##############################################################################
# URLhaus ASN CSV Feed                                                       #
# Generated on 2025-11-25 06:02:38 UTC                                       #
#                                                                            #
# For questions please refer to:                                             #
# https://urlhaus.abuse.ch/feeds/                                            #
##############################################################################
#
# Feed generated for AS931
#
# Dateadded (UTC),URL,URL_status,Threat,Tags,Host,IPaddress,ASnumber,Country
"2025-06-25 18:45:10","http://38.255.49.144/xampp/cv/wp4096799-lost-in-space-wallpapers.jpg","offline","malware_download","","38.255.49.144","38.255.49.144","931","NL"
"2025-04-27 07:26:11","http://178.173.244.118/wuBQR165.bin","offline","malware_download","GuLoader|RAT|RemcosRAT","178.173.244.118","178.173.244.118","931","US"
"2025-01-31 16:31:03","http://38.255.44.110/JaredW2FormDividendsAndMySonsDocuments.lnk","offline","malware_download","opendir","38.255.44.110","38.255.44.110","931","US"
"2025-01-31 16:31:03","http://38.255.44.110/svchost4","offline","malware_download","opendir","38.255.44.110","38.255.44.110","931","US"
"2025-01-31 07:00:04","http://38.255.44.110/xam/LaunchShortcut.exe","offline","malware_download","exe|opendir","38.255.44.110","38.255.44.110","931","US"
"2025-01-30 06:44:04","http://38.255.44.110/cpa","offline","malware_download","opendir","38.255.44.110","38.255.44.110","931","US"
"2025-01-30 06:44:03","http://38.255.44.110/liberty.dll","offline","malware_download","opendir","38.255.44.110","38.255.44.110","931","US"
"2025-01-30 06:43:04","http://38.255.44.110/rcdll.dll","offline","malware_download","opendir","38.255.44.110","38.255.44.110","931","US"
"2025-01-30 06:43:04","http://38.255.44.110/svchost.exe","offline","malware_download","AsyncRAT|opendir","38.255.44.110","38.255.44.110","931","US"
"2025-01-30 01:56:16","http://38.255.44.110/xam/cpa.lnk","offline","malware_download","opendir","38.255.44.110","38.255.44.110","931","US"
"2025-01-30 01:56:04","http://38.255.44.110/libery.dll","offline","malware_download","AsyncRAT|opendir","38.255.44.110","38.255.44.110","931","US"
"2025-01-30 01:56:04","http://38.255.44.110/xam/cpa.zip","offline","malware_download","opendir","38.255.44.110","38.255.44.110","931","US"
"2025-01-22 13:05:16","https://178.173.246.113/main.exe","offline","malware_download","exe|opendir|xWorm","178.173.246.113","178.173.246.113","931","US"
"2024-10-15 17:56:14","http://103.131.130.248/355/WSRRED.txt","offline","malware_download","remcosrat|rev-base64-loader","103.131.130.248","103.131.130.248","931","HK"
"2024-10-15 14:32:15","http://103.131.130.248/355/nm/nicesweetgirlsareeverydayonme.hta","offline","malware_download","RAT|RemcosRAT","103.131.130.248","103.131.130.248","931","HK"
"2024-10-09 22:57:14","http://38.240.41.28/333/RCCRER.txt","offline","malware_download","","38.240.41.28","38.240.41.28","931","AU"
"2024-10-09 22:57:11","http://38.240.41.28/333/erf/sweetnessisbthebesttoolevermadefromthehumanmouthwhichfoundverylongtimebeforesweetnessgivinghappinessandentirethingsforhumanwhohave_______nicebeautifulwords.doc","offline","malware_download","RemcosRAT","38.240.41.28","38.240.41.28","931","AU"
