##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2021-06-13 20:25:36 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS8426
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2021-05-20 18:08:05","https://sarditemp.com/jordyn-walker/WilliamGarcia-1.zip","online","malware_download","b-TDS|html|Qakbot|Qbot|SilentBuilder|TR|zip","sarditemp.com","188.93.230.150","8426","PT"
"2021-05-05 17:40:05","https://bettersteel.fr/wp-content/plugins/simple-lightbox/themes/baseline/ujoI1HJ4hBj.php","offline","malware_download","22201|dll|dridex","bettersteel.fr","77.91.206.171","8426","PT"
"2021-04-15 19:54:07","https://psicologodotrabalho.com/DDhFONYrxclvBT7.php","offline","malware_download","40111|dll|dridex","psicologodotrabalho.com","195.22.8.68","8426","PT"
"2021-04-13 13:55:10","https://psicologodotrabalho.com/zSdd64ga.php","offline","malware_download","Dridex|opendir","psicologodotrabalho.com","195.22.8.68","8426","PT"
"2021-04-13 13:52:05","https://lifetarget.com.pt/hWNJhFYiJ.php","offline","malware_download","Dridex","lifetarget.com.pt","195.22.8.68","8426","PT"
"2021-03-29 14:59:07","https://gmpaladinos.pt/y8mbffurz.tar","offline","malware_download","Dridex","gmpaladinos.pt","195.22.8.91","8426","PT"
"2021-03-11 09:54:05","http://maiseficiencia.pt/bolton/eff/KINso7mbwsWMUHl.exe","offline","malware_download","AgentTesla|exe","maiseficiencia.pt","195.22.8.66","8426","PT"
"2021-03-11 09:50:05","http://maiseficiencia.pt/bolton/jo/C6LtRwndslDOtMp.exe","offline","malware_download","AgentTesla|exe","maiseficiencia.pt","195.22.8.66","8426","PT"
"2021-03-11 09:50:04","http://maiseficiencia.pt/bolton/dec/HGcxymy3z9JovDs.exe","offline","malware_download","AgentTesla|exe","maiseficiencia.pt","195.22.8.66","8426","PT"
"2021-03-11 07:31:04","http://maiseficiencia.pt/airline/plane/Table.exe","offline","malware_download","AgentTesla|exe|opendir","maiseficiencia.pt","195.22.8.66","8426","PT"
"2021-03-11 07:31:04","http://maiseficiencia.pt/bolton/bob/miD8vWpjFboVmyH.exe","offline","malware_download","AgentTesla|exe|opendir","maiseficiencia.pt","195.22.8.66","8426","PT"
"2021-03-09 13:38:10","http://maiseficiencia.pt/mobile/phone/time.exe","offline","malware_download","AgentTesla|exe","maiseficiencia.pt","195.22.8.66","8426","PT"
"2021-03-09 10:50:16","http://maiseficiencia.pt/who/dec/PURTbhpxpyBidjE.exe","offline","malware_download","AgentTesla|exe|opendir","maiseficiencia.pt","195.22.8.66","8426","PT"
"2021-03-09 10:50:16","http://maiseficiencia.pt/who/fd/6CXgDLFuVFtaua3.exe","offline","malware_download","AgentTesla|exe|opendir","maiseficiencia.pt","195.22.8.66","8426","PT"
"2021-03-09 10:50:16","http://maiseficiencia.pt/who/mo/5xQsZfJqbJZtw4w.exe","offline","malware_download","AgentTesla|exe|opendir","maiseficiencia.pt","195.22.8.66","8426","PT"
"2021-03-09 10:50:16","http://maiseficiencia.pt/who/okb/SkawGNlw6CT11Zh.exe","offline","malware_download","AgentTesla|exe|opendir","maiseficiencia.pt","195.22.8.66","8426","PT"
"2021-03-09 10:50:16","http://maiseficiencia.pt/who/phyn/dRfy6c09UAewEMi.exe","offline","malware_download","AgentTesla|exe|opendir","maiseficiencia.pt","195.22.8.66","8426","PT"
"2021-03-09 10:50:15","http://maiseficiencia.pt/who/dj/AHMxyHS2qbzyOoM.exe","offline","malware_download","AgentTesla|exe|opendir","maiseficiencia.pt","195.22.8.66","8426","PT"
"2021-03-09 10:50:13","http://maiseficiencia.pt/who/eff/XtFqBBthkOTq6nT.exe","offline","malware_download","AgentTesla|exe|opendir","maiseficiencia.pt","195.22.8.66","8426","PT"
"2021-03-09 10:50:13","http://maiseficiencia.pt/who/jo/i8LoCecZ1I7jChx.exe","offline","malware_download","AgentTesla|exe|opendir","maiseficiencia.pt","195.22.8.66","8426","PT"
"2021-03-09 10:49:15","http://maiseficiencia.pt/who/oma/VB4RuRcgkf2LkYS.exe","offline","malware_download","AgentTesla|exe|opendir","maiseficiencia.pt","195.22.8.66","8426","PT"
"2021-03-04 15:46:11","https://quellsalz-aus-portugal.com/wetransfer/motor.bin","offline","malware_download","encrypted|GuLoader","quellsalz-aus-portugal.com","188.93.230.65","8426","PT"
"2021-03-04 15:46:05","https://quellsalz-aus-portugal.com/wetransfer/shopping.bin","offline","malware_download","encrypted|GuLoader","quellsalz-aus-portugal.com","188.93.230.65","8426","PT"
"2021-02-17 21:46:27","https://mail.phosphorland.pt/apd9tn.tar","offline","malware_download","Dridex","mail.phosphorland.pt","188.93.230.198","8426","PT"
