ThreatFox IOC Database

You are browsing the Indicator Of Compromise (IOC) database of ThreatFox. If you would like to contribute IOCs to the corpuse, you can do so through either the web form or the API.

533

IOCs shared (past 24 hours)

ClearFake

Most seen malware family (past 24 hours)

1'671'576

IOCs in corpus

Using the form below, you can search for malware samples by a hash (MD5, SHA256, SHA1), imphash, tlsh hash, ClamAV signature, tag or malware family.

Browse Database

Search syntax is as follow: keyword:search_term

Following is a list of accepted keywords along with an example search_term

ioc:ms-debug-services.com ( run)
malware:CobaltStrike ( run)
tag:TA505 ( run)
threat_type:cc_skimming ( run)
uuid:87f310f3-540b-11eb-922c-42010aa4000a ( run)

Date (UTC)	IOC	Malware	Tags	Reporter
2026-04-29 11:50	fa9n.mistbr1a.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 11:42	mercore0or.mistbr1a.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 11:37	oasis5-well.so1aver.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 11:37	y-hazel-ten.vercel.app	BeaverTail	base64-obfuscated-c2 BeaverTail ContagiousInterview DPRK env-exfiltration function-eval jackpot Lazarus Novara1o1 npm-prepare-hook Web3-targeting	o_zehentleitner
2026-04-29 11:37	https://y-hazel-ten.vercel.app/api	BeaverTail	base64-obfuscated-c2 BeaverTail ContagiousInterview DPRK env-exfiltration function-eval jackpot Lazarus Novara1o1 npm-prepare-hook Web3-targeting	o_zehentleitner
2026-04-29 11:37	cc9e443872d99b07e4bf5f6baa6144fbe0fd24bc610e58340d9b8c755df17fce	BeaverTail	base64-obfuscated-c2 BeaverTail ContagiousInterview DPRK env-exfiltration function-eval jackpot Lazarus Novara1o1 npm-prepare-hook Web3-targeting	o_zehentleitner
2026-04-29 11:37	b6987d7732888b73a836c7320fbdc0c0fe5d1238584be66f68371481dc3667ab	BeaverTail	base64-obfuscated-c2 BeaverTail ContagiousInterview DPRK env-exfiltration function-eval jackpot Lazarus Novara1o1 npm-prepare-hook Web3-targeting	o_zehentleitner
2026-04-29 11:37	xeft5.peta1un.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 11:37	falconext.so1aver.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 11:37	icq8nz9.so1aver.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 11:29	5ort-line.so1aver.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 11:11	iuizmq.so1aver.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 11:01	cargovolt.so1aver.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 11:00	mar.nossamidia.net.br	Vidar	Vidar	crep1x
2026-04-29 11:00	https://mar.nossamidia.net.br/	Vidar	Vidar	crep1x
2026-04-29 11:00	https://mar.yutikeyu.com/	Vidar	Vidar	crep1x
2026-04-29 11:00	mar.yutikeyu.com	Vidar	Vidar	crep1x
2026-04-29 10:43	47.109.20.107:80	Cobalt Strike	CobaltStrike drb-ra	abuse_ch
2026-04-29 10:41	rivspectr.peta1un.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 10:38	https://ip-address-check-mo.vercel.app/api/settings/linux	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	https://ip-address-check-mo.vercel.app/api/settings/mac	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	https://ip-address-check-mo.vercel.app/api/settings/windows	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	vscode-ip-checking-nine.vercel.app	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	vscode-address-checking-mo.vercel.app	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	ip-address-check1.vercel.app.vercel.app	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	ip-address-vscode-checking.vercel.app	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	vscode-ipaddress-checking-nine.vercel.app	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	vscode-ipaddress-checking.vercel.app	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	vscode-ip-address-checking-ten.vercel.app	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	vscode-ip-address-checking.vercel-ten.app	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	vscode-ip-address-checking.vercel.app	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	vscode-settings-tasks-json.vercel.app	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	vdlk32.peta1un.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 10:38	iclu.peta1un.