKgkBNEkwJyzw8bT99MYfDYO-lA?e=bkMiey&download=1","offline","malware_download","AUS|Gozi|Zipped-VBS","aodeli-my.sharepoint.com","52.107.243.215","8075","DE"
"2018-12-18 06:08:05","https://aodeli-my.sharepoint.com/:u:/g/personal/admin_aodeli_com_au/ES8WYpjS3hRMrjqMlQLjKgkBNEkwJyzw8bT99MYfDYO-lA?e=bkMiey&download=1","offline","malware_download","AUS|Gozi|Zipped-VBS","aodeli-my.sharepoint.com","52.107.243.77","8075","DE"
"2018-12-18 06:08:05","https://aodeli-my.sharepoint.com/:u:/g/personal/admin_aodeli_com_au/ES8WYpjS3hRMrjqMlQLjKgkBNEkwJyzw8bT99MYfDYO-lA?e=bkMiey&download=1","offline","malware_download","AUS|Gozi|Zipped-VBS","aodeli-my.sharepoint.com","52.107.243.82","8075","DE"
"2018-12-18 06:08:05","https://aodeli-my.sharepoint.com/:u:/g/personal/admin_aodeli_com_au/ES8WYpjS3hRMrjqMlQLjKgkBNEkwJyzw8bT99MYfDYO-lA?e=bkMiey&download=1","offline","malware_download","AUS|Gozi|Zipped-VBS","aodeli-my.sharepoint.com","52.107.243.84","8075","DE"
"2018-12-18 06:08:05","https://aodeli-my.sharepoint.com/:u:/g/personal/admin_aodeli_com_au/ES8WYpjS3hRMrjqMlQLjKgkBNEkwJyzw8bT99MYfDYO-lA?e=bkMiey&download=1","offline","malware_download","AUS|Gozi|Zipped-VBS","aodeli-my.sharepoint.com","52.107.243.88","8075","DE"
"2018-12-18 06:08:05","https://aodeli-my.sharepoint.com/:u:/g/personal/admin_aodeli_com_au/ES8WYpjS3hRMrjqMlQLjKgkBNEkwJyzw8bT99MYfDYO-lA?e=bkMiey&download=1","offline","malware_download","AUS|Gozi|Zipped-VBS","aodeli-my.sharepoint.com","52.107.243.95","8075","DE"
"2018-12-17 14:55:05","http://net96.it/Amazon/Transactions/2018-12/","offline","malware_download","emotet|epoch1|Heodo","net96.it","40.91.205.36","8075","NL"
"2018-12-17 13:30:06","https://gowriensw-my.sharepoint.com/:u:/g/personal/rydestorypark_gowriensw_com_au/EWM2BQ7I5-ZPp9tk1cpDLFUBW_4Onv3cFw92Wy7AFNmesw?e=Amrm3c&download=1","offline","malware_download","CHE|gozi|zipped-VBS","gowriensw-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-17 13:30:06","https://gowriensw-my.sharepoint.com/:u:/g/personal/rydestorypark_gowriensw_com_au/EWM2BQ7I5-ZPp9tk1cpDLFUBW_4Onv3cFw92Wy7AFNmesw?e=Amrm3c&download=1","offline","malware_download","CHE|gozi|zipped-VBS","gowriensw-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-17 12:24:05","https://ausvest-my.sharepoint.com/:u:/g/personal/accounts_bourkesquare_com_au/ETbxpissinRNnAvz5OcwSTsB0j9Zn9oFwPqXYGLvtefDUQ?e=BVhdWq&download=1","offline","malware_download","CHE|gozi|zipped-VBS","ausvest-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-17 12:24:05","https://ausvest-my.sharepoint.com/:u:/g/personal/accounts_bourkesquare_com_au/ETbxpissinRNnAvz5OcwSTsB0j9Zn9oFwPqXYGLvtefDUQ?e=BVhdWq&download=1","offline","malware_download","CHE|gozi|zipped-VBS","ausvest-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-17 11:57:04","https://mynatus-my.sharepoint.com/:u:/g/personal/laura_fang_natus_com/Edq05XVX8-dFnttJXj18OWUBR_nzGsqSPNoxcle-wHizWw?e=hCqhZu&download=1","offline","malware_download","Gozi|vbs|zip","mynatus-my.sharepoint.com","52.107.243.210","8075","DE"
"2018-12-17 11:57:04","https://mynatus-my.sharepoint.com/:u:/g/personal/laura_fang_natus_com/Edq05XVX8-dFnttJXj18OWUBR_nzGsqSPNoxcle-wHizWw?e=hCqhZu&download=1","offline","malware_download","Gozi|vbs|zip","mynatus-my.sharepoint.com","52.107.243.218","8075","DE"
"2018-12-17 11:57:04","https://mynatus-my.sharepoint.com/:u:/g/personal/laura_fang_natus_com/Edq05XVX8-dFnttJXj18OWUBR_nzGsqSPNoxcle-wHizWw?e=hCqhZu&download=1","offline","malware_download","Gozi|vbs|zip","mynatus-my.sharepoint.com","52.107.243.70","8075","DE"
"2018-12-17 11:57:04","https://mynatus-my.sharepoint.com/:u:/g/personal/laura_fang_natus_com/Edq05XVX8-dFnttJXj18OWUBR_nzGsqSPNoxcle-wHizWw?e=hCqhZu&download=1","offline","malware_download","Gozi|vbs|zip","mynatus-my.sharepoint.com","52.107.243.72","8075","DE"
"2018-12-17 11:57:04","https://mynatus-my.sharepoint.com/:u:/g/personal/laura_fang_natus_com/Edq05XVX8-dFnttJXj18OWUBR_nzGsqSPNoxcle-wHizWw?e=hCqhZu&download=1","offline","malware_download","Gozi|vbs|zip","mynatus-my.sharepoint.com","52.107.243.81","8075","DE"
"2018-12-17 11:57:04","https://mynatus-my.sharepoint.com/:u:/g/personal/laura_fang_natus_com/Edq05XVX8-dFnttJXj18OWUBR_nzGsqSPNoxcle-wHizWw?e=hCqhZu&download=1","offline","malware_download","Gozi|vbs|zip","mynatus-my.sharepoint.com","52.107.243.84","8075","DE"
"2018-12-17 11:57:04","https://mynatus-my.sharepoint.com/:u:/g/personal/laura_fang_natus_com/Edq05XVX8-dFnttJXj18OWUBR_nzGsqSPNoxcle-wHizWw?e=hCqhZu&download=1","offline","malware_download","Gozi|vbs|zip","mynatus-my.sharepoint.com","52.107.243.85","8075","DE"
"2018-12-17 11:57:04","https://mynatus-my.sharepoint.com/:u:/g/personal/laura_fang_natus_com/Edq05XVX8-dFnttJXj18OWUBR_nzGsqSPNoxcle-wHizWw?e=hCqhZu&download=1","offline","malware_download","Gozi|vbs|zip","mynatus-my.sharepoint.com","52.107.243.94","8075","DE"
"2018-12-14 16:24:04","http://net96.it/EN_US/Payments/122018/","offline","malware_download","emotet|epoch1|Heodo","net96.it","40.91.205.36","8075","NL"
"2018-12-14 06:32:09","http://fitchburgchamber.com/qB4CQHpsc/","offline","malware_download","emotet|epoch1|exe|Heodo","fitchburgchamber.com","20.25.91.29","8075","US"
"2018-12-13 13:02:05","https://aplacc-my.sharepoint.com/:u:/g/personal/jamie_aplacc_com_au/EfbUfURayn5GmMsh9FwqUkYBDjt0LG2PXqh7xzCMIwikoA?e=SR8ZRk&download=1","offline","malware_download","GBR|Gozi|zipped-vbs","aplacc-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-13 13:02:05","https://aplacc-my.sharepoint.com/:u:/g/personal/jamie_aplacc_com_au/EfbUfURayn5GmMsh9FwqUkYBDjt0LG2PXqh7xzCMIwikoA?e=SR8ZRk&download=1","offline","malware_download","GBR|Gozi|zipped-vbs","aplacc-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-12 22:26:16","http://net96.it/Ref/701282716Download/En_us/Service-Invoice/","offline","malware_download","emotet|epoch2|Heodo","net96.it","40.91.205.36","8075","NL"
"2018-12-12 17:19:05","https://newwater-my.sharepoint.com/:u:/g/personal/tonyc_nzmiracle_com/EfJHT2Mtk0FIpzwMSQSgLHoB1rhRrG9Wwb9yNt4Oo-95QQ?e=ToZrGx&download=1","offline","malware_download","GBR|Gozi|zipped-VBS","newwater-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-12 17:19:05","https://newwater-my.sharepoint.com/:u:/g/personal/tonyc_nzmiracle_com/EfJHT2Mtk0FIpzwMSQSgLHoB1rhRrG9Wwb9yNt4Oo-95QQ?e=ToZrGx&download=1","offline","malware_download","GBR|Gozi|zipped-VBS","newwater-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-12 15:38:33","http://performanceacademia.com.br/invoices/5998348063/default/En/Service-Invoice/","offline","malware_download","emotet|epoch2|Heodo","performanceacademia.com.br","104.41.13.179","8075","BR"
"2018-12-12 13:15:03","https://flemingtonosteopathy-my.sharepoint.com/personal/kensington_connecthm_com_au/Documents/Invoice%20INV-0221.zip?slrid=4549ab9e-70e8-7000-0f5f-5faadc233857","offline","malware_download","GBR|Gozi|Zipped-VBS","flemingtonosteopathy-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-12 13:15:03","https://flemingtonosteopathy-my.sharepoint.com/personal/kensington_connecthm_com_au/Documents/Invoice%20INV-0221.zip?slrid=4549ab9e-70e8-7000-0f5f-5faadc233857","offline","malware_download","GBR|Gozi|Zipped-VBS","flemingtonosteopathy-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-12 12:59:03","https://flemingtonosteopathy-my.sharepoint.com/:u:/g/personal/kensington_connecthm_com_au/EYkdWtYfdSdNvT5QCBUcT-4B2oFPBJxuUEd4G_aW_RbrHQ?e=7tBvSG&download=1","offline","malware_download","GBR|Gozi|Zipped-VBS","flemingtonosteopathy-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-12 12:59:03","https://flemingtonosteopathy-my.sharepoint.com/:u:/g/personal/kensington_connecthm_com_au/EYkdWtYfdSdNvT5QCBUcT-4B2oFPBJxuUEd4G_aW_RbrHQ?e=7tBvSG&download=1","offline","malware_download","GBR|Gozi|Zipped-VBS","flemingtonosteopathy-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-12 10:42:03","https://kasolutions-my.sharepoint.com/:u:/g/personal/hannaht_kasolutions_com_au/EeGV8n6Q-EhPsw3opdqMsbUBakhbKVz7RTqXskVBStkrUw?e=XV6Lq7&download=1","offline","malware_download","zip","kasolutions-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-12 10:42:03","https://kasolutions-my.sharepoint.com/:u:/g/personal/hannaht_kasolutions_com_au/EeGV8n6Q-EhPsw3opdqMsbUBakhbKVz7RTqXskVBStkrUw?e=XV6Lq7&download=1","offline","malware_download","zip","kasolutions-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-11 07:47:05","https://tascahrd-my.sharepoint.com/:u:/g/personal/accounts_tascahrd_org_au/Ebak8LoUTpZPrrmyuQx9Bm0BsrbXzBTxGDbiCZCJo-ZfcA?e=3U10Ls&download=1","offline","malware_download","AUS|gozi|zipped-vbs","tascahrd-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-11 07:47:05","https://tascahrd-my.sharepoint.com/:u:/g/personal/accounts_tascahrd_org_au/Ebak8LoUTpZPrrmyuQx9Bm0BsrbXzBTxGDbiCZCJo-ZfcA?e=3U10Ls&download=1","offline","malware_download","AUS|gozi|zipped-vbs","tascahrd-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-11 03:27:37","http://net96.it/Telekom/Transaktion/112018/","offline","malware_download","doc|emotet|epoch1|Heodo","net96.it","40.91.205.36","8075","NL"
"2018-12-10 21:14:42","http://net96.it/Telekom/Transaktion/112018","offline","malware_download","emotet|epoch1","net96.it","40.91.205.36","8075","NL"
"2018-12-10 11:06:03","https://vaeaincorp-my.sharepoint.com/:u:/g/personal/biancac_vaeai_org_au/EUtdpzByXZpHotufzlrgh58Be1Ur9HGZb1anw2tP0TsscA?e=ZDVuw0&download=1","offline","malware_download","AUS|Gozi|Zipped-VBS","vaeaincorp-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-10 11:06:03","https://vaeaincorp-my.sharepoint.com/:u:/g/personal/biancac_vaeai_org_au/EUtdpzByXZpHotufzlrgh58Be1Ur9HGZb1anw2tP0TsscA?e=ZDVuw0&download=1","offline","malware_download","AUS|Gozi|Zipped-VBS","vaeaincorp-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-08 13:07:03","https://chrstiansagainstpoverty-my.sharepoint.com/:u:/g/personal/sharon_blake_capnz_org/EYxwSaSzHLJFntNdIqrXHcYBUEtMMaREXVJPDN88gkYkng?e=KH5Cvp&download=1","offline","malware_download","GBR|Ursnif|zipped-VBS","chrstiansagainstpoverty-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-08 13:07:03","https://chrstiansagainstpoverty-my.sharepoint.com/:u:/g/personal/sharon_blake_capnz_org/EYxwSaSzHLJFntNdIqrXHcYBUEtMMaREXVJPDN88gkYkng?e=KH5Cvp&download=1","offline","malware_download","GBR|Ursnif|zipped-VBS","chrstiansagainstpoverty-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-07 03:34:03","http://aitkenspence.com/En_us/Information/12_18/","offline","malware_download","doc|emotet|epoch1","aitkenspence.com","52.237.79.85","8075","SG"
"2018-12-06 23:45:47","http://net96.it/IRS.gov/Tax-Account-Transcript","offline","malware_download","emotet|epoch2|Heodo","net96.it","40.91.205.36","8075","NL"
"2018-12-06 19:43:10","http://aitkenspence.com/En_us/Information/12_18","offline","malware_download","emotet|epoch1|Heodo","aitkenspence.com","52.237.79.85","8075","SG"
"2018-12-06 15:45:20","http://net96.it//IRS.gov/Tax-Account-Transcript/","offline","malware_download","doc|emotet|Heodo","net96.it","40.91.205.36","8075","NL"
"2018-12-06 15:10:06","http://net96.it/IRS.gov/Tax-Account-Transcript/","offline","malware_download","doc|Emotet|Heodo","net96.it","40.91.205.36","8075","NL"
