From 2bcbac5d378f54f88c2034aba525c569bf329629 Mon Sep 17 00:00:00 2001
From: curben via GitLab Runner <curben@users.noreply.gitlab.com>
Date: Mon, 29 Oct 2018 00:26:00 +0000
Subject: [PATCH] Filter updated: Mon, 29 Oct 2018 00:26:00 UTC

---
 src/URLhaus.csv    | 94 +++++++++++++++++++++++++++-------------------
 urlhaus-filter.txt | 14 +++++--
 2 files changed, 67 insertions(+), 41 deletions(-)

diff --git a/src/URLhaus.csv b/src/URLhaus.csv
index 2722302f..2fbe84af 100644
--- a/src/URLhaus.csv
+++ b/src/URLhaus.csv
@@ -1,12 +1,30 @@
 ################################################################
 # abuse.ch URLhaus Database Dump (CSV)                         #
-# Last updated: 2018-10-28 11:47:04 (UTC)                      #
+# Last updated: 2018-10-28 23:40:04 (UTC)                      #
 #                                                              #
 # Terms Of Use: https://urlhaus.abuse.ch/api/                  #
 # For questions please contact urlhaus [at] abuse.ch           #
 ################################################################
 #
 # id,dateadded,url,url_status,threat,tags,urlhaus_link
+"71745","2018-10-28 23:40:04","http://www.pembegozluk.com/Invoices-form-07-2018/","online","malware_download","doc","https://urlhaus.abuse.ch/url/71745/"
+"71744","2018-10-28 21:14:11","http://bylw.zknu.edu.cn/upfile/photo/teacher/20171062.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71744/"
+"71743","2018-10-28 20:29:05","http://46.24.91.108:17923/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/71743/"
+"71742","2018-10-28 18:54:04","http://184.11.126.250:43694/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/71742/"
+"71741","2018-10-28 18:28:04","http://47.32.251.30:37357/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/71741/"
+"71740","2018-10-28 17:35:06","http://promultis.it/hg65fyJHG","online","malware_download","exe,Ransomware.GlobeImposter","https://urlhaus.abuse.ch/url/71740/"
+"71739","2018-10-28 17:34:04","http://www.trueshare.com/DirectLink/FileAccess.aspx?DLID=5iUsD63u2n341xo3F787","online","malware_download","zip","https://urlhaus.abuse.ch/url/71739/"
+"71738","2018-10-28 17:33:06","http://zrkls.pw/files/svchost.exe","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/71738/"
+"71737","2018-10-28 15:04:04","http://comfort-software.info/load/kbload/kut.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71737/"
+"71736","2018-10-28 15:04:03","http://comfort-software.info/load/mxtir/ajax.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71736/"
+"71735","2018-10-28 15:03:02","http://comfort-software.info/load/tir/ajax.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71735/"
+"71734","2018-10-28 14:26:06","http://indokku.com/wp-content/themes/throne/sections/headers/chrome.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/71734/"
+"71733","2018-10-28 14:25:02","http://envi-herzog.de/uyitfu65uy??LeeWdH=LeeWdH","online","malware_download","Locky,Ransomware,exe","https://urlhaus.abuse.ch/url/71733/"
+"71732","2018-10-28 14:24:11","http://promultis.it/hg65fyJHG??COExiyv=COExiyv","online","malware_download","Ransomware.GlobeImposter,Ransomware,exe","https://urlhaus.abuse.ch/url/71732/"
+"71731","2018-10-28 14:24:09","https://a.doko.moe/blpeex.doc","online","malware_download","doc,Loader","https://urlhaus.abuse.ch/url/71731/"
+"71730","2018-10-28 14:24:08","https://e.coka.la/V42OO5.hta","online","malware_download","hta,Loader","https://urlhaus.abuse.ch/url/71730/"
+"71729","2018-10-28 14:24:02","http://www.health-gov-za.org/solar.msl","online","malware_download","exe,rat,Imminent,ImminentRAT","https://urlhaus.abuse.ch/url/71729/"
+"71728","2018-10-28 13:29:04","http://60.248.141.87:14891/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/71728/"
 "71727","2018-10-28 11:47:04","http://46.97.21.194:30235/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/71727/"
 "71726","2018-10-28 10:45:31","http://druzim.freewww.biz/ablay.exe","offline","malware_download","exe,Loader","https://urlhaus.abuse.ch/url/71726/"
 "71725","2018-10-28 08:54:02","http://167.99.202.148/bins/DEMONS.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/71725/"
@@ -138,7 +156,7 @@
 "71599","2018-10-27 18:26:15","http://img19.vikecn.com/Item/2010-9/16/21754940_1863593.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/71599/"
 "71598","2018-10-27 17:48:04","http://46.59.101.173:63217/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/71598/"
 "71597","2018-10-27 16:53:05","http://micropcsystem.com/condim/ert.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71597/"
-"71596","2018-10-27 15:59:06","http://194.5.98.70:4560/fis.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71596/"
+"71596","2018-10-27 15:59:06","http://194.5.98.70:4560/fis.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/71596/"
 "71595","2018-10-27 15:59:03","http://193.200.50.136:14828/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/71595/"
 "71594","2018-10-27 15:14:03","http://67.191.253.79:18411/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/71594/"
 "71593","2018-10-27 14:09:03","http://5.8.88.242/1/crypt.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71593/"
@@ -157,12 +175,12 @@
 "71580","2018-10-27 12:04:02","http://87.121.98.42/bins/hoho.arm7","online","malware_download","elf","https://urlhaus.abuse.ch/url/71580/"