"2024-10-09 22:57:10","http://38.240.41.28/333/wegivenewthingssoonsweetness.tIF","offline","malware_download","","38.240.41.28","38.240.41.28","931","AU"
"2024-10-09 15:34:04","http://38.240.44.9/450/hun/nicesweetthingsentiretimesheneedtogetmebackwithverynicepersonwhowillingtogetniceworthfulthingsalwaysinhandsweetnesshaveforthebiscoutwhichieatedwith____veryniceenitertime.doc","offline","malware_download","","38.240.44.9","38.240.44.9","931","HK"
"2024-10-09 15:34:04","http://38.240.44.9/450/newsweetnesswithverynicecute.Tif","offline","malware_download","","38.240.44.9","38.240.44.9","931","HK"
"2024-10-09 15:34:04","http://38.240.44.9/450/RDSSSER.txt","offline","malware_download","RemcosRAT|rev-base64-loader","38.240.44.9","38.240.44.9","931","HK"
"2024-10-09 15:16:09","http://38.240.44.9/590/nicefeaturesworkinggreat.Tif","offline","malware_download","","38.240.44.9","38.240.44.9","931","HK"
"2024-10-09 15:16:09","http://38.240.44.9/590/RRSRRD.txt","offline","malware_download","RemcosRAT|rev-base64-loader","38.240.44.9","38.240.44.9","931","HK"
"2024-10-09 15:16:09","http://38.240.44.9/590/un/verynicepersonupdation.hta","offline","malware_download","RemcosRAT","38.240.44.9","38.240.44.9","931","HK"
"2024-09-23 14:21:07","http://103.131.130.154/144/audiodg.exe","offline","malware_download","exe|Formbook","103.131.130.154","103.131.130.154","931","HK"
"2024-09-23 14:21:06","http://103.131.130.154/xampp/eso/IEnetworkcookie.hta","offline","malware_download","Formbook|hta","103.131.130.154","103.131.130.154","931","HK"
"2024-07-19 11:42:06","http://38.240.40.42/90590/me/me.me.me.me.mememe.doc","offline","malware_download","Formbook|rtf","38.240.40.42","38.240.40.42","931","JP"
"2024-07-19 10:00:10","http://38.240.40.42/90590/MEM.txt","offline","malware_download","ascii|encoded|Formbook|rev-base64-loader","38.240.40.42","38.240.40.42","931","JP"
"2024-07-19 09:48:05","http://38.240.40.42/90590/crosscheckonionsweetpottatogirl.gIF","offline","malware_download","vbs","38.240.40.42","38.240.40.42","931","JP"
"2024-05-08 06:45:10","http://38.255.42.91/mxnwd.vbs","offline","malware_download","RemcosRAT","38.255.42.91","38.255.42.91","931","US"
"2024-03-25 16:16:09","http://103.131.130.54/wPQFhuYwYqn3.bin","offline","malware_download","encrypted|GuLoader","103.131.130.54","103.131.130.54","931","HK"
"2024-03-25 16:16:09","http://103.131.130.54/yhMGLfcrSZLEwAGHkMIG118.bin","offline","malware_download","encrypted|GuLoader","103.131.130.54","103.131.130.54","931","HK"
"2024-03-25 16:16:07","http://103.131.130.54/NOBQBfVQnXy200.bin","offline","malware_download","encrypted|GuLoader","103.131.130.54","103.131.130.54","931","HK"
"2024-03-17 07:55:10","http://103.131.130.178/jLRxglBetogdlDb231.bin","offline","malware_download","encrypted|GuLoader|RAT|RemcosRAT","103.131.130.178","103.131.130.178","931","HK"
"2024-03-17 07:55:06","http://103.131.130.178/LSLRcHsksL225.bin","offline","malware_download","encrypted|GuLoader|RAT|RemcosRAT","103.131.130.178","103.131.130.178","931","HK"
"2024-03-17 05:56:08","http://103.131.130.178/Betvingelser.exe","offline","malware_download","32|exe|GuLoader","103.131.130.178","103.131.130.178","931","HK"
