URLhaus Database

You are currently viewing the URLhaus database entry for http://181.206.158.190/WMIEventLogs.js which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3597685
URL: http://181.206.158.190/WMIEventLogs.js
URL Status:flame Online (spreading malware for 3 months, 14 days, 15 hours, 4 minutes)
Host: 181.206.158.190
Date added:2025-08-06 18:27:11 UTC
Threat:Malware download Malware download
Reporter: JAMESWT_WT
Abuse complaint sent (?): Yes (2025-08-06 18:28:24 UTC to abuse[dot]internet{at}tigo[dot]com[dot]co)
Tags:AsyncRAT link CaminhoLoader dcrat PureLogsStealer

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2025-11-19WMIEventLogs.jsjs 057f8f8b715b8aeffbcb7ddf3566e820f1e98c68dbd2d288bca54566b35aa4dfn/a 
2025-11-15WMIEventLogs.jsjs a7143049467585b7382d389a9f183901e893f8c10165968964607019e7b8a0d9n/a AsyncRAT
2025-11-10WMIEventLogs.jsjs 6a3740fb7a4d81989c767b0e7f772284f89d5f6852e2c8010497a0dc046c93dcn/a 
2025-11-08WMIEventLogs.jsjs 825f309696ce68af5715a359001f9602f8edeecd8cac56f968a5797a39a96aacn/aAsyncRAT
2025-11-06WMIEventLogs.jsjs a7799beec368393195dfe5488eef2ceeb867d016df5913a38730c69ea73f90d0n/a AsyncRAT
2025-11-04WMIEventLogs.jsjs 0a212e746c1547f2d721384b5e8b23f1914df7bf436933d1ec05041ad295a388n/a CaminhoLoader
2025-11-04WMIEventLogs.jsjs 568b0cc3a0ac06ec4d130bc00df12484031138f7c4b0c02f7655eb987a1d0133n/a CaminhoLoader
2025-10-30WMIEventLogs.jsjs 08ecdfc48cc0263682f8da9a3a890f6a6a8da04fab85c23237b52e765256a8c8n/a AsyncRAT
2025-10-27WMIEventLogs.jsjs 7a234dbdd2bf8d110541f84e60483a2956c94013ad287bd9fb579641a7eb5b43n/aDCRat
2025-10-22WMIEventLogs.jsjs 2f5280d0e93ebc9e8e54143216ab0fc87732a9b55594bf743f08af1c25db7ffdn/aAsyncRAT
2025-10-21WMIEventLogs.jsjs 8581037c65e43323ae5228aab9ee03026d723fa9a2139e90032e179d4a4b3552n/a
2025-10-20WMIEventLogs.jsjs 01ee90a2b1295348dc4495943a09cdaa2941a30476c5f7a3054f905f106068a0n/aAsyncRAT
2025-10-16WMIEventLogs.jsjs d66d1402cfd62ad240d1abde1eeee0bcdf6e60c9ef2553d835219c3fa4e9c25cn/a 
2025-10-11WMIEventLogs.jsjs 03def7865fa7f571cf2616419e7bbefda214dc8ea3e91494dd1196b63243ccc4n/a 
2025-10-06WMIEventLogs.jsjs 1543674e63388eb2c4c4c7e7068bf2eec96fadf8a145a9a89aaf4d41cd37c84en/aAsyncRAT
2025-10-04WMIEventLogs.jsjs 0bc268cbd5cd8a154b5cd8229324b933502162fb71d26e82c977e764b036d084n/a AsyncRAT
2025-10-03WMIEventLogs.jsjs 495dba44039315841568fb47d0d1a0bab798f4ff258286e1c79133fa643afd72n/aAsyncRAT