 "71579","2018-10-27 11:38:04","http://www.aieov.com/logo.gif","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71579/"
 "71578","2018-10-27 11:38:03","http://www.aieov.com/so.gif","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71578/"
-"71577","2018-10-27 11:21:04","http://neudimensions.com/wealth/ejike.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71577/"
+"71577","2018-10-27 11:21:04","http://neudimensions.com/wealth/ejike.exe","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/71577/"
 "71576","2018-10-27 11:20:05","http://187.228.11.20:7576/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/71576/"
 "71575","2018-10-27 11:14:07","http://neudimensions.com/wealth/templefile.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71575/"
 "71574","2018-10-27 11:14:04","http://ygosvrjp.ddns.net/update/WindBot/WindBot.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71574/"
 "71573","2018-10-27 09:37:04","http://www.dropbox.com/s/44paiyhhznkm6hf/payment%20copy.tbz2?dl=1","online","malware_download","rar","https://urlhaus.abuse.ch/url/71573/"
-"71572","2018-10-27 09:22:11","http://194.5.98.70:4560/yel.exe","online","malware_download","lokibot,exe","https://urlhaus.abuse.ch/url/71572/"
+"71572","2018-10-27 09:22:11","http://194.5.98.70:4560/yel.exe","online","malware_download","lokibot,exe,Loki","https://urlhaus.abuse.ch/url/71572/"
 "71571","2018-10-27 09:22:08","http://89.38.98.97/17Kjddnnsa.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71571/"
 "71570","2018-10-27 09:22:07","http://89.38.98.97/123Kjddnnsa.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71570/"
 "71569","2018-10-27 09:22:06","http://92.63.197.48/m.exe","online","malware_download","exe,miner,CoinMiner","https://urlhaus.abuse.ch/url/71569/"
@@ -170,7 +188,7 @@
 "71567","2018-10-27 09:22:04","https://a.doko.moe/kdklym.jpg","online","malware_download","lokibot,exe","https://urlhaus.abuse.ch/url/71567/"
 "71566","2018-10-27 09:22:02","https://a.doko.moe/owzvfh.hta","online","malware_download","lokibot,hta","https://urlhaus.abuse.ch/url/71566/"
 "71565","2018-10-27 08:46:18","http://guideofgeorgia.org/doc/wene.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71565/"
-"71564","2018-10-27 08:46:14","http://guideofgeorgia.org/doc/valenine.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71564/"
+"71564","2018-10-27 08:46:14","http://guideofgeorgia.org/doc/valenine.exe","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/71564/"
 "71563","2018-10-27 08:46:05","http://guideofgeorgia.org/doc/nelso1.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71563/"
 "71562","2018-10-27 08:13:03","http://www.logiccode.net/freewares/fcopy.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/71562/"
 "71561","2018-10-27 08:13:02","http://www.logiccode.net/freewares/xpsslc.zip","online","malware_download","zip","https://urlhaus.abuse.ch/url/71561/"
@@ -386,22 +404,22 @@
 "71350","2018-10-26 13:11:02","https://english315portal.endlesss.io/GMmMJWB/","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/71350/"
 "71349","2018-10-26 13:10:03","http://english315portal.endlesss.io/GMmMJWB","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/71349/"
 "71348","2018-10-26 12:59:07","http://99.198.127.106/~ideealc1/app/flk.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71348/"
-"71347","2018-10-26 12:59:05","http://99.198.127.106/~ideealc1/work/millx.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71347/"
+"71347","2018-10-26 12:59:05","http://99.198.127.106/~ideealc1/work/millx.jpg","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/71347/"
 "71346","2018-10-26 12:59:03","http://99.198.127.106/~ideealc1/app/dest.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71346/"
 "71345","2018-10-26 12:58:09","http://99.198.127.106/~ideealc1/doc/p.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71345/"
 "71344","2018-10-26 12:58:06","http://99.198.127.106/~ideealc1/app/boot00.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71344/"
-"71343","2018-10-26 12:58:04","http://99.198.127.106/~ideealc1/work/dbx.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71343/"
-"71342","2018-10-26 12:58:02","http://99.198.127.106/~ideealc1/app/jst.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71342/"
-"71341","2018-10-26 12:57:07","http://99.198.127.106/~ideealc1/work/dbx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71341/"
+"71343","2018-10-26 12:58:04","http://99.198.127.106/~ideealc1/work/dbx.jpg","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/71343/"
+"71342","2018-10-26 12:58:02","http://99.198.127.106/~ideealc1/app/jst.jpg","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/71342/"
+"71341","2018-10-26 12:57:07","http://99.198.127.106/~ideealc1/work/dbx.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/71341/"
 "71340","2018-10-26 12:57:05","http://99.198.127.106/~ideealc1/app/mutex.exe","offline","malware_download","exe,AgentTesla","https://urlhaus.abuse.ch/url/71340/"
 "71339","2018-10-26 12:57:03","http://99.198.127.106/~ideealc1/doc/boot00.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71339/"
 "71338","2018-10-26 12:56:09","http://99.198.127.106/~ideealc1/app/Ghvtemp.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71338/"
 "71337","2018-10-26 12:56:06","http://99.198.127.106/~ideealc1/app/clan.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71337/"