"2018-12-05 12:02:04","https://twhotaah-my.sharepoint.com/:u:/g/personal/accounts_hauiti_co_nz/EY1zrUXTrsRBpcuLKtIe12MBUMSe6oD8bwK6yn_vMSCwvg?e=NvHdV2&download=1","offline","malware_download","FRA|Gootkit|zipped-VBS","twhotaah-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-05 12:02:04","https://twhotaah-my.sharepoint.com/:u:/g/personal/accounts_hauiti_co_nz/EY1zrUXTrsRBpcuLKtIe12MBUMSe6oD8bwK6yn_vMSCwvg?e=NvHdV2&download=1","offline","malware_download","FRA|Gootkit|zipped-VBS","twhotaah-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-04 14:23:05","https://turnerandassociates-my.sharepoint.com/:u:/g/personal/sue_turnerandassociates_com_au/Ed2WvgFRZSVKu221JR64ASsBu9Lkr386MmE0JaML0KR_Ew?e=avvVdZ&download=1","offline","malware_download","GBR|Ursnif|zipped-vbs","turnerandassociates-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-04 14:23:05","https://turnerandassociates-my.sharepoint.com/:u:/g/personal/sue_turnerandassociates_com_au/Ed2WvgFRZSVKu221JR64ASsBu9Lkr386MmE0JaML0KR_Ew?e=avvVdZ&download=1","offline","malware_download","GBR|Ursnif|zipped-vbs","turnerandassociates-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-04 11:44:05","https://axisplumbingptyltd-my.sharepoint.com/:u:/g/personal/sally_axisplumbingact_com_au/EQM7fgZiIfNNkMsokEqYJDAB5u-5GJSzg0bgUNwPvhOoWg?e=M1nCxM&download=1","offline","malware_download","AUS|Ursnif|zipped-vbs","axisplumbingptyltd-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-04 11:44:05","https://axisplumbingptyltd-my.sharepoint.com/:u:/g/personal/sally_axisplumbingact_com_au/EQM7fgZiIfNNkMsokEqYJDAB5u-5GJSzg0bgUNwPvhOoWg?e=M1nCxM&download=1","offline","malware_download","AUS|Ursnif|zipped-vbs","axisplumbingptyltd-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-04 11:25:05","https://mawpumpcomau-my.sharepoint.com/:u:/g/personal/sales_mawpump_com_au/ESA3qAPUQFVHumJebuCHB90Bbt6YBlYHxo35v-xkq6LLxQ?e=0KzdhB&download=1","offline","malware_download","GBR|Ursnif|zipped-VBS","mawpumpcomau-my.sharepoint.com","13.107.136.10","8075","US"
"2018-12-04 11:25:05","https://mawpumpcomau-my.sharepoint.com/:u:/g/personal/sales_mawpump_com_au/ESA3qAPUQFVHumJebuCHB90Bbt6YBlYHxo35v-xkq6LLxQ?e=0KzdhB&download=1","offline","malware_download","GBR|Ursnif|zipped-VBS","mawpumpcomau-my.sharepoint.com","13.107.138.10","8075","US"
"2018-12-04 06:48:08","http://fitchburgchamber.com/18KS/","offline","malware_download","Emotet|exe|Heodo","fitchburgchamber.com","20.25.91.29","8075","US"
"2018-12-03 13:07:07","http://fitchburgchamber.com/18KS","offline","malware_download","emotet|epoch2|exe|Heodo","fitchburgchamber.com","20.25.91.29","8075","US"
"2018-11-30 12:21:01","https://sbitnz-my.sharepoint.com/:u:/g/personal/louie_sbit_co_nz/EfzBckFGizBHuw9YPi-sRfkB_zajB6MYSbP5F1MW5z9hhg?e=ZA8jkn&download=1","offline","malware_download","GBR|Ursnif|zipped-VBS","sbitnz-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-30 12:21:01","https://sbitnz-my.sharepoint.com/:u:/g/personal/louie_sbit_co_nz/EfzBckFGizBHuw9YPi-sRfkB_zajB6MYSbP5F1MW5z9hhg?e=ZA8jkn&download=1","offline","malware_download","GBR|Ursnif|zipped-VBS","sbitnz-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-28 14:28:04","https://omalleyco-my.sharepoint.com/:u:/g/personal/emma_sho_co_nz/EbQRIY4HsDlHhnMvJxGtgwoB9UgiLMLTNvyfdl5CFWqSbw?e=GftPPW&download=1","offline","malware_download","Gozi|vbs|zip","omalleyco-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-28 14:28:04","https://omalleyco-my.sharepoint.com/:u:/g/personal/emma_sho_co_nz/EbQRIY4HsDlHhnMvJxGtgwoB9UgiLMLTNvyfdl5CFWqSbw?e=GftPPW&download=1","offline","malware_download","Gozi|vbs|zip","omalleyco-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-28 13:58:04","https://leq-my.sharepoint.com/:u:/g/personal/graeme_drapper_qld_lca_org_au/Eb3ByRKKZfhHlBRe8fYahtEBi8M71zkDuJbU-Mj3OClroQ?e=GyA0T7&download=1","offline","malware_download","Gozi|vbs","leq-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-28 13:58:04","https://leq-my.sharepoint.com/:u:/g/personal/graeme_drapper_qld_lca_org_au/Eb3ByRKKZfhHlBRe8fYahtEBi8M71zkDuJbU-Mj3OClroQ?e=GyA0T7&download=1","offline","malware_download","Gozi|vbs","leq-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-28 12:29:04","https://omalleyco-my.sharepoint.com/personal/emma_sho_co_nz/Documents/Swisscom%20Rechnung%20November%202018.zip?slrid=28c7a69e-b0a3-0000-14b0-66fcb19a1c19","offline","malware_download","vbs|zip","omalleyco-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-28 12:29:04","https://omalleyco-my.sharepoint.com/personal/emma_sho_co_nz/Documents/Swisscom%20Rechnung%20November%202018.zip?slrid=28c7a69e-b0a3-0000-14b0-66fcb19a1c19","offline","malware_download","vbs|zip","omalleyco-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-21 12:32:12","https://bentleigholsh-my.sharepoint.com/:u:/g/personal/stemeagher_student_olsh_vic_edu_au/EbUxrjItZOdJovWQmdyjCwMBZtg6ijHF0j3lv9CJqe2SPg?e=FW5gwp&download=1","offline","malware_download","GBR|Ursnif|zipped-VBS","bentleigholsh-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-21 12:32:12","https://bentleigholsh-my.sharepoint.com/:u:/g/personal/stemeagher_student_olsh_vic_edu_au/EbUxrjItZOdJovWQmdyjCwMBZtg6ijHF0j3lv9CJqe2SPg?e=FW5gwp&download=1","offline","malware_download","GBR|Ursnif|zipped-VBS","bentleigholsh-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-20 10:44:08","https://jrprosperity-my.sharepoint.com/:u:/g/personal/juanita_jrprosperity_com_au/EeMK6xSCRhZFnqPSjz1A8r0BQ85TUDkFvZZbO9Mxx6ZWuQ?e=V7rmVo&download=1","offline","malware_download","AUS|Ursnif|zipped-vbs","jrprosperity-my.sharepoint.com","52.105.239.41","8075","AU"
"2018-11-20 10:44:04","https://codeperformance-my.sharepoint.com/:u:/g/personal/anthony_codeperformance_com_au/EX-pArS9lbNAsHAEHcRs4M8BNpBUTC90fMQwo2e7SEMTyw?e=dzPeEc&download=1","offline","malware_download","AUS|Ursnif|zipped-vbs","codeperformance-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-20 10:44:04","https://codeperformance-my.sharepoint.com/:u:/g/personal/anthony_codeperformance_com_au/EX-pArS9lbNAsHAEHcRs4M8BNpBUTC90fMQwo2e7SEMTyw?e=dzPeEc&download=1","offline","malware_download","AUS|Ursnif|zipped-vbs","codeperformance-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-19 19:53:54","http://mamadha.pl/63568ZQNYVB/PAYROLL/Smallbusiness/","offline","malware_download","emotet|heodo","mamadha.pl","40.127.129.72","8075","IE"
"2018-11-19 19:53:54","http://mamadha.pl/Corporation/En/Service-Invoice/","offline","malware_download","emotet|heodo","mamadha.pl","40.127.129.72","8075","IE"
"2018-11-16 13:02:03","https://greenwoodshotelmanag-my.sharepoint.com/:u:/g/personal/lucy_harding_greenwoodshotel_co_uk/EaBAPtc_5rZGmXQyAXA3Jn8B6ceNyVbE9qYtsIjATzDWRw?e=SJWQoH&download=1","offline","malware_download","GBR|Ursnif|zipped-vbs","greenwoodshotelmanag-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-16 13:02:03","https://greenwoodshotelmanag-my.sharepoint.com/:u:/g/personal/lucy_harding_greenwoodshotel_co_uk/EaBAPtc_5rZGmXQyAXA3Jn8B6ceNyVbE9qYtsIjATzDWRw?e=SJWQoH&download=1","offline","malware_download","GBR|Ursnif|zipped-vbs","greenwoodshotelmanag-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-15 20:30:05","https://spacepropertyestatecomau-my.sharepoint.com/:u:/g/personal/admin_spacepropertyestate_com_au/ESro3e-7K-NFg4EjQPhVmBwBw5pBrKYNLJgScHLqKP0hkw?e=A9dDMB&download=1","offline","malware_download","AUS|Ursnif|Zipped-VBS","spacepropertyestatecomau-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-15 20:30:05","https://spacepropertyestatecomau-my.sharepoint.com/:u:/g/personal/admin_spacepropertyestate_com_au/ESro3e-7K-NFg4EjQPhVmBwBw5pBrKYNLJgScHLqKP0hkw?e=A9dDMB&download=1","offline","malware_download","AUS|Ursnif|Zipped-VBS","spacepropertyestatecomau-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-15 10:35:04","https://acecon365-my.sharepoint.com/:u:/g/personal/ychin_acecon_com_au/EZDeTO2lXsFFmWQBLNPrvCEBCGtxZZBJdYTXcddGoz_Nqw?e=4Fb8Ek&download=1","offline","malware_download","AUS|Ursnif|Zipped-VBS","acecon365-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-15 10:35:04","https://acecon365-my.sharepoint.com/:u:/g/personal/ychin_acecon_com_au/EZDeTO2lXsFFmWQBLNPrvCEBCGtxZZBJdYTXcddGoz_Nqw?e=4Fb8Ek&download=1","offline","malware_download","AUS|Ursnif|Zipped-VBS","acecon365-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-14 17:58:05","https://melbournecitycollegeptyltd-my.sharepoint.com/:u:/g/personal/bell_melbournecitycollege_edu_au/EQMGG782ELhOiQOT90uk50MBw3U_h2MWIeOcsUrjtcfe9Q?e=s26I69&download=1","offline","malware_download","CAN|Gootkit|Zipped-VBS","melbournecitycollegeptyltd-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-14 17:58:05","https://melbournecitycollegeptyltd-my.sharepoint.com/:u:/g/personal/bell_melbournecitycollege_edu_au/EQMGG782ELhOiQOT90uk50MBw3U_h2MWIeOcsUrjtcfe9Q?e=s26I69&download=1","offline","malware_download","CAN|Gootkit|Zipped-VBS","melbournecitycollegeptyltd-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-13 22:55:05","https://costellograham-my.sharepoint.com/:u:/g/personal/leoni_costellograhamdesign_com_au/EcfirFk8H79EgccuEZiC_00BKQeTKL9E57SlapyZz9KATA?e=hSHiIk&download=1","offline","malware_download","AUS|Ursnif|Zipped-VBS","costellograham-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-13 22:55:05","https://costellograham-my.sharepoint.com/:u:/g/personal/leoni_costellograhamdesign_com_au/EcfirFk8H79EgccuEZiC_00BKQeTKL9E57SlapyZz9KATA?e=hSHiIk&download=1","offline","malware_download","AUS|Ursnif|Zipped-VBS","costellograham-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-13 14:12:05","https://liveswinburneeduau-my.sharepoint.com/:u:/g/personal/101937439_student_swin_edu_au/EQsMP3lwkFZFr0ZEgN-TKIQB6AgjNe8t4RqyjHktmZuR6w?e=Zl6YL7&download=1","offline","malware_download","GBR|Ursnif|zipped-VBS","liveswinburneeduau-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-13 14:12:05","https://liveswinburneeduau-my.sharepoint.com/:u:/g/personal/101937439_student_swin_edu_au/EQsMP3lwkFZFr0ZEgN-TKIQB6AgjNe8t4RqyjHktmZuR6w?e=Zl6YL7&download=1","offline","malware_download","GBR|Ursnif|zipped-VBS","liveswinburneeduau-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-13 08:36:04","https://juceltd-my.sharepoint.com/:u:/g/personal/support_juce_co_uk/EXvVAAl3dU5Jh7o_ETzjuroBeu-BHUBJ-RCaIG4TWUZUqg?e=rpMaZ7&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","juceltd-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-13 08:36:04","https://juceltd-my.sharepoint.com/:u:/g/personal/support_juce_co_uk/EXvVAAl3dU5Jh7o_ETzjuroBeu-BHUBJ-RCaIG4TWUZUqg?e=rpMaZ7&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","juceltd-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-13 08:36:03","https://buildersmerchantsfederation-my.sharepoint.com/:u:/g/personal/joanne_exeter_bmf_org_uk/EW3x3qZifX1FjikAAzcyEBMBP-V3u2HVXM-O-mT8Azx6Zw?e=qliYxt&download=1","offline","malware_download","GBR|Ursnif|Zipped-vbs","buildersmerchantsfederation-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-13 08:36:03","https://buildersmerchantsfederation-my.sharepoint.com/:u:/g/personal/joanne_exeter_bmf_org_uk/EW3x3qZifX1FjikAAzcyEBMBP-V3u2HVXM-O-mT8Azx6Zw?e=qliYxt&download=1","offline","malware_download","GBR|Ursnif|Zipped-vbs","buildersmerchantsfederation-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-13 08:35:05","https://queensfordcollegebrisbane-my.sharepoint.com/personal/rkrishna_queensford_edu_au/_layouts/15/guestaccess.aspx?docid=08629159574fd4180913ad1fdc211efd5&authkey=AdVNHQzLelqkUCsHwPQBre0&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","queensfordcollegebrisbane-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-13 08:35:05","https://queensfordcollegebrisbane-my.sharepoint.com/personal/rkrishna_queensford_edu_au/_layouts/15/guestaccess.aspx?docid=08629159574fd4180913ad1fdc211efd5&authkey=AdVNHQzLelqkUCsHwPQBre0&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","queensfordcollegebrisbane-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-09 01:42:02","http://40.114.217.184/doc/En_us/Sales-Invoice/","offline","malware_download","doc|emotet|epoch2","40.114.217.184","40.114.217.184","8075","NL"
