############################################################################## # URLhaus ASN CSV Feed # # Generated on 2026-01-15 11:12:57 UTC # # # # For questions please refer to: # # https://urlhaus.abuse.ch/feeds/ # ############################################################################## # # Feed generated for AS8342 # # Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country "2026-01-09 13:07:29","http://78.153.155.97:8080/html/info/index.php","offline","malware_download","elf|php","78.153.155.97","78.153.155.97","8342","US" "2025-12-21 09:24:14","http://78.153.155.135/arm7","offline","malware_download","censys|elf|Mirai|ua-wget","78.153.155.135","78.153.155.135","8342","US" "2025-12-15 12:54:12","https://upsinfo2025.com/download/dvmw.pdf","online","malware_download","MetaStealer|msi","upsinfo2025.com","78.153.155.97","8342","US" "2025-12-15 07:04:08","http://78.153.155.97:8080/downloads/README.pdf.lnk","online","malware_download","lnk |MetaStealer|opendir |WsgiDAV ","78.153.155.97","78.153.155.97","8342","US" "2025-11-20 17:00:08","http://193.233.127.66/Documents/moroccoa.lnk","offline","malware_download","lnk|xml-opendir","193.233.127.66","193.233.127.66","8342","NL" "2025-11-20 17:00:08","http://193.233.127.66/Documents/moroccoAgenda.lnk","offline","malware_download","lnk|xml-opendir","193.233.127.66","193.233.127.66","8342","NL" "2025-11-20 16:59:06","http://193.233.127.66/Documents/morocco-conf-agenda.lnk","offline","malware_download","lnk|xml-opendir","193.233.127.66","193.233.127.66","8342","NL" "2025-11-20 16:59:06","http://193.233.127.66/Documents/moroccoEngAgenda.lnk","offline","malware_download","lnk|xml-opendir","193.233.127.66","193.233.127.66","8342","NL" "2025-11-18 16:35:14","http://193.233.127.66/Documents/morocco-conference.lnk","offline","malware_download","lnk|xml-opendir","193.233.127.66","193.233.127.66","8342","NL" "2025-11-01 10:33:11","http://any-deskt.net/download/setup.pdf","offline","malware_download","MetaStealer","any-deskt.net","78.153.155.97","8342","US" "2025-11-01 10:33:09","http://78.153.155.97/download/setup.pdf","offline","malware_download","MetaStealer","78.153.155.97","78.153.155.97","8342","US" "2025-10-31 21:51:10","http://78.153.155.97:8080/downloads/manual.pdf.lnk","offline","malware_download","lnk|opendir|Quakbot|WsgiDAV","78.153.155.97","78.153.155.97","8342","US" "2025-07-03 12:58:05","http://diicotsec.ru/bins/main_arc","offline","malware_download","elf|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-03 12:58:05","http://diicotsec.ru/bins/main_arm4","offline","malware_download","elf|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-03 12:58:05","http://diicotsec.ru/bins/main_i486","offline","malware_download","elf|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-03 12:58:05","http://diicotsec.ru/bins/main_i686","offline","malware_download","elf|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-03 12:58:05","http://diicotsec.ru/bins/main_spc","offline","malware_download","elf|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-01 15:36:14","http://diicotsec.ru/xkobe.sh","offline","malware_download","botnetdomain|mirai|opendir","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-01 15:36:13","http://diicotsec.ru/bins/main_m68k","offline","malware_download","botnetdomain|mirai|opendir","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-01 15:36:13","http://diicotsec.ru/bins/main_sh4","offline","malware_download","botnetdomain|mirai|opendir","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-01 