URLhaus Database

You are currently viewing the URLhaus database entry for http://181.206.158.190/WMIEventLogs.js which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry

Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:3597685
URL: http://181.206.158.190/WMIEventLogs.js
URL Status:flame Online (spreading malware for 5 months, 13 days, 11 hours, 32 minutes)
Host: 181.206.158.190
Date added:2025-08-06 18:27:11 UTC
Threat:Malware download Malware download
Reporter: JAMESWT_WT
Abuse complaint sent (?): Yes (2025-08-06 18:28:24 UTC to abuse[dot]internet{at}tigo[dot]com[dot]co)
Tags:asy AsyncRAT link CaminhoLoader dcrat PureLogsStealer RemcosRAT link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2026-01-16WMIEventLogs.jsjs f390db222eb15b075a5885bd2083ca937b82b142c4b3b0a013c2a760b5d49461n/aAsyncRAT
2026-01-15WMIEventLogs.jsjs c57778d89870ac4823c1ac4e51689ef038a1998bc0579885c544d552d624469dn/aRemcosRAT
2026-01-15WMIEventLogs.jsjs 935c5c6a6be166c9173a5b3bbb6bf257d86bfa832ccd9bf36bcf2404e26855bdn/a
2026-01-13WMIEventLogs.jsjs f6980136f17a325df1d7553f2a08c796da8e033e0ab64fdd1a416d262aaaa37en/a 
2026-01-09WMIEventLogs.jsjs 8eab346fa87e580ad28ccb514fd080d3b43a40f9bf58f2065dfa58db583c58c7n/aAsyncRAT
2026-01-08WMIEventLogs.jsjs 7084aed516ea57f468b11e75e65c2a5a306c8fa5c4dab6134b32d6a96a892b56n/aAsyncRAT
2026-01-06WMIEventLogs.jsjs 52e12c457102a51e41bd42ed8585673fa13c81d75aae5d7250f9b60d69f0f42dn/a
2026-01-05WMIEventLogs.jsjs 8707e35868f140fdcfb5f87599a22197260c154e45b26282c66af38df465ef1an/aAsyncRAT
2026-01-02WMIEventLogs.jsjs 4ff2e545293a84446389ab07b7a55edfde865e3e4df7ec32f660ee5a0888708bn/a 
2025-12-31WMIEventLogs.jsjs b6b1c1ed7026a2900521358365bcfc4b46c645b44661d984cee1c680ddbd36b5n/a 
2025-12-30WMIEventLogs.jsjs 2773d3846edc1712a9a659a72f0d60f21d76a2434856c1af705da272e840cc86n/a 
2025-12-29WMIEventLogs.jsjs c48a992b8dea1c54ae4e4f92ec8fb3968792029758369c7e17dabd92796258ean/aDCRat
2025-12-27WMIEventLogs.jsjs 33964d980414a6081bf80ceff2713eec58bc64deeaa141533f8062f6b7600607n/aAsyncRAT
2025-12-24WMIEventLogs.jsjs 731487a4cb9733ec62c3df861d44e39ddac523450f9b1d7523902b650c37ab9cn/aAsyncRAT
2025-12-22WMIEventLogs.jsjs 65fdfb2fe35b497f7daf12505ca9ed686342b615b6d9b0b4b13af4ea390eb808n/aDCRat
2025-12-22WMIEventLogs.jsjs cf518a1c6d447d1537802e21a32994e5fe3670e7521abe51bf20e96e3495bd22n/aDCRat
2025-12-20WMIEventLogs.jsjs 26822cd44c50b2b336c99a893bdf4f0160dd24572623d6c96f84699a27cc9ab4n/a 
2025-12-19WMIEventLogs.jsjs bd5ae37b2624d662d04f57b8f0857aa04b1d6916631b71b7b4baaf507fab5be5n/a 
2025-12-18WMIEventLogs.jsjs 3fc34d5ba5e1b7f794fb5b8b3c1fed2fe5a3122409803a283c9f01d392300440n/a 
2025-12-16WMIEventLogs.jsjs 6da4e49a33c0dba408047971bd0688676f677f4323e6a5692804790b54cbca27n/a 