"2018-11-08 16:12:02","http://40.114.217.184/doc/En_us/Sales-Invoice","offline","malware_download","doc|emotet|Heodo","40.114.217.184","40.114.217.184","8075","NL"
"2018-11-08 09:32:08","https://ccamatil1-my.sharepoint.com/:u:/g/personal/raewynne_zaloum_ccamatil_com/ETmCLjlK57hNt6jZnc008W4B8aS2B3RTOxcKflvuQLtdcQ?e=kbpegu&download=1","offline","malware_download","AUS|Ursnif|Zipped-vbs","ccamatil1-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-08 09:32:08","https://ccamatil1-my.sharepoint.com/:u:/g/personal/raewynne_zaloum_ccamatil_com/ETmCLjlK57hNt6jZnc008W4B8aS2B3RTOxcKflvuQLtdcQ?e=kbpegu&download=1","offline","malware_download","AUS|Ursnif|Zipped-vbs","ccamatil1-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-08 09:32:04","https://ruahcs-my.sharepoint.com/:u:/g/personal/kara_gloss_ruah_org_au/ESelteHjRV1CqHzRzWnBp3YBb6adCtzx7ogLvevqBktU8Q?e=iNQdWc&download=1","offline","malware_download","AUS|Ursnif|Zipped-vbs","ruahcs-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-08 09:32:04","https://ruahcs-my.sharepoint.com/:u:/g/personal/kara_gloss_ruah_org_au/ESelteHjRV1CqHzRzWnBp3YBb6adCtzx7ogLvevqBktU8Q?e=iNQdWc&download=1","offline","malware_download","AUS|Ursnif|Zipped-vbs","ruahcs-my.sharepoint.com","13.107.138.10","8075","US"
"2018-11-06 21:25:03","http://40.114.217.184/988338DUAZJ/oamo/Smallbusiness/","offline","malware_download","doc|emotet|epoch2|Heodo","40.114.217.184","40.114.217.184","8075","NL"
"2018-11-06 21:20:12","http://40.114.217.184/988338DUAZJ/oamo/Smallbusiness","offline","malware_download","doc|emotet|Heodo","40.114.217.184","40.114.217.184","8075","NL"
"2018-11-05 09:24:08","https://primoproperty-my.sharepoint.com/:u:/g/personal/pm_primoproperty_com_au/EUislkk4_j1LtWCYWwh-fJ4BSZ3JklohhpzXj-0xe6DdaQ?e=WcaTGt&download=1","offline","malware_download","CAN|Gootkit|zipped-VBS","primoproperty-my.sharepoint.com","52.107.243.192","8075","DE"
"2018-11-05 09:24:08","https://primoproperty-my.sharepoint.com/:u:/g/personal/pm_primoproperty_com_au/EUislkk4_j1LtWCYWwh-fJ4BSZ3JklohhpzXj-0xe6DdaQ?e=WcaTGt&download=1","offline","malware_download","CAN|Gootkit|zipped-VBS","primoproperty-my.sharepoint.com","52.107.243.196","8075","DE"
"2018-11-05 09:24:08","https://primoproperty-my.sharepoint.com/:u:/g/personal/pm_primoproperty_com_au/EUislkk4_j1LtWCYWwh-fJ4BSZ3JklohhpzXj-0xe6DdaQ?e=WcaTGt&download=1","offline","malware_download","CAN|Gootkit|zipped-VBS","primoproperty-my.sharepoint.com","52.107.243.199","8075","DE"
"2018-11-05 09:24:08","https://primoproperty-my.sharepoint.com/:u:/g/personal/pm_primoproperty_com_au/EUislkk4_j1LtWCYWwh-fJ4BSZ3JklohhpzXj-0xe6DdaQ?e=WcaTGt&download=1","offline","malware_download","CAN|Gootkit|zipped-VBS","primoproperty-my.sharepoint.com","52.107.243.210","8075","DE"
"2018-11-05 09:24:08","https://primoproperty-my.sharepoint.com/:u:/g/personal/pm_primoproperty_com_au/EUislkk4_j1LtWCYWwh-fJ4BSZ3JklohhpzXj-0xe6DdaQ?e=WcaTGt&download=1","offline","malware_download","CAN|Gootkit|zipped-VBS","primoproperty-my.sharepoint.com","52.107.243.216","8075","DE"
"2018-11-05 09:24:08","https://primoproperty-my.sharepoint.com/:u:/g/personal/pm_primoproperty_com_au/EUislkk4_j1LtWCYWwh-fJ4BSZ3JklohhpzXj-0xe6DdaQ?e=WcaTGt&download=1","offline","malware_download","CAN|Gootkit|zipped-VBS","primoproperty-my.sharepoint.com","52.107.243.217","8075","DE"
"2018-11-05 09:24:08","https://primoproperty-my.sharepoint.com/:u:/g/personal/pm_primoproperty_com_au/EUislkk4_j1LtWCYWwh-fJ4BSZ3JklohhpzXj-0xe6DdaQ?e=WcaTGt&download=1","offline","malware_download","CAN|Gootkit|zipped-VBS","primoproperty-my.sharepoint.com","52.107.243.81","8075","DE"
"2018-11-05 09:24:08","https://primoproperty-my.sharepoint.com/:u:/g/personal/pm_primoproperty_com_au/EUislkk4_j1LtWCYWwh-fJ4BSZ3JklohhpzXj-0xe6DdaQ?e=WcaTGt&download=1","offline","malware_download","CAN|Gootkit|zipped-VBS","primoproperty-my.sharepoint.com","52.107.243.94","8075","DE"
"2018-11-05 08:49:04","https://sunland365-my.sharepoint.com/:u:/g/personal/kpurcell_sunlandgroup_com_au/Ef0ll2O0e_JKk9KGTGQBMssBgleRrgFWai-O0cBy05W1Jg?e=ok88c5&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","sunland365-my.sharepoint.com","13.107.136.10","8075","US"
"2018-11-05 08:49:04","https://sunland365-my.sharepoint.com/:u:/g/personal/kpurcell_sunlandgroup_com_au/Ef0ll2O0e_JKk9KGTGQBMssBgleRrgFWai-O0cBy05W1Jg?e=ok88c5&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","sunland365-my.sharepoint.com","13.107.138.10","8075","US"
"2018-10-26 09:20:07","https://cthunter-my.sharepoint.com/:u:/g/personal/adam_cthunter_com_au/EYHFSmnIcypPrJHqt3eDttoBYihx3LdkWjU1alWdj92BKg?e=TZXsNN&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","cthunter-my.sharepoint.com","13.107.136.10","8075","US"
"2018-10-26 09:20:07","https://cthunter-my.sharepoint.com/:u:/g/personal/adam_cthunter_com_au/EYHFSmnIcypPrJHqt3eDttoBYihx3LdkWjU1alWdj92BKg?e=TZXsNN&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","cthunter-my.sharepoint.com","13.107.138.10","8075","US"
"2018-10-24 17:23:03","http://1.186.222.50:34141/","offline","malware_download","Hajime","1.186.222.50","1.186.222.50","8075","GB"
"2018-10-24 17:07:03","http://1.186.222.50:34141/.i","offline","malware_download","elf|Hajime","1.186.222.50","1.186.222.50","8075","GB"
"2018-10-19 23:08:05","http://cgunited.com/trfbsdft","offline","malware_download","Nymaim","cgunited.com","52.139.28.223","8075","CA"
"2018-10-19 23:08:04","http://cgunited.com/fabfddhz","offline","malware_download","Nymaim","cgunited.com","52.139.28.223","8075","CA"
"2018-10-19 23:08:03","http://cgunited.com/btzkrzkn","offline","malware_download","Nymaim","cgunited.com","52.139.28.223","8075","CA"
"2018-10-17 09:47:05","https://aptmortgages-my.sharepoint.com/:u:/g/personal/shashi_aptmortgages_com_au1/EVqFnwnK-c5OsiExCBkiEQUBJtt6vI2Bsj2GW0IOvV0nTw?e=LmYD53&download=1","offline","malware_download","GBR|Ursnif|Zipped-VBS","aptmortgages-my.sharepoint.com","13.107.136.10","8075","US"
"2018-10-17 09:47:05","https://aptmortgages-my.sharepoint.com/:u:/g/personal/shashi_aptmortgages_com_au1/EVqFnwnK-c5OsiExCBkiEQUBJtt6vI2Bsj2GW0IOvV0nTw?e=LmYD53&download=1","offline","malware_download","GBR|Ursnif|Zipped-VBS","aptmortgages-my.sharepoint.com","13.107.138.10","8075","US"
"2018-10-16 15:25:05","https://s287-my.sharepoint.com/:u:/g/personal/marketing_flyscouts_com_au/EaEuzQfvuaVJgxrm5J5lIkUBPVLCTDxOLI1RujCFhw7Asw?e=Wjl2k7&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","s287-my.sharepoint.com","52.105.236.27","8075","AU"
"2018-10-15 07:18:04","http://104.214.74.125/Swizz.m68k","offline","malware_download","elf","104.214.74.125","104.214.74.125","8075","US"
"2018-10-15 07:12:03","http://104.214.74.125/Swizz.i586","offline","malware_download","elf","104.214.74.125","104.214.74.125","8075","US"
"2018-10-15 07:10:04","http://104.214.74.125/Swizz.mips","offline","malware_download","elf","104.214.74.125","104.214.74.125","8075","US"
"2018-10-15 07:09:03","http://104.214.74.125/Swizz.sparc","offline","malware_download","elf","104.214.74.125","104.214.74.125","8075","US"
"2018-10-12 08:41:05","http://23.96.55.100/yakuza.x32","offline","malware_download","elf","23.96.55.100","23.96.55.100","8075","US"
"2018-10-12 08:21:02","http://23.96.55.100/yakuza.arm4","offline","malware_download","elf","23.96.55.100","23.96.55.100","8075","US"
"2018-10-12 08:18:04","http://23.96.55.100/yakuza.ppc","offline","malware_download","elf","23.96.55.100","23.96.55.100","8075","US"
"2018-10-12 08:15:05","http://23.96.55.100/yakuza.m68k","offline","malware_download","elf","23.96.55.100","23.96.55.100","8075","US"
"2018-10-12 08:14:03","http://23.96.55.100/yakuza.mips","offline","malware_download","elf","23.96.55.100","23.96.55.100","8075","US"
"2018-10-12 08:13:03","http://23.96.55.100/yakuza.mpsl","offline","malware_download","elf","23.96.55.100","23.96.55.100","8075","US"
"2018-10-12 08:11:02","http://23.96.55.100/yakuza.i586","offline","malware_download","elf","23.96.55.100","23.96.55.100","8075","US"
"2018-10-10 14:10:05","https://girlhut-my.sharepoint.com/:u:/g/personal/admin_girlhut_co_nz/ETKahTkJ9c5KkeLvvBPLXqMBN52G4EmGil80wZEoBTgzXg?e=bD1Nzk&download=1","offline","malware_download","GBR|Ursnif|Zipped-VBS","girlhut-my.sharepoint.com","13.107.136.10","8075","US"
"2018-10-10 14:10:05","https://girlhut-my.sharepoint.com/:u:/g/personal/admin_girlhut_co_nz/ETKahTkJ9c5KkeLvvBPLXqMBN52G4EmGil80wZEoBTgzXg?e=bD1Nzk&download=1","offline","malware_download","GBR|Ursnif|Zipped-VBS","girlhut-my.sharepoint.com","13.107.138.10","8075","US"
"2018-10-10 07:37:03","http://40.124.1.253/Swizz.m68k","offline","malware_download","elf","40.124.1.253","40.124.1.253","8075","US"
"2018-10-10 07:28:02","http://40.124.1.253/Swizz.ppc","offline","malware_download","elf","40.124.1.253","40.124.1.253","8075","US"
"2018-10-10 07:09:04","http://40.124.1.253/Swizz.sparc","offline","malware_download","elf","40.124.1.253","40.124.1.253","8075","US"
"2018-10-10 07:09:02","http://40.124.1.253/Swizz.x86","offline","malware_download","elf","40.124.1.253","40.124.1.253","8075","US"
"2018-10-10 07:06:02","http://40.124.1.253/Swizz.i586","offline","malware_download","elf","40.124.1.253","40.124.1.253","8075","US"
"2018-10-10 07:05:03","http://40.124.1.253/Swizz.arm4","offline","malware_download","elf","40.124.1.253","40.124.1.253","8075","US"
"2018-10-10 07:03:03","http://40.124.1.253/Swizz.mips","offline","malware_download","elf","40.124.1.253","40.124.1.253","8075","US"
"2018-10-09 00:44:08","https://beststarteducare-my.sharepoint.com/:u:/g/personal/sarah_hayfield_best-start_org/EdQd8sBRJGNKg7s0wgHgUQEBjRbceOJFQY0c3enwtsVrtQ?e=9ZcC9w&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","beststarteducare-my.sharepoint.com","13.107.136.10","8075","US"
"2018-10-09 00:44:08","https://beststarteducare-my.sharepoint.com/:u:/g/personal/sarah_hayfield_best-start_org/EdQd8sBRJGNKg7s0wgHgUQEBjRbceOJFQY0c3enwtsVrtQ?e=9ZcC9w&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","beststarteducare-my.sharepoint.com","13.107.138.10","8075","US"
"2018-10-03 18:41:47","http://mamadha.pl/Corporation/En/Service-Invoice","offline","malware_download","doc|emotet|heodo","mamadha.pl","40.127.129.72","8075","IE"
"2018-10-03 15:49:05","https://coupeconsulting-my.sharepoint.com/:u:/g/personal/andy_coupe_co_nz/Ef49Kj7ZcdVGs_DXhuK_kr0BARC_bha0R7xC30TPplglmQ?e=Y9r44w&download=1","offline","malware_download","GBR|Ursnif|zipped-vbs","coupeconsulting-my.sharepoint.com","13.107.136.10","8075","US"
"2018-10-03 15:49:05","https://coupeconsulting-my.sharepoint.com/:u:/g/personal/andy_coupe_co_nz/Ef49Kj7ZcdVGs_DXhuK_kr0BARC_bha0R7xC30TPplglmQ?e=Y9r44w&download=1","offline","malware_download","GBR|Ursnif|zipped-vbs","coupeconsulting-my.sharepoint.com","13.107.138.10","8075","US"
"2018-10-03 09:37:08","https://nvcltd-my.sharepoint.com/:u:/g/personal/gbyard_nvcltd_com_au/EZkLS-UFlLVDoAkxPhDrSYwBkUd0tsQxo-ZNNFQV0uFTFA?e=TBchBo&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","nvcltd-my.sharepoint.com","52.107.243.194","8075","DE"
"2018-10-03 09:37:08","https://nvcltd-my.sharepoint.com/:u:/g/personal/gbyard_nvcltd_com_au/EZkLS-UFlLVDoAkxPhDrSYwBkUd0tsQxo-ZNNFQV0uFTFA?e=TBchBo&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","nvcltd-my.sharepoint.com","52.107.243.215","8075","DE"
"2018-10-03 09:37:08","https://nvcltd-my.sharepoint.com/:u:/g/personal/gbyard_nvcltd_com_au/EZkLS-UFlLVDoAkxPhDrSYwBkUd0tsQxo-ZNNFQV0uFTFA?e=TBchBo&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","nvcltd-my.sharepoint.com","52.107.243.216","8075","DE"