 "71336","2018-10-26 12:56:03","http://99.198.127.106/~ideealc1/app/dest.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71336/"
-"71335","2018-10-26 12:55:02","http://99.198.127.106/~ideealc1/app/new234.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71335/"
+"71335","2018-10-26 12:55:02","http://99.198.127.106/~ideealc1/app/new234.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/71335/"
 "71334","2018-10-26 12:54:10","http://99.198.127.106/~ideealc1/app/Compr.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71334/"
 "71333","2018-10-26 12:54:07","http://99.198.127.106/~ideealc1/app/buk.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/71333/"
-"71332","2018-10-26 12:54:06","http://99.198.127.106/~ideealc1/work/millx.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71332/"
+"71332","2018-10-26 12:54:06","http://99.198.127.106/~ideealc1/work/millx.exe","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/71332/"
 "71331","2018-10-26 12:54:04","http://99.198.127.106/~ideealc1/app/Vhsre.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71331/"
 "71330","2018-10-26 12:53:06","http://99.198.127.106/~ideealc1/doc/budeme.jpg","offline","malware_download","exe,RemcosRAT","https://urlhaus.abuse.ch/url/71330/"
 "71329","2018-10-26 12:53:04","http://99.198.127.106/~ideealc1/app/AutoUp.jpg","offline","malware_download","exe,AgentTesla","https://urlhaus.abuse.ch/url/71329/"
@@ -413,8 +431,8 @@
 "71323","2018-10-26 11:32:15","http://ddl2.data.hu/get/329609/11474363/bango.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71323/"
 "71322","2018-10-26 11:32:04","http://guideofgeorgia.org/doc/tbv.exe","online","malware_download","exe,stealer","https://urlhaus.abuse.ch/url/71322/"
 "71321","2018-10-26 11:31:45","http://guideofgeorgia.org/doc/okibaba.exe","online","malware_download","exe,stealer,Loki","https://urlhaus.abuse.ch/url/71321/"
-"71320","2018-10-26 11:31:36","http://guideofgeorgia.org/doc/bobs.exe","online","malware_download","exe,stealer","https://urlhaus.abuse.ch/url/71320/"
-"71319","2018-10-26 11:31:27","http://guideofgeorgia.org/doc/WIZKALI.exe","online","malware_download","exe,stealer","https://urlhaus.abuse.ch/url/71319/"
+"71320","2018-10-26 11:31:36","http://guideofgeorgia.org/doc/bobs.exe","online","malware_download","exe,stealer,HawkEye","https://urlhaus.abuse.ch/url/71320/"
+"71319","2018-10-26 11:31:27","http://guideofgeorgia.org/doc/WIZKALI.exe","online","malware_download","exe,stealer,HawkEye","https://urlhaus.abuse.ch/url/71319/"
 "71318","2018-10-26 11:31:16","http://guideofgeorgia.org/doc/LIMPOPO.exe","online","malware_download","exe,stealer,Loki,HawkEye","https://urlhaus.abuse.ch/url/71318/"
 "71317","2018-10-26 11:31:01","http://guideofgeorgia.org/doc/Joooe.exe","online","malware_download","exe,stealer,HawkEye","https://urlhaus.abuse.ch/url/71317/"
 "71316","2018-10-26 11:30:50","http://guideofgeorgia.org/doc/JASPE.exe","online","malware_download","exe,stealer","https://urlhaus.abuse.ch/url/71316/"
@@ -511,9 +529,9 @@
 "71226","2018-10-26 06:22:02","http://185.244.25.131/bins/kowai.mips","online","malware_download","elf","https://urlhaus.abuse.ch/url/71226/"
 "71224","2018-10-26 06:21:01","http://185.244.25.131/bins/kowai.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/71224/"
 "71223","2018-10-26 05:42:09","https://federacio-catalana-hipica.us/sp_output.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71223/"
-"71222","2018-10-26 05:42:08","https://federacio-catalana-hipica.us/ncrest/build_output293E7A0.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71222/"
-"71221","2018-10-26 05:42:06","https://federacio-catalana-hipica.us/ngabi/build_output1EB5B60.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71221/"
-"71220","2018-10-26 05:42:05","https://federacio-catalana-hipica.us/nhamid/build_outputBBE8BAF.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71220/"
+"71222","2018-10-26 05:42:08","https://federacio-catalana-hipica.us/ncrest/build_output293E7A0.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/71222/"
+"71221","2018-10-26 05:42:06","https://federacio-catalana-hipica.us/ngabi/build_output1EB5B60.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/71221/"
+"71220","2018-10-26 05:42:05","https://federacio-catalana-hipica.us/nhamid/build_outputBBE8BAF.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/71220/"
 "71219","2018-10-26 05:42:04","https://federacio-catalana-hipica.us/nshoki/build_outputD493B7F.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71219/"
 "71218","2018-10-26 05:32:03","http://178.128.194.222/apache2","online","malware_download","elf","https://urlhaus.abuse.ch/url/71218/"
 "71217","2018-10-26 05:32:02","http://178.128.194.222/wget","online","malware_download","elf","https://urlhaus.abuse.ch/url/71217/"
@@ -562,8 +580,8 @@
 "71174","2018-10-25 22:10:06","http://guideofgeorgia.org/doc/milito.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71174/"
 "71173","2018-10-25 22:10:04","http://guideofgeorgia.org/doc/KMAN.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71173/"
 "71172","2018-10-25 22:09:09","http://guideofgeorgia.org/doc/FRANKASA.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71172/"
-"71171","2018-10-25 22:01:04","http://guideofgeorgia.org/doc/joeyg.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71171/"
-"71170","2018-10-25 22:00:03","http://guideofgeorgia.org/doc/RENEW.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/71170/"