"2021-01-26 16:41:06","https://maputogal.com/rh3mu8.rar","offline","malware_download","dridex|payload","maputogal.com","188.93.227.94","8426","PT"
"2020-10-27 13:32:06","http://refield.pt/admin/U9Jw82U9ip3QKM84w0K5UPzZZUfQjLPp/","offline","malware_download","doc|emotet|epoch2","refield.pt","188.93.231.14","8426","PT"
"2020-10-27 11:53:03","https://refield.pt/admin/U9Jw82U9ip3QKM84w0K5UPzZZUfQjLPp/","offline","malware_download","doc|emotet|epoch2|Heodo","refield.pt","188.93.231.14","8426","PT"
"2020-09-04 02:02:05","http://b-lizzard.pt/CLIENTES/GoEmEwyA/","offline","malware_download","emotet|epoch3|exe|Heodo","b-lizzard.pt","195.22.8.67","8426","PT"
"2020-08-25 17:11:05","http://moverviseu.com/wp-content/form/410306/ksicwwi-0000276/","offline","malware_download","doc|emotet|epoch3|Heodo","moverviseu.com","188.93.230.95","8426","PT"
"2020-08-25 08:54:34","http://www.moverviseu.com/wp-content/form/410306/ksicwwi-0000276/","offline","malware_download","doc|emotet|epoch3|Heodo","www.moverviseu.com","188.93.230.95","8426","PT"
"2020-08-22 08:22:33","http://moverviseu.com/wp-content/available_section/test_portal/837gngw_u1tw256x320348/","offline","malware_download","doc|emotet|epoch1|Heodo","moverviseu.com","188.93.230.95","8426","PT"
"2020-08-21 23:22:34","http://www.moverviseu.com/wp-content/available_section/test_portal/837gngw_u1tw256x320348/","offline","malware_download","doc|emotet|epoch1|heodo","www.moverviseu.com","188.93.230.95","8426","PT"
"2020-08-21 11:36:07","http://efetiva.net.br/cgi-bin/OCT/qx0gp2/","offline","malware_download","doc|emotet|epoch2|heodo","efetiva.net.br","188.93.231.192","8426","PT"
"2020-08-17 19:57:06","http://efetiva.net.br/cgi-bin/protected-module/qgpq4mr0i5-irsp-forum/x5r5e2boc3-w6v1379uz8214/","offline","malware_download","doc|emotet|epoch1|Heodo","efetiva.net.br","188.93.231.192","8426","PT"
"2020-08-17 01:21:56","http://moverviseu.com/wp-content/OCT/","offline","malware_download","doc|emotet|epoch2","moverviseu.com","188.93.230.95","8426","PT"
"2020-08-14 23:45:36","http://www.moverviseu.com/wp-content/personal_IorAENl_3VUiO9Z/additional_area/BUypRG6pxzU_o1tqfq0malz0f/","offline","malware_download","doc|emotet|epoch1|heodo","www.moverviseu.com","188.93.230.95","8426","PT"
"2020-08-12 10:29:04","http://www.moverviseu.com/wp-content/OCT/","offline","malware_download","doc|emotet|epoch2|heodo","www.moverviseu.com","188.93.230.95","8426","PT"
"2020-08-07 13:24:06","http://efetiva.net.br/cgi-bin/o8n-097z-980/","offline","malware_download","doc|emotet|epoch3|Heodo|QuakBot","efetiva.net.br","188.93.231.192","8426","PT"
"2020-07-31 15:39:04","http://92.54.59.73:40679/.i","offline","malware_download","32-bit|ARM|ELF","92.54.59.73","92.54.59.73","8426","ES"
"2020-07-30 09:48:04","http://www.moverviseu.com/wp-content/jl173/","offline","malware_download","emotet|epoch1|exe|Heodo","www.moverviseu.com","188.93.230.95","8426","PT"
"2020-07-28 22:07:04","http://efetiva.net.br/cgi-bin/closed-yZfPU-7aVGSR1/id8b2tvz8m9g-zg95mhv3adnnez6-portal/j56-1y9zzsyt81z64z/","offline","malware_download","doc|emotet|epoch1|Heodo","efetiva.net.br","188.93.231.192","8426","PT"
"2020-07-24 10:45:05","http://www.agarca.donaines.pt//templates/beez3/VazBBV.exe","offline","malware_download","AgentTesla|exe","www.agarca.donaines.pt","188.93.230.35","8426","PT"
"2020-07-15 06:56:10","https://lifeonboard.pt/dl/AWB%20&%20BL.doc","offline","malware_download","GuLoader|rtf","lifeonboard.pt","188.93.230.110","8426","PT"
"2020-06-08 13:59:30","https://rocketstore.pt/A/bin_hePKNxjr241.bin","offline","malware_download","encrypted|GuLoader","rocketstore.pt","188.93.230.40","8426","PT"
"2020-05-14 21:36:07","http://cloudacademies.pt/SEPA/vendor/phpunit/phpunit-mock-objects/src/data.php","offline","malware_download","Dridex|zip","cloudacademies.pt","188.93.230.208","8426","PT"
"2020-02-05 23:07:04","http://www.cpi-print.co.uk/wp-admin/parts_service/eorbeuu2285535319814702u3n8od6viv1nqsvgi/","offline","malware_download","doc|emotet|epoch2|heodo","www.cpi-print.co.uk","62.173.65.199","8426","GB"
"2020-01-16 20:30:10","http://adesenhar.pt/ad/DOC/8ukv1rmlwwz/quuk1wy-87205-75-zo125yc35t-si424r81v/","offline","malware_download","doc|emotet|epoch2","adesenhar.pt","188.93.231.14","8426","PT"
"2019-11-08 13:57:37","https://maxiascencao.pt/ddyryv1k/JNsLRRta/","offline","malware_download","emotet|epoch3|exe|Heodo","maxiascencao.pt","188.93.230.110","8426","PT"
"2019-10-13 05:48:04","http://csprequiao.pt/wp-admin/RFQ34/RFQ36252oct.exe","offline","malware_download","AgentTesla|exe","csprequiao.pt","188.93.230.182","8426","PT"