2025-10-01WMIEventLogs.jsjs 94a9603a7bf10e9ab16659502c08d91dbd7eaa8945523ba1f51531aa9067919dn/a
2025-09-30WMIEventLogs.jsjs e3e0aba5e724765caa362af0733dec98474d620b841dca89052381bc99dec77en/aAsyncRAT
2025-09-29WMIEventLogs.jsjs fd4d00bae2df04c1a094100cd8185ab83a38ddb2a29292ba6174ce4bd9ed524cn/aAsyncRAT
2025-09-22WMIEventLogs.jsjs f44cdd60d6f55957300e0521992a281b50daf5098f28eeb18a0ea8f755982938n/a 
2025-09-17WMIEventLogs.jsjs c6a9bf1f17099352d2823ec20b6ad37f8737d371f876ba6249ecddce9655ebd0n/aAsyncRAT
2025-09-15WMIEventLogs.jsjs dd031f0a09392ed7c74d3b51641093f5eeed38f87d65e6c3886d63dd1e240aaen/aAsyncRAT
2025-09-11WMIEventLogs.jsjs ee6e1100d6b85519aeb3ea6ea08c079360abcd095f646470261e4cbfb6c9122cn/aAsyncRAT
2025-09-09WMIEventLogs.jsjs d72cac0b7d27f0cfecfa5d3e7289313b8ff25917d7b850073c3a8453367db200n/a
2025-09-05WMIEventLogs.jsjs ac958443e313035f638e2efac96a51a63cc56072bb6b92233cc86cfc21eb599dn/aAsyncRAT
2025-09-04WMIEventLogs.jsjs 021bb843f0e3eaef2524b16e455d7ab5dfae27d367d03d8c03ba7f9ab6704a74n/aAsyncRAT
2025-09-03WMIEventLogs.jsjs 3b40cbd70c8f42a757ebb650ad908de05dbc647ade92e773cb17e62ea5c0bac1n/aAsyncRAT
2025-09-01WMIEventLogs.jsjs 1ad225bf21122cebbf94030be1198b796e6d1c4a90c850791f929d98ab5649fcn/aAsyncRAT
2025-09-01WMIEventLogs.jsjs 5cf3e2d210554addcabebbb3814a2c6a64920fd1d4b42b6a2339769ffbaf71aan/a
2025-08-30WMIEventLogs.jsjs bfc835281122b15d31170d707d064ac0b7a249f725c7db61a94588db578f3d12n/a 
2025-08-29WMIEventLogs.jsjs 41a3172a639f16af21eb98364671c2176cd6fb84fc59189d5bdd61dcf65435c3n/a
2025-08-28WMIEventLogs.jsjs 701ab3e62350ccd7e6db747721737a9df075279316a4a547bd4a9f0c22bc4c60n/a 
2025-08-27WMIEventLogs.jsjs fdfd0f15edc37a86c89c5f6672edffbe8b8ed986e5eca3b6cad60da94f85cf9dn/a 
2025-08-26WMIEventLogs.jsjs eeb981e94f2057d42fd863c9d1cdeaa66aa51680f84717b6fc59631cbb4dc770n/aAsyncRAT
2025-08-26WMIEventLogs.jsjs a27c9851ad59b8ea7b0a3ce59295e95fead90ecdb60c20d00fddf798ee8a8e56n/a
2025-08-26WMIEventLogs.jsjs a24bab299bf335f719defb7555f950c3b64f7ce32e19bdfebfb1c4ccce57c117n/aDCRat
2025-08-25WMIEventLogs.jsjs 9c259e27bd8ba5bc121b852f249a10806cd7f7b9b4aed5eca4855df67dc41a17n/aAsyncRAT
2025-08-25WMIEventLogs.jsjs b53972cc318699e3b835a058d99c00b6a6337b4f40faca8df8bd6b099a5d0fbdn/aAsyncRAT
2025-08-25WMIEventLogs.jsjs ab241fc6d007714e66840aaa0f72165e744cc970515f5de973313c82851e6962Virustotal results 20.97%AsyncRAT
2025-08-23WMIEventLogs.jsjs ae26622fa1afe1c5d668220ed1ceddda90b642d5ccdcedbf2d88c7320d47dac6n/a
