##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2025-11-25 00:27:45 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS8860
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2024-12-05 16:57:18","https://www.drgenov.com/wp-content/uploads/debug2.ps1","online","malware_download","koiloader","www.drgenov.com","79.98.104.13","8860","BG"
"2024-12-05 16:57:08","https://www.drgenov.com/wp-content/uploads/debug4.ps1","online","malware_download","koiloader","www.drgenov.com","79.98.104.13","8860","BG"
"2024-07-27 11:09:11","https://www.drgenov.com/wp-content/uploads/postmon.exe","offline","malware_download","exe","www.drgenov.com","79.98.104.13","8860","BG"
"2023-03-14 19:03:06","https://threerosesbeauty.com/connect/","offline","malware_download","250255|7710|geofenced|Gozi|ISFB|ITA|redir-302|Ursnif","threerosesbeauty.com","79.98.104.6","8860","BG"
"2023-03-14 19:02:05","https://threerosesbeauty.com/agenzia/","offline","malware_download","250255|7710|geofenced|Gozi|ISFB|ITA|redir-302|Ursnif","threerosesbeauty.com","79.98.104.6","8860","BG"
"2023-03-14 18:59:13","https://threerosesbeauty.com/scarica/","offline","malware_download","250255|7710|geofenced|Gozi|ISFB|ITA|redir-302|Ursnif","threerosesbeauty.com","79.98.104.6","8860","BG"
"2023-03-14 11:57:09","http://threerosesbeauty.com/connect/index.php","offline","malware_download","agenziaentrate|geofenced|gozi|isfb|ITA|mef|mise|ursnif","threerosesbeauty.com","79.98.104.6","8860","BG"
"2023-03-08 07:11:10","https://threerosesbeauty.com/mise/Gestione.zip","offline","malware_download","gozi|isfb|ITA|mef|MISE|ursnif","threerosesbeauty.com","79.98.104.6","8860","BG"
"2023-03-08 07:11:10","https://threerosesbeauty.com/mise/Normativa.zip","offline","malware_download","gozi|isfb|ITA|mef|MISE|ursnif","threerosesbeauty.com","79.98.104.6","8860","BG"
"2023-03-06 18:17:10","https://threerosesbeauty.com/mise/Cliente.zip","offline","malware_download","gozi|ITA|mef|MISE|ursnif","threerosesbeauty.com","79.98.104.6","8860","BG"
"2023-03-06 18:17:10","https://threerosesbeauty.com/mise/Contratto.zip","offline","malware_download","gozi|ITA|mef|MISE|ursnif","threerosesbeauty.com","79.98.104.6","8860","BG"
"2023-03-06 18:17:10","https://threerosesbeauty.com/mise/Disposizioni.zip","offline","malware_download","gozi|ITA|mef|MISE|ursnif","threerosesbeauty.com","79.98.104.6","8860","BG"
"2023-03-06 18:17:10","https://threerosesbeauty.com/mise/Funzioni.zip","offline","malware_download","gozi|ITA|mef|MISE|ursnif","threerosesbeauty.com","79.98.104.6","8860","BG"
"2023-03-06 18:17:10","https://threerosesbeauty.com/mise/Servizi.zip","offline","malware_download","gozi|ITA|mef|MISE|ursnif","threerosesbeauty.com","79.98.104.6","8860","BG"
"2022-10-31 16:12:09","https://kalateia1.eu/pati/qakbot.zip","offline","malware_download","BB05|BV1|iso|qakbot|qbot|quakbot|TR|zip","kalateia1.eu","79.98.104.6","8860","BG"
"2021-12-12 12:20:22","http://www.korekt2002.com/jusmijhoagh/ConsoleApp19.png","offline","malware_download","encrypted|QuasarRAT|RAT","www.korekt2002.com","185.199.38.38","8860","BG"
"2021-11-01 11:13:11","http://shop.etnolina.com/laborumdolores/veritatisdoloribus-3024708","offline","malware_download","qbot","shop.etnolina.com","185.199.38.4","8860","BG"
"2021-11-01 11:12:15","http://shop.etnolina.com/laborumdolores/repellendusex-2350874","offline","malware_download","qbot","shop.etnolina.com","185.199.38.4","8860","BG"