"2019-09-11 19:18:19","http://lmvadvogados.com.br/wp-content/upgrade/ezee.exe","offline","malware_download","AgentTesla","lmvadvogados.com.br","188.93.231.192","8426","PT"
"2019-09-10 05:37:05","http://www.sotinmobiliario.com/cache/asia.png","offline","malware_download","exe","www.sotinmobiliario.com","80.172.230.30","8426","PT"
"2019-08-19 07:32:11","http://lmvadvogados.com.br/wp-content/themes/twentynineteen/sass/mixins/whe.exe","offline","malware_download","AgentTesla","lmvadvogados.com.br","188.93.231.192","8426","PT"
"2019-08-19 07:32:08","http://lmvadvogados.com.br/wp-content/themes/twentynineteen/sass/mixins/whe.doc","offline","malware_download","","lmvadvogados.com.br","188.93.231.192","8426","PT"
"2019-07-24 17:13:03","http://lmvadvogados.com.br/wp-content/uploads/elementor/whee.exe","offline","malware_download","exe","lmvadvogados.com.br","188.93.231.192","8426","PT"
"2019-07-09 11:24:08","http://lmvadvogados.com.br/wp-content/uploads/elementor/jiz.exe","offline","malware_download","exe","lmvadvogados.com.br","188.93.231.192","8426","PT"
"2019-07-09 11:24:07","http://lmvadvogados.com.br/wp-content/uploads/elementor/tur.exe","offline","malware_download","exe","lmvadvogados.com.br","188.93.231.192","8426","PT"
"2019-06-19 00:27:02","http://paroquiadamarinhagrande.pt/app/ob.doc","offline","malware_download","rtf","paroquiadamarinhagrande.pt","188.93.230.15","8426","PT"
"2019-06-18 14:42:05","http://paroquiadamarinhagrande.pt/app/hmvrch.msi","offline","malware_download","msi","paroquiadamarinhagrande.pt","188.93.230.15","8426","PT"
"2019-06-18 14:06:03","http://paroquiadamarinhagrande.pt/app/tyeupy.msi","offline","malware_download","msi","paroquiadamarinhagrande.pt","188.93.230.15","8426","PT"
"2019-06-18 07:59:03","http://paroquiadamarinhagrande.pt/app/sab.doc","offline","malware_download","doc","paroquiadamarinhagrande.pt","188.93.230.15","8426","PT"
"2019-06-14 05:59:02","http://paroquiadamarinhagrande.pt/secured/xls.doc","offline","malware_download","rtf","paroquiadamarinhagrande.pt","188.93.230.15","8426","PT"
"2019-06-13 19:34:03","http://paroquiadamarinhagrande.pt/secured/dwjxvg.msi","offline","malware_download","msi","paroquiadamarinhagrande.pt","188.93.230.15","8426","PT"
"2019-06-13 19:33:03","http://paroquiadamarinhagrande.pt/jiftxq.msi","offline","malware_download","msi","paroquiadamarinhagrande.pt","188.93.230.15","8426","PT"
"2019-06-12 15:07:33","http://paroquiadamarinhagrande.pt/1/xvosya.msi","offline","malware_download","msi","paroquiadamarinhagrande.pt","188.93.230.15","8426","PT"
"2019-06-12 14:55:05","http://paroquiadamarinhagrande.pt/file.doc","offline","malware_download","rtf","paroquiadamarinhagrande.pt","188.93.230.15","8426","PT"
"2019-06-12 12:26:03","http://paroquiadamarinhagrande.pt:80/1/xvosya.msi","offline","malware_download","exe|msi","paroquiadamarinhagrande.pt","188.93.230.15","8426","PT"
"2019-06-12 12:25:04","http://paroquiadamarinhagrande.pt/1/trust.doc","offline","malware_download","downloader|msi|rtf","paroquiadamarinhagrande.pt","188.93.230.15","8426","PT"
"2019-05-31 22:19:02","http://alsdeluxetravel.pt/Pages/wcPGEobgC/","offline","malware_download","doc|emotet|epoch2|Heodo","alsdeluxetravel.pt","80.172.234.14","8426","PT"
"2019-05-17 21:19:04","http://bloomflores.com/cgi-bin/fkeae3awg9k6b2dwmkpxxa64v7cw_4uaqa-69978485/","offline","malware_download","doc|Emotet|epoch2|Heodo","bloomflores.com","188.93.227.196","8426","PT"
"2019-05-15 19:13:06","http://imagme.com.br/.well-known/acme-challenge/ioa.exe","offline","malware_download","exe","imagme.com.br","188.93.231.39","8426","PT"
"2019-05-15 18:33:18","http://imagme.com.br/.well-known/acme-challenge/frr.exe","offline","malware_download","exe","imagme.com.br","188.93.231.39","8426","PT"
"2019-05-15 14:04:05","http://imagme.com.br/.well-known/acme-challenge/bill.exe","offline","malware_download","AgentTesla|exe","imagme.com.br","188.93.231.39","8426","PT"
"2019-05-15 14:03:32","http://mpsday.la/wp-admin/bukpnqpqopcjez0do9f6kdc_9po699-75518771132/","offline","malware_download","doc|emotet|epoch2|Heodo","mpsday.la","188.93.231.163","8426","PT"
"2019-05-15 13:55:05","http://imagme.com.br/.well-known/acme-challenge/obi.exe","offline","malware_download","AgentTesla|exe","imagme.com.br","188.93.231.39","8426","PT"
"2019-05-15 07:02:08","http://imagme.com.br/.well-known/acme-challenge/whe9.exe","offline","malware_download","AgentTesla|exe","imagme.com.br","188.93.231.39","8426","PT"