+"71171","2018-10-25 22:01:04","http://guideofgeorgia.org/doc/joeyg.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/71171/"
+"71170","2018-10-25 22:00:03","http://guideofgeorgia.org/doc/RENEW.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/71170/"
 "71169","2018-10-25 21:54:28","http://171.251.163.150:52871/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/71169/"
 "71168","2018-10-25 21:13:04","http://micropcsystem.com/sumtre/hru.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71168/"
 "71167","2018-10-25 19:44:02","http://142.93.184.26/bins/hoho.sh4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/71167/"
@@ -653,7 +671,7 @@
 "71083","2018-10-25 14:20:05","http://dealadynou.com/RUI/levond.php?l=pory1.xap","offline","malware_download","ursnif,Gozi","https://urlhaus.abuse.ch/url/71083/"
 "71082","2018-10-25 14:05:03","http://proinstalco.ro/Lists_of_Agents.jar","offline","malware_download","None","https://urlhaus.abuse.ch/url/71082/"
 "71081","2018-10-25 13:59:07","http://84.38.130.139/pk/office/win32.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/71081/"
-"71080","2018-10-25 13:59:06","https://federacio-catalana-hipica.us/shoki/build_output5EADCE0.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71080/"
+"71080","2018-10-25 13:59:06","https://federacio-catalana-hipica.us/shoki/build_output5EADCE0.exe","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/71080/"
 "71079","2018-10-25 13:59:04","https://federacio-catalana-hipica.us/hamid/build_output2DDE0B0.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71079/"
 "71078","2018-10-25 13:59:03","https://federacio-catalana-hipica.us/gabi/build_output6807EC0.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/71078/"
 "71077","2018-10-25 13:57:04","http://ponti-int.com/a/a.exe","online","malware_download","RemcosRAT","https://urlhaus.abuse.ch/url/71077/"
@@ -694,7 +712,7 @@
 "71042","2018-10-25 11:29:41","http://142.93.183.100/bins/kowai.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/71042/"
 "71040","2018-10-25 11:29:10","http://war.fail/LogMeIn.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/71040/"
 "71039","2018-10-25 11:29:01","http://onedrive.one/onedrive.3.1.0.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/71039/"
-"71038","2018-10-25 11:29:00","http://onedrive.one/drive.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/71038/"
+"71038","2018-10-25 11:29:00","http://onedrive.one/drive.exe","online","malware_download","AZORult","https://urlhaus.abuse.ch/url/71038/"
 "71037","2018-10-25 11:28:59","http://onedrive.one/OneDriveSetup.exe","online","malware_download","Amadey","https://urlhaus.abuse.ch/url/71037/"
 "71036","2018-10-25 11:28:58","https://protect-us.mimecast.com/s/C27aC0RX9RU80P3fw0bgj","offline","malware_download","None","https://urlhaus.abuse.ch/url/71036/"
 "71035","2018-10-25 11:28:56","http://80.211.113.47/Botnet.arm4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/71035/"
@@ -770,7 +788,7 @@
 "70965","2018-10-25 08:34:03","https://drive.google.com/file/d/1OZNJ1fCQ0iHMeOW5rHjlVli6cVts9T8c/view?usp=sharing","offline","malware_download","pdf-url,ITA,ursnif","https://urlhaus.abuse.ch/url/70965/"
 "70964","2018-10-25 08:34:02","http://vovu.alewifequeenslic.com/paguhityr84.php","offline","malware_download","ursnif,ITA,geofenced,headersfenced,BITS,exe","https://urlhaus.abuse.ch/url/70964/"
 "70963","2018-10-25 08:33:02","http://doc.albaspizzaastoria.com/jogptfbuu=w?bba=1","offline","malware_download","zipped-VBS,ursnif,ITA,geofenced","https://urlhaus.abuse.ch/url/70963/"
-"70962","2018-10-25 07:33:04","https://poslovno-pregovaranje.com/js/server1.jpg","offline","malware_download","exe","https://urlhaus.abuse.ch/url/70962/"
+"70962","2018-10-25 07:33:04","https://poslovno-pregovaranje.com/js/server1.jpg","offline","malware_download","exe,AgentTesla","https://urlhaus.abuse.ch/url/70962/"
 "70961","2018-10-25 07:19:07","http://1.34.52.145:55107/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/70961/"
 "70960","2018-10-25 07:19:03","http://94.52.37.14:8179/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/70960/"
 "70959","2018-10-25 06:51:14","https://www.leavamder.com/39f.msi","offline","malware_download","msi,exe","https://urlhaus.abuse.ch/url/70959/"
@@ -830,7 +848,7 @@
 "70905","2018-10-24 17:55:03","https://gocbd.club/sps.exe","online","malware_download","lokibot","https://urlhaus.abuse.ch/url/70905/"
 "70903","2018-10-24 17:35:03","http://demo-nastart3.ru/include/_output40FC60.exe","offline","malware_download","rat,NetWire","https://urlhaus.abuse.ch/url/70903/"
 "70902","2018-10-24 17:33:05","https://doc-0g-1k-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/4sslkb6j2err45123o9boh66ufdk427c/1540396800000/01121010560865514304/*/1Sm62jFMKHV9vWiPGDbIMSFOEQmx9adqI?e=download","offline","malware_download","exe","https://urlhaus.abuse.ch/url/70902/"
-"70901","2018-10-24 17:27:06","http://asolmex.org/a/jy.png","offline","malware_download","None","https://urlhaus.abuse.ch/url/70901/"
+"70901","2018-10-24 17:27:06","http://asolmex.org/a/jy.png","offline","malware_download","Loki","https://urlhaus.abuse.ch/url/70901/"
 "70900","2018-10-24 17:27:04","http://asolmex.org/a/bn.png","offline","malware_download","Loki","https://urlhaus.abuse.ch/url/70900/"
 "70899","2018-10-24 17:24:03","http://jyovens.com/wp-content/themes/borrow/css/fontello/oplata.zip","offline","malware_download","Troldesh,Ransomware","https://urlhaus.abuse.ch/url/70899/"