"2018-10-03 09:37:08","https://nvcltd-my.sharepoint.com/:u:/g/personal/gbyard_nvcltd_com_au/EZkLS-UFlLVDoAkxPhDrSYwBkUd0tsQxo-ZNNFQV0uFTFA?e=TBchBo&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","nvcltd-my.sharepoint.com","52.107.243.71","8075","DE"
"2018-10-03 09:37:08","https://nvcltd-my.sharepoint.com/:u:/g/personal/gbyard_nvcltd_com_au/EZkLS-UFlLVDoAkxPhDrSYwBkUd0tsQxo-ZNNFQV0uFTFA?e=TBchBo&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","nvcltd-my.sharepoint.com","52.107.243.72","8075","DE"
"2018-10-03 09:37:08","https://nvcltd-my.sharepoint.com/:u:/g/personal/gbyard_nvcltd_com_au/EZkLS-UFlLVDoAkxPhDrSYwBkUd0tsQxo-ZNNFQV0uFTFA?e=TBchBo&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","nvcltd-my.sharepoint.com","52.107.243.74","8075","DE"
"2018-10-03 09:37:08","https://nvcltd-my.sharepoint.com/:u:/g/personal/gbyard_nvcltd_com_au/EZkLS-UFlLVDoAkxPhDrSYwBkUd0tsQxo-ZNNFQV0uFTFA?e=TBchBo&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","nvcltd-my.sharepoint.com","52.107.243.82","8075","DE"
"2018-10-03 09:37:08","https://nvcltd-my.sharepoint.com/:u:/g/personal/gbyard_nvcltd_com_au/EZkLS-UFlLVDoAkxPhDrSYwBkUd0tsQxo-ZNNFQV0uFTFA?e=TBchBo&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","nvcltd-my.sharepoint.com","52.107.243.94","8075","DE"
"2018-10-03 07:36:05","https://greenleaveselc-my.sharepoint.com/:u:/g/personal/nick_greenleavesgroup_com_au/EaZ2QQdy5R1AobYD4yvpJbUBt_amgOsgd9Q85rT4crnLew?e=bAS5mh&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","greenleaveselc-my.sharepoint.com","13.107.136.10","8075","US"
"2018-10-03 07:36:05","https://greenleaveselc-my.sharepoint.com/:u:/g/personal/nick_greenleavesgroup_com_au/EaZ2QQdy5R1AobYD4yvpJbUBt_amgOsgd9Q85rT4crnLew?e=bAS5mh&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","greenleaveselc-my.sharepoint.com","13.107.138.10","8075","US"
"2018-10-02 11:06:07","https://sentrient-my.sharepoint.com/personal/gavin_altus_sentrient_com_au/Documents/MYOB_00281000.zip?","offline","malware_download","","sentrient-my.sharepoint.com","13.107.136.10","8075","US"
"2018-10-02 11:06:07","https://sentrient-my.sharepoint.com/personal/gavin_altus_sentrient_com_au/Documents/MYOB_00281000.zip?","offline","malware_download","","sentrient-my.sharepoint.com","13.107.138.10","8075","US"
"2018-10-02 08:28:26","https://sentrient-my.sharepoint.com/:u:/g/personal/gavin_altus_sentrient_com_au/ESRWbNBtL8VFqgvvaMlA4cABlvgMG5EYkgGZkbs_A1QxGg?e=E9mqqV&download=1","offline","malware_download","AUS|Ursnif|Zipped-VBS","sentrient-my.sharepoint.com","13.107.136.10","8075","US"
"2018-10-02 08:28:26","https://sentrient-my.sharepoint.com/:u:/g/personal/gavin_altus_sentrient_com_au/ESRWbNBtL8VFqgvvaMlA4cABlvgMG5EYkgGZkbs_A1QxGg?e=E9mqqV&download=1","offline","malware_download","AUS|Ursnif|Zipped-VBS","sentrient-my.sharepoint.com","13.107.138.10","8075","US"
"2018-10-01 12:24:07","http://mamadha.pl/63568ZQNYVB/PAYROLL/Smallbusiness","offline","malware_download","doc|emotet|Heodo","mamadha.pl","40.127.129.72","8075","IE"
"2018-09-30 09:00:04","http://40.74.225.92/razdzn","offline","malware_download","elf","40.74.225.92","40.74.225.92","8075","US"
"2018-09-30 08:46:04","http://40.74.225.92/cemtop","offline","malware_download","elf","40.74.225.92","40.74.225.92","8075","US"
"2018-09-30 08:39:04","http://40.74.225.92/qtmzbn","offline","malware_download","elf","40.74.225.92","40.74.225.92","8075","US"
"2018-09-30 08:38:04","http://40.74.225.92/earyzq","offline","malware_download","elf","40.74.225.92","40.74.225.92","8075","US"
"2018-09-30 08:36:05","http://40.74.225.92/vvglma","offline","malware_download","elf","40.74.225.92","40.74.225.92","8075","US"
"2018-09-30 08:33:05","http://40.74.225.92/nvitpj","offline","malware_download","elf","40.74.225.92","40.74.225.92","8075","US"
"2018-09-30 08:32:03","http://40.74.225.92/lnkfmx","offline","malware_download","elf","40.74.225.92","40.74.225.92","8075","US"
"2018-09-30 08:30:05","http://40.74.225.92/ajoomk","offline","malware_download","elf","40.74.225.92","40.74.225.92","8075","US"
"2018-09-30 08:17:01","http://40.74.225.92/vtyhat","offline","malware_download","elf","40.74.225.92","40.74.225.92","8075","US"
"2018-09-30 08:15:06","http://40.74.225.92/atxhua","offline","malware_download","elf","40.74.225.92","40.74.225.92","8075","US"
"2018-09-30 08:12:03","http://40.74.225.92/qvmxvl","offline","malware_download","elf","40.74.225.92","40.74.225.92","8075","US"
"2018-09-30 08:11:03","http://40.74.225.92/fwdfvf","offline","malware_download","elf","40.74.225.92","40.74.225.92","8075","US"
"2018-09-27 02:41:05","https://certifiedbuilders-my.sharepoint.com/:u:/g/personal/victor_nzcb_nz/ER0OsSp3DRFLiLk9UZnOU5sBFx5n0Wj-_j7yhPZyb28STA?e=uD5j8L&download=1","offline","malware_download","AUS|Ursnif|Zipped-VBS","certifiedbuilders-my.sharepoint.com","13.107.136.10","8075","US"
"2018-09-27 02:41:05","https://certifiedbuilders-my.sharepoint.com/:u:/g/personal/victor_nzcb_nz/ER0OsSp3DRFLiLk9UZnOU5sBFx5n0Wj-_j7yhPZyb28STA?e=uD5j8L&download=1","offline","malware_download","AUS|Ursnif|Zipped-VBS","certifiedbuilders-my.sharepoint.com","13.107.138.10","8075","US"
"2018-09-25 22:42:56","http://mamadha.pl/26UBOPM/SWIFT/Personal","offline","malware_download","doc|emotet|Heodo","mamadha.pl","40.127.129.72","8075","IE"
"2018-09-25 13:59:06","https://carbongreengroupau-my.sharepoint.com/:u:/g/personal/lars_carbonblue_com_au/EVk7CRF236JIkgUPXo_CQegBk5HoAQrPjaG9UNQfynfpsQ?e=aqLTQa&download=1","offline","malware_download","GBR|Ursnif|zipped-VBS","carbongreengroupau-my.sharepoint.com","13.107.136.10","8075","US"
"2018-09-25 13:59:06","https://carbongreengroupau-my.sharepoint.com/:u:/g/personal/lars_carbonblue_com_au/EVk7CRF236JIkgUPXo_CQegBk5HoAQrPjaG9UNQfynfpsQ?e=aqLTQa&download=1","offline","malware_download","GBR|Ursnif|zipped-VBS","carbongreengroupau-my.sharepoint.com","13.107.138.10","8075","US"
"2018-09-24 17:28:08","https://footmechanicsltd-my.sharepoint.com/:u:/g/personal/eric_footmechanics_com/ER8hbXR0K8pCrzioK_dH4PgByXR0RDcs-_tWI7wn5gD9XA?e=d80kJh&download=1","offline","malware_download","GBR|Ursnif|Zipped-VBS","footmechanicsltd-my.sharepoint.com","52.105.210.39","8075","AU"
"2018-09-20 14:50:07","http://mamadha.pl/628BM/ACH/Personal/","offline","malware_download","doc|Emotet|Heodo","mamadha.pl","40.127.129.72","8075","IE"
"2018-09-20 14:38:23","http://mamadha.pl/628BM/ACH/Personal","offline","malware_download","doc|emotet|Heodo","mamadha.pl","40.127.129.72","8075","IE"
"2018-09-19 22:40:06","https://projectlyttelton-my.sharepoint.com/:u:/g/personal/bex_lyttelton_net_nz/EUPzwACOqK5Os90FpBQFReUBuATU9JEakWTiJeYFP9y_Uw?e=hmZqfU&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","projectlyttelton-my.sharepoint.com","13.107.136.10","8075","US"
"2018-09-19 22:40:06","https://projectlyttelton-my.sharepoint.com/:u:/g/personal/bex_lyttelton_net_nz/EUPzwACOqK5Os90FpBQFReUBuATU9JEakWTiJeYFP9y_Uw?e=hmZqfU&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","projectlyttelton-my.sharepoint.com","13.107.138.10","8075","US"
"2018-09-19 16:15:35","https://rctglobal-my.sharepoint.com/:u:/g/personal/traceyp_rct-global_com/EVuVuNM7VxpFsalsUfxPiwMB3sbqVjsbMOPwePNWvUlywA?e=Yxaziy&download=1","offline","malware_download","CAN|Gootkit|zipped-VBS","rctglobal-my.sharepoint.com","13.107.136.10","8075","US"
"2018-09-19 16:15:35","https://rctglobal-my.sharepoint.com/:u:/g/personal/traceyp_rct-global_com/EVuVuNM7VxpFsalsUfxPiwMB3sbqVjsbMOPwePNWvUlywA?e=Yxaziy&download=1","offline","malware_download","CAN|Gootkit|zipped-VBS","rctglobal-my.sharepoint.com","13.107.138.10","8075","US"
"2018-09-18 18:47:06","https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fapp.getresponse.com%2Fclick.html%3Fx%3Da62b%26lc%3DByOav2%26mc%3DJB%26s%3DuWNKom%26u%3Dzhhjs%26y%3Dp%26&data=02%7C01%7C%7Ced91706e09e043bf81d408d61cc2fe8e%7C6e51e1adc54b4b39b5980ffe9ae68fef%7C0%7C0%7C636728021147190708&sdata=759CwuGziIQw2zfBXB98W%2FKX3eUDEUoiUN%2Bi2wrbD4U%3D&reserved=0","offline","malware_download","rar","emea01.safelinks.protection.outlook.com","52.102.113.1","8075","US"
"2018-09-18 18:47:06","https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fapp.getresponse.com%2Fclick.html%3Fx%3Da62b%26lc%3DByOav2%26mc%3DJB%26s%3DuWNKom%26u%3Dzhhjs%26y%3Dp%26&data=02%7C01%7C%7Ced91706e09e043bf81d408d61cc2fe8e%7C6e51e1adc54b4b39b5980ffe9ae68fef%7C0%7C0%7C636728021147190708&sdata=759CwuGziIQw2zfBXB98W%2FKX3eUDEUoiUN%2Bi2wrbD4U%3D&reserved=0","offline","malware_download","rar","emea01.safelinks.protection.outlook.com","52.102.113.10","8075","US"
"2018-09-18 18:47:06","https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fapp.getresponse.com%2Fclick.html%3Fx%3Da62b%26lc%3DByOav2%26mc%3DJB%26s%3DuWNKom%26u%3Dzhhjs%26y%3Dp%26&data=02%7C01%7C%7Ced91706e09e043bf81d408d61cc2fe8e%7C6e51e1adc54b4b39b5980ffe9ae68fef%7C0%7C0%7C636728021147190708&sdata=759CwuGziIQw2zfBXB98W%2FKX3eUDEUoiUN%2Bi2wrbD4U%3D&reserved=0","offline","malware_download","rar","emea01.safelinks.protection.outlook.com","52.102.113.30","8075","US"
"2018-09-18 18:47:06","https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fapp.getresponse.com%2Fclick.html%3Fx%3Da62b%26lc%3DByOav2%26mc%3DJB%26s%3DuWNKom%26u%3Dzhhjs%26y%3Dp%26&data=02%7C01%7C%7Ced91706e09e043bf81d408d61cc2fe8e%7C6e51e1adc54b4b39b5980ffe9ae68fef%7C0%7C0%7C636728021147190708&sdata=759CwuGziIQw2zfBXB98W%2FKX3eUDEUoiUN%2Bi2wrbD4U%3D&reserved=0","offline","malware_download","rar","emea01.safelinks.protection.outlook.com","52.102.113.62","8075","US"
"2018-09-18 18:47:06","https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fapp.getresponse.com%2Fclick.html%3Fx%3Da62b%26lc%3DByOav2%26mc%3DJB%26s%3DuWNKom%26u%3Dzhhjs%26y%3Dp%26&data=02%7C01%7C%7Ced91706e09e043bf81d408d61cc2fe8e%7C6e51e1adc54b4b39b5980ffe9ae68fef%7C0%7C0%7C636728021147190708&sdata=759CwuGziIQw2zfBXB98W%2FKX3eUDEUoiUN%2Bi2wrbD4U%3D&reserved=0","offline","malware_download","rar","emea01.safelinks.protection.outlook.com","52.102.113.65","8075","US"
"2018-09-18 18:47:06","https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fapp.getresponse.com%2Fclick.html%3Fx%3Da62b%26lc%3DByOav2%26mc%3DJB%26s%3DuWNKom%26u%3Dzhhjs%26y%3Dp%26&data=02%7C01%7C%7Ced91706e09e043bf81d408d61cc2fe8e%7C6e51e1adc54b4b39b5980ffe9ae68fef%7C0%7C0%7C636728021147190708&sdata=759CwuGziIQw2zfBXB98W%2FKX3eUDEUoiUN%2Bi2wrbD4U%3D&reserved=0","offline","malware_download","rar","emea01.safelinks.protection.outlook.com","52.102.113.68","8075","US"
"2018-09-18 18:47:06","https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fapp.getresponse.com%2Fclick.html%3Fx%3Da62b%26lc%3DByOav2%26mc%3DJB%26s%3DuWNKom%26u%3Dzhhjs%26y%3Dp%26&data=02%7C01%7C%7Ced91706e09e043bf81d408d61cc2fe8e%7C6e51e1adc54b4b39b5980ffe9ae68fef%7C0%7C0%7C636728021147190708&sdata=759CwuGziIQw2zfBXB98W%2FKX3eUDEUoiUN%2Bi2wrbD4U%3D&reserved=0","offline","malware_download","rar","emea01.safelinks.protection.outlook.com","52.102.113.69","8075","US"
"2018-09-18 18:47:06","https://emea01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fapp.getresponse.com%2Fclick.html%3Fx%3Da62b%26lc%3DByOav2%26mc%3DJB%26s%3DuWNKom%26u%3Dzhhjs%26y%3Dp%26&data=02%7C01%7C%7Ced91706e09e043bf81d408d61cc2fe8e%7C6e51e1adc54b4b39b5980ffe9ae68fef%7C0%7C0%7C636728021147190708&sdata=759CwuGziIQw2zfBXB98W%2FKX3eUDEUoiUN%2Bi2wrbD4U%3D&reserved=0","offline","malware_download","rar","emea01.safelinks.protection.outlook.com","52.102.113.74","8075","US"
"2018-09-17 14:05:17","https://crownflooring-my.sharepoint.com/:u:/g/personal/ronita_nikishev_crownflooring_co_nz/EZNB5A5JDolLh1_ekSTjA1oBfS803SiY2E4aoNA9dIXv1Q?e=faMEsz&download=1","offline","malware_download","AUS|Ursnif|Zipped-VBS","crownflooring-my.sharepoint.com","52.105.239.53","8075","AU"