2025-12-15WMIEventLogs.jsjs 6b38fe187c153fa7a549585895b5f1f7eae01d195203a61cd932865cf13811ebn/aAsyncRAT
2025-12-13WMIEventLogs.jsjs 316421a7a9aaa0329968ef18e7c557a0b1c8e544a1cf55ee7aab108c3e01012en/a
2025-12-12WMIEventLogs.jsjs 734e60fc9a60efbc663fd5f03385d87775e64d5edfdcfb3d74b38b56c6afd594n/a 
2025-12-10WMIEventLogs.jsjs b7593ed9d80079afe020d93f27e9b24f969b1adc7c4d5a7c27f0b21f930c29a4n/aAsyncRAT
2025-12-09WMIEventLogs.jsjs db2000430c77dc833b265c715e2adcd722bb14ca83bf81f751cf00f9fa8f959dn/aDCRat
2025-12-05WMIEventLogs.jsjs 22447f91c0165b67f22570672cc7814becdd0a89e82ba48e039df13b7f1874f8n/a 
2025-12-04WMIEventLogs.jsjs 8a6ffe2b4b6afc474c5201f1a3f80af834a87669331c26555779e982c8f7ddecn/a AsyncRAT
2025-12-03WMIEventLogs.jsjs 71cf780adb9c8582c50076529e0194bd50db68d0994da008d4548ff0375e007bn/a AsyncRAT
2025-12-01WMIEventLogs.jsjs d1308643e00d8c84450979588445bca974fee744cf4f12100f2cf542c4cfed64n/a 
2025-11-28WMIEventLogs.jsjs 0553284bf8a2072630937e0f5bb6a7a18fb7a8ddb686d66d7591872435c21e8an/a 
2025-11-25WMIEventLogs.jsjs ddb80566a26593df8c0ba4a3ada8ce29d71432f3c3b30192d1f3a664b602bdc2n/a 
2025-11-24WMIEventLogs.jsjs 805d108d5a9bdbce4f77588e8ff83b47eb05de7760b931ebe4204b5c23b06078n/a 
2025-11-21WMIEventLogs.jsunknown 7914f90639992ee1d0cec20b049c4bcaf8a0bd3e0cd64e8d6165a55d5af652can/a 
2025-11-20WMIEventLogs.jsjs 57d0439ce225be73d313ea84e923ed5bddfa710f63939e92814ca751dcdb5b74n/a 
2025-11-19WMIEventLogs.jsjs 057f8f8b715b8aeffbcb7ddf3566e820f1e98c68dbd2d288bca54566b35aa4dfn/a
2025-11-15WMIEventLogs.jsjs a7143049467585b7382d389a9f183901e893f8c10165968964607019e7b8a0d9n/a AsyncRAT
2025-11-10WMIEventLogs.jsjs 6a3740fb7a4d81989c767b0e7f772284f89d5f6852e2c8010497a0dc046c93dcn/a 
2025-11-08WMIEventLogs.jsjs 825f309696ce68af5715a359001f9602f8edeecd8cac56f968a5797a39a96aacn/aAsyncRAT
2025-11-06WMIEventLogs.jsjs a7799beec368393195dfe5488eef2ceeb867d016df5913a38730c69ea73f90d0n/a AsyncRAT
2025-11-04WMIEventLogs.jsjs 0a212e746c1547f2d721384b5e8b23f1914df7bf436933d1ec05041ad295a388n/a CaminhoLoader
2025-11-04WMIEventLogs.jsjs 568b0cc3a0ac06ec4d130bc00df12484031138f7c4b0c02f7655eb987a1d0133n/a CaminhoLoader
2025-10-30WMIEventLogs.jsjs 08ecdfc48cc0263682f8da9a3a890f6a6a8da04fab85c23237b52e765256a8c8n/a AsyncRAT
2025-10-27WMIEventLogs.jsjs 7a234dbdd2bf8d110541f84e60483a2956c94013ad287bd9fb579641a7eb5b43n/aDCRat
2025-10-22WMIEventLogs.jsjs 2f5280d0e93ebc9e8e54143216ab0fc87732a9b55594bf743f08af1c25db7ffdn/aAsyncRAT
2025-10-21WMIEventLogs.jsjs 8581037c65e43323ae5228aab9ee03026d723fa9a2139e90032e179d4a4b3552n/a
2025-10-20WMIEventLogs.jsjs 01ee90a2b1295348dc4495943a09cdaa2941a30476c5f7a3054f905f106068a0n/aAsyncRAT