 "70898","2018-10-24 17:23:03","http://1.186.222.50:34141/","online","malware_download","None","https://urlhaus.abuse.ch/url/70898/"
@@ -873,7 +891,7 @@
 "70859","2018-10-24 14:46:02","http://185.162.130.150/vK6wGM","offline","malware_download","Keitaro,TDS,Nymaim,doc","https://urlhaus.abuse.ch/url/70859/"
 "70858","2018-10-24 14:45:02","https://img1.wsimg.com/blobby/go/716ce6c5-e07c-43a7-a685-6d934b9f51c3/downloads/1cqdpmlgu_930218.doc","online","malware_download","doc,Nymaim","https://urlhaus.abuse.ch/url/70858/"
 "70857","2018-10-24 14:34:04","http://ayakkokulari.com/PO.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/70857/"
-"70856","2018-10-24 14:26:09","http://ayakkokulari.com/_output792DDE0.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/70856/"
+"70856","2018-10-24 14:26:09","http://ayakkokulari.com/_output792DDE0.exe","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/70856/"
 "70855","2018-10-24 14:26:07","http://61.5.20.119:26467/.i","offline","malware_download","elf","https://urlhaus.abuse.ch/url/70855/"
 "70854","2018-10-24 14:26:03","http://206.255.52.18:61726/.i","online","malware_download","elf","https://urlhaus.abuse.ch/url/70854/"
 "70853","2018-10-24 14:01:02","http://84.38.130.139/pk/office/scvhost.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/70853/"
@@ -1419,7 +1437,7 @@
 "70289","2018-10-22 13:54:09","http://vostokllc.com/js/jquery/Panel/five/fre.php","offline","malware_download","lokibot,c2","https://urlhaus.abuse.ch/url/70289/"
 "70288","2018-10-22 13:54:08","https://uguzamedics.com/portfolio/custom-popups/popup-01/img/iljjj.exe","online","malware_download","lokibot,exe","https://urlhaus.abuse.ch/url/70288/"
 "70287","2018-10-22 13:54:05","http://uguzamedics.com/portfolio/custom-popups/popup-01/img/iljjj.exe","online","malware_download","lokibot,exe","https://urlhaus.abuse.ch/url/70287/"
-"70286","2018-10-22 12:27:11","http://programmingwebsite.xyz/admin/ewe.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/70286/"
+"70286","2018-10-22 12:27:11","http://programmingwebsite.xyz/admin/ewe.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/70286/"
 "70285","2018-10-22 12:27:07","http://219.146.3.7/wj3","online","malware_download","exe","https://urlhaus.abuse.ch/url/70285/"
 "70284","2018-10-22 11:55:03","https://sharechautari.com/files/thumb.exe","offline","malware_download","Retefe,exe","https://urlhaus.abuse.ch/url/70284/"
 "70283","2018-10-22 11:32:11","https://www.colortile.in/action/TDS%20Challan.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/70283/"
@@ -1854,7 +1872,7 @@
 "69854","2018-10-20 01:20:02","http://142.93.108.170/Demon.arm4","offline","malware_download","elf","https://urlhaus.abuse.ch/url/69854/"
 "69853","2018-10-20 00:31:03","http://demeter.icu/files/agents/5d232033c7820358de438a49fc71cd53-8808.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/69853/"
 "69852","2018-10-19 23:47:11","http://cl.ly/390j3n40002a/download/new10.zip","offline","malware_download","zip","https://urlhaus.abuse.ch/url/69852/"
-"69851","2018-10-19 23:15:05","http://technoscienceacademy.com/images/nb/mbt.exe","offline","malware_download","exe,AgentTesla","https://urlhaus.abuse.ch/url/69851/"
+"69851","2018-10-19 23:15:05","http://technoscienceacademy.com/images/nb/mbt.exe","offline","malware_download","exe,AgentTesla,NanoCore","https://urlhaus.abuse.ch/url/69851/"
 "69850","2018-10-19 23:14:03","http://www.uploader.sx/uploads/2018/PO.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/69850/"
 "69849","2018-10-19 23:13:02","http://parapentevejer.com/_output7AB6010.exe","offline","malware_download","rat,NetWire","https://urlhaus.abuse.ch/url/69849/"
 "69848","2018-10-19 23:10:12","http://d.coka.la/VoNJ8q.hta","offline","malware_download","exe,Pony","https://urlhaus.abuse.ch/url/69848/"
@@ -2144,7 +2162,7 @@
 "69564","2018-10-19 07:19:02","http://142.93.134.253/yakuza.ppc","offline","malware_download","elf","https://urlhaus.abuse.ch/url/69564/"
 "69563","2018-10-19 07:18:03","http://176.32.33.123/vi/m68k.bushido","online","malware_download","elf","https://urlhaus.abuse.ch/url/69563/"
 "69562","2018-10-19 07:11:02","https://u.teknik.io/ioAzA.hta","offline","malware_download","rtfkit,hta","https://urlhaus.abuse.ch/url/69562/"
-"69561","2018-10-19 06:26:07","http://pnrts.sg/juy.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/69561/"
+"69561","2018-10-19 06:26:07","http://pnrts.sg/juy.exe","offline","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/69561/"
 "69560","2018-10-19 06:25:02","http://a.doko.moe/phltip.hta","offline","malware_download","hta","https://urlhaus.abuse.ch/url/69560/"
 "69559","2018-10-19 06:18:03","http://monetize.bid/files/agents/5d232033c7820358de438a49fc71cd53-8808.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/69559/"
 "69558","2018-10-19 05:33:22","http://octap.igg.biz/01/82013670.jpg","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/69558/"
@@ -2155,7 +2173,7 @@
 "69553","2018-10-19 05:31:32","http://octap.igg.biz/01/7805236.jpg","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/69553/"
 "69552","2018-10-19 05:26:02","http://octap.igg.biz/01/invoice-20199.jpg","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/69552/"
 "69551","2018-10-19 05:19:03","http://restandvision.com/stop.jpg","offline","malware_download","rtfkit,exe,NanoCore","https://urlhaus.abuse.ch/url/69551/"