"2018-09-14 13:18:25","http://mamadha.pl/FILE/EN_en/747-95-300866-960-747-95-300866-802","offline","malware_download","doc|emotet|Heodo","mamadha.pl","40.127.129.72","8075","IE"
"2018-09-13 19:04:07","https://slickerstickers-my.sharepoint.com/:u:/g/personal/accounts_slickerstickers_com_au/ERzbDwKy5tpItn6BjDcm49sBrRlHLmdBoa6lENO9CDRBcQ?e=b8ynlX&download=1","offline","malware_download","CAN|Gootkit|Zipped-VBS","slickerstickers-my.sharepoint.com","13.107.136.10","8075","US"
"2018-09-13 19:04:07","https://slickerstickers-my.sharepoint.com/:u:/g/personal/accounts_slickerstickers_com_au/ERzbDwKy5tpItn6BjDcm49sBrRlHLmdBoa6lENO9CDRBcQ?e=b8ynlX&download=1","offline","malware_download","CAN|Gootkit|Zipped-VBS","slickerstickers-my.sharepoint.com","13.107.138.10","8075","US"
"2018-09-13 16:36:55","https://slickerstickers-my.sharepoint.com/:u:/g/personal/accounts_slickerstickers_com_au/EWYcLrQyaklLtN4aLuU2l1MBoYSVDTgh6kggwb8uZzFYwQ?e=NwOS68&download=1","offline","malware_download","vbs|zip","slickerstickers-my.sharepoint.com","13.107.136.10","8075","US"
"2018-09-13 16:36:55","https://slickerstickers-my.sharepoint.com/:u:/g/personal/accounts_slickerstickers_com_au/EWYcLrQyaklLtN4aLuU2l1MBoYSVDTgh6kggwb8uZzFYwQ?e=NwOS68&download=1","offline","malware_download","vbs|zip","slickerstickers-my.sharepoint.com","13.107.138.10","8075","US"
"2018-09-13 15:12:08","https://slickerstickers-my.sharepoint.com/personal/accounts_slickerstickers_com_au/Documents/Facture%20FA-1728.zip?slrid=f1578e9e-908a-0000-1090-32ad00122e81","offline","malware_download","FRA|Gootkit|zipped-VBS","slickerstickers-my.sharepoint.com","13.107.136.10","8075","US"
"2018-09-13 15:12:08","https://slickerstickers-my.sharepoint.com/personal/accounts_slickerstickers_com_au/Documents/Facture%20FA-1728.zip?slrid=f1578e9e-908a-0000-1090-32ad00122e81","offline","malware_download","FRA|Gootkit|zipped-VBS","slickerstickers-my.sharepoint.com","13.107.138.10","8075","US"
"2018-09-12 13:42:07","https://menziesadvisory-my.sharepoint.com/:u:/g/personal/michael_menziesadvisory_com_au/EUHfB6QmX3JCh1t1-BnBjKIBS6aFGEKdRIgZjpGsuTJ3og?e=K5h5gr&download=1","offline","malware_download","GBR|Ursnif|Zipped-VBS","menziesadvisory-my.sharepoint.com","13.107.136.10","8075","US"
"2018-09-12 13:42:07","https://menziesadvisory-my.sharepoint.com/:u:/g/personal/michael_menziesadvisory_com_au/EUHfB6QmX3JCh1t1-BnBjKIBS6aFGEKdRIgZjpGsuTJ3og?e=K5h5gr&download=1","offline","malware_download","GBR|Ursnif|Zipped-VBS","menziesadvisory-my.sharepoint.com","13.107.138.10","8075","US"
"2018-09-12 00:55:08","https://menziesadvisory-my.sharepoint.com/:u:/g/personal/michael_menziesadvisory_com_au/EQyAUv3M6ftNnIfhfVGj51sBkTPIt4t4ER0Pv07yJs7YNA?e=NzgsTt&download=1","offline","malware_download","AUS|Ursnif|Zipped-VBS","menziesadvisory-my.sharepoint.com","13.107.136.10","8075","US"
"2018-09-12 00:55:08","https://menziesadvisory-my.sharepoint.com/:u:/g/personal/michael_menziesadvisory_com_au/EQyAUv3M6ftNnIfhfVGj51sBkTPIt4t4ER0Pv07yJs7YNA?e=NzgsTt&download=1","offline","malware_download","AUS|Ursnif|Zipped-VBS","menziesadvisory-my.sharepoint.com","13.107.138.10","8075","US"
"2018-09-11 08:37:05","https://flooringxtra-my.sharepoint.com/:u:/g/personal/kylie_wedgwood_flooringxtra_co_nz/EZkKQZyHV2hNihpWacq36coBd7kr0bkTdVnAZGDiQaxexQ?e=LejGae&download=1","offline","malware_download","AUS|Ursnif|Zipped-VBS","flooringxtra-my.sharepoint.com","13.107.136.10","8075","US"
"2018-09-11 08:37:05","https://flooringxtra-my.sharepoint.com/:u:/g/personal/kylie_wedgwood_flooringxtra_co_nz/EZkKQZyHV2hNihpWacq36coBd7kr0bkTdVnAZGDiQaxexQ?e=LejGae&download=1","offline","malware_download","AUS|Ursnif|Zipped-VBS","flooringxtra-my.sharepoint.com","13.107.138.10","8075","US"
"2018-09-07 13:11:07","https://workingin-my.sharepoint.com/:u:/p/dawn_hull/EWkhXoPWMJFGt0EOk-Oo8LsBo9JuTPp1VMU0ICpQXLq86g?e=0SNTM0&download=1","offline","malware_download","GBR|Ursnif|zipped-vbs","workingin-my.sharepoint.com","13.107.136.10","8075","US"
"2018-09-07 13:11:07","https://workingin-my.sharepoint.com/:u:/p/dawn_hull/EWkhXoPWMJFGt0EOk-Oo8LsBo9JuTPp1VMU0ICpQXLq86g?e=0SNTM0&download=1","offline","malware_download","GBR|Ursnif|zipped-vbs","workingin-my.sharepoint.com","13.107.138.10","8075","US"
"2018-09-04 15:03:04","https://farrofresh-my.sharepoint.com/:u:/g/personal/warehouse_orakei_farro_co_nz/EdqOxbiu3flPvjkpO1Jls3QBjPjpa65NBotr9eNJ9n9QGQ?e=KhsQRS&download=1","offline","malware_download","vbs|zip","farrofresh-my.sharepoint.com","13.107.136.10","8075","US"
"2018-09-04 15:03:04","https://farrofresh-my.sharepoint.com/:u:/g/personal/warehouse_orakei_farro_co_nz/EdqOxbiu3flPvjkpO1Jls3QBjPjpa65NBotr9eNJ9n9QGQ?e=KhsQRS&download=1","offline","malware_download","vbs|zip","farrofresh-my.sharepoint.com","13.107.138.10","8075","US"
"2018-09-03 10:04:06","https://picinsurancebrokers-my.sharepoint.com/:u:/g/personal/rachael_pic_co_nz/EU1TPOlCd7VOid2Nz0wPQPEB2ZHWIwyk0TJnE_gkMa7xDQ?e=74lxP0&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","picinsurancebrokers-my.sharepoint.com","13.107.136.10","8075","US"
"2018-09-03 10:04:06","https://picinsurancebrokers-my.sharepoint.com/:u:/g/personal/rachael_pic_co_nz/EU1TPOlCd7VOid2Nz0wPQPEB2ZHWIwyk0TJnE_gkMa7xDQ?e=74lxP0&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","picinsurancebrokers-my.sharepoint.com","13.107.138.10","8075","US"
"2018-08-28 06:24:10","https://newdimensionshealthclub-my.sharepoint.com/:u:/g/personal/leonay_newdimensions_com_au/EYXkvcZYdiBLqxX-bbFaHbYBUzfF4LmRBsJj-wXm6JlIdQ?e=1m6ow5&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","newdimensionshealthclub-my.sharepoint.com","13.107.136.10","8075","US"
"2018-08-28 06:24:10","https://newdimensionshealthclub-my.sharepoint.com/:u:/g/personal/leonay_newdimensions_com_au/EYXkvcZYdiBLqxX-bbFaHbYBUzfF4LmRBsJj-wXm6JlIdQ?e=1m6ow5&download=1","offline","malware_download","AUS|Ursnif|zipped-VBS","newdimensionshealthclub-my.sharepoint.com","13.107.138.10","8075","US"
"2018-08-27 16:35:07","https://byroneventhire-my.sharepoint.com/:u:/g/personal/anika_byronbayweddingandpartyhire_com_au/EUfyyq3Ng31NgamrT21gIpkBlfTf5-Gpys6bs04tRHUzew?e=EvYhfI&download=1","offline","malware_download","FRA|Gootkit|zipped-VBS","byroneventhire-my.sharepoint.com","13.107.136.10","8075","US"
"2018-08-27 16:35:07","https://byroneventhire-my.sharepoint.com/:u:/g/personal/anika_byronbayweddingandpartyhire_com_au/EUfyyq3Ng31NgamrT21gIpkBlfTf5-Gpys6bs04tRHUzew?e=EvYhfI&download=1","offline","malware_download","FRA|Gootkit|zipped-VBS","byroneventhire-my.sharepoint.com","13.107.138.10","8075","US"
"2018-08-27 09:33:14","https://linbeckcontractors-my.sharepoint.com/:u:/g/personal/rebecca_mcdonald_linbeck_com_au/EavToetTnxdEh1RKVH_-NPoBAZE-ErKAbDvC0CKBmSoQZw?e=J4i0be&download=1","offline","malware_download","zipped-vbs","linbeckcontractors-my.sharepoint.com","13.107.136.10","8075","US"
"2018-08-27 09:33:14","https://linbeckcontractors-my.sharepoint.com/:u:/g/personal/rebecca_mcdonald_linbeck_com_au/EavToetTnxdEh1RKVH_-NPoBAZE-ErKAbDvC0CKBmSoQZw?e=J4i0be&download=1","offline","malware_download","zipped-vbs","linbeckcontractors-my.sharepoint.com","13.107.138.10","8075","US"
"2018-08-27 09:33:10","https://blindsbbnet-my.sharepoint.com/:u:/g/personal/info_blindsbb_net/EYaeyw5r14JLuO9EwQfYnS4Bs5LrGudJ134AQGLM_D6uSw?e=R71JaK&download=1","offline","malware_download","zipped-vbs","blindsbbnet-my.sharepoint.com","13.107.136.10","8075","US"
"2018-08-27 09:33:10","https://blindsbbnet-my.sharepoint.com/:u:/g/personal/info_blindsbb_net/EYaeyw5r14JLuO9EwQfYnS4Bs5LrGudJ134AQGLM_D6uSw?e=R71JaK&download=1","offline","malware_download","zipped-vbs","blindsbbnet-my.sharepoint.com","13.107.138.10","8075","US"
"2018-08-27 09:33:08","https://conceptbooks-my.sharepoint.com/:u:/g/personal/penny_conceptbookkeeping_com_au/Ed5dDdF3Z9dPq8Wc6L3NkjkBBFezJdnGqH5vum7_ijYzUA?e=fodeR6&download=1","offline","malware_download","zipped-vbs","conceptbooks-my.sharepoint.com","13.107.136.10","8075","US"
"2018-08-27 09:33:08","https://conceptbooks-my.sharepoint.com/:u:/g/personal/penny_conceptbookkeeping_com_au/Ed5dDdF3Z9dPq8Wc6L3NkjkBBFezJdnGqH5vum7_ijYzUA?e=fodeR6&download=1","offline","malware_download","zipped-vbs","conceptbooks-my.sharepoint.com","13.107.138.10","8075","US"
"2018-08-27 09:33:05","https://pacedg-my.sharepoint.com/:u:/g/personal/jarrods_pacedg_com_au/EdYlh1IrJE5NuJnUJIo8uUMBa0cyro4x4g0nUaskPBMdsg?e=8bv6jc&download=1","offline","malware_download","zipped-vbs","pacedg-my.sharepoint.com","13.107.136.10","8075","US"
"2018-08-27 09:33:05","https://pacedg-my.sharepoint.com/:u:/g/personal/jarrods_pacedg_com_au/EdYlh1IrJE5NuJnUJIo8uUMBa0cyro4x4g0nUaskPBMdsg?e=8bv6jc&download=1","offline","malware_download","zipped-vbs","pacedg-my.sharepoint.com","13.107.138.10","8075","US"
"2018-08-27 09:32:58","https://completeconstruction-my.sharepoint.com/:u:/g/personal/detailing3_completeconstruction_co_nz/EUcg__yqdiFPlWuMKbocZ6sBenvdj7Xhvvb3UcO1kkLEkQ?e=6BR2VY&download=1","offline","malware_download","zipped-vbs","completeconstruction-my.sharepoint.com","13.107.136.10","8075","US"
"2018-08-27 09:32:58","https://completeconstruction-my.sharepoint.com/:u:/g/personal/detailing3_completeconstruction_co_nz/EUcg__yqdiFPlWuMKbocZ6sBenvdj7Xhvvb3UcO1kkLEkQ?e=6BR2VY&download=1","offline","malware_download","zipped-vbs","completeconstruction-my.sharepoint.com","13.107.138.10","8075","US"
"2018-08-27 09:32:54","https://blindsbbnet-my.sharepoint.com/:u:/g/personal/info_blindsbb_net/EZ4KagxrrqtMu1CKTmB6HPkBOYJInfO7U6ZSxa9BKUTttw?e=B2qonv&download=1","offline","malware_download","zipped-vbs","blindsbbnet-my.sharepoint.com","13.107.136.10","8075","US"
"2018-08-27 09:32:54","https://blindsbbnet-my.sharepoint.com/:u:/g/personal/info_blindsbb_net/EZ4KagxrrqtMu1CKTmB6HPkBOYJInfO7U6ZSxa9BKUTttw?e=B2qonv&download=1","offline","malware_download","zipped-vbs","blindsbbnet-my.sharepoint.com","13.107.138.10","8075","US"
"2018-08-27 09:32:50","https://mullins-my.sharepoint.com/:u:/g/personal/mbray_mullins_com_au/ESlhscIn4WZGnrAw7NaN69QBvk9CMSAfgHSeugW1QrKUlw?e=1nCQhS&download=1","offline","malware_download","zipped-vbs","mullins-my.sharepoint.com","13.107.136.10","8075","US"
"2018-08-27 09:32:50","https://mullins-my.sharepoint.com/:u:/g/personal/mbray_mullins_com_au/ESlhscIn4WZGnrAw7NaN69QBvk9CMSAfgHSeugW1QrKUlw?e=1nCQhS&download=1","offline","malware_download","zipped-vbs","mullins-my.sharepoint.com","13.107.138.10","8075","US"
"2018-08-27 09:32:45","https://menziesadvisory-my.sharepoint.com/:u:/g/personal/michael_menziesadvisory_com_au/ES2d5nPCB3NBhx-PVUy7TB0BEDFDu926oTlXr5U90qemzg?e=74z0ie&download=1","offline","malware_download","zipped-vbs","menziesadvisory-my.sharepoint.com","13.107.136.10","8075","US"
"2018-08-27 09:32:45","https://menziesadvisory-my.sharepoint.com/:u:/g/personal/michael_menziesadvisory_com_au/ES2d5nPCB3NBhx-PVUy7TB0BEDFDu926oTlXr5U90qemzg?e=74z0ie&download=1","offline","malware_download","zipped-vbs","menziesadvisory-my.sharepoint.com","13.107.138.10","8075","US"
"2018-08-27 09:32:41","https://trabethtextiles-my.sharepoint.com/:u:/g/personal/enquiries_trabethtextiles_com_au/ETyJmKaW0mZJgtjN7NnCP08B9QBNuQjHjmycGVjmNFDH7A?e=LrU1Q9&download=1","offline","malware_download","zipped-vbs","trabethtextiles-my.sharepoint.com","52.107.243.195","8075","DE"
"2018-08-27 09:32:41","https://trabethtextiles-my.sharepoint.com/:u:/g/personal/enquiries_trabethtextiles_com_au/ETyJmKaW0mZJgtjN7NnCP08B9QBNuQjHjmycGVjmNFDH7A?e=LrU1Q9&download=1","offline","malware_download","zipped-vbs","trabethtextiles-my.sharepoint.com","52.107.243.66","8075","DE"
"2018-08-27 09:32:41","https://trabethtextiles-my.sharepoint.com/:u:/g/personal/enquiries_trabethtextiles_com_au/ETyJmKaW0mZJgtjN7NnCP08B9QBNuQjHjmycGVjmNFDH7A?e=LrU1Q9&download=1","offline","malware_download","zipped-vbs","trabethtextiles-my.sharepoint.com","52.107.243.70","8075","DE"