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 10:38	vscode-ip-addess-checking.vercel.app	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	vscode-settings-tasks-227.vercel.app	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	vscode-ipchecking.vercel.app	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	vscodesetting-task.vercel.app	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	vscodesettingtask.vercel.app	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	5cb088f8471cad861d18e64c9cf2b692236813e982fb04ab9283f4cf7b5ee11f	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	ip-address-check-mo.vercel.app	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	5c11e97aaa968cd1d654512f473a26fa7387cb1a2f5a0cb17a96175e28fd6359	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	1c1f3fcd2a0dde248f4d4060a2b1067e46377ab192a09c02a4f6a798a273ad1d	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	8a9f86b08e4ebca7c627ef45a9fbc98a25565e3dd581218800a9e1db4a89264b	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	5dd771ee7565f3bc7b66af82102a9408caca6039794807fc52bd2b671bae4e8c	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	773ece9712b6b329273710fe39df5847cc2537c2ce22ae291c9de995ce0c1a84	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	d8ef1fc9bc5a8eb55d1e34ea48ffc221d8f6e8c29b712c3dbf1e4e6dde43fe23	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	b8dd2e60a096daff498d77c01f24b7760e2b23385089f02759b8fa6c5be371e5	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	363b03a66ccf5d6f8e1632ee33dd37d6e8c4998ac00c8b7d60edcfb6b1dac505	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	a5ddfa8f2127e6f89278d7bff4cc7dec5249b284a2b9512406bdd265a4ab75ca	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	5f70dd06715b95b3bedacd06a37e051611901e56246af05fa3ed9f734082de43	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	a7cd162c691ad71a4c0c5955765d8f7a60d8b7b9a92b277b1ae74b280644cdf8	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	ceff282f32aae9ce3dea6a9b00212e6de90669646180cb5e5bb6bf5353527bbd	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	22d5d04000915603c7f144fde8e31b451fb814588b5f18bb4840c8ddf14793f3	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:38	9d777720bafc548807a94ae67489baf2342c78fcb3d469032523ea2f94973d54	ContagiousDrop	ContagiousInterview DPRK jackpot Lazarus Novara1o1 vscode vscode-tasks-folderOpen Web3-targeting WhalesVerse-genealogy	o_zehentleitner
2026-04-29 10:20	https://mpla-clo.cc	Lumma Stealer	campaign1777454698 Lumma LummaC2 renengine	Anonymous
2026-04-29 10:20	https://cloback.icu	Lumma Stealer	campaign1777454698 Lumma LummaC2 renengine	Anonymous
2026-04-29 10:20	vkl2j.grove5s.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 10:20	79.124.59.142:80	Lumma Stealer	campaign1777454698 Lumma LummaC2 renengine	Anonymous
2026-04-29 10:20	lum-forgeal.peta1un.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 10:11	zenforgeos3.peta1un.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 09:59	loose-mesh.grove5s.garden	ClearFake	ClearFake	Anonymous
2026-04-29 09:42	1aun0-zone.verd1ya.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 09:42	ser-venet.grove5s.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 09:42	scan.aquasecurtiy.org	Unknown malware	payload rogue teampcp	johannes
2026-04-29 09:42	soltide9is.grove5s.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 09:30	r1dge2-stream.grove5s.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 09:28	yqql69g.grove5s.garden	ClearFake	ClearFake	Anonymous
2026-04-29 09:10	slowprim.verd1ya.garden	ClearFake	ClearFake	Anonymous
2026-04-29 09:04	taldraa.verd1ya.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 08:52	lumfluxor.verd1ya.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 08:45	photonstage.verd1ya.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 08:44	xtrafftrck.net	Unknown malware	chopi ClickFix ixwebsocket ocx WebDav	Lenny_3BO
2026-04-29 08:44	echo2pathnode.astrolinkview.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 08:44	bright3nodeview.kinetichostbit.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 08:44	signalwestport.kinetichostbit.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 08:28	deepcloud9base.kinetichostbit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 08:23	proxyfastzone.kinetichostbit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 08:09	shieldpurelink.kinetichostbit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 08:06	trendscan8meta.kinetichostbit.garden	ClearFake	ClearFake	Anonymous
2026-04-29 07:57	47.122.147.35:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	abuse_ch
2026-04-29 07:56	8.136.155.237:80	Cobalt Strike	CobaltStrike	abuse_ch
2026-04-29 07:52	pitchzoneyview.astrolinkview.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 07:50	www.m88sut.com	Nanocore RAT	NanoCore	abuse_ch