-"69550","2018-10-19 05:16:14","http://www.mandala.mn/update/tkk.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/69550/"
+"69550","2018-10-19 05:16:14","http://www.mandala.mn/update/tkk.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/69550/"
 "69549","2018-10-19 05:16:08","http://www.mandala.mn/update/ama.exe","offline","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/69549/"
 "69548","2018-10-19 05:14:02","http://104.248.248.250/bins/hoho.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/69548/"
 "69547","2018-10-19 05:10:07","http://down.ancamera.co.kr/file/4.1/ancamera4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/69547/"
@@ -2218,7 +2236,7 @@
 "69490","2018-10-18 21:33:04","http://89.42.211.49/KB948391.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/69490/"
 "69489","2018-10-18 21:33:02","http://emcshocks.com/extern/ie.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/69489/"
 "69488","2018-10-18 21:26:02","http://80.211.113.214/hakai.arm7","offline","malware_download","elf","https://urlhaus.abuse.ch/url/69488/"
-"69487","2018-10-18 21:15:03","http://printnow.club/au3.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/69487/"
+"69487","2018-10-18 21:15:03","http://printnow.club/au3.exe","offline","malware_download","exe,AZORult","https://urlhaus.abuse.ch/url/69487/"
 "69486","2018-10-18 19:38:11","http://citbagroup.com/1/crypt.exe","offline","malware_download","exe,AgentTesla","https://urlhaus.abuse.ch/url/69486/"
 "69485","2018-10-18 19:38:03","http://167.88.161.40/bins/telnet.m68k","online","malware_download","elf","https://urlhaus.abuse.ch/url/69485/"
 "69484","2018-10-18 19:31:04","http://167.88.161.40/bins/telnet.sh4","online","malware_download","elf","https://urlhaus.abuse.ch/url/69484/"
@@ -2316,7 +2334,7 @@
 "69392","2018-10-18 13:53:05","http://technoscienceacademy.com/images/ab/ab.exe","offline","malware_download","AgentTesla","https://urlhaus.abuse.ch/url/69392/"
 "69391","2018-10-18 13:13:03","http://uninstall-tools.ru/500us.exe","online","malware_download","exe,AZORult","https://urlhaus.abuse.ch/url/69391/"
 "69390","2018-10-18 13:08:05","https://uguzamedics.com/img/logo/light/hjy.exe","offline","malware_download","exe,lokibot","https://urlhaus.abuse.ch/url/69390/"
-"69389","2018-10-18 13:07:04","http://uninstall-tools.ru/uninstall-loggerhwid.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/69389/"
+"69389","2018-10-18 13:07:04","http://uninstall-tools.ru/uninstall-loggerhwid.exe","online","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/69389/"
 "69388","2018-10-18 13:07:03","http://uninstall-tools.ru/socks.exe","online","malware_download","exe,Ransomware.GandCrab","https://urlhaus.abuse.ch/url/69388/"
 "69387","2018-10-18 13:05:03","http://104.248.248.215/bins/Kuran.x86","offline","malware_download","None","https://urlhaus.abuse.ch/url/69387/"
 "69386","2018-10-18 12:16:46","https://rcmodelscience.com/htmlTicket-access/ticket-D8S43889645628213","offline","malware_download","sLoad,zip,lnk","https://urlhaus.abuse.ch/url/69386/"
@@ -2666,7 +2684,7 @@
 "69042","2018-10-18 12:11:02","https://asundria.org/htmlTicket-access/ticket-97838832375243100","offline","malware_download","sLoad,zip,lnk","https://urlhaus.abuse.ch/url/69042/"
 "69043","2018-10-18 12:11:02","https://asundria.org/htmlTicket-access/ticket-FZU57023704563139","offline","malware_download","sLoad,zip,lnk","https://urlhaus.abuse.ch/url/69043/"
 "69040","2018-10-18 11:48:13","http://ddl3.data.hu/get/297352/11476847/unitttty.exe","offline","malware_download","exe,AgentTesla","https://urlhaus.abuse.ch/url/69040/"
-"69039","2018-10-18 11:19:02","http://digitalgit.in/npd.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/69039/"
+"69039","2018-10-18 11:19:02","http://digitalgit.in/npd.exe","online","malware_download","exe,HawkEye","https://urlhaus.abuse.ch/url/69039/"
 "69038","2018-10-18 10:34:03","http://demeter.icu/files/agents/a65efd18c98f8e6e0e130ccb556f19f9-9679.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/69038/"
 "69037","2018-10-18 10:29:36","http://octap.igg.biz/01/XXL.jpg","offline","malware_download","exe,NanoCore","https://urlhaus.abuse.ch/url/69037/"
 "69036","2018-10-18 10:29:03","https://derwamanojaz.com/Ssl/_pdf.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/69036/"
@@ -2831,7 +2849,7 @@
 "68875","2018-10-18 05:46:02","http://209.141.40.213/avtech","offline","malware_download","sh","https://urlhaus.abuse.ch/url/68875/"
 "68876","2018-10-18 05:46:02","http://209.141.40.213/dlink","offline","malware_download","sh","https://urlhaus.abuse.ch/url/68876/"
 "68874","2018-10-18 05:13:04","http://technoscienceacademy.com/images/nd/nd.exe","offline","malware_download","exe,AgentTesla","https://urlhaus.abuse.ch/url/68874/"
-"68873","2018-10-18 05:09:03","https://d.coka.la/zAuUr8.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/68873/"
+"68873","2018-10-18 05:09:03","https://d.coka.la/zAuUr8.jpg","online","malware_download","exe,Loki","https://urlhaus.abuse.ch/url/68873/"
 "68872","2018-10-18 05:08:03","https://d.coka.la/mFzYpE.jpg","online","malware_download","exe","https://urlhaus.abuse.ch/url/68872/"
 "68871","2018-10-18 04:58:03","https://d.coka.la/IRvya7.jpg","online","malware_download","exe,AgentTesla","https://urlhaus.abuse.ch/url/68871/"