15:36:12","http://diicotsec.ru/mexalz.sh","offline","malware_download","botnetdomain|mirai|opendir","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-01 15:36:09","http://diicotsec.ru/bins/main_arm5","offline","malware_download","botnetdomain|mirai|opendir","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-01 15:36:09","http://diicotsec.ru/bins/main_arm7","offline","malware_download","botnetdomain|mirai|opendir","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-01 15:36:09","http://diicotsec.ru/bins/main_mips","offline","malware_download","botnetdomain|mirai|opendir","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-01 15:36:09","http://diicotsec.ru/bins/main_mpsl","offline","malware_download","botnetdomain|mirai|opendir","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-01 15:36:09","http://diicotsec.ru/mirai.sh","offline","malware_download","botnetdomain|mirai|opendir","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-01 15:36:08","http://diicotsec.ru/bins/main_arm","offline","malware_download","botnetdomain|mirai|opendir","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-01 15:36:08","http://diicotsec.ru/bins/main_arm6","offline","malware_download","botnetdomain|mirai|opendir","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-01 15:36:08","http://diicotsec.ru/bins/main_ppc","offline","malware_download","botnetdomain|mirai|opendir","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-01 15:36:08","http://diicotsec.ru/bins/main_x86","offline","malware_download","botnetdomain|mirai|opendir","diicotsec.ru","81.177.22.153","8342","RU" "2025-07-01 15:36:08","http://diicotsec.ru/bins/main_x86_64","offline","malware_download","botnetdomain|mirai|opendir","diicotsec.ru","81.177.22.153","8342","RU" "2025-06-24 00:08:15","http://diicotsec.ru:8080/bins/main_sh4","offline","malware_download","botnetdomain|fbi.gov|mirai|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-06-24 00:08:14","http://diicotsec.ru:8080/bins/main_arm","offline","malware_download","botnetdomain|fbi.gov|mirai|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-06-24 00:08:10","http://diicotsec.ru:8080/bins/main_m68k","offline","malware_download","botnetdomain|fbi.gov|mirai|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-06-24 00:08:09","http://diicotsec.ru:8080/bins/main_arm5","offline","malware_download","botnetdomain|fbi.gov|mirai|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-06-24 00:08:09","http://diicotsec.ru:8080/bins/main_mpsl","offline","malware_download","botnetdomain|fbi.gov|mirai|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-06-24 00:08:09","http://diicotsec.ru:8080/bins/main_ppc","offline","malware_download","botnetdomain|fbi.gov|mirai|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-06-24 00:08:08","http://diicotsec.ru:8080/bins/main_arm6","offline","malware_download","botnetdomain|fbi.gov|mirai|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-06-24 00:08:08","http://diicotsec.ru:8080/bins/main_arm7","offline","malware_download","botnetdomain|fbi.gov|mirai|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-06-24 00:08:08","http://diicotsec.ru:8080/bins/main_mips","offline","malware_download","botnetdomain|fbi.gov|mirai|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-06-24 00:08:08","http://diicotsec.ru:8080/bins/main_x86","offline","malware_download","botnetdomain|fbi.gov|mirai|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-06-24 00:08:08","http://diicotsec.ru:8080/bins/main_x86_64","offline","malware_download","botnetdomain|fbi.gov|mirai|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-06-24 