fixtures/urlhaus.json · CTI Detection Automation

32 lines · json

{
  "841201": [
    {
      "url": "http://update-flashplayer.org/payload/load.php",
      "url_status": "online",
      "threat": "malware_download",
      "tags": ["exploit", "RedLineStealer"],
      "date_added": "2026-05-26 02:31:40 UTC",
      "urlhaus_reference": "https://urlhaus.abuse.ch/url/841201/"
    }
  ],
  "841244": [
    {
      "url": "http://178.62.91.14/inv/scan/EmotetBins.exe",
      "url_status": "online",
      "threat": "payload_delivery",
      "tags": ["Emotet", "exe"],
      "date_added": "2026-05-26 05:11:09 UTC",
      "urlhaus_reference": "https://urlhaus.abuse.ch/url/841244/"
    }
  ],
  "841290": [
    {
      "url": "http://billing-secure-portal.com/office365/login",
      "url_status": "online",
      "threat": "malware_download",
      "tags": ["phishing"],
      "date_added": "2026-05-26 07:40:55 UTC",
      "urlhaus_reference": "https://urlhaus.abuse.ch/url/841290/"
    }
  ]
}

1	{
2	"841201": [
3	{
4	"url": "http://update-flashplayer.org/payload/load.php",
5	"url_status": "online",
6	"threat": "malware_download",
7	"tags": ["exploit", "RedLineStealer"],
8	"date_added": "2026-05-26 02:31:40 UTC",
9	"urlhaus_reference": "https://urlhaus.abuse.ch/url/841201/"
10	}
11	],
12	"841244": [
13	{
14	"url": "http://178.62.91.14/inv/scan/EmotetBins.exe",
15	"url_status": "online",
16	"threat": "payload_delivery",
17	"tags": ["Emotet", "exe"],
18	"date_added": "2026-05-26 05:11:09 UTC",
19	"urlhaus_reference": "https://urlhaus.abuse.ch/url/841244/"
20	}
21	],
22	"841290": [
23	{
24	"url": "http://billing-secure-portal.com/office365/login",
25	"url_status": "online",
26	"threat": "malware_download",
27	"tags": ["phishing"],
28	"date_added": "2026-05-26 07:40:55 UTC",
29	"urlhaus_reference": "https://urlhaus.abuse.ch/url/841290/"
30	}
31	]
32	}