"2018-08-27 09:32:41","https://trabethtextiles-my.sharepoint.com/:u:/g/personal/enquiries_trabethtextiles_com_au/ETyJmKaW0mZJgtjN7NnCP08B9QBNuQjHjmycGVjmNFDH7A?e=LrU1Q9&download=1","offline","malware_download","zipped-vbs","trabethtextiles-my.sharepoint.com","52.107.243.75","8075","DE"
"2018-08-27 09:32:39","https://trabethtextiles-my.sharepoint.com/:u:/g/personal/enquiries_trabethtextiles_com_au/EaqhJcUEQt9Ks7c-ACBNEb8BT3CGaimM3uAgNAy6OCHVPw?e=TRCuY9&download=1","offline","malware_download","zipped-vbs","trabethtextiles-my.sharepoint.com","52.107.243.195","8075","DE"
"2018-08-27 09:32:39","https://trabethtextiles-my.sharepoint.com/:u:/g/personal/enquiries_trabethtextiles_com_au/EaqhJcUEQt9Ks7c-ACBNEb8BT3CGaimM3uAgNAy6OCHVPw?e=TRCuY9&download=1","offline","malware_download","zipped-vbs","trabethtextiles-my.sharepoint.com","52.107.243.66","8075","DE"
"2018-08-27 09:32:39","https://trabethtextiles-my.sharepoint.com/:u:/g/personal/enquiries_trabethtextiles_com_au/EaqhJcUEQt9Ks7c-ACBNEb8BT3CGaimM3uAgNAy6OCHVPw?e=TRCuY9&download=1","offline","malware_download","zipped-vbs","trabethtextiles-my.sharepoint.com","52.107.243.70","8075","DE"
"2018-08-27 09:32:39","https://trabethtextiles-my.sharepoint.com/:u:/g/personal/enquiries_trabethtextiles_com_au/EaqhJcUEQt9Ks7c-ACBNEb8BT3CGaimM3uAgNAy6OCHVPw?e=TRCuY9&download=1","offline","malware_download","zipped-vbs","trabethtextiles-my.sharepoint.com","52.107.243.75","8075","DE"
"2018-08-27 09:32:36","https://trabethtextiles-my.sharepoint.com/:u:/g/personal/enquiries_trabethtextiles_com_au/EXjjnYwde2FBmGrQ1SQDucMB-UZQfTAMdM9Cjigdxppm2Q?e=eXXVgb&download=1","offline","malware_download","zipped-vbs","trabethtextiles-my.sharepoint.com","52.107.243.195","8075","DE"
"2018-08-27 09:32:36","https://trabethtextiles-my.sharepoint.com/:u:/g/personal/enquiries_trabethtextiles_com_au/EXjjnYwde2FBmGrQ1SQDucMB-UZQfTAMdM9Cjigdxppm2Q?e=eXXVgb&download=1","offline","malware_download","zipped-vbs","trabethtextiles-my.sharepoint.com","52.107.243.66","8075","DE"
"2018-08-27 09:32:36","https://trabethtextiles-my.sharepoint.com/:u:/g/personal/enquiries_trabethtextiles_com_au/EXjjnYwde2FBmGrQ1SQDucMB-UZQfTAMdM9Cjigdxppm2Q?e=eXXVgb&download=1","offline","malware_download","zipped-vbs","trabethtextiles-my.sharepoint.com","52.107.243.70","8075","DE"
"2018-08-27 09:32:36","https://trabethtextiles-my.sharepoint.com/:u:/g/personal/enquiries_trabethtextiles_com_au/EXjjnYwde2FBmGrQ1SQDucMB-UZQfTAMdM9Cjigdxppm2Q?e=eXXVgb&download=1","offline","malware_download","zipped-vbs","trabethtextiles-my.sharepoint.com","52.107.243.75","8075","DE"
"2018-08-27 09:32:32","https://jaenz-my.sharepoint.com/:u:/g/personal/moana_bogusz_jae_co_nz/ETqpA8OQm5FLh_81t70mVJ4B2V12BwLBnFPBD60-k06bJw?e=LdnSa5&download=1","offline","malware_download","zipped-vbs","jaenz-my.sharepoint.com","13.107.136.10","8075","US"
"2018-08-27 09:32:32","https://jaenz-my.sharepoint.com/:u:/g/personal/moana_bogusz_jae_co_nz/ETqpA8OQm5FLh_81t70mVJ4B2V12BwLBnFPBD60-k06bJw?e=LdnSa5&download=1","offline","malware_download","zipped-vbs","jaenz-my.sharepoint.com","13.107.138.10","8075","US"
"2018-08-27 09:32:27","https://jaenz-my.sharepoint.com/:u:/g/personal/moana_bogusz_jae_co_nz/EbMd13-F6cFBu4tPaX8rHnkBXOdOlD_gj2xJWj_u90iyvQ?e=iOgCNt&download=1","offline","malware_download","zipped-vbs","jaenz-my.sharepoint.com","13.107.136.10","8075","US"
"2018-08-27 09:32:27","https://jaenz-my.sharepoint.com/:u:/g/personal/moana_bogusz_jae_co_nz/EbMd13-F6cFBu4tPaX8rHnkBXOdOlD_gj2xJWj_u90iyvQ?e=iOgCNt&download=1","offline","malware_download","zipped-vbs","jaenz-my.sharepoint.com","13.107.138.10","8075","US"
"2018-08-27 09:32:20","https://littlesparrowwatergardens-my.sharepoint.com/:u:/g/personal/accounts_littlesparrowwatergardens_com_au/EfpPw7JnYL9NjDFFGzt2GlAB55N-raelFcNU7feJlryKaw?e=qOqJ6w&download=1","offline","malware_download","zipped-vbs","littlesparrowwatergardens-my.sharepoint.com","13.107.136.10","8075","US"
"2018-08-27 09:32:20","https://littlesparrowwatergardens-my.sharepoint.com/:u:/g/personal/accounts_littlesparrowwatergardens_com_au/EfpPw7JnYL9NjDFFGzt2GlAB55N-raelFcNU7feJlryKaw?e=qOqJ6w&download=1","offline","malware_download","zipped-vbs","littlesparrowwatergardens-my.sharepoint.com","13.107.138.10","8075","US"
"2018-08-27 09:32:09","https://communitychildren-my.sharepoint.com/:u:/g/personal/newtown_federationchildren_com_au/EZhQlxOrwgtBtWAw8g4aX-4B6C0EtVjdK0bbIBz5bnwLng?e=UMKKiB&download=1","offline","malware_download","zipped-vbs","communitychildren-my.sharepoint.com","13.107.136.10","8075","US"
"2018-08-27 09:32:09","https://communitychildren-my.sharepoint.com/:u:/g/personal/newtown_federationchildren_com_au/EZhQlxOrwgtBtWAw8g4aX-4B6C0EtVjdK0bbIBz5bnwLng?e=UMKKiB&download=1","offline","malware_download","zipped-vbs","communitychildren-my.sharepoint.com","13.107.138.10","8075","US"
"2018-08-27 09:32:06","https://oaksproperty88-my.sharepoint.com/:u:/g/personal/elynn_oaksproperty_co_nz/EeBYBDH68F9MsoH3TNcAUwEBU7IPlxN5a-YyOfUli_r0Jg?e=jgkUcP&download=1","offline","malware_download","zipped-vbs","oaksproperty88-my.sharepoint.com","13.107.136.10","8075","US"
"2018-08-27 09:32:06","https://oaksproperty88-my.sharepoint.com/:u:/g/personal/elynn_oaksproperty_co_nz/EeBYBDH68F9MsoH3TNcAUwEBU7IPlxN5a-YyOfUli_r0Jg?e=jgkUcP&download=1","offline","malware_download","zipped-vbs","oaksproperty88-my.sharepoint.com","13.107.138.10","8075","US"
"2018-08-24 10:19:14","http://stark.co.th/xerox/US_us/Important-Please-Read","offline","malware_download","doc|emotet|heodo","stark.co.th","4.193.67.176","8075","SG"
"2018-08-23 14:03:52","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fjoannawedding.tw%2FINFO%2FUS%2FOpen-Past-Due-Orders&data=02%7C01%7C%7C8a1f2e80eebf495af6c508d608cccb99%7C0beb0c359cbb4feb99e5589e415c7944%7C1%7C0%7C636706073006427786&sdata=pv1Mo82uRolYP6VDg0%2BYcpKi8z65ugu8CLY9WEob974%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.15","8075","US"
"2018-08-23 14:03:52","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fjoannawedding.tw%2FINFO%2FUS%2FOpen-Past-Due-Orders&data=02%7C01%7C%7C8a1f2e80eebf495af6c508d608cccb99%7C0beb0c359cbb4feb99e5589e415c7944%7C1%7C0%7C636706073006427786&sdata=pv1Mo82uRolYP6VDg0%2BYcpKi8z65ugu8CLY9WEob974%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.23","8075","US"
"2018-08-23 14:03:52","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fjoannawedding.tw%2FINFO%2FUS%2FOpen-Past-Due-Orders&data=02%7C01%7C%7C8a1f2e80eebf495af6c508d608cccb99%7C0beb0c359cbb4feb99e5589e415c7944%7C1%7C0%7C636706073006427786&sdata=pv1Mo82uRolYP6VDg0%2BYcpKi8z65ugu8CLY9WEob974%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.34","8075","US"
"2018-08-23 14:03:52","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fjoannawedding.tw%2FINFO%2FUS%2FOpen-Past-Due-Orders&data=02%7C01%7C%7C8a1f2e80eebf495af6c508d608cccb99%7C0beb0c359cbb4feb99e5589e415c7944%7C1%7C0%7C636706073006427786&sdata=pv1Mo82uRolYP6VDg0%2BYcpKi8z65ugu8CLY9WEob974%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.48","8075","US"
"2018-08-23 14:03:52","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fjoannawedding.tw%2FINFO%2FUS%2FOpen-Past-Due-Orders&data=02%7C01%7C%7C8a1f2e80eebf495af6c508d608cccb99%7C0beb0c359cbb4feb99e5589e415c7944%7C1%7C0%7C636706073006427786&sdata=pv1Mo82uRolYP6VDg0%2BYcpKi8z65ugu8CLY9WEob974%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.6","8075","US"
"2018-08-23 14:03:52","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fjoannawedding.tw%2FINFO%2FUS%2FOpen-Past-Due-Orders&data=02%7C01%7C%7C8a1f2e80eebf495af6c508d608cccb99%7C0beb0c359cbb4feb99e5589e415c7944%7C1%7C0%7C636706073006427786&sdata=pv1Mo82uRolYP6VDg0%2BYcpKi8z65ugu8CLY9WEob974%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.7","8075","US"
"2018-08-23 14:03:52","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fjoannawedding.tw%2FINFO%2FUS%2FOpen-Past-Due-Orders&data=02%7C01%7C%7C8a1f2e80eebf495af6c508d608cccb99%7C0beb0c359cbb4feb99e5589e415c7944%7C1%7C0%7C636706073006427786&sdata=pv1Mo82uRolYP6VDg0%2BYcpKi8z65ugu8CLY9WEob974%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.71","8075","US"
"2018-08-23 14:03:52","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fjoannawedding.tw%2FINFO%2FUS%2FOpen-Past-Due-Orders&data=02%7C01%7C%7C8a1f2e80eebf495af6c508d608cccb99%7C0beb0c359cbb4feb99e5589e415c7944%7C1%7C0%7C636706073006427786&sdata=pv1Mo82uRolYP6VDg0%2BYcpKi8z65ugu8CLY9WEob974%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.72","8075","US"
"2018-08-22 05:49:35","http://168.63.94.20/malwarestore/20160420/invoice","offline","malware_download","doc","168.63.94.20","168.63.94.20","8075","IE"
"2018-08-22 04:26:32","http://stark.co.th/547OLRHSV/com/Business/","offline","malware_download","doc|emotet|Heodo","stark.co.th","4.193.67.176","8075","SG"
"2018-08-21 22:35:56","http://campaigns.actionable-science.com/29101PZBB/identity/US","offline","malware_download","doc|emotet|Heodo","campaigns.actionable-science.com","40.76.214.0","8075","US"
"2018-08-21 16:53:16","http://stark.co.th/547OLRHSV/com/Business","offline","malware_download","doc|emotet|Heodo","stark.co.th","4.193.67.176","8075","SG"
"2018-08-21 14:41:29","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Floja.suportepjfp.com%2F8722897FJU%2FWIRE%2FCommercial&data=02%7C01%7C%7C0ae4be3840c241580f0708d6075b2a22%7C0beb0c359cbb4feb99e5589e415c7944%7C1%7C0%7C636704485463038224&sdata=WWAiI5ITHspSebss%2Fn0QtFqHdYsacbUzU9FEVIip3qo%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.15","8075","US"
"2018-08-21 14:41:29","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Floja.suportepjfp.com%2F8722897FJU%2FWIRE%2FCommercial&data=02%7C01%7C%7C0ae4be3840c241580f0708d6075b2a22%7C0beb0c359cbb4feb99e5589e415c7944%7C1%7C0%7C636704485463038224&sdata=WWAiI5ITHspSebss%2Fn0QtFqHdYsacbUzU9FEVIip3qo%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.23","8075","US"
"2018-08-21 14:41:29","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Floja.suportepjfp.com%2F8722897FJU%2FWIRE%2FCommercial&data=02%7C01%7C%7C0ae4be3840c241580f0708d6075b2a22%7C0beb0c359cbb4feb99e5589e415c7944%7C1%7C0%7C636704485463038224&sdata=WWAiI5ITHspSebss%2Fn0QtFqHdYsacbUzU9FEVIip3qo%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.34","8075","US"
"2018-08-21 14:41:29","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Floja.suportepjfp.com%2F8722897FJU%2FWIRE%2FCommercial&data=02%7C01%7C%7C0ae4be3840c241580f0708d6075b2a22%7C0beb0c359cbb4feb99e5589e415c7944%7C1%7C0%7C636704485463038224&sdata=WWAiI5ITHspSebss%2Fn0QtFqHdYsacbUzU9FEVIip3qo%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.48","8075","US"
"2018-08-21 14:41:29","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Floja.suportepjfp.com%2F8722897FJU%2FWIRE%2FCommercial&data=02%7C01%7C%7C0ae4be3840c241580f0708d6075b2a22%7C0beb0c359cbb4feb99e5589e415c7944%7C1%7C0%7C636704485463038224&sdata=WWAiI5ITHspSebss%2Fn0QtFqHdYsacbUzU9FEVIip3qo%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.6","8075","US"
"2018-08-21 14:41:29","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Floja.suportepjfp.com%2F8722897FJU%2FWIRE%2FCommercial&data=02%7C01%7C%7C0ae4be3840c241580f0708d6075b2a22%7C0beb0c359cbb4feb99e5589e415c7944%7C1%7C0%7C636704485463038224&sdata=WWAiI5ITHspSebss%2Fn0QtFqHdYsacbUzU9FEVIip3qo%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.7","8075","US"