00:08:08","http://diicotsec.ru:8080/mexalz.sh","offline","malware_download","botnetdomain|fbi.gov|mirai|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-06-24 00:08:08","http://diicotsec.ru:8080/mirai.sh","offline","malware_download","botnetdomain|fbi.gov|mirai|ua-wget","diicotsec.ru","81.177.22.153","8342","RU" "2025-02-09 19:33:02","http://193.233.237.190/bot.arm5","offline","malware_download","32-bit|elf","193.233.237.190","193.233.237.190","8342","RU" "2025-02-09 19:33:02","http://193.233.237.190/bot.arm6","offline","malware_download","32-bit|elf","193.233.237.190","193.233.237.190","8342","RU" "2025-02-09 17:42:02","http://193.233.237.190/bot.m68k","offline","malware_download","32-bit|elf","193.233.237.190","193.233.237.190","8342","RU" "2025-02-09 14:05:03","http://193.233.237.190/bot.arm","offline","malware_download","32-bit|elf","193.233.237.190","193.233.237.190","8342","RU" "2025-02-07 10:10:03","http://193.233.237.190/bot.arm7","offline","malware_download","32-bit|elf","193.233.237.190","193.233.237.190","8342","RU" "2025-02-06 01:41:02","http://193.233.237.190/bot.ppc","offline","malware_download","32-bit|elf","193.233.237.190","193.233.237.190","8342","RU" "2025-02-06 01:40:03","http://193.233.237.190/bot.mips","offline","malware_download","32-bit|elf","193.233.237.190","193.233.237.190","8342","RU" "2024-12-16 23:26:08","http://diicotsec.ru/i686.db","offline","malware_download","","diicotsec.ru","81.177.22.153","8342","RU" "2024-12-16 23:26:08","http://diicotsec.ru/regele","offline","malware_download","CoinMiner","diicotsec.ru","81.177.22.153","8342","RU" "2024-12-16 23:26:07","http://diicotsec.ru/morganv7l.db","offline","malware_download","","diicotsec.ru","81.177.22.153","8342","RU" "2024-10-16 15:24:10","http://algoritm-support.ru/AA_v3.exe","offline","malware_download","FlawedAmmyRAT","algoritm-support.ru","81.177.24.41","8342","RU" "2024-10-15 16:16:10","http://195.161.114.43/smg/tools/dControl.exe","offline","malware_download","","195.161.114.43","195.161.114.43","8342","RU" "2023-06-19 07:26:26","http://81.177.143.184/mig.exe","offline","malware_download","CoinMiner|exe","81.177.143.184","81.177.143.184","8342","RU" "2023-06-19 07:26:25","http://81.177.143.184/dc.exe","offline","malware_download","exe","81.177.143.184","81.177.143.184","8342","RU" "2022-04-26 10:41:04","http://gym1505.ru/sites/default/files/osa/asobubu_tdutYlr98.bin","offline","malware_download","encrypted|GuLoader","gym1505.ru","81.177.48.197","8342","RU" "2022-04-25 15:47:05","http://gym1505.ru/sites/default/files/bin_tbRxmWTuEH67.bin","offline","malware_download","encrypted|RAT|RemcosRAT","gym1505.ru","81.177.48.197","8342","RU" "2022-04-25 15:47:04","http://gym1505.ru/sites/default/files/remcos-new-WO-S_ysrycQDeu215.bin","offline","malware_download","encrypted|RAT|RemcosRAT","gym1505.ru","81.177.48.197","8342","RU" "2022-04-25 15:46:08","http://gym1505.ru/sites/default/files/eryt.vbs","offline","malware_download","RAT|RemcosRAT|vbs","gym1505.ru","81.177.48.197","8342","RU" "2021-05-27 18:59:04","http://oooprog.ru/figureso/qbtotakew.exe","offline","malware_download","","oooprog.ru","91.226.30.3","8342","RU" "2021-05-25 16:14:04","http://oooprog.ru/reqokihv/rfvytufhf.exe","offline","malware_download","","oooprog.ru","91.226.30.3","8342","RU" "2021-05-25 10:29:04","http://oooprog.ru/amcomes/graced2.exe","offline","malware_download","exe|Loki","oooprog.ru","91.226.30.3","8342","RU" "2021-05-25 