2026-04-29 07:50	almendrawinery.com	Nanocore RAT	NanoCore	abuse_ch
2026-04-29 07:50	screenly.cam	Unknown malware	chopi ClickFix ixwebsocket ocx WebDav	Lenny_3BO
2026-04-29 07:50	70.34.205.43:443	Unknown malware	chopi ClickFix ixwebsocket ocx WebDav	Lenny_3BO
2026-04-29 07:50	45c8cbaeb5c7708e7b8030e701747c65203958e82eddc41f39e0ca93bd36c114	Unknown malware	chopi ClickFix dll ixwebsocket mbedtls ocx regsvr32	Lenny_3BO
2026-04-29 07:49	2b8d4f042daf703b7f152d146bfc892500f436279b0d1866995735998f267af0	Unknown malware	chopi ClickFix dll ixwebsocket mbedtls ocx regsvr32	Lenny_3BO
2026-04-29 07:49	d2e1ab10d5a0c16a724aeda8acb46b38f551ade58137969c3bc3c9cdc0a12425	Unknown malware	chopi ClickFix dll ixwebsocket mbedtls ocx regsvr32	Lenny_3BO
2026-04-29 07:49	75961f1208581c5154324ebe12f01673248374f3aa67317fe79a06fcd2fb9da5	Unknown malware	chopi ClickFix Dropper LNK WebDav	Lenny_3BO
2026-04-29 07:49	b450e893aafd94f2a81e2b70047e6d2faf20cf4056d39cfc17b69ee78912f8b2	Unknown malware	chopi ClickFix Dropper LNK WebDav	Lenny_3BO
2026-04-29 07:49	10d1c6165f86237950eaff9c19e87eaa3eb5045afedcc7e4db5ba1188e3911fe	Unknown malware	chopi ClickFix Dropper LNK WebDav	Lenny_3BO
2026-04-29 07:49	ba041a2dcf88f9ba5e4f9dd0f6e39679f394e6b1d97c6ee765bace9dad247317	Unknown malware	chopi ClickFix Dropper LNK WebDav	Lenny_3BO
2026-04-29 07:49	0ea172359ddfe89be701d8f80acb4f179ca56af2a214a46a2843367e7b05aa16	Unknown malware	chopi ClickFix Dropper LNK WebDav	Lenny_3BO
2026-04-29 07:49	b7b9d77c527e8c2588bfd5bcc573167bb6e83b68250b009aaa68dcd3ed0a21de	Unknown malware	chopi ClickFix Dropper LNK WebDav	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/f38c71	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/14867a	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/f5888f	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/048688	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/430d52	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/c13673	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/bb1452	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/b6e159	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/d240b0	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/bb358d	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/78188a	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://screenly.cam/s/ce1620	Unknown malware	chopi ClickFix lure screenly	Lenny_3BO
2026-04-29 07:49	https://xtrafftrck.net/files/updater.ocx	Unknown malware	chopi ClickFix ocx regsvr32	Lenny_3BO
2026-04-29 07:49	solidpathlink.basaltlogicnode.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	sand6tasksys.canyonsyncgate.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	aridlogicnode.canyonsyncgate.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	172.235.163.133:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	172.235.163.98:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	172.235.163.86:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	172.235.163.113:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	172.235.163.71:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	172.235.163.127:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	edgehostunit.vertexurbanhub.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	172.235.163.114:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	172.235.163.83:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	172.235.163.122:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	172.235.163.102:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	wave4zoneyview.oceanicmeshbit.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	tall5logicnet.pylonstaticnet.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	pure8siteview.marblewavebase.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	176.65.139.152:7716	Mirai	Mirai	seckle
2026-04-29 07:49	old3logicgate.fossilcryptoweb.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	sifthostunit.silicapathsys.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	bone7taskhub.fossilcryptoweb.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	past4pathgate.fossilcryptoweb.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	clay8siteview.fossilcryptoweb.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	104.248.85.23:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	142.93.143.216:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	64.225.66.108:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-29 07:49	clear3logicgate.nebulafluxbase.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	boldfluxsync.nebulafluxbase.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	trendnodeview.nebulafluxbase.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	neogatewayhub.vectorstarcity.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	grand6nodeunit.vectorstarcity.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	wild2pathbase.vectorstarcity.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	freetasklink.vectorstarcity.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	https://purplefeetwines.monster	Lumma Stealer	ClickFix ErrTraffic	YuanGeng