"2018-08-21 14:41:29","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Floja.suportepjfp.com%2F8722897FJU%2FWIRE%2FCommercial&data=02%7C01%7C%7C0ae4be3840c241580f0708d6075b2a22%7C0beb0c359cbb4feb99e5589e415c7944%7C1%7C0%7C636704485463038224&sdata=WWAiI5ITHspSebss%2Fn0QtFqHdYsacbUzU9FEVIip3qo%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.71","8075","US"
"2018-08-21 14:41:29","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Floja.suportepjfp.com%2F8722897FJU%2FWIRE%2FCommercial&data=02%7C01%7C%7C0ae4be3840c241580f0708d6075b2a22%7C0beb0c359cbb4feb99e5589e415c7944%7C1%7C0%7C636704485463038224&sdata=WWAiI5ITHspSebss%2Fn0QtFqHdYsacbUzU9FEVIip3qo%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.72","8075","US"
"2018-08-21 05:59:48","http://168.63.94.20/malwarestore/20151209/f5915f22664a87f727480ce6faccc002","offline","malware_download","doc","168.63.94.20","168.63.94.20","8075","IE"
"2018-08-21 05:59:47","http://168.63.94.20/malwarestore/20160916/283912bd2ddd64aba2437daf573bad5f","offline","malware_download","doc","168.63.94.20","168.63.94.20","8075","IE"
"2018-08-21 05:59:46","http://168.63.94.20/malwarestore/20160307/3a2333be042e25ab1c165f878e9393cc","offline","malware_download","doc","168.63.94.20","168.63.94.20","8075","IE"
"2018-08-21 05:59:45","http://168.63.94.20/malwarestore/20160901/0b7dcc5e80a6dbb0e23c18fbd881c7a6","offline","malware_download","zip","168.63.94.20","168.63.94.20","8075","IE"
"2018-08-20 15:36:39","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Ftest.socialplogger.com%2FDownload%2FEn%2FInv-89690-PO-1L779469&data=01%7C01%7CLLARGE%40noblecorp.com%7C6bb8cd51035c4132f1c508d606a6f308%7C0485bbe79f0a4aa9b7813e1a286765b6%7C0&sdata=VmVcp%2FjUiEAwCLSv8VNFn%2FF4jqf0B66wVYdBO7PSaLs%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.15","8075","US"
"2018-08-20 15:36:39","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Ftest.socialplogger.com%2FDownload%2FEn%2FInv-89690-PO-1L779469&data=01%7C01%7CLLARGE%40noblecorp.com%7C6bb8cd51035c4132f1c508d606a6f308%7C0485bbe79f0a4aa9b7813e1a286765b6%7C0&sdata=VmVcp%2FjUiEAwCLSv8VNFn%2FF4jqf0B66wVYdBO7PSaLs%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.23","8075","US"
"2018-08-20 15:36:39","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Ftest.socialplogger.com%2FDownload%2FEn%2FInv-89690-PO-1L779469&data=01%7C01%7CLLARGE%40noblecorp.com%7C6bb8cd51035c4132f1c508d606a6f308%7C0485bbe79f0a4aa9b7813e1a286765b6%7C0&sdata=VmVcp%2FjUiEAwCLSv8VNFn%2FF4jqf0B66wVYdBO7PSaLs%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.34","8075","US"
"2018-08-20 15:36:39","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Ftest.socialplogger.com%2FDownload%2FEn%2FInv-89690-PO-1L779469&data=01%7C01%7CLLARGE%40noblecorp.com%7C6bb8cd51035c4132f1c508d606a6f308%7C0485bbe79f0a4aa9b7813e1a286765b6%7C0&sdata=VmVcp%2FjUiEAwCLSv8VNFn%2FF4jqf0B66wVYdBO7PSaLs%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.48","8075","US"
"2018-08-20 15:36:39","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Ftest.socialplogger.com%2FDownload%2FEn%2FInv-89690-PO-1L779469&data=01%7C01%7CLLARGE%40noblecorp.com%7C6bb8cd51035c4132f1c508d606a6f308%7C0485bbe79f0a4aa9b7813e1a286765b6%7C0&sdata=VmVcp%2FjUiEAwCLSv8VNFn%2FF4jqf0B66wVYdBO7PSaLs%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.6","8075","US"
"2018-08-20 15:36:39","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Ftest.socialplogger.com%2FDownload%2FEn%2FInv-89690-PO-1L779469&data=01%7C01%7CLLARGE%40noblecorp.com%7C6bb8cd51035c4132f1c508d606a6f308%7C0485bbe79f0a4aa9b7813e1a286765b6%7C0&sdata=VmVcp%2FjUiEAwCLSv8VNFn%2FF4jqf0B66wVYdBO7PSaLs%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.7","8075","US"
"2018-08-20 15:36:39","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Ftest.socialplogger.com%2FDownload%2FEn%2FInv-89690-PO-1L779469&data=01%7C01%7CLLARGE%40noblecorp.com%7C6bb8cd51035c4132f1c508d606a6f308%7C0485bbe79f0a4aa9b7813e1a286765b6%7C0&sdata=VmVcp%2FjUiEAwCLSv8VNFn%2FF4jqf0B66wVYdBO7PSaLs%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.71","8075","US"
"2018-08-20 15:36:39","https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Ftest.socialplogger.com%2FDownload%2FEn%2FInv-89690-PO-1L779469&data=01%7C01%7CLLARGE%40noblecorp.com%7C6bb8cd51035c4132f1c508d606a6f308%7C0485bbe79f0a4aa9b7813e1a286765b6%7C0&sdata=VmVcp%2FjUiEAwCLSv8VNFn%2FF4jqf0B66wVYdBO7PSaLs%3D&reserved=0","offline","malware_download","doc|emotet","na01.safelinks.protection.outlook.com","52.102.113.72","8075","US"
"2018-08-14 04:28:57","http://siamgemsheritage.com/career_system/backoffice/uploads/files/En/Invoice-for-sent/69553/","offline","malware_download","doc|emotet|Heodo","siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-08-13 13:26:07","http://siamgemsheritage.com/career_system/backoffice/uploads/files/En/Invoice-for-sent/69553","offline","malware_download","doc|emotet|Heodo","siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-08-12 16:45:07","http://168.61.217.219/Diagnostic_Report.doc","offline","malware_download","doc|Emotet","168.61.217.219","168.61.217.219","8075","US"
"2018-08-12 16:45:06","http://168.61.217.219/Diagnostic_Report_Silent.doc","offline","malware_download","doc|Emotet","168.61.217.219","168.61.217.219","8075","US"
"2018-08-10 11:45:21","http://na01.safelinks.protection.outlook.com/?url=http://enbau.net/Client/Past-Due-invoice/","offline","malware_download","","na01.safelinks.protection.outlook.com","52.102.113.15","8075","US"
"2018-08-10 11:45:21","http://na01.safelinks.protection.outlook.com/?url=http://enbau.net/Client/Past-Due-invoice/","offline","malware_download","","na01.safelinks.protection.outlook.com","52.102.113.23","8075","US"
"2018-08-10 11:45:21","http://na01.safelinks.protection.outlook.com/?url=http://enbau.net/Client/Past-Due-invoice/","offline","malware_download","","na01.safelinks.protection.outlook.com","52.102.113.34","8075","US"
"2018-08-10 11:45:21","http://na01.safelinks.protection.outlook.com/?url=http://enbau.net/Client/Past-Due-invoice/","offline","malware_download","","na01.safelinks.protection.outlook.com","52.102.113.48","8075","US"
"2018-08-10 11:45:21","http://na01.safelinks.protection.outlook.com/?url=http://enbau.net/Client/Past-Due-invoice/","offline","malware_download","","na01.safelinks.protection.outlook.com","52.102.113.6","8075","US"
"2018-08-10 11:45:21","http://na01.safelinks.protection.outlook.com/?url=http://enbau.net/Client/Past-Due-invoice/","offline","malware_download","","na01.safelinks.protection.outlook.com","52.102.113.7","8075","US"
"2018-08-10 11:45:21","http://na01.safelinks.protection.outlook.com/?url=http://enbau.net/Client/Past-Due-invoice/","offline","malware_download","","na01.safelinks.protection.outlook.com","52.102.113.71","8075","US"
"2018-08-10 11:45:21","http://na01.safelinks.protection.outlook.com/?url=http://enbau.net/Client/Past-Due-invoice/","offline","malware_download","","na01.safelinks.protection.outlook.com","52.102.113.72","8075","US"
"2018-08-09 05:17:33","http://siamgemsheritage.com/career_system/backoffice/uploads/LLC/XKRO464770198YVC/71676359/OB-ESLHH/","offline","malware_download","doc|emotet|Heodo","siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-08-08 07:31:23","http://siamgemsheritage.com/career_system/backoffice/uploads/LLC/XKRO464770198YVC/71676359/OB-ESLHH","offline","malware_download","doc|emotet|heodo","siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-08-07 06:06:42","http://spectrumza.co.za/CARD/HQJY190719890VL/Aug-06-2018-2006734490/ST-LNND/","offline","malware_download","doc|emotet|heodo","spectrumza.co.za","40.127.2.79","8075","ZA"
"2018-08-07 02:52:23","http://siamgemsheritage.com/career_system/backoffice/uploads/DOC/PUDG27223967MTB/39296395/ENSM-EYLC-Aug-03-2018/","offline","malware_download","doc|emotet|Heodo","siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-08-06 14:33:25","http://siamgemsheritage.com/career_system/backoffice/uploads/pwZ1CfJ4/","offline","malware_download","Heodo|Pony","siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-08-06 14:33:08","http://siamgemsheritage.com/career_system/backoffice/uploads/pwZ1CfJ4","offline","malware_download","emotet|Heodo|payload|Pony","siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-08-03 12:00:13","http://siamgemsheritage.com/career_system/backoffice/uploads/DOC/PUDG27223967MTB/39296395/ENSM-EYLC-Aug-03-2018","offline","malware_download","doc|emotet|Heodo","siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-07-31 02:32:06","https://nextgenopx-my.sharepoint.com/:u:/p/info/Ee7YyTh4aIxInJceTjHVyAcBrn-1FXLogmYU91U3RTVRUA?e=pkUWk0&download=1&utm_source=All%20Australia%20services","offline","malware_download","AUS|Ursnif|zipped-VBS","nextgenopx-my.sharepoint.com","13.107.136.10","8075","US"
"2018-07-31 02:32:06","https://nextgenopx-my.sharepoint.com/:u:/p/info/Ee7YyTh4aIxInJceTjHVyAcBrn-1FXLogmYU91U3RTVRUA?e=pkUWk0&download=1&utm_source=All%20Australia%20services","offline","malware_download","AUS|Ursnif|zipped-VBS","nextgenopx-my.sharepoint.com","13.107.138.10","8075","US"
"2018-07-28 01:26:25","http://www.siamgemsheritage.com/career_system/backoffice/uploads/newsletter/En_us/Jul2018/Invoice-2492362/","offline","malware_download","doc|emotet|epoch2|Heodo","www.siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-07-28 01:25:56","http://siamgemsheritage.com/career_system/backoffice/uploads/files/US/INVOICES/Invoice-1607734/","offline","malware_download","doc|emotet|epoch2|Heodo","siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-07-26 03:58:30","http://www.siamgemsheritage.com/career_system/backoffice/uploads/default/US_us/Invoice-for-sent/ACCOUNT3238478/","offline","malware_download","doc|emotet|epoch2|Heodo","www.siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-07-26 03:56:34","http://siamgemsheritage.com/career_system/backoffice/uploads/default/EN_en/INVOICES/Invoice-8046610/","offline","malware_download","doc|emotet|epoch2|Heodo","siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-07-24 05:36:41","http://www.siamgemsheritage.com/career_system/backoffice/uploads/pdf/En/Jul2018/Invoice-682006/","offline","malware_download","doc|emotet|epoch2|Heodo","www.siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-07-24 04:12:12","http://www.siamgemsheritage.com/career_system/backoffice/uploads/pdf/En/Jul2018/Invoice-682006","offline","malware_download","doc|emotet|heodo","www.siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-07-23 20:55:05","http://siamgemsheritage.com/career_system/backoffice/uploads/RIew5i","offline","malware_download","emotet|epoch2|Heodo|payload","siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-07-19 18:35:33","http://siamgemsheritage.com/backup3/wp-content/plugins/all-in-one-wp-migration/storage/uFb6zI7y","offline","malware_download","emotet|epoch2|Heodo|payload","siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-07-19 14:11:39","http://asound.no/Jul2018/En/New-Order-Upcoming/HRI-Monthly-Invoice/","offline","malware_download","Heodo","asound.no","13.74.150.237","8075","IE"
"2018-07-19 11:08:33","http://www.siamgemsheritage.com/backup3/wp-content/plugins/all-in-one-wp-migration/storage/sites/En_us/OVERDUE-ACCOUNT/Invoice-6","offline","malware_download","doc|emotet","www.siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-07-19 07:10:32","http://asound.no/Jul2018/En/New-Order-Upcoming/HRI-Monthly-Invoice","offline","malware_download","doc|emotet|heodo","asound.no","13.74.150.237","8075","IE"
"2018-07-16 17:11:07","http://www.siamgemsheritage.com/backup3/wp-content/plugins/all-in-one-wp-migration/storage/default/En/DOC/Invoice/","offline","malware_download","doc|emotet|heodo","www.siamgemsheritage.com","168.63.237.190","8075","SG"