09:07:06","http://oooprog.ru/backup/retretwork.exe","offline","malware_download","exe|Loki","oooprog.ru","91.226.30.3","8342","RU" "2021-05-19 13:11:05","http://oooprog.ru/huverloop/vzwawork.exe","offline","malware_download","exe|Loki","oooprog.ru","91.226.30.3","8342","RU" "2021-05-19 01:10:05","http://oooprog.ru/wintrol/mx1.exe","offline","malware_download","exe|Loki","oooprog.ru","91.226.30.3","8342","RU" "2021-05-18 16:48:05","http://oooprog.ru/plugin/rqotcar.exe","offline","malware_download","Loki","oooprog.ru","91.226.30.3","8342","RU" "2021-01-29 16:25:05","http://77.83.117.225/snype.arm4","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-29 16:25:05","http://77.83.117.225/snype.arm5","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-29 16:25:05","http://77.83.117.225/snype.arm6","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-29 16:25:05","http://77.83.117.225/snype.mips","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-29 16:25:05","http://77.83.117.225/snype.mpsl","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-29 16:25:05","http://77.83.117.225/snype.ppc","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-29 16:25:05","http://77.83.117.225/snype.sparc","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-29 16:25:05","http://77.83.117.225/snype.x86","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-25 16:40:16","http://77.83.117.225/yasddfa.ppc","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-25 16:40:16","http://77.83.117.225/ysdfd.x32","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-25 16:40:15","http://77.83.117.225/gafsde.mpsl","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-25 16:40:12","http://77.83.117.225/gadfe.x86","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-25 16:40:12","http://77.83.117.225/yakuza.ppc","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-25 16:40:08","http://77.83.117.225/yaksddfs.i586","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-25 16:40:07","http://77.83.117.225/gaefds.arm6","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-25 16:40:07","http://77.83.117.225/gafdse.mips","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-25 16:40:05","http://77.83.117.225/gafsde.sh4","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-25 16:40:05","http://77.83.117.225/sdfza.m68k","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2021-01-25 16:40:05","http://77.83.117.225/yafsda.arm4","offline","malware_download","elf","77.83.117.225","77.83.117.225","8342","RU" "2020-10-16 21:44:04","http://gkdon.ru/wp-admin/1S6VmpyWk4BHE/","offline","malware_download","doc|emotet|epoch1|Heodo","gkdon.ru","81.177.174.12","8342","RU" "2020-07-21 15:15:30","http://acetnsk.ru/general/Ve/","offline","malware_download","emotet|epoch2|exe|Heodo","acetnsk.ru","91.226.30.3","8342","RU" "2019-12-17 01:41:03","http://mediarama.ru/wp-content/closed-box/additional-cloud/3oi7ud-9u1w4vu12v4y1/","offline","malware_download","doc|emotet|epoch1|Heodo","mediarama.ru","217.107.219.154","8342","RU" "2019-12-13 20:26:20","http://mediarama.ru/wp-content/7MWBTiKZs_M2XUimL_48037_NFpLd7G/interior_warehouse/08202156_FPRAXr/","offline","malware_download","doc|emotet|epoch1|Heodo","mediarama.ru","217.107.219.154","8342","RU" "2019-12-13 18:48:04","https://turkishrivierahomes.ru/cgi-bin/Pages/5c0hkgqr-799579-2131202-cs4ufbib-uo42oc/","offline","malware_download","doc|emotet|epoch2|heodo","turkishrivierahomes.ru","91.226.30.3","8342","RU" "2019-06-05 