2025-10-16WMIEventLogs.jsjs d66d1402cfd62ad240d1abde1eeee0bcdf6e60c9ef2553d835219c3fa4e9c25cn/a 
2025-10-11WMIEventLogs.jsjs 03def7865fa7f571cf2616419e7bbefda214dc8ea3e91494dd1196b63243ccc4n/a 
2025-10-06WMIEventLogs.jsjs 1543674e63388eb2c4c4c7e7068bf2eec96fadf8a145a9a89aaf4d41cd37c84en/aAsyncRAT
2025-10-04WMIEventLogs.jsjs 0bc268cbd5cd8a154b5cd8229324b933502162fb71d26e82c977e764b036d084n/a AsyncRAT
2025-10-03WMIEventLogs.jsjs 495dba44039315841568fb47d0d1a0bab798f4ff258286e1c79133fa643afd72n/aAsyncRAT
2025-10-01WMIEventLogs.jsjs 94a9603a7bf10e9ab16659502c08d91dbd7eaa8945523ba1f51531aa9067919dn/a
2025-09-30WMIEventLogs.jsjs e3e0aba5e724765caa362af0733dec98474d620b841dca89052381bc99dec77en/aAsyncRAT
2025-09-29WMIEventLogs.jsjs fd4d00bae2df04c1a094100cd8185ab83a38ddb2a29292ba6174ce4bd9ed524cn/aAsyncRAT
2025-09-22WMIEventLogs.jsjs f44cdd60d6f55957300e0521992a281b50daf5098f28eeb18a0ea8f755982938n/a 
2025-09-17WMIEventLogs.jsjs c6a9bf1f17099352d2823ec20b6ad37f8737d371f876ba6249ecddce9655ebd0n/aAsyncRAT
2025-09-15WMIEventLogs.jsjs dd031f0a09392ed7c74d3b51641093f5eeed38f87d65e6c3886d63dd1e240aaen/aAsyncRAT
2025-09-11WMIEventLogs.jsjs ee6e1100d6b85519aeb3ea6ea08c079360abcd095f646470261e4cbfb6c9122cn/aAsyncRAT
2025-09-09WMIEventLogs.jsjs d72cac0b7d27f0cfecfa5d3e7289313b8ff25917d7b850073c3a8453367db200n/a
2025-09-05WMIEventLogs.jsjs ac958443e313035f638e2efac96a51a63cc56072bb6b92233cc86cfc21eb599dn/aAsyncRAT
2025-09-04WMIEventLogs.jsjs 021bb843f0e3eaef2524b16e455d7ab5dfae27d367d03d8c03ba7f9ab6704a74n/aAsyncRAT
2025-09-03WMIEventLogs.jsjs 3b40cbd70c8f42a757ebb650ad908de05dbc647ade92e773cb17e62ea5c0bac1n/aAsyncRAT
2025-09-01WMIEventLogs.jsjs 1ad225bf21122cebbf94030be1198b796e6d1c4a90c850791f929d98ab5649fcn/aAsyncRAT
2025-09-01WMIEventLogs.jsjs 5cf3e2d210554addcabebbb3814a2c6a64920fd1d4b42b6a2339769ffbaf71aan/a
2025-08-30WMIEventLogs.jsjs bfc835281122b15d31170d707d064ac0b7a249f725c7db61a94588db578f3d12n/a 
2025-08-29WMIEventLogs.jsjs 41a3172a639f16af21eb98364671c2176cd6fb84fc59189d5bdd61dcf65435c3n/a
2025-08-28WMIEventLogs.jsjs 701ab3e62350ccd7e6db747721737a9df075279316a4a547bd4a9f0c22bc4c60n/a 
2025-08-27WMIEventLogs.jsjs fdfd0f15edc37a86c89c5f6672edffbe8b8ed986e5eca3b6cad60da94f85cf9dn/a 
2025-08-26WMIEventLogs.jsjs eeb981e94f2057d42fd863c9d1cdeaa66aa51680f84717b6fc59631cbb4dc770n/aAsyncRAT
2025-08-26WMIEventLogs.jsjs a27c9851ad59b8ea7b0a3ce59295e95fead90ecdb60c20d00fddf798ee8a8e56n/a
2025-08-26WMIEventLogs.jsjs a24bab299bf335f719defb7555f950c3b64f7ce32e19bdfebfb1c4ccce57c117n/aDCRat
2025-08-25WMIEventLogs.jsjs 9c259e27bd8ba5bc121b852f249a10806cd7f7b9b4aed5eca4855df67dc41a17n/aAsyncRAT