"2019-05-13 18:27:10","http://imagme.com.br/agendamento/pictures/whe1.exe","offline","malware_download","AgentTesla|exe","imagme.com.br","188.93.231.39","8426","PT"
"2019-05-13 18:08:38","http://imagme.com.br/agendamento/pictures/fox.exe","offline","malware_download","AgentTesla|exe","imagme.com.br","188.93.231.39","8426","PT"
"2019-05-13 05:31:08","http://imagme.com.br/agendamento/pictures/jiz.exe","offline","malware_download","AgentTesla|exe","imagme.com.br","188.93.231.39","8426","PT"
"2019-05-07 20:26:03","http://tecnauto.com/css/DOC/jybqcg2n2n0jdh_2omsz5rl-0359457713/","offline","malware_download","doc|emotet|epoch2|Heodo","tecnauto.com","80.172.234.6","8426","PT"
"2019-05-07 13:49:05","http://alsdeluxetravel.pt/wp-admin/paclm/5d6px5jp0p8eebhdwx5zo5do8vh_c11n10aa1-514134734/","offline","malware_download","Emotet|epoch2|Heodo","alsdeluxetravel.pt","80.172.234.14","8426","PT"
"2019-05-03 12:58:06","http://hcdigital.pt/inversodiverso.pt/secure.myaccount.resourses.biz/","offline","malware_download","emotet|epoch1|Heodo","hcdigital.pt","80.172.234.26","8426","PT"
"2019-05-03 08:38:19","http://blog.nakiol.net/wp-content/f38/","offline","malware_download","emotet|epoch1|exe|Heodo","blog.nakiol.net","188.93.231.125","8426","PT"
"2019-05-01 09:50:03","http://agregatudomaiss.com/wp-content/uploads/2019/03/files/atila.exe","offline","malware_download","AgentTesla|exe","agregatudomaiss.com","188.93.231.192","8426","PT"
"2019-05-01 09:46:04","http://agregatudomaiss.com/wp-content/uploads/2019/03/files/g4.exe","offline","malware_download","exe|Formbook","agregatudomaiss.com","188.93.231.192","8426","PT"
"2019-05-01 09:35:05","http://driveless.pt/wp-content/PB_D/","offline","malware_download","emotet|epoch2|exe|Heodo","driveless.pt","188.93.230.40","8426","PT"
"2019-05-01 09:29:08","http://agregatudomaiss.com/wp-content/uploads/2019/03/files/ioa.exe","offline","malware_download","exe","agregatudomaiss.com","188.93.231.192","8426","PT"
"2019-05-01 07:46:07","http://agregatudomaiss.com/wp-content/uploads/2019/02/brexit/ati.exe","offline","malware_download","AgentTesla|exe","agregatudomaiss.com","188.93.231.192","8426","PT"
"2019-04-29 11:40:05","http://prelava.pt/cgi-bin/3qeuo-cp7vnqh-whginbk/","offline","malware_download","Emotet|Heodo","prelava.pt","188.93.230.40","8426","PT"
"2019-04-29 10:57:03","http://hcdigital.pt/inversodiverso.pt/qq379i-u8tn43-gxuph/","offline","malware_download","doc|emotet|epoch2|Heodo","hcdigital.pt","80.172.234.26","8426","PT"
"2019-04-25 13:57:16","http://aulamania.com/wp-admin/Scan/pdB3irhP/","offline","malware_download","Emotet|Heodo","aulamania.com","188.93.231.95","8426","PT"
"2019-04-23 07:38:03","http://tekalu.pt/0xjvnok/afpii-mtjwg-ouzlt/","offline","malware_download","doc|emotet|epoch2|Heodo","tekalu.pt","195.22.8.77","8426","PT"
"2019-04-17 17:56:09","http://tekalu.pt/wp/HDfku-kEk3M75lhBJuVol_lSsaHkjG-lev/","offline","malware_download","emotet|epoch1","tekalu.pt","195.22.8.77","8426","PT"
"2019-04-15 21:30:02","http://tecnauto.com/css/VREe-oqPiNjp6HeRCuUZ_zRbLbusW-tV/","offline","malware_download","doc|emotet|epoch1|Heodo","tecnauto.com","80.172.234.6","8426","PT"
"2019-04-14 17:27:03","http://tecnauto.com/css/Egtg-KcavRuOVviWaJn_kcSUAxMW-RTu","offline","malware_download","doc","tecnauto.com","80.172.234.6","8426","PT"
"2019-04-13 07:05:23","http://tecnauto.com/css/VRifY-smDY8AWh5uho828_AMNXsTOQ-Nl/","offline","malware_download","Emotet|Heodo","tecnauto.com","80.172.234.6","8426","PT"
"2019-04-11 22:11:07","http://tomiauto.com/sec.myaccount.resourses.com/uL46z9/","offline","malware_download","emotet|epoch1|exe|Heodo","tomiauto.com","80.172.241.51","8426","PT"
"2019-04-11 14:12:07","http://tecnauto.com/css/Egtg-KcavRuOVviWaJn_kcSUAxMW-RTu/","offline","malware_download","emotet|epoch1|Heodo","tecnauto.com","80.172.234.6","8426","PT"
"2019-04-10 14:48:05","http://alsdeluxetravel.pt/cgi-bin/files/service/trust/EN_en/201904/","offline","malware_download","doc|emotet|epoch1|Heodo","alsdeluxetravel.pt","80.172.234.14","8426","PT"
"2019-04-09 16:44:43","http://tomiauto.com/sec.myaccount.resourses.com/vlsh0-wpvc9qp-plqam/","offline","malware_download","Emotet|Heodo","tomiauto.com","80.172.241.51","8426","PT"
"2019-04-08 13:50:44","http://mda-formacao.pt/aprendizagem/j8qw-kosiz-uvtpfp/","offline","malware_download","doc|emotet|epoch2|Heodo","mda-formacao.pt","188.93.230.65","8426","PT"