 "68869","2018-10-18 04:43:05","http://beverage.cf/bless/pony%202.2/pony%202.2/builder/server.exe","offline","malware_download","None","https://urlhaus.abuse.ch/url/68869/"
@@ -3919,7 +3937,7 @@
 "67772","2018-10-14 09:37:03","http://flightrockets.com/your/incrypt.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/67772/"
 "67771","2018-10-14 09:36:02","http://178.33.218.65/fc3ee45b9qb8yfn63","offline","malware_download","geofenced,KOR,Magnitude,Magniber","https://urlhaus.abuse.ch/url/67771/"
 "67770","2018-10-14 09:35:32","http://5.196.211.248/f6bgben6fefc","offline","malware_download","geofenced,KOR,Magnitude,Magniber","https://urlhaus.abuse.ch/url/67770/"
-"67769","2018-10-14 09:31:07","http://alpretreat.com.au/offer.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/67769/"
+"67769","2018-10-14 09:31:07","http://alpretreat.com.au/offer.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/67769/"
 "67768","2018-10-14 09:13:04","http://77831.prohoster.biz/_soft/xmrig.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/67768/"
 "67767","2018-10-14 09:13:02","http://77831.prohoster.biz/_soft/Supreme.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/67767/"
 "67766","2018-10-14 09:11:07","http://derwamanojaz.com/girp/INVOICE_PAYMENT.exe","offline","malware_download","exe,Formbook","https://urlhaus.abuse.ch/url/67766/"
@@ -4045,7 +4063,7 @@
 "67646","2018-10-13 18:08:23","http://yulv.net/down/WarZxx163.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/67646/"
 "67645","2018-10-13 18:01:04","http://yulv.net/down/WarMH11.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/67645/"
 "67644","2018-10-13 17:59:06","http://yulv.net/down/VSxRoom40.rar","online","malware_download","rar","https://urlhaus.abuse.ch/url/67644/"
-"67643","2018-10-13 17:52:05","http://hookerdeepseafishing.com/pututfi.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/67643/"
+"67643","2018-10-13 17:52:05","http://hookerdeepseafishing.com/pututfi.exe","online","malware_download","exe,Locky","https://urlhaus.abuse.ch/url/67643/"
 "67642","2018-10-13 17:28:17","http://server28.onlineappupdater.com/ww-Online.IO-installer-ic.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/67642/"
 "67641","2018-10-13 17:28:14","http://tm-adv.host/tmaster/TweakMASTER.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/67641/"
 "67640","2018-10-13 17:28:05","http://randburk.beget.tech/VasaBU123.exe","online","malware_download","exe,rat,AZORult","https://urlhaus.abuse.ch/url/67640/"
@@ -7463,7 +7481,7 @@
 "64189","2018-10-03 12:14:09","http://58.218.66.210:8080/deviceparinwizard.exe","offline","malware_download","exe,CoinMiner","https://urlhaus.abuse.ch/url/64189/"
 "64188","2018-10-03 12:13:03","http://premiumos.icu/files/PremiumOs4.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/64188/"
 "64187","2018-10-03 12:12:06","http://premium-sp.ru/xerox/EN_en/Past-Due-Invoice/","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/64187/"
-"64186","2018-10-03 12:12:05","http://viswavsp.com/mineworknow.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/64186/"
+"64186","2018-10-03 12:12:05","http://viswavsp.com/mineworknow.exe","online","malware_download","exe,AgentTesla","https://urlhaus.abuse.ch/url/64186/"
 "64185","2018-10-03 12:12:03","http://premiumos.icu/files/PremiumOs.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/64185/"
 "64184","2018-10-03 12:04:03","http://185.244.25.153/.bins/m68k","offline","malware_download","elf","https://urlhaus.abuse.ch/url/64184/"
 "64183","2018-10-03 12:04:03","http://185.244.25.153/.bins/x86","offline","malware_download","elf","https://urlhaus.abuse.ch/url/64183/"
@@ -11589,7 +11607,7 @@
 "59997","2018-09-24 21:24:10","http://hotellaspalmashmo.com/92WKNDMR/PAYMENT/Smallbusiness","offline","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59997/"
 "59996","2018-09-24 21:24:05","http://67.21.81.79/datacard.doc","offline","malware_download","RTF","https://urlhaus.abuse.ch/url/59996/"
 "59995","2018-09-24 21:23:53","http://www.skayweb.com/rr.exe","online","malware_download","exe,ImminentRAT","https://urlhaus.abuse.ch/url/59995/"
-"59994","2018-09-24 21:23:42","http://soft.duote.com.cn/wyzdjk_7.2.0.2.exe","online","malware_download","exe","https://urlhaus.abuse.ch/url/59994/"
+"59994","2018-09-24 21:23:42","http://soft.duote.com.cn/wyzdjk_7.2.0.2.exe","online","malware_download","exe,Gozi","https://urlhaus.abuse.ch/url/59994/"
 "59993","2018-09-24 21:21:15","http://manatour.cl/pdf/EN_en/Invoice-for-sent/Invoice-92978","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59993/"
 "59992","2018-09-24 21:21:04","http://manatour.cl/DOC/New-Invoice-EI1978-AT-5653","online","malware_download","doc,heodo","https://urlhaus.abuse.ch/url/59992/"
 "59991","2018-09-24 21:20:07","http://hd.pe/470076SC/ACH/Smallbusiness/","offline","malware_download","doc","https://urlhaus.abuse.ch/url/59991/"
@@ -57718,7 +57736,7 @@
 "12975","2018-05-29 06:53:47","http://sitcomsonline.com/Facture/","offline","malware_download","emotet,doc,heodo","https://urlhaus.abuse.ch/url/12975/"
 "12974","2018-05-29 06:53:32","https://unsignedonly.com/Factures-29-mai/","offline","malware_download","emotet,doc,heodo","https://urlhaus.abuse.ch/url/12974/"
 "12973","2018-05-29 06:46:20","http://www.ramatfactory.com.sa/windows/done.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/12973/"
-"12972","2018-05-29 06:44:39","http://www.ramatfactory.com.sa/windows/windows.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/12972/"