08:10:34","http://www.forexpf.ru/click/?url=http://searchselfstoragequote.com/YTqXEuhn?PMBK=2","offline","malware_download","#downloader|#ursnif|#vbs|geofenced|ita","www.forexpf.ru","81.177.34.158","8342","RU" "2019-06-05 08:10:22","http://www.forexpf.ru/click/?url=http://searchselfstoragequote.com/ALFMxWqfaU?fPd=6","offline","malware_download","#downloader|#ursnif|#vbs|geofenced|ita","www.forexpf.ru","81.177.34.158","8342","RU" "2019-06-05 08:10:13","http://www.forexpf.ru/click/?url=http://searchselfstoragequote.com/LRdUsIFA?BweG=9","offline","malware_download","#downloader|#ursnif|#vbs|geofenced|ita","www.forexpf.ru","81.177.34.158","8342","RU" "2019-06-05 08:10:09","http://www.forexpf.ru/click/?url=http://searchselfstoragequote.com/nYVfFrL?vVFCn=2","offline","malware_download","#downloader|#ursnif|#vbs|geofenced|ita","www.forexpf.ru","81.177.34.158","8342","RU" "2019-06-05 08:10:09","http://www.forexpf.ru/click/?url=http://searchselfstoragequote.com/wyKVIzM?FrUbh=8","offline","malware_download","#downloader|#ursnif|#vbs|geofenced|ita","www.forexpf.ru","81.177.34.158","8342","RU" "2019-06-05 08:10:09","http://www.forexpf.ru/click/?url=http://searchselfstoragequote.com/zIcO?yKrPm=0","offline","malware_download","#downloader|#ursnif|#vbs|geofenced|ita","www.forexpf.ru","81.177.34.158","8342","RU" "2019-06-05 08:09:24","http://www.forexpf.ru/click/?url=http://searchselfstoragequote.com/EGmnkFXfr?rnm=2","offline","malware_download","#downloader|#ursnif|#vbs|geofenced|ita","www.forexpf.ru","81.177.34.158","8342","RU" "2019-06-05 08:09:20","http://www.forexpf.ru/click/?url=http://searchselfstoragequote.com/lMWs?eiRI=2","offline","malware_download","#downloader|#ursnif|#vbs|geofenced|ita","www.forexpf.ru","81.177.34.158","8342","RU" "2019-06-05 08:09:20","http://www.forexpf.ru/click/?url=http://searchselfstoragequote.com/oYozDrMf?QJw=8","offline","malware_download","#downloader|#ursnif|#vbs|geofenced|ita","www.forexpf.ru","81.177.34.158","8342","RU" "2019-06-05 08:09:12","http://www.forexpf.ru/click/?url=http://searchselfstoragequote.com/HwPkLt?nHm=6","offline","malware_download","#downloader|#ursnif|#vbs|geofenced|ita","www.forexpf.ru","81.177.34.158","8342","RU" "2019-06-05 08:09:12","http://www.forexpf.ru/click/?url=http://searchselfstoragequote.com/VbvkSqUwCi?qBv=3","offline","malware_download","#downloader|#ursnif|#vbs|geofenced|ita","www.forexpf.ru","81.177.34.158","8342","RU" "2019-06-05 08:09:07","http://www.forexpf.ru/click/?url=http://searchselfstoragequote.com/rywzMAc?VMX=9","offline","malware_download","#downloader|#ursnif|#vbs|geofenced|ita","www.forexpf.ru","81.177.34.158","8342","RU" "2019-06-05 08:09:07","http://www.forexpf.ru/click/?url=http://searchselfstoragequote.com/WkDqmB?ruTYM=1","offline","malware_download","#downloader|#ursnif|#vbs|geofenced|ita","www.forexpf.ru","81.177.34.158","8342","RU" "2019-05-18 10:29:13","http://margaritka37.ru/update.exe","offline","malware_download","AZORult|exe","margaritka37.ru","91.226.30.3","8342","RU" "2019-05-09 12:37:16","http://195.161.41.90/a.exe","offline","malware_download","exe","195.161.41.90","195.161.41.90","8342","RU" "2019-05-04 01:27:02","http://195.161.41.90/1.exe","offline","malware_download","exe|GandCrab","195.161.41.90","195.161.41.90","8342","RU" "2019-05-04 01:19:05","http://195.161.41.90/c.exe","offline","malware_download","exe","195.161.41.90","195.161.41.90","8342","RU" "2019-05-03 19:00:23","http://195.161.41.90/3.exe","offline","malware_download","exe|GandCrab","195.161.41.90","195.161.41.90","8342","RU" "2019-03-20 