"2019-04-03 22:09:02","http://tomiauto.com/sec.myaccount.resourses.com/secure.myacc.resourses.net/","offline","malware_download","doc|emotet|epoch1|Heodo","tomiauto.com","80.172.241.51","8426","PT"
"2019-04-02 13:01:14","http://tomiauto.com/sec.myaccount.resourses.com/trust.accounts.send.biz/","offline","malware_download","emotet|epoch1|Heodo","tomiauto.com","80.172.241.51","8426","PT"
"2019-03-29 19:53:10","http://tomiauto.com/sec.myaccount.resourses.com/","offline","malware_download","doc|emotet|epoch1|Heodo","tomiauto.com","80.172.241.51","8426","PT"
"2019-03-22 23:54:05","http://visionmaker.pt/cgi-bin/En/scan/Copy_Invoice/BMluK-yFUOr_AQmND-5kD/","offline","malware_download","doc|emotet|epoch2|Heodo","visionmaker.pt","188.93.230.198","8426","PT"
"2019-03-22 18:04:05","http://casacachada.pt/cgi-bin/secure.accounts.resourses.biz/","offline","malware_download","doc|emotet|epoch1|Heodo","casacachada.pt","195.22.19.197","8426","PT"
"2019-03-20 09:31:07","http://tomiauto.com/lXwLw-HmFhaq2EMESI3PA_HAcJVjHc-sa/sendinc/support/question/en_EN/03-2019/","offline","malware_download","doc|emotet|heodo","tomiauto.com","80.172.241.51","8426","PT"
"2019-03-18 20:42:03","http://pequenosgrandesnegocios.pt/wp/8qeuk-09lhm-tleosofa/","offline","malware_download","doc|emotet|epoch2|Heodo","pequenosgrandesnegocios.pt","188.93.230.140","8426","PT"
"2019-03-15 17:33:06","http://pequenosgrandesnegocios.pt/cgi-bin/0toeh-9gcekt-lfcrcsvuu/","offline","malware_download","doc|emotet|epoch2|Heodo","pequenosgrandesnegocios.pt","188.93.230.140","8426","PT"
"2019-03-15 14:26:05","http://forexproservice.com/wp-content/tW/","offline","malware_download","emotet|epoch2|exe|Heodo","forexproservice.com","80.172.234.15","8426","PT"
"2019-03-14 09:17:10","http://raccanelli.com.br/cgi-bin/1bfsm-3scphyq-oinr/","offline","malware_download","Emotet|Heodo","raccanelli.com.br","188.93.231.39","8426","PT"
"2019-03-12 01:34:55","http://www.aubreydesign.com/wp-content/themes/Aubrey/woocommerce/loop/kia.zip","offline","malware_download","js|RUS|Troldesh|zip","www.aubreydesign.com","195.8.66.1","8426","GB"
"2019-03-11 10:22:09","http://www.aubreydesign.com/wp-content/themes/Aubrey/js/messg.jpg","offline","malware_download","exe|Troldesh","www.aubreydesign.com","195.8.66.1","8426","GB"
"2019-03-07 20:27:02","http://tomiauto.com/lXwLw-HmFhaq2EMESI3PA_HAcJVjHc-sa/PsaVDj/","offline","malware_download","emotet|epoch1|exe|Heodo","tomiauto.com","80.172.241.51","8426","PT"
"2019-02-27 13:53:30","http://bragaredes.pt/wp-content/languages/plugins/msg.jpg","offline","malware_download","exe|Ransomware|Troldesh","bragaredes.pt","188.93.230.150","8426","PT"
"2019-02-23 20:27:15","http://sotratel.pt/Outlook.exe","offline","malware_download","exe","sotratel.pt","176.111.107.246","8426","PT"
"2019-02-20 14:15:04","http://restaurantejorgedopeixe.com/info/IUwk-QofN_pVBP-Nr/","offline","malware_download","Emotet|Heodo","restaurantejorgedopeixe.com","80.172.234.17","8426","PT"
"2019-02-11 23:29:34","http://comfome.co.mz/EN_en/Invoice_Notice/jJieg-RcvH9_Z-fi/","offline","malware_download","Emotet|Heodo","comfome.co.mz","188.93.227.83","8426","PT"
"2019-02-06 17:51:20","http://comfome.co.mz/llc/Copy_Invoice/vCKTE-fA7RN_soFkC-yVJ/","offline","malware_download","Emotet|Heodo","comfome.co.mz","188.93.227.83","8426","PT"
"2019-02-02 04:37:14","http://comfome.co.mz/US_us/xerox/Copy_Invoice/LfOPg-sr_GZyLyHR-ES/","offline","malware_download","emotet|epoch2|Heodo","comfome.co.mz","188.93.227.83","8426","PT"
"2019-01-28 17:09:05","http://newscommer.com/app/al/latest32.exe","offline","malware_download","exe","newscommer.com","195.22.26.248","8426","PT"
"2019-01-28 16:50:10","http://newscommer.com/app/winboxscan-1001.exe","offline","malware_download","exe","newscommer.com","195.22.26.248","8426","PT"
"2019-01-28 16:25:05","http://newscommer.com/app/winboxscan-1003-2.exe","offline","malware_download","exe","newscommer.com","195.22.26.248","8426","PT"
"2019-01-28 15:54:05","http://newscommer.com/app/mrt.exe","offline","malware_download","exe","newscommer.com","195.22.26.248","8426","PT"
"2019-01-28 15:30:18","http://newscommer.com/tvgyasmev5gmk49l/lsa64install_in.exe","offline","malware_download","exe","newscommer.com","195.22.26.248","8426","PT"
"2019-01-28 15:30:09","http://newscommer.com/app/winboxscan-1003.exe","offline","malware_download","exe","newscommer.com","195.22.26.248","8426","PT"