"2024-02-01 08:59:07","http://64.112.85.135/CUsNEKz58.bin","offline","malware_download","","64.112.85.135","64.112.85.135","931","US"
"2024-02-01 08:59:06","http://64.112.85.135/Rumskdssi.smi","offline","malware_download","","64.112.85.135","64.112.85.135","931","US"
"2024-02-01 08:53:07","http://64.112.85.135/Paavirkede.thn","offline","malware_download","","64.112.85.135","64.112.85.135","931","US"
"2024-02-01 08:53:07","http://64.112.85.135/SbphVeOYTghF6.bin","offline","malware_download","","64.112.85.135","64.112.85.135","931","US"
"2024-02-01 08:53:07","http://64.112.85.135/Uncompet.psd","offline","malware_download","encrypted|GuLoader","64.112.85.135","64.112.85.135","931","US"
"2024-01-18 19:54:08","http://38.255.43.23/bcc.wav","offline","malware_download","Purelogs","38.255.43.23","38.255.43.23","931","US"
"2023-10-17 18:30:08","http://185.147.34.144/html/2/ebin.vbs","offline","malware_download","vbs","185.147.34.144","185.147.34.144","931","NL"
"2023-10-17 10:57:05","http://185.147.34.144/windows/HTMLcache.dOC","offline","malware_download","AgentTesla|doc|opendir","185.147.34.144","185.147.34.144","931","NL"
"2023-06-19 11:46:12","http://167.94.81.147/zamx.txt","offline","malware_download","AgentTesla|ascii|encoded","167.94.81.147","167.94.81.147","931","US"
"2022-11-24 04:40:06","http://103.28.70.118/45/vbc.exe","offline","malware_download","32|exe|Loki","103.28.70.118","103.28.70.118","931","US"
"2022-11-22 14:57:04","http://103.28.70.118/40/vbc.exe","offline","malware_download","exe|Loki","103.28.70.118","103.28.70.118","931","US"
"2022-11-21 15:20:13","http://103.28.70.118/35/vbc.exe","offline","malware_download","exe|Loki|opendir","103.28.70.118","103.28.70.118","931","US"
"2022-11-15 15:21:06","http://45.61.175.232/60/vbc.exe","offline","malware_download","exe|Loki|opendir","45.61.175.232","45.61.175.232","931","US"
"2022-11-10 12:45:06","http://45.61.175.232/35/vbc.exe","offline","malware_download","exe|Loki|opendir","45.61.175.232","45.61.175.232","931","US"
"2022-11-09 06:49:07","http://45.61.175.232/22/vbc.exe","offline","malware_download","exe|Loki|opendir","45.61.175.232","45.61.175.232","931","US"
"2022-09-27 07:02:04","http://185.147.34.178/20.png","offline","malware_download","RemcosRAT","185.147.34.178","185.147.34.178","931","NL"
"2022-09-26 08:02:04","http://185.147.34.178/10.jpg","offline","malware_download","encrypted|PureCrypter|RemcosRAT","185.147.34.178","185.147.34.178","931","NL"
"2022-08-20 14:31:04","http://89.37.99.19/vbb.bmp","offline","malware_download","RAT|RemcosRAT","89.37.99.19","89.37.99.19","931","NL"
"2022-08-20 07:09:06","http://89.37.99.19/66.jpg","offline","malware_download","encrypted|RAT|RemcosRAT","89.37.99.19","89.37.99.19","931","NL"
"2022-08-18 18:53:05","http://89.37.99.19/mbb.png","offline","malware_download","encrypted|RAT|RemcosRAT","89.37.99.19","89.37.99.19","931","NL"
"2022-07-12 15:10:34","http://194.49.68.160/b/ccc.exe","offline","malware_download","exe","194.49.68.160","194.49.68.160","931","US"
"2022-03-15 14:42:06","http://45.87.61.103/air_m_disk/winlogon.exe","offline","malware_download","exe|opendir|OskiStealer","45.87.61.103","45.87.61.103","931","US"
"2022-03-11 17:25:06","http://45.87.61.103/spacesave/winlogon.exe","offline","malware_download","exe|Formbook|opendir","45.87.61.103","45.87.61.103","931","US"
# of entries: 59