"2021-11-01 11:12:09","http://shop.etnolina.com/laborumdolores/utdeleniti-1973004","offline","malware_download","qbot","shop.etnolina.com","185.199.38.4","8860","BG"
"2021-11-01 11:11:20","http://shop.etnolina.com/laborumdolores/dignissimosnostrum-2353046","offline","malware_download","qbot","shop.etnolina.com","185.199.38.4","8860","BG"
"2021-09-16 18:05:23","http://fluidfilm.bg/promissory.php","offline","malware_download","doc|hancitor|html","fluidfilm.bg","185.199.38.18","8860","BG"
"2021-09-16 18:05:19","http://fluidfilm.bg/insipient.php","offline","malware_download","doc|hancitor|html","fluidfilm.bg","185.199.38.18","8860","BG"
"2021-09-16 18:05:16","http://fluidfilm.bg/flexibility.php","offline","malware_download","doc|hancitor|html","fluidfilm.bg","185.199.38.18","8860","BG"
"2021-09-16 18:05:16","http://fluidfilm.bg/nation.php","offline","malware_download","doc|hancitor|html","fluidfilm.bg","185.199.38.18","8860","BG"
"2021-09-16 18:05:16","http://fluidfilm.bg/troubadour.php","offline","malware_download","doc|hancitor|html","fluidfilm.bg","185.199.38.18","8860","BG"
"2021-09-16 18:05:16","http://fluidfilm.bg/turnstile.php","offline","malware_download","doc|hancitor|html","fluidfilm.bg","185.199.38.18","8860","BG"
"2021-09-16 18:05:06","http://fluidfilm.bg/snippiness.php","offline","malware_download","doc|hancitor|html","fluidfilm.bg","185.199.38.18","8860","BG"
"2021-09-02 14:29:07","https://bagsline.bg/image/catalog/wallet/PBrowFile17.exe","offline","malware_download","32|exe|RedLineStealer","bagsline.bg","185.199.38.44","8860","BG"
"2020-12-09 17:23:04","https://plus.inovento.com/assets_old/plugins/fancybox/demo/ubp05Edi5.php","offline","malware_download","dll|dridex","plus.inovento.com","79.98.111.152","8860","BG"
"2019-09-16 12:14:05","https://perfume-dubai.com/cgi-bin/73UXB847YV4/9qoo1k26x179h4wcf2vlwgohnfk8i_9tqsmhu5-78072491699396/","offline","malware_download","doc|Emotet|epoch2|Heodo","perfume-dubai.com","79.98.104.7","8860","BG"
"2019-03-12 11:25:22","http://designitpro.net/.well-known/acme-challenge/reso.zip","offline","malware_download","js|Ransomware|RUS|Troldesh|zip","designitpro.net","195.189.82.66","8860","BG"
"2019-03-07 10:53:05","http://smartpromo.top/msiupdate.exe","offline","malware_download","exe","smartpromo.top","185.199.38.8","8860","BG"
"2018-08-09 05:15:00","http://dmgtrading.bg/FILE/HQBO2557634REMMLV/Aug-06-2018-333811802/XNCU-CHA/","offline","malware_download","doc|emotet|Heodo","dmgtrading.bg","79.98.104.3","8860","BG"
"2018-08-07 10:26:04","http://dmgtrading.bg/default/US/Money-transfer-details","offline","malware_download","doc|emotet|heodo","dmgtrading.bg","79.98.104.3","8860","BG"
"2018-08-07 10:04:52","http://dmgtrading.bg/FILE/HQBO2557634REMMLV/Aug-06-2018-333811802/XNCU-CHA","offline","malware_download","doc|emotet|Heodo","dmgtrading.bg","79.98.104.3","8860","BG"
"2018-08-01 21:03:08","http://dmgtrading.bg/default/US/Money-transfer-details/","offline","malware_download","doc|emotet|epoch2|Heodo","dmgtrading.bg","79.98.104.3","8860","BG"
"2018-07-31 03:34:15","http://dmgtrading.bg/Tracking/En/","offline","malware_download","doc|emotet|epoch2|Heodo","dmgtrading.bg","79.98.104.3","8860","BG"
"2018-07-28 05:48:17","http://dmgtrading.bg/DHL/US/","offline","malware_download","doc|emotet|heodo","dmgtrading.bg","79.98.104.3","8860","BG"
"2018-03-17 06:21:59","http://24hourdentistlondon.co.uk/Mar-16-10-24-59/Tracking-Number-7L85766772513923/","offline","malware_download","doc|emotet|heodo","24hourdentistlondon.co.uk","79.98.111.175","8860","BG"
# of entries: 39