"2019-01-28 15:28:07","http://newscommer.com/app/watchdog.exe","offline","malware_download","exe","newscommer.com","195.22.26.248","8426","PT"
"2019-01-28 15:28:04","http://newscommer.com/tvgyasmev5gmk49l/lsa64install.exe","offline","malware_download","exe","newscommer.com","195.22.26.248","8426","PT"
"2019-01-28 15:23:11","http://newscommer.com/app/vc.exe","offline","malware_download","exe","newscommer.com","195.22.26.248","8426","PT"
"2019-01-28 15:18:05","http://newscommer.com/app/e7.exe","offline","malware_download","exe","newscommer.com","195.22.26.248","8426","PT"
"2019-01-28 15:13:09","http://newscommer.com/app/winboxtest.exe","offline","malware_download","exe","newscommer.com","195.22.26.248","8426","PT"
"2019-01-24 12:08:47","http://www.tours.pt/templates/tours.pt_red/img/ssj.jpg","offline","malware_download","emotet|exe|Ransomware|Ransomware.Troldesh|Shade|Troldesh","www.tours.pt","188.93.230.75","8426","PT"
"2019-01-23 21:40:11","http://dcs.pt/download/hor/upg-hor5.exe","offline","malware_download","exe","dcs.pt","188.93.230.75","8426","PT"
"2019-01-23 16:51:19","http://tours.pt/templates/tours.pt_red/img/ssj.jpg","offline","malware_download","exe","tours.pt","188.93.230.75","8426","PT"
"2019-01-17 14:03:08","http://kosardoor.com/PbEu786/","offline","malware_download","emotet|epoch1|exe|Heodo","kosardoor.com","195.22.26.248","8426","PT"
"2019-01-16 13:32:03","http://jpatela.pt/TurkishTours.exe","offline","malware_download","exe","jpatela.pt","188.93.230.5","8426","PT"
"2019-01-15 15:08:07","http://jpatela.pt/TurkishAirlines.exe","offline","malware_download","exe","jpatela.pt","188.93.230.5","8426","PT"
"2019-01-15 14:12:02","http://jpatela.pt/TurkishAirways.exe","offline","malware_download","exe|Pony","jpatela.pt","188.93.230.5","8426","PT"
"2019-01-09 15:23:11","http://jpatela.pt/TurkishAirline.exe","offline","malware_download","exe|hawkeye|keylogger","jpatela.pt","188.93.230.5","8426","PT"
"2018-12-14 20:23:55","http://artvilla.pt/En_us/Clients_transactions/122018/","offline","malware_download","emotet|epoch1|Heodo","artvilla.pt","188.93.230.75","8426","PT"
"2018-12-14 13:04:21","http://hitechlab.pt/fRhw-cVI7rQaNqNRBml_VZOMvzCLg-AI/","offline","malware_download","doc|emotet|heodo","hitechlab.pt","188.93.230.31","8426","PT"
"2018-12-13 16:02:47","http://acqualidade.pt/US/Messages/122018/","offline","malware_download","emotet|epoch1|Heodo","acqualidade.pt","176.111.104.118","8426","PT"
"2018-12-06 01:17:28","http://tomiauto.com/LLC/En/Past-Due-Invoices/","offline","malware_download","doc|emotet|epoch2|Heodo","tomiauto.com","80.172.241.51","8426","PT"
"2018-12-05 14:39:57","http://tomiauto.com/LLC/En/Past-Due-Invoices","offline","malware_download","emotet|epoch2|Heodo","tomiauto.com","80.172.241.51","8426","PT"
"2018-12-04 14:26:34","http://tomiauto.com/INFO/EN_en/Summit-Companies-Invoice-9352872","offline","malware_download","doc|emotet|heodo","tomiauto.com","80.172.241.51","8426","PT"
"2018-12-04 10:16:19","http://tecnauto.com/UMTE5JuqX/","offline","malware_download","emotet|epoch1|exe","tecnauto.com","80.172.234.6","8426","PT"
"2018-12-04 10:16:11","http://tecnauto.com/UMTE5JuqX","offline","malware_download","emotet|epoch1|exe","tecnauto.com","80.172.234.6","8426","PT"
"2018-12-03 20:31:19","http://tomiauto.com/INFO/EN_en/Summit-Companies-Invoice-9352872/","offline","malware_download","doc|emotet|Heodo","tomiauto.com","80.172.241.51","8426","PT"
"2018-12-02 16:04:02","http://krood.pt/w/","offline","malware_download","exe|Heodo","krood.pt","188.93.230.31","8426","PT"
"2018-11-30 20:17:06","http://krood.pt/w","offline","malware_download","emotet|epoch2|exe|Heodo","krood.pt","188.93.230.31","8426","PT"
"2018-11-30 15:28:28","http://almasgranite.com/wp-snapshots/newsletter/US_us/New-order/","offline","malware_download","emotet|Heodo|Word doc","almasgranite.com","195.22.26.248","8426","PT"
"2018-11-26 12:28:40","http://hitechlab.pt/5888PXLIYZZ/SEP/Smallbusiness","offline","malware_download","doc|emotet|heodo","hitechlab.pt","188.93.230.31","8426","PT"
"2018-11-19 19:59:04","http://suportec.pt/755TI/WIRE/Business/","offline","malware_download","emotet|heodo","suportec.pt","188.93.231.149","8426","PT"
"2018-11-19 19:53:10","http://krood.pt/050SOHQYS/PAY/Commercial/","offline","malware_download","emotet|heodo","krood.pt","188.93.230.31","8426","PT"
"2018-11-06 21:26:08","http://groupesival.com/Nov2018/En_us/Overdue-payment/","offline","malware_download","doc|emotet|epoch2|Heodo","groupesival.com","188.93.230.110","8426","PT"