2025-08-23WMIEventLogs.jsjs 947232f33c2aaf3df3952d23c6ce7d611c1cc0dac1f1e2b236ab96a84eb32277n/aAsyncRAT
2025-08-22WMIEventLogs.jsjs bc21f3f01862f0bddca1a7ed47ed93ae491aeeefe8cd1d95f814c6210da262a1n/a
2025-08-22WMIEventLogs.jsjs 291e23e59fe793407f26ee31fd4bdfa8dd92b9e423f00e520943dada8542bb6bn/a
2025-08-22WMIEventLogs.jsjs 413b2af361ffa56b560b8eb5f666388117eb2d3ec5cffe22f2c4258376a0a563n/aAsyncRAT
2025-08-22WMIEventLogs.jsjs 3c5955201e322ebf095ddf70fc3bbea6c3149c6414014cac85c4766d24980e97n/a
2025-08-21WMIEventLogs.jsjs 76689bc837fcaec85c51ebb3a5131acc894aedd76e3c0468acde4f75e9971c1cn/a
2025-08-20WMIEventLogs.jsjs 08d6a3c20dd455b6144885c55f570e9a60329ef7a918d3d2b12d4016e8511677n/aPureLogsStealer
2025-08-20WMIEventLogs.jsjs 6bec54a5b978b282bd6261cfdd5b6dfc7db2ea104395fd8871406c4995260551n/a PureLogsStealer
2025-08-19WMIEventLogs.jsjs 17fb9514b4440f826b66fb629b5bb68addfff38244b917a3a703494ab941feden/a 
2025-08-19WMIEventLogs.jsjs f35dadbffdfc128927fcef0871b8f33250cbb172c7c51b22f196f9b0cbce9197n/a
2025-08-16WMIEventLogs.jsjs 34d6e23994ad8b890e50be8487a4a405310f1616df5e23b1639e5fbc540deffcn/aAsyncRAT
2025-08-16WMIEventLogs.jsjs 90e1d6f51384ef537001661e31850e2b749fc8d5e25141f09c044a77ab5ecdebn/aPureLogsStealer
2025-08-15WMIEventLogs.jsjs 3ebed45c5dd416942584cd48e2c1776b0fac1fc1550ff0bea899e16c2124dd50n/aAsyncRAT
2025-08-15WMIEventLogs.jsjs 8241aace260f291c8b39eb96c220a6ef7603cd6fb09a0767f16fb218c34a7840n/aAsyncRAT
2025-08-15WMIEventLogs.jsjs 1eb765ddbcf4fc19d9f2d77ec340f635bb9bd57f7b9b5ed2f78b9a10d2882c32n/aAsyncRAT
2025-08-14WMIEventLogs.jsjs 9b37f9c137e7c8e068f6eb375ef9a32dec6b4021a35115958c2257935c26a412n/aPureLogsStealer
2025-08-12WMIEventLogs.jsjs cf668403c5a5d408a2c655ea78f0cd85a9fdd02874fbe62ded2c63c60b9352d8n/a 
2025-08-11WMIEventLogs.jsjs 5e6af96a11451ae08e49fac3f51a1a17ac245f7216a6e781c795a47824aef496n/aAsyncRAT
2025-08-11WMIEventLogs.jsjs 3005747ec676722cac3f94886babca8c78f600fb9e4144f5145a3612f8f42fddn/a AsyncRAT
2025-08-10WMIEventLogs.jsjs 6561279d9d30e92ee843a68fdb089d1b2b2dba92c4a283bf8c3f882058facc02n/aAsyncRAT
2025-08-09WMIEventLogs.jsjs 270f45d4dadced58852636cd091aa5ba0ca1e54f412ac17d8e807b2e1db1de5cn/aAsyncRAT
2025-08-07WMIEventLogs.jsjs d7c2934b23d03ce5bd00a576024299eb70e3f60f5dab8bf65c1f7aacf419df9fVirustotal results 3.23%AsyncRAT
2025-08-06WMIEventLogs.jsjs 8806fb4ba16cdd07a802dcafefe494c22c1f793ff1b420ea62212934e90d7adfn/aDCRat