13:56:11","http://185.128.213.110/win.png","offline","malware_download","exe|TrickBot","185.128.213.110","185.128.213.110","8342","RU" "2019-03-20 13:56:10","http://185.128.213.110/tin.png","offline","malware_download","exe|TrickBot","185.128.213.110","185.128.213.110","8342","RU" "2019-03-20 13:56:09","http://185.128.213.110/sin.png","offline","malware_download","exe|TrickBot","185.128.213.110","185.128.213.110","8342","RU" "2019-03-20 13:56:08","http://185.128.213.110/toler.png","offline","malware_download","exe|TrickBot","185.128.213.110","185.128.213.110","8342","RU" "2019-03-20 13:56:07","http://185.128.213.110/worming.png","offline","malware_download","exe|TrickBot","185.128.213.110","185.128.213.110","8342","RU" "2019-03-20 13:56:06","http://185.128.213.110/table.png","offline","malware_download","exe|TrickBot","185.128.213.110","185.128.213.110","8342","RU" "2019-03-20 13:56:04","http://185.128.213.110/radiance.png","offline","malware_download","exe|TrickBot","185.128.213.110","185.128.213.110","8342","RU" "2019-03-08 18:07:23","http://pravprihod.ru/files/hwfoi-mxs2p4-samjv.view/","offline","malware_download","Emotet|Heodo","pravprihod.ru","81.177.165.50","8342","RU" "2019-03-07 05:52:39","http://185.128.213.12/s.dat","offline","malware_download","ammyy|exe|flawedammyy|payload","185.128.213.12","185.128.213.12","8342","RU" "2019-03-07 05:52:28","http://185.128.213.12/rol1","offline","malware_download","ammyy|exe|flawedammyy|payload","185.128.213.12","185.128.213.12","8342","RU" "2019-03-06 18:00:08","http://pravprihod.ru/desktop_app/j4pkm-j2glz-uftbe.view/","offline","malware_download","","pravprihod.ru","81.177.165.50","8342","RU" "2019-03-04 16:33:03","http://pravprihod.ru/desktop_app/l9w3-xha20-rtyrs.view/","offline","malware_download","Emotet|Heodo","pravprihod.ru","81.177.165.50","8342","RU" "2019-03-02 11:39:16","http://81.177.23.54/putty.exe","offline","malware_download","exe|payload","81.177.23.54","81.177.23.54","8342","RU" "2019-03-02 11:39:09","http://81.177.23.54/2.exe","offline","malware_download","exe|payload","81.177.23.54","81.177.23.54","8342","RU" "2019-03-02 11:39:06","http://81.177.23.54/1.exe","offline","malware_download","AZORult|exe|payload","81.177.23.54","81.177.23.54","8342","RU" "2019-03-01 06:25:06","http://81.177.23.176/radiance.png","offline","malware_download","exe|TrickBot","81.177.23.176","81.177.23.176","8342","RU" "2019-03-01 06:25:06","http://81.177.23.176/table.png","offline","malware_download","exe|TrickBot","81.177.23.176","81.177.23.176","8342","RU" "2019-03-01 06:25:06","http://81.177.23.176/worming.png","offline","malware_download","exe|TrickBot","81.177.23.176","81.177.23.176","8342","RU" "2019-03-01 06:25:05","http://81.177.23.176/toler.png","offline","malware_download","exe|TrickBot","81.177.23.176","81.177.23.176","8342","RU" "2019-03-01 06:25:05","http://81.177.23.176/win.png","offline","malware_download","exe|TrickBot","81.177.23.176","81.177.23.176","8342","RU" "2019-03-01 06:25:04","http://81.177.23.176/tin.png","offline","malware_download","exe|TrickBot","81.177.23.176","81.177.23.176","8342","RU" "2019-03-01 06:25:03","http://81.177.23.176/sin.png","offline","malware_download","exe|TrickBot","81.177.23.176","81.177.23.176","8342","RU" "2019-02-26 15:48:20","http://fastter.allsb.ru/xmlrpc/cache/pikz.zip","offline","malware_download","RUS|Troldesh|zipped-JS","fastter.allsb.ru","195.161.68.199","8342","RU" "2019-02-26 15:47:13","https://www.off-road-light.ru/logs/pikz.zip","offline","malware_download","RUS|Troldesh|zipped-JS","www.off-road-light.ru","81.177.136.80","8342","RU" "2019-02-25 