"2018-11-06 08:39:11","http://groupesival.com/Nov2018/En_us/Overdue-payment","offline","malware_download","doc|emotet|heodo","groupesival.com","188.93.230.110","8426","PT"
"2018-10-17 17:43:02","http://www.macneicefruit.com/520QEDDpm2AAAAJQOzcAAAABH3UAAAAAAAlJMwBbnrr2BH_qV_nZT-aYHvC4O2OrWQAI/i.php","offline","malware_download","FRA|Gootkit|zipped-js","www.macneicefruit.com","195.8.66.1","8426","GB"
"2018-10-08 06:31:03","http://tecnauto.com/15Q/biz/Smallbusiness","offline","malware_download","doc|emotet|heodo","tecnauto.com","80.172.234.6","8426","PT"
"2018-10-04 14:18:16","http://www.queijariailidio.pt/504332JBLRWF/SWIFT/Personal","offline","malware_download","doc|emotet|Heodo","www.queijariailidio.pt","188.93.230.140","8426","PT"
"2018-10-04 10:48:03","http://cimobiliaria.com/QHOTxbN0","offline","malware_download","emotet|exe|Heodo","cimobiliaria.com","188.93.230.175","8426","PT"
"2018-10-04 08:52:00","http://suportec.pt/661BTRESRQO/identity/Smallbusiness","offline","malware_download","doc|emotet|heodo","suportec.pt","188.93.231.149","8426","PT"
"2018-10-04 08:49:22","http://groupesival.com/0778PCTICD/ACH/Personal","offline","malware_download","doc|emotet|heodo","groupesival.com","188.93.230.110","8426","PT"
"2018-10-03 18:43:29","http://krood.pt/050SOHQYS/PAY/Commercial","offline","malware_download","doc|emotet|heodo","krood.pt","188.93.230.31","8426","PT"
"2018-10-03 15:17:03","http://overflowinteractive.com/aqZbQlCLC/","offline","malware_download","Emotet|exe|Heodo","overflowinteractive.com","188.93.230.140","8426","PT"
"2018-10-02 23:09:13","http://infosystemweb.com.br/EN_US/Documents/10_18","offline","malware_download","doc|emotet|Heodo","infosystemweb.com.br","188.93.230.228","8426","PT"
"2018-10-02 17:30:05","http://overflowinteractive.com/aqZbQlCLC","offline","malware_download","emotet|exe|Heodo","overflowinteractive.com","188.93.230.140","8426","PT"
"2018-09-25 08:01:19","http://suportec.pt/044190Y/SEP/US","offline","malware_download","doc|emotet|Heodo","suportec.pt","188.93.231.149","8426","PT"
"2018-09-24 04:53:41","http://suportec.pt/755TI/WIRE/Business","offline","malware_download","doc|emotet|Heodo","suportec.pt","188.93.231.149","8426","PT"
"2018-09-19 15:17:04","http://suportec.pt/6AKCJJBKS/identity/Business","offline","malware_download","doc|emotet|Heodo","suportec.pt","188.93.231.149","8426","PT"
"2018-09-14 05:03:34","http://suportec.pt/files/US/Need-to-send-the-attachment/","offline","malware_download","doc|emotet|epoch2|Heodo","suportec.pt","188.93.231.149","8426","PT"
"2018-09-13 05:41:41","http://suportec.pt/files/US/Need-to-send-the-attachment","offline","malware_download","doc|emotet|epoch2|Heodo","suportec.pt","188.93.231.149","8426","PT"
"2018-09-11 07:36:09","http://miaudogs.pt/x3ZLoewB","offline","malware_download","emotet|exe|Heodo","miaudogs.pt","188.93.231.149","8426","PT"
"2018-09-11 05:16:19","http://suportec.pt/432HCN/PAYMENT/Smallbusiness/","offline","malware_download","doc|emotet|epoch2|Heodo","suportec.pt","188.93.231.149","8426","PT"
"2018-09-11 05:10:21","http://miaudogs.pt/LLC/EN_en/Paid-Invoice/","offline","malware_download","doc|emotet|epoch2|Heodo","miaudogs.pt","188.93.231.149","8426","PT"
"2018-09-10 19:20:36","http://suportec.pt/432HCN/PAYMENT/Smallbusiness","offline","malware_download","doc|emotet|heodo","suportec.pt","188.93.231.149","8426","PT"
"2018-09-10 07:50:21","http://miaudogs.pt/LLC/EN_en/Paid-Invoice","offline","malware_download","doc|emotet|Heodo","miaudogs.pt","188.93.231.149","8426","PT"
"2018-09-04 19:13:19","http://coffeebel.pt/xerox/US_us/Invoice-Corrections-for-38/85","offline","malware_download","doc|emotet|Heodo","coffeebel.pt","188.93.230.25","8426","PT"
"2018-08-29 05:16:29","http://flyrent.pt/527401TFE/SWIFT/Smallbusiness/","offline","malware_download","doc|emotet|epoch2|Heodo","flyrent.pt","188.93.230.25","8426","PT"
"2018-08-28 06:35:41","http://flyrent.pt/527401TFE/SWIFT/Smallbusiness","offline","malware_download","doc|emotet|Heodo","flyrent.pt","188.93.230.25","8426","PT"
"2018-08-24 10:17:03","http://tecnauto.com/sites/US/STATUS/","offline","malware_download","doc|emotet|heodo","tecnauto.com","80.172.234.6","8426","PT"
"2018-08-23 22:45:09","http://saintechelon.tk/B000CEF.exe","offline","malware_download","exe|HawkEye|Trickbot","saintechelon.tk","195.22.26.248","8426","PT"
"2018-08-23 10:45:23","http://saintechelon.tk/D50.exe","offline","malware_download","exe|Trickbot","saintechelon.tk","195.22.26.248","8426","PT"