"2018-07-13 13:13:04","https://spiritsplatform-my.sharepoint.com/:u:/g/personal/dklinsic_spiritsplatform_com_au/Edo4E8Opq3xIg6Sp09QGw34BOB7I8aoWs7f_BRJq6ykifA?e=fcs2ZY&download=1","offline","malware_download","CHE|DEU|GandCrab|Ransomware|zipped-VBS","spiritsplatform-my.sharepoint.com","13.107.136.10","8075","US"
"2018-07-13 13:13:04","https://spiritsplatform-my.sharepoint.com/:u:/g/personal/dklinsic_spiritsplatform_com_au/Edo4E8Opq3xIg6Sp09QGw34BOB7I8aoWs7f_BRJq6ykifA?e=fcs2ZY&download=1","offline","malware_download","CHE|DEU|GandCrab|Ransomware|zipped-VBS","spiritsplatform-my.sharepoint.com","13.107.138.10","8075","US"
"2018-07-13 10:13:07","https://jaenz-my.sharepoint.com/:u:/g/personal/tasman_jae_co_nz/EWKp0hBX8r5Lhuiep0iZ5GcBdVTm6rPV1TD1ZirwMJ3gpA?e=wLlOet&download=1","offline","malware_download","GandCrab|zipped-VBS","jaenz-my.sharepoint.com","13.107.136.10","8075","US"
"2018-07-13 10:13:07","https://jaenz-my.sharepoint.com/:u:/g/personal/tasman_jae_co_nz/EWKp0hBX8r5Lhuiep0iZ5GcBdVTm6rPV1TD1ZirwMJ3gpA?e=wLlOet&download=1","offline","malware_download","GandCrab|zipped-VBS","jaenz-my.sharepoint.com","13.107.138.10","8075","US"
"2018-07-12 02:35:07","http://52.174.49.50/mixacz/pdf/En_us/FILE/Invoices/","offline","malware_download","doc|emotet|epoch2|Heodo","52.174.49.50","52.174.49.50","8075","NL"
"2018-07-11 03:57:25","http://kpogroup.bo/Factura-por-descargas/","offline","malware_download","doc|emotet|epoch1|Heodo","kpogroup.bo","20.119.16.60","8075","US"
"2018-07-11 00:07:19","http://www.kpogroup.bo/Factura-por-descargas/","offline","malware_download","doc|emotet|epoch1|Heodo","www.kpogroup.bo","52.188.22.71","8075","US"
"2018-07-10 08:53:06","http://51.144.240.219/facture/","offline","malware_download","tinynuke|zip","51.144.240.219","51.144.240.219","8075","NL"
"2018-07-03 05:45:32","https://maritimelaunch.com/tst/coco.exe","offline","malware_download","Loki","maritimelaunch.com","52.228.84.37","8075","CA"
"2018-07-03 05:45:19","http://maritimelaunch.com/tst/coco.exe","offline","malware_download","Loki","maritimelaunch.com","52.228.84.37","8075","CA"
"2018-07-02 15:47:43","http://52.174.49.50/mixahu/4th-July/","offline","malware_download","doc|emotet|epoch1|Heodo","52.174.49.50","52.174.49.50","8075","NL"
"2018-07-02 14:52:13","http://52.174.49.50/mixahu/ACCOUNT/Invoice-8773598/","offline","malware_download","doc|emotet|epoch2|Heodo","52.174.49.50","52.174.49.50","8075","NL"
"2018-06-27 08:10:05","https://testhartfordhighschool-my.sharepoint.com/:u:/g/personal/kettled_hartfordhigh_co_uk/EWhABY-5XRpPiRWJs2atCWMB-56rqpwHwBejcXr-yT8GxQ?e=dBkLAw&download=1","offline","malware_download","AUS|Ursnif|zipped-JS","testhartfordhighschool-my.sharepoint.com","13.107.136.10","8075","US"
"2018-06-27 08:10:05","https://testhartfordhighschool-my.sharepoint.com/:u:/g/personal/kettled_hartfordhigh_co_uk/EWhABY-5XRpPiRWJs2atCWMB-56rqpwHwBejcXr-yT8GxQ?e=dBkLAw&download=1","offline","malware_download","AUS|Ursnif|zipped-JS","testhartfordhighschool-my.sharepoint.com","13.107.138.10","8075","US"
"2018-06-26 13:01:05","https://skyhighscaffolding-my.sharepoint.com/:u:/g/personal/hannah_skyhighscaffolding_co_nz/ERagDhpB5l1AvLTEzRdQX50Bp5HNdaEFRqoTFF2qQFeU3w?e=c4dmrL&download=1","offline","malware_download","","skyhighscaffolding-my.sharepoint.com","13.107.136.10","8075","US"
"2018-06-26 13:01:05","https://skyhighscaffolding-my.sharepoint.com/:u:/g/personal/hannah_skyhighscaffolding_co_nz/ERagDhpB5l1AvLTEzRdQX50Bp5HNdaEFRqoTFF2qQFeU3w?e=c4dmrL&download=1","offline","malware_download","","skyhighscaffolding-my.sharepoint.com","13.107.138.10","8075","US"
"2018-06-26 12:58:15","https://skyhighscaffolding-my.sharepoint.com/personal/hannah_skyhighscaffolding_co_nz/Documents/Invoice-1375116793.zip?slrid=19e5749e-b0d0-6000-e6e0-ddc0220baa67","offline","malware_download","GBR|Ursnif|zipped-JS","skyhighscaffolding-my.sharepoint.com","13.107.136.10","8075","US"
"2018-06-26 12:58:15","https://skyhighscaffolding-my.sharepoint.com/personal/hannah_skyhighscaffolding_co_nz/Documents/Invoice-1375116793.zip?slrid=19e5749e-b0d0-6000-e6e0-ddc0220baa67","offline","malware_download","GBR|Ursnif|zipped-JS","skyhighscaffolding-my.sharepoint.com","13.107.138.10","8075","US"
"2018-06-25 12:54:04","https://rainforestretreat-my.sharepoint.com/:u:/g/personal/foodandbev_rainforest_nz/Ebn-iyI44kBCrkKqDInHnXwBqLoJsyFBt0FE07SArIQIBA?e=l5xcby&download=1//","offline","malware_download","ursnif","rainforestretreat-my.sharepoint.com","52.107.243.216","8075","DE"
"2018-06-25 12:54:04","https://rainforestretreat-my.sharepoint.com/:u:/g/personal/foodandbev_rainforest_nz/Ebn-iyI44kBCrkKqDInHnXwBqLoJsyFBt0FE07SArIQIBA?e=l5xcby&download=1//","offline","malware_download","ursnif","rainforestretreat-my.sharepoint.com","52.107.243.68","8075","DE"
"2018-06-25 12:54:04","https://rainforestretreat-my.sharepoint.com/:u:/g/personal/foodandbev_rainforest_nz/Ebn-iyI44kBCrkKqDInHnXwBqLoJsyFBt0FE07SArIQIBA?e=l5xcby&download=1//","offline","malware_download","ursnif","rainforestretreat-my.sharepoint.com","52.107.243.76","8075","DE"
"2018-06-25 12:54:04","https://rainforestretreat-my.sharepoint.com/:u:/g/personal/foodandbev_rainforest_nz/Ebn-iyI44kBCrkKqDInHnXwBqLoJsyFBt0FE07SArIQIBA?e=l5xcby&download=1//","offline","malware_download","ursnif","rainforestretreat-my.sharepoint.com","52.107.243.77","8075","DE"
"2018-06-25 12:54:04","https://rainforestretreat-my.sharepoint.com/:u:/g/personal/foodandbev_rainforest_nz/Ebn-iyI44kBCrkKqDInHnXwBqLoJsyFBt0FE07SArIQIBA?e=l5xcby&download=1//","offline","malware_download","ursnif","rainforestretreat-my.sharepoint.com","52.107.243.82","8075","DE"
"2018-06-25 12:54:04","https://rainforestretreat-my.sharepoint.com/:u:/g/personal/foodandbev_rainforest_nz/Ebn-iyI44kBCrkKqDInHnXwBqLoJsyFBt0FE07SArIQIBA?e=l5xcby&download=1//","offline","malware_download","ursnif","rainforestretreat-my.sharepoint.com","52.107.243.84","8075","DE"
"2018-06-25 12:54:04","https://rainforestretreat-my.sharepoint.com/:u:/g/personal/foodandbev_rainforest_nz/Ebn-iyI44kBCrkKqDInHnXwBqLoJsyFBt0FE07SArIQIBA?e=l5xcby&download=1//","offline","malware_download","ursnif","rainforestretreat-my.sharepoint.com","52.107.243.85","8075","DE"
"2018-06-25 12:54:04","https://rainforestretreat-my.sharepoint.com/:u:/g/personal/foodandbev_rainforest_nz/Ebn-iyI44kBCrkKqDInHnXwBqLoJsyFBt0FE07SArIQIBA?e=l5xcby&download=1//","offline","malware_download","ursnif","rainforestretreat-my.sharepoint.com","52.107.243.95","8075","DE"
"2018-06-22 12:32:05","https://kinrossfarm-my.sharepoint.com/:u:/g/personal/adminspare_kinrossfarm_com_au/EQMByOIeY9VOmv8auDygFHMBoL0002x-nw7D7Q2zUKxVAw?e=UHdOTO&download=1","offline","malware_download","GBR|ursnif","kinrossfarm-my.sharepoint.com","13.107.136.10","8075","US"
"2018-06-22 12:32:05","https://kinrossfarm-my.sharepoint.com/:u:/g/personal/adminspare_kinrossfarm_com_au/EQMByOIeY9VOmv8auDygFHMBoL0002x-nw7D7Q2zUKxVAw?e=UHdOTO&download=1","offline","malware_download","GBR|ursnif","kinrossfarm-my.sharepoint.com","13.107.138.10","8075","US"
"2018-06-21 18:03:05","https://claremontpoolservice-my.sharepoint.com/:u:/g/personal/peta_claremontpoolservice_com_au/EdzIjbFyLCtBjESFqkO3GFABbKGeHvoLOZFd3GyxEogviA?e=CaVsg9&download=1","offline","malware_download","GBR|Ursnif|zipped-js","claremontpoolservice-my.sharepoint.com","13.107.136.10","8075","US"
"2018-06-21 18:03:05","https://claremontpoolservice-my.sharepoint.com/:u:/g/personal/peta_claremontpoolservice_com_au/EdzIjbFyLCtBjESFqkO3GFABbKGeHvoLOZFd3GyxEogviA?e=CaVsg9&download=1","offline","malware_download","GBR|Ursnif|zipped-js","claremontpoolservice-my.sharepoint.com","13.107.138.10","8075","US"
"2018-06-21 12:53:00","http://blitzit.com.ar/DOC/Invoices","offline","malware_download","emotet|Heodo","blitzit.com.ar","20.124.118.173","8075","US"
"2018-06-21 05:37:22","http://blitzit.com.ar/DOC/Invoices/","offline","malware_download","Heodo","blitzit.com.ar","20.124.118.173","8075","US"
"2018-06-20 15:26:05","https://talofinancial-my.sharepoint.com/:u:/g/personal/ashleigh_schipp_talofinancial_com_au/ESQ-sEPAb_BMsIMVSl5m3cIB37hGGu3Ng1MJ60OTnLS63w?e=o76DwB&download=1","offline","malware_download","GBR|Ursnif|zipped-JS","talofinancial-my.sharepoint.com","13.107.136.10","8075","US"
"2018-06-20 15:26:05","https://talofinancial-my.sharepoint.com/:u:/g/personal/ashleigh_schipp_talofinancial_com_au/ESQ-sEPAb_BMsIMVSl5m3cIB37hGGu3Ng1MJ60OTnLS63w?e=o76DwB&download=1","offline","malware_download","GBR|Ursnif|zipped-JS","talofinancial-my.sharepoint.com","13.107.138.10","8075","US"
"2018-06-15 00:15:28","http://smindo.com/INVOICE/BO-671848/","offline","malware_download","Heodo","smindo.com","51.107.58.161","8075","CH"
"2018-06-13 10:18:06","https://controlworksau-my.sharepoint.com/personal/rachaelr_controlworks_com_au/Documents/centos.img?slrid=66ac709e-2092-5000-c4de-b83d37866e49","offline","malware_download","","controlworksau-my.sharepoint.com","13.107.136.10","8075","US"
"2018-06-13 10:18:06","https://controlworksau-my.sharepoint.com/personal/rachaelr_controlworks_com_au/Documents/centos.img?slrid=66ac709e-2092-5000-c4de-b83d37866e49","offline","malware_download","","controlworksau-my.sharepoint.com","13.107.138.10","8075","US"
"2018-06-11 05:16:06","http://www.csq.es/wp-content/sv_viewer_8.exe","offline","malware_download","exe","www.csq.es","13.79.123.212","8075","IE"
"2018-06-06 12:41:03","http://13.80.152.225/v2/update.exe","offline","malware_download","","13.80.152.225","13.80.152.225","8075","NL"
"2018-06-06 09:34:03","http://13.80.152.225/v1/update.exe","offline","malware_download","HawkEye","13.80.152.225","13.80.152.225","8075","NL"
"2018-06-06 09:31:02","http://13.80.152.225/testi/index.js","offline","malware_download","","13.80.152.225","13.80.152.225","8075","NL"
"2018-05-28 10:28:20","https://www.tsuburaya-prod.co.jp/wp-content/plugins/wp-ogp/sa.exe","offline","malware_download","exe|Retefe","www.tsuburaya-prod.co.jp","13.73.26.73","8075","JP"
"2018-05-16 13:17:45","http://danieloliveira.eti.br/pWCq/","offline","malware_download","emotet|Heodo","danieloliveira.eti.br","20.49.104.37","8075","US"
"2018-05-13 16:46:09","http://tftt.dairyaustralia.com.au/~/media/tacticsfortighttimes/documents/feed%20budgeting%20tool.xlsm?la=en","offline","malware_download","downloader|xls","tftt.dairyaustralia.com.au","52.189.218.71","8075","AU"
"2018-05-10 19:47:05","http://exploit.netreaperlab.com/files/malware/2017.live/wannacry/wannacry.exe","offline","malware_download","downloader|exe","exploit.netreaperlab.com","172.208.104.174","8075","US"
"2018-05-10 14:18:59","http://danieloliveira.eti.br/pWAUr7/","offline","malware_download","emotet|Heodo|payload","danieloliveira.eti.br","20.49.104.37","8075","US"
"2018-05-02 06:18:06","https://maritimelaunch.com/css/link/coco.exe","offline","malware_download","exe","maritimelaunch.com","52.228.84.37","8075","CA"
"2018-04-16 07:09:37","https://maritimelaunch.com/scss/new/coco.exe","offline","malware_download","exe","maritimelaunch.com","52.228.84.37","8075","CA"
"2018-03-29 07:28:16","http://lomicon.es/ftxxkfa.exe","offline","malware_download","exe|retefe","lomicon.es","65.52.141.149","8075","NL"
"2018-03-28 13:42:37","http://hospitality.quins.co.uk/ACH-FORM/OOA-6713340161536/","offline","malware_download","doc|emotet|heodo","hospitality.quins.co.uk","20.50.2.19","8075","NL"
"2018-03-28 13:38:56","http://beautegrity.dweb.in/Rechnung-Nr-20432/OHP7E6EV/","offline","malware_download","doc|emotet|heodo","beautegrity.dweb.in","13.78.188.48","8075","US"
"2018-03-28 11:22:07","https://www.gilroy.org/INVOICE/AAD-416385291771/","offline","malware_download","doc|Emotet|Heodo","www.gilroy.org","20.25.91.29","8075","US"
# of entries: 3752