+"12972","2018-05-29 06:44:39","http://www.ramatfactory.com.sa/windows/windows.exe","offline","malware_download","exe,NetWire,Locky","https://urlhaus.abuse.ch/url/12972/"
 "12971","2018-05-29 06:35:28","http://planitsolutions.co.nz/tLLiAh4/","offline","malware_download","heodo,emotet,exe","https://urlhaus.abuse.ch/url/12971/"
 "12970","2018-05-29 06:34:52","http://ondernemerstips.nl/mPs8pP/","offline","malware_download","heodo,emotet,exe","https://urlhaus.abuse.ch/url/12970/"
 "12969","2018-05-29 06:34:22","http://macrospazio.it/p4kEoI7/","offline","malware_download","heodo,emotet,exe","https://urlhaus.abuse.ch/url/12969/"
@@ -57896,7 +57914,7 @@
 "12797","2018-05-27 12:36:22","http://indostraits.co.id/bags.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/12797/"
 "12796","2018-05-27 12:33:51","http://secured.eroea.com/adobe.123","offline","malware_download","Loki,exe,NanoCore,ImminentRAT","https://urlhaus.abuse.ch/url/12796/"
 "12795","2018-05-27 12:31:12","http://indostraits.co.id/town.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/12795/"
-"12794","2018-05-27 12:29:43","http://ramatfactory.com.sa/windows/windows.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/12794/"
+"12794","2018-05-27 12:29:43","http://ramatfactory.com.sa/windows/windows.exe","offline","malware_download","exe,Locky","https://urlhaus.abuse.ch/url/12794/"
 "12793","2018-05-27 12:28:39","http://ramatfactory.com.sa/windows/done.exe","offline","malware_download","exe,NetWire","https://urlhaus.abuse.ch/url/12793/"
 "12792","2018-05-27 11:16:49","http://www.apl.com.pk/loc/php/minerupdate.exe","offline","malware_download","CoinMiner,exe","https://urlhaus.abuse.ch/url/12792/"
 "12791","2018-05-27 11:05:52","http://cb35536.tmweb.ru/dx10r.exe","offline","malware_download","exe","https://urlhaus.abuse.ch/url/12791/"
@@ -59551,7 +59569,7 @@
 "11084","2018-05-18 12:01:53","http://mine.zarabotaibitok.ru/Downloads/Modul/load.zip","online","malware_download","None","https://urlhaus.abuse.ch/url/11084/"
 "11083","2018-05-18 12:01:40","http://mine.zarabotaibitok.ru/Downloads/Modul/load1.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/11083/"
 "11082","2018-05-18 12:00:58","http://mine.zarabotaibitok.ru/Downloads/Modul/load_old.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/11082/"
-"11081","2018-05-18 12:00:19","http://mine.zarabotaibitok.ru/Downloads/Miner_Xmrig/X86/SystemNT.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/11081/"
+"11081","2018-05-18 12:00:19","http://mine.zarabotaibitok.ru/Downloads/Miner_Xmrig/X86/SystemNT.exe","online","malware_download","Gozi","https://urlhaus.abuse.ch/url/11081/"
 "11080","2018-05-18 11:59:14","http://mine.zarabotaibitok.ru/Downloads/Miner_Xmrig/X86/SystemNT.zip","online","malware_download","None","https://urlhaus.abuse.ch/url/11080/"
 "11079","2018-05-18 11:58:47","http://mine.zarabotaibitok.ru/Downloads/Miner_Xmrig/X64/SystemNT.zip","online","malware_download","None","https://urlhaus.abuse.ch/url/11079/"
 "11078","2018-05-18 11:58:32","http://mine.zarabotaibitok.ru/Downloads/Miner_Xmrig/X64/SystemNT.exe","online","malware_download","None","https://urlhaus.abuse.ch/url/11078/"
diff --git a/urlhaus-filter.txt b/urlhaus-filter.txt
index 5142e7fe..2a63db66 100644
--- a/urlhaus-filter.txt
+++ b/urlhaus-filter.txt
@@ -1,5 +1,5 @@
 ! Title: abuse.ch URLhaus Malicious URL Blocklist
-! Updated: Sun, 28 Oct 2018 12:23:43 UTC
+! Updated: Mon, 29 Oct 2018 00:24:23 UTC
 ! Expires: 1 day (update frequency)
 ! Repo: https://gitlab.com/curben/urlhaus-filter
 ! License: https://creativecommons.org/publicdomain/zero/1.0/
@@ -108,6 +108,7 @@
 180.153.105.169
 180.177.76.161
 183.106.51.228
+184.11.126.250
 185.101.107.148
 185.11.146.84
 185.126.179.154
@@ -204,6 +205,7 @@
 46.101.35.220
 46.17.47.244
 46.17.47.250
+46.24.91.108
 46.29.163.168
 46.29.165.163
 46.36.37.121
@@ -212,6 +214,7 @@
 46.59.101.173
 46.97.21.166
 46.97.21.194
+47.32.251.30
 49.71.61.106
 4pointinspection.net
 4wake.com
@@ -230,6 +233,7 @@
 5711020660006.sci.dusit.ac.th
 58.187.241.167
 59.127.1.67
+60.248.141.87
 62671d28-a-62cb3a1a-s-sites.googlegroups.com
 64.32.3.186
 66.117.2.182
@@ -284,7 +288,6 @@
 94i30.com
 95.213.140.210
 98.200.233.150
-a.doko.moe
 a46.bulehero.in
 aa-academy.net
 abcresteconsulting.com
@@ -493,6 +496,7 @@ btcx4.com
 bubsware.com
 bursabesevlernakliyat.com
 byitaliandesigners.com
+bylw.zknu.edu.cn
 c-dole.com
 c-elysee.joonik.com
 ca.hashnice.org
@@ -548,6 +552,7 @@ ciptowijayatehnik.com
 circuloproviamiga.com
 citytrading.usa.cc
 civciv.com.tr
+cjoint.com
 ckobcameroun.com
 clickara.com
 clickclick2trip.com
@@ -930,6 +935,7 @@ imr.cl
 inaczasie.pl
 indiangirlsnude.com
 indicasativas.com
+indokku.com
 indonesiaumroh.com
 infocs.rio.br
 infratecweb.com.br
@@ -1195,7 +1201,6 @@ n.didiwl.com
 nadym.business
 nasa.ekpaideusi.gr
 nashobmen.org
-nashobmenfiles.com
 nathaninteractive.com
 nellyvonalven.com
 nemetboxer.com
@@ -1299,6 +1304,7 @@ procasa.imb.br
 projectlyttelton-my.sharepoint.com
 promoagency.sk
 promodont.com
+promultis.it
 prosmotr-bot.eu
 prosoft-industry.eu
 protonmail.secure-docs.us
@@ -1525,6 +1531,7 @@ trollingmotordoctor.com
 trotarhub.com
 troysumpter.com
 trs.or.th
+trueshare.com
 trumbullcsb.org
 tsg339.com
 tuanduongmobile.vn
@@ -1648,4 +1655,5 @@ zerenprofessional.com
 zingland.vn
 zionsifac.com
 zj.9553.com
+zrkls.pw
 zyz-industry.cf