"2018-08-20 15:35:12","http://flyrent.pt/scan/EN_en/Past-Due-Invoice","offline","malware_download","doc|emotet|Heodo","flyrent.pt","188.93.230.25","8426","PT"
"2018-08-13 21:14:02","http://saintechelon.tk/EJI.doc","offline","malware_download","downloader|loki|rtf","saintechelon.tk","195.22.26.248","8426","PT"
"2018-08-13 20:44:05","http://saintechelon.tk/bigshu.exe","offline","malware_download","AgentTesla|exe|loki","saintechelon.tk","195.22.26.248","8426","PT"
"2018-08-13 20:44:03","http://saintechelon.tk/BSEO.doc","offline","malware_download","AgentTesla|downloader|loki|rtf","saintechelon.tk","195.22.26.248","8426","PT"
"2018-08-13 16:45:05","http://saintechelon.tk/ejyk.exe","offline","malware_download","AgentTesla|Emotet|exe","saintechelon.tk","195.22.26.248","8426","PT"
"2018-08-13 07:48:06","http://saintechelon.tk/tempo.exe","offline","malware_download","AgentTesla|exe|loki","saintechelon.tk","195.22.26.248","8426","PT"
"2018-08-13 07:48:04","http://saintechelon.tk/TEM.doc","offline","malware_download","AgentTesla|downloader|rtf|sc","saintechelon.tk","195.22.26.248","8426","PT"
"2018-08-07 15:00:43","http://saintechelon.tk/tep.exe","offline","malware_download","agenttesla|exe|stealer","saintechelon.tk","195.22.26.248","8426","PT"
"2018-08-06 14:30:06","http://saintechelon.tk/tem.exe","offline","malware_download","AgentTesla|exe","saintechelon.tk","195.22.26.248","8426","PT"
"2018-07-30 04:45:22","http://saintechelon.tk/sant.exe","offline","malware_download","AgentTesla|Emotet|exe","saintechelon.tk","195.22.26.248","8426","PT"
"2018-07-30 04:45:20","http://saintechelon.tk/ktn.exe","offline","malware_download","Emotet|exe","saintechelon.tk","195.22.26.248","8426","PT"
"2018-07-26 03:57:18","http://tecnauto.com/sites/US/STATUS/50695/","offline","malware_download","doc|emotet|epoch2|Heodo","tecnauto.com","80.172.234.6","8426","PT"
"2018-07-25 14:52:04","http://ceuecandido.pt/skype.exe","offline","malware_download","exe|Pony","ceuecandido.pt","188.93.227.195","8426","PT"
"2018-07-25 14:17:04","http://difashion.pt/Tracking/En_us/","offline","malware_download","doc|emotet|Heodo","difashion.pt","188.93.231.10","8426","PT"
"2018-07-23 16:45:27","http://saintechelon.tk/NEBU.exe","offline","malware_download","exe|Loki|Pony","saintechelon.tk","195.22.26.248","8426","PT"
"2018-07-16 21:36:04","http://destalo.pt/K7Uk/","offline","malware_download","Heodo","destalo.pt","188.93.231.230","8426","PT"
"2018-07-16 16:28:20","http://www.destalo.pt/K7Uk/","offline","malware_download","emotet|exe|heodo","www.destalo.pt","188.93.231.230","8426","PT"
"2018-07-13 10:20:09","http://destalo.pt/newsletter/US_us/ACCOUNT/Pay-Invoice/","offline","malware_download","Heodo","destalo.pt","188.93.231.230","8426","PT"
"2018-07-13 07:09:04","http://www.destalo.pt/newsletter/US_us/ACCOUNT/Pay-Invoice/","offline","malware_download","doc|emotet|heodo","www.destalo.pt","188.93.231.230","8426","PT"
"2018-07-12 09:05:04","http://www.shop.geopixel.pt/Facturas-837/","offline","malware_download","doc|emotet|heodo","www.shop.geopixel.pt","188.93.230.163","8426","PT"
"2018-06-15 17:39:21","http://destalo.pt/IRS-Letters-06/43/","offline","malware_download","Emotet|Heodo","destalo.pt","188.93.231.230","8426","PT"
"2018-06-14 14:35:12","http://www.destalo.pt/IRS-Letters-06/43/","offline","malware_download","doc|emotet|epoch1|Heodo","www.destalo.pt","188.93.231.230","8426","PT"
"2018-05-15 11:45:17","http://tecnauto.com/RECHNUNG-52935Rechnung/","offline","malware_download","doc|emotet","tecnauto.com","80.172.234.6","8426","PT"
"2018-05-10 19:54:09","http://jpatela.pt/marin.exe","offline","malware_download","exe|Pony","jpatela.pt","188.93.230.5","8426","PT"
"2018-05-10 15:51:29","http://tecnauto.com/zDEi01h/","offline","malware_download","doc|emotet","tecnauto.com","80.172.234.6","8426","PT"
"2018-05-10 13:52:59","http://jpatela.pt/world.exe","offline","malware_download","exe|Loki","jpatela.pt","188.93.230.5","8426","PT"
"2018-05-02 10:46:27","http://jpatela.pt/rr/Docs.exe","offline","malware_download","doc|downloader","jpatela.pt","188.93.230.5","8426","PT"
"2018-04-11 14:47:13","http://pussyhunters.ru/server.exe","offline","malware_download","exe|Pontoeb","pussyhunters.ru","195.22.26.248","8426","PT"
"2018-03-29 14:19:59","http://powergenetics.pt/DOC0504502018.zip","offline","malware_download","js|nemucod|zip","powergenetics.pt","188.93.231.64","8426","PT"
# of entries: 210