2025-08-25WMIEventLogs.jsjs b53972cc318699e3b835a058d99c00b6a6337b4f40faca8df8bd6b099a5d0fbdn/aAsyncRAT
2025-08-25WMIEventLogs.jsjs ab241fc6d007714e66840aaa0f72165e744cc970515f5de973313c82851e6962Virustotal results 20.97%AsyncRAT
2025-08-23WMIEventLogs.jsjs ae26622fa1afe1c5d668220ed1ceddda90b642d5ccdcedbf2d88c7320d47dac6n/a
2025-08-23WMIEventLogs.jsjs 947232f33c2aaf3df3952d23c6ce7d611c1cc0dac1f1e2b236ab96a84eb32277n/aAsyncRAT
2025-08-22WMIEventLogs.jsjs bc21f3f01862f0bddca1a7ed47ed93ae491aeeefe8cd1d95f814c6210da262a1n/a
2025-08-22WMIEventLogs.jsjs 291e23e59fe793407f26ee31fd4bdfa8dd92b9e423f00e520943dada8542bb6bn/a
2025-08-22WMIEventLogs.jsjs 413b2af361ffa56b560b8eb5f666388117eb2d3ec5cffe22f2c4258376a0a563n/aAsyncRAT
2025-08-22WMIEventLogs.jsjs 3c5955201e322ebf095ddf70fc3bbea6c3149c6414014cac85c4766d24980e97n/a
2025-08-21WMIEventLogs.jsjs 76689bc837fcaec85c51ebb3a5131acc894aedd76e3c0468acde4f75e9971c1cn/a
2025-08-20WMIEventLogs.jsjs 08d6a3c20dd455b6144885c55f570e9a60329ef7a918d3d2b12d4016e8511677n/aPureLogsStealer
2025-08-20WMIEventLogs.jsjs 6bec54a5b978b282bd6261cfdd5b6dfc7db2ea104395fd8871406c4995260551n/a PureLogsStealer
2025-08-19WMIEventLogs.jsjs 17fb9514b4440f826b66fb629b5bb68addfff38244b917a3a703494ab941feden/a 
2025-08-19WMIEventLogs.jsjs f35dadbffdfc128927fcef0871b8f33250cbb172c7c51b22f196f9b0cbce9197n/a
2025-08-16WMIEventLogs.jsjs 34d6e23994ad8b890e50be8487a4a405310f1616df5e23b1639e5fbc540deffcn/aAsyncRAT
2025-08-16WMIEventLogs.jsjs 90e1d6f51384ef537001661e31850e2b749fc8d5e25141f09c044a77ab5ecdebn/aPureLogsStealer
2025-08-15WMIEventLogs.jsjs 3ebed45c5dd416942584cd48e2c1776b0fac1fc1550ff0bea899e16c2124dd50n/aAsyncRAT
2025-08-15WMIEventLogs.jsjs 8241aace260f291c8b39eb96c220a6ef7603cd6fb09a0767f16fb218c34a7840n/aAsyncRAT
2025-08-15WMIEventLogs.jsjs 1eb765ddbcf4fc19d9f2d77ec340f635bb9bd57f7b9b5ed2f78b9a10d2882c32n/aAsyncRAT
2025-08-14WMIEventLogs.jsjs 9b37f9c137e7c8e068f6eb375ef9a32dec6b4021a35115958c2257935c26a412n/aPureLogsStealer
2025-08-12WMIEventLogs.jsjs cf668403c5a5d408a2c655ea78f0cd85a9fdd02874fbe62ded2c63c60b9352d8n/a 
2025-08-11WMIEventLogs.jsjs 5e6af96a11451ae08e49fac3f51a1a17ac245f7216a6e781c795a47824aef496n/aAsyncRAT
2025-08-11WMIEventLogs.jsjs 3005747ec676722cac3f94886babca8c78f600fb9e4144f5145a3612f8f42fddn/a AsyncRAT
2025-08-10WMIEventLogs.jsjs 6561279d9d30e92ee843a68fdb089d1b2b2dba92c4a283bf8c3f882058facc02n/aAsyncRAT
2025-08-09WMIEventLogs.jsjs 270f45d4dadced58852636cd091aa5ba0ca1e54f412ac17d8e807b2e1db1de5cn/aAsyncRAT
2025-08-07WMIEventLogs.jsjs d7c2934b23d03ce5bd00a576024299eb70e3f60f5dab8bf65c1f7aacf419df9fVirustotal results 3.23%AsyncRAT
2025-08-06WMIEventLogs.jsjs 8806fb4ba16cdd07a802dcafefe494c22c1f793ff1b420ea62212934e90d7adfn/aDCRat