2026-04-29 07:49	91.92.243.111:8041	RemoteAdmin	ConnectWise fiscal-lure Flyservers port-8041 RAT RMM-abuse ScreenConnect	SamTheRuby
2026-04-29 07:49	https://sites.google.com/view/brewpage	Unknown Stealer	ClickFix	ineffyble
2026-04-29 07:49	smartmesh1unit.marinergridhub.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	gravitflux2box.titanmeshflow.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	lunarwaveunit.titanmeshflow.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	vector3sitehub.cobaltpathsys.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	https://macosforguide.gitlab.io/crw/	Unknown Stealer		ineffyble
2026-04-29 07:49	deltahostgate.pulsarlogicnet.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	zincflowbase.zenithdockunit.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	matrix6pathway.cobaltpathsys.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	linehostunit1.cobaltpathsys.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	corehostunit5.ferrumgateweb.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	staticflowsys.ferrumgateweb.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	176.65.139.59:3000	Mirai	Mirai	seckle
2026-04-29 07:49	point8fluxsys.cobaltpathsys.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:49	blablatst12345.net	Remus		johannes
2026-04-29 07:49	http://45.151.91.187/pa.php	Kamasers		johannes
2026-04-29 07:49	sad4w7h913-b4a57f9c36eb.herokuapp.com	Unknown malware	SNOWBASIN SNOWBELT SNOWGLAZE	johannes
2026-04-29 07:49	wss://sad4w7h913-b4a57f9c36eb.herokuapp.com:443/ws	Unknown malware	SNOWBASIN SNOWBELT SNOWGLAZE	johannes
2026-04-29 07:49	86.54.24.26:4433	Cobalt Strike	Agentemis Beacon Cobalt Strike CobaltStrike cobeacon	whoamix302
2026-04-29 07:49	156.245.147.101:9010	Cobalt Strike	Agentemis Beacon Cobalt Strike CobaltStrike cobeacon	whoamix302
2026-04-29 07:49	46.137.196.122:443	Cobalt Strike	Agentemis Beacon Cobalt Strike CobaltStrike cobeacon	whoamix302
2026-04-29 07:49	170.75.170.59:443	Unknown malware	BotManager	whoamix302
2026-04-29 07:49	170.75.162.74:443	Unknown malware	BotManager	whoamix302
2026-04-29 07:49	206.166.251.249:1604	DarkComet	Breut darkcomet Fynloski klovbot	whoamix302
2026-04-29 07:49	94.156.155.42:80	Stealc	Stealc	whoamix302
2026-04-29 07:49	151.246.238.186:9000	SectopRAT	1xxbot ArechClient SectopRAT	whoamix302
2026-04-29 07:49	185.158.250.188:80	Socks5 Systemz	ProxyBox Socks5 Systemz	whoamix302
2026-04-29 07:49	31.56.209.119:443	Remcos	remcos RemcosRAT Remvio Socmer	whoamix302
2026-04-29 07:49	31.57.38.106:443	Remcos	remcos RemcosRAT Remvio Socmer	whoamix302
2026-04-29 07:49	154.41.194.67:6379	Xtreme RAT	ExtRat Xtreme RAT	whoamix302
2026-04-29 07:49	audiomeshbase.astrolinkview.garden	ClearFake	29April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:48	http://172.86.116.178:5918	Unknown malware		johannes
2026-04-29 07:48	prism6hostunit.quartzprismcloud.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:48	flintpathgate.quartzprismcloud.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:48	https://barsows.com/file.js	KongTuke	Kongtuke	monitorsg
2026-04-29 07:48	barsows.com	KongTuke	Kongtuke	monitorsg
2026-04-29 07:48	https://barsows.com/t	KongTuke	Kongtuke	monitorsg
2026-04-29 07:48	https://barsows.com/g	KongTuke	Kongtuke	monitorsg
2026-04-29 07:48	https://barsows.com/c	KongTuke	Kongtuke	monitorsg
2026-04-29 07:48	drift2logicnet.tundraflowunit.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:48	frosthostbase.tundraflowunit.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:48	galesync7zone.tundraflowunit.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:48	iron9siteview.basaltlogicnode.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-29 07:45	193.181.46.11:8000	Vjw0rm	Vjw0rm	abuse_ch
2026-04-29 07:45	http://62.109.20.226/secureAuthWindowsFlower.php	DCRat	dcrat RAT	abuse_ch
2026-04-29 07:45	http://a1161272.xsph.ru/2d54b470.php	DCRat	dcrat RAT	abuse_ch