17:29:20","http://pravprihod.ru/Telekom/Transaktion/02_19/","offline","malware_download","emotet|epoch1|Heodo","pravprihod.ru","81.177.165.50","8342","RU" "2019-02-20 13:59:03","http://pravprihod.ru/US_us/corporation/New_invoice/AldCH-P7_Nyq-MO/","offline","malware_download","Emotet|Heodo","pravprihod.ru","81.177.165.50","8342","RU" "2019-02-11 12:49:41","http://217.107.219.34/ms.microsoft.com/api/drm/fsfxcD5GKKd/fsfxcD5GKKd/","offline","malware_download","doc|emotet|epoch1","217.107.219.34","217.107.219.34","8342","RU" "2019-02-07 16:04:03","http://217.107.219.34/US/09596742/PmZID-ni3f_pPLFEeQG-kCv/","offline","malware_download","Emotet|Heodo","217.107.219.34","217.107.219.34","8342","RU" "2019-02-05 15:49:06","http://217.107.219.34/lAGay_kS-OymiTSy/nsu/Clients_Messages/02_19/","offline","malware_download","doc|emotet|epoch1|Heodo|Nabucur","217.107.219.34","217.107.219.34","8342","RU" "2019-02-01 17:55:08","http://lawlabs.ru/downloads/DocPrint_Setup.exe","offline","malware_download","exe","lawlabs.ru","81.177.141.30","8342","RU" "2019-01-15 14:09:27","http://www.krysha-max.ru/Information/01_19/","offline","malware_download","emotet|epoch1","www.krysha-max.ru","195.161.41.198","8342","RU" "2019-01-15 14:09:14","http://krysha-max.ru/Information/01_19/","offline","malware_download","emotet|epoch1|Heodo","krysha-max.ru","195.161.41.198","8342","RU" "2019-01-14 20:39:25","http://www.niman.ru/earD-Ncxsu_AzUmQINO-nSN/ACH/PaymentAdvice/En/Past-Due-Invoices/","offline","malware_download","doc|emotet|heodo","www.niman.ru","91.226.30.3","8342","RU" "2018-12-18 20:41:05","http://81.177.22.90/shtamm.abc","offline","malware_download","exe","81.177.22.90","81.177.22.90","8342","RU" "2018-12-18 20:40:32","http://81.177.22.90/log1.php","offline","malware_download","exe","81.177.22.90","81.177.22.90","8342","RU" "2018-11-28 04:09:18","http://arsenal-rk.ru/846FNDC/PAY/US/","offline","malware_download","doc|emotet|epoch2|Heodo","arsenal-rk.ru","81.177.139.247","8342","RU" "2018-11-27 09:49:37","http://arsenal-rk.ru/846FNDC/PAY/US","offline","malware_download","doc|emotet|Gozi|heodo","arsenal-rk.ru","81.177.139.247","8342","RU" "2018-11-21 19:20:53","http://www.kudteplo.ru/r1/xls/2014/WARM.TOPL.Q1.2014.xls","offline","malware_download","","www.kudteplo.ru","81.177.33.8","8342","RU" "2018-11-15 18:28:06","http://185.66.15.53/Sheel_Mailers.exe","offline","malware_download","exe","185.66.15.53","185.66.15.53","8342","RU" "2018-11-09 01:48:02","http://www.test.vic-pro.com/xerox/US_us/Sales-Invoice/","offline","malware_download","doc|emotet|epoch2|Heodo","www.test.vic-pro.com","217.107.219.53","8342","RU" "2018-11-08 15:46:59","http://www.test.vic-pro.com/xerox/US_us/Sales-Invoice","offline","malware_download","doc|emotet|Heodo","www.test.vic-pro.com","217.107.219.53","8342","RU" "2018-11-06 06:31:02","http://www.test.vic-pro.com/newsletter/EN_en/Outstanding-Invoices/","offline","malware_download","doc|Heodo","www.test.vic-pro.com","217.107.219.53","8342","RU" "2018-11-06 02:52:04","http://www.test.vic-pro.com/INFO/US_us/Service-Invoice/","offline","malware_download","doc|Emotet|Heodo","www.test.vic-pro.com","217.107.219.53","8342","RU" "2018-11-05 19:37:40","http://www.test.vic-pro.com/newsletter/EN_en/Outstanding-Invoices","offline","malware_download","doc|emotet|heodo","www.test.vic-pro.com","217.107.219.53","8342","RU" "2018-10-05 17:43:40","http://underluckystar.ru/num9_setup.exe","offline","malware_download","exe","underluckystar.ru","81.177.33.248","8342","RU" "2018-10-05 12:12:14","http://underluckystar.ru/addnum.exe","offline","malware_download","exe","underluckystar.ru","81.177.33.248","8342","RU" "2018-10-05 12:12:08","http://underluckystar.ru/arcanum3_update.exe","offline","malware_download","exe","underluckystar.ru","81.177.33.248","8342","RU" "2018-10-05 12:04:39","http://underluckystar.ru/num8_setup.exe","offline","malware_download","exe","underluckystar.ru","81.177.33.248","8342","RU" "2018-10-05 12:04:03","http://underluckystar.ru/pluton6_update.exe","offline","malware_download","exe","underluckystar.ru","81.177.33.248","8342","RU" "2018-10-05 11:37:26","http://195.161.62.252/botietwe/99384918456467-5217929803012466348.php","offline","malware_download","DEU|Nymaim","195.161.62.252","195.161.62.252","8342","RU" "2018-10-05 09:18:04","http://underluckystar.ru/arcanum_update.exe","offline","malware_download","exe","underluckystar.ru","81.177.33.248","8342","RU" "2018-10-03 04:46:22","http://81.177.139.249/gonieeciw/01872727459297-9000207452917684175.php","offline","malware_download","DEU|exe|Nymaim","81.177.139.249","81.177.139.249","8342","RU" "2018-09-10 07:53:57","http://rostokino.myjino.ru/0277150DRV/com/Business","offline","malware_download","doc|emotet","rostokino.myjino.ru","195.161.62.121","8342","RU" "2018-09-01 12:08:15","http://www.xn--80agoglhhailua.xn--p1ai/7s2njcn/7289921-96381165-BILL.zip","offline","malware_download","DEU|Nymaim","www.xn--80agoglhhailua.xn--p1ai","195.161.41.66","8342","RU" "2018-09-01 12:06:07","http://81.177.139.46/ytpovuie/wtuds/temp_fc863e75818deb61fbdcd36dcd3d1bee/3968902-345316906-ID.zip","offline","malware_download","DEU|Nymaim","81.177.139.46","81.177.139.46","8342","RU" "2018-09-01 12:02:46","http://217.107.219.14/31358007-8505-4455-Nummer.zip","offline","malware_download","DEU|Nymaim","217.107.219.14","217.107.219.14","8342","RU" "2018-08-28 08:32:00","http://81.177.141.59/302212527.zip","offline","malware_download","DEU|Nymaim","81.177.141.59","81.177.141.59","8342","RU" "2018-08-28 08:31:56","http://217.107.219.14/32018202.zip","offline","malware_download","DEU|Nymaim","217.107.219.14","217.107.219.14","8342","RU" "2018-08-28 08:29:10","http://217.107.219.14/Buchungsnummer-3283753.zip","offline","malware_download","DEU|Nymaim","217.107.219.14","217.107.219.14","8342","RU" "2018-08-21 14:41:24","http://rostokino.myjino.ru/beizPDcSWgxJ","offline","malware_download","doc|emotet","rostokino.myjino.ru","195.161.62.121","8342","RU" "2018-07-06 01:07:08","http://www.mediatrainer.ru/pdf/EN_en/STATUS/Invoices/","offline","malware_download","doc|emotet|epoch2|Heodo","www.mediatrainer.ru","91.226.30.3","8342","RU" "2018-06-13 14:49:08","http://gudovich.ru/Client/Payment/","offline","malware_download","doc|emotet|epoch1|Heodo","gudovich.ru","195.161.114.206","8342","RU" "2018-06-13 14:41:11","http://www.gudovich.ru/Client/Payment/","offline","malware_download","doc|emotet|epoch1|Heodo","www.gudovich.ru","195.161.114.206","8342","RU" "2018-06-13 13:51:14","http://www.asia-siam.ru/Invoices_US-039/5/","offline","malware_download","doc|emotet|epoch2","www.asia-siam.ru","91.226.30.3","8342","RU" "2018-06-06 12:33:09","http://arned.ru/nJtwP0/","offline","malware_download","emotet|exe|Heodo","arned.ru","91.226.30.3","8342","RU" "2018-05-24 13:53:55","https://max.bazovskiy.ru/misc/ui/images/Facturas052018.zip","offline","malware_download","","max.bazovskiy.ru","81.177.174.185","8342","RU" "2018-03-29 14:45:06","http://drivejet.ru/UPS-US/Mar-08-18-07-48-30/","offline","malware_download","doc|emotet|heodo","drivejet.ru","91.226.30.3","8342","RU" # of entries: 178