2026-04-29 07:45	freq6taskunit.astrolinkview.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 07:45	48.220.32.238:1177	NjRAT	njrat	abuse_ch
2026-04-29 07:45	http://redlandcpu.mywire.org:8000/is-ready	Houdini	RAT WSHRAT	abuse_ch
2026-04-29 07:45	104.18.22.6:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-29 07:45	104.18.23.6:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-29 07:45	151.101.131.52:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-29 07:45	151.101.3.52:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-29 07:45	151.101.67.52:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-29 07:45	151.101.195.52:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-29 07:39	tonelogicgate7.astrolinkview.garden	ClearFake	ClearFake	Anonymous
2026-04-29 07:26	https://claudesave.beer/api/css.js	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-29 07:26	claudesave.beer	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-29 07:25	https://nsbdnscloud.beer/api/css.js	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-29 07:25	nsbdnscloud.beer	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-29 07:25	https://nsserdns.beer/api/css.js	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-29 07:24	nsserdns.beer	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-29 07:23	sonic4wavehub.astrolinkview.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 07:10	pulse8sitebox.ferrumgateweb.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 07:10	myremnew.duckdns.org	Remcos	remcos	abuse_ch
2026-04-29 07:10	newupdaterem.duckdns.org	Remcos	remcos	abuse_ch
2026-04-29 06:52	atom2logicnet.ferrumgateweb.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 06:44	orbitmeshpath.ferrumgateweb.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 06:38	quant9wavegate.ferrumgateweb.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 06:24	planemeshlogic.cobaltpathsys.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 06:15	scalezoneyview.cobaltpathsys.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 05:40	lead4tasksys.zenithdockunit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 05:25	goldunitpath5.zenithdockunit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 05:19	neon2logicgate.zenithdockunit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 05:10	carbonmeshnode.zenithdockunit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 05:04	silicon7point.zenithdockunit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 04:55	rapid8wavenet.pulsarlogicnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 04:33	puresyncbase1.pulsarlogicnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 04:26	iron5logicway.pulsarlogicnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 04:19	embermeshnode.pulsarlogicnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 04:12	frost9taskunit.pulsarlogicnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 04:06	atlasgrid4flow.titanmeshflow.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 03:59	macro6siteview.titanmeshflow.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 03:52	tempohost8link.titanmeshflow.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 03:36	solarpointnet.titanmeshflow.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 03:11	blue3zonepath.marinergridhub.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 03:03	urbanhostgate.marinergridhub.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 02:43	radiantpath9.marinergridhub.garden	ClearFake	ClearFake	Anonymous
2026-04-29 02:36	vastlogicnode.marinergridhub.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 02:30	stellarbit4sys.marinergridhub.garden	ClearFake	ClearFake	Anonymous
2026-04-29 02:19	coolmeshbit5.vectorstarcity.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 02:00	hgn.jornaltribunadearaxa.com.br	Vidar	Vidar	crep1x
2026-04-29 02:00	https://hgn.jornaltribunadearaxa.com.br/	Vidar	Vidar	crep1x
2026-04-29 02:00	hgn.trbombom.com	Vidar	Vidar	crep1x
2026-04-29 02:00	https://hgn.trbombom.com/	Vidar	Vidar	crep1x
2026-04-29 01:27	apex7stormweb.vectorstarcity.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 01:01	hostunit9site.nebulafluxbase.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 00:41	smartmeshpath.nebulafluxbase.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 00:35	proxyblue8wave.nebulafluxbase.garden	ClearFake	ClearFake	threatcat_ch
2026-04-29 00:15	https://globalrvsales.com.au/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://ecombustibil.ro/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://trianglepaintinganddrywallllc.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://banglachannel.net/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://residence.co.il/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://rockwoodepoxy.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://scoreboardd.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://swallowinternational.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://old.franchise.anemoneindonesia.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://peachtreecapitalllc.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://fotovoltaicapolaris.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://jenishchamling.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://mobilemarketco.online/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://upsetamerican.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://andlaw.vn/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://chart.infoik.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:15	https://spesiarecruitment.job-bank.co.uk/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-29 00:09	hardhostunit.fossilcryptoweb.garden	ClearFake	ClearFake	Anonymous
2026-04-28 23:53	stonemeshway.fossilcryptoweb.garden	ClearFake	ClearFake	Anonymous
2026-04-28 23:40	heat5siteview.silicapathsys.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 23:34	flow9pathgate.silicapathsys.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 23:20	sand6taskhub.silicapathsys.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 23:15	https://ixnova.com.ar/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 23:14	grainmeshnode.silicapathsys.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 23:08	fine2logicnet.silicapathsys.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 22:54	cold4pathgate.marblewavebase.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 22:42	greyhostunit.marblewavebase.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 22:32	pale9taskhub.marblewavebase.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 22:26	smoothmeshway.marblewavebase.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 22:20	soft3logicnet.marblewavebase.garden	ClearFake	ClearFake	Anonymous
2026-04-28 22:11	load8siteview.pylonstaticnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 22:05	wire2pathgate.pylonstaticnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 21:59	posthostunit.pylonstaticnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 21:54	grid9taskhub.pylonstaticnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 21:49	beammeshnode.pylonstaticnet.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 21:28	blue8hostunit.oceanicmeshbit.garden	ClearFake	ClearFake	Anonymous
2026-04-28 21:23	saltpathbase.oceanicmeshbit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 21:10	surf3logicgate.oceanicmeshbit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 21:03	tidemeshnode.oceanicmeshbit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 20:56	deep7siteview.oceanicmeshbit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 20:50	plotwavegate.vertexurbanhub.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 20:42	side9pathsite.vertexurbanhub.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 20:20	line5taskhub.vertexurbanhub.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 20:11	highmeshway.vertexurbanhub.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 20:05	top2logicnet.vertexurbanhub.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 19:59	peak8zoneview.canyonsyncgate.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 19:51	windpathgate.canyonsyncgate.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 19:46	dust4hostunit.canyonsyncgate.garden	ClearFake	ClearFake	Anonymous
2026-04-28 19:30	echomeshsite.canyonsyncgate.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 19:30	https://kineticnode.shop/ext.0ff2555835d3.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-28 19:29	https://kineticnode.shop/ext-b.58316c304236.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-28 19:29	https://kineticnode.shop//t.188cfd3975db.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-28 19:26	https://kineticnode.shop/t.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-28 19:26	kineticnode.shop	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-28 19:17	base7wavenet.basaltlogicnode.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 19:13	https://best-claudns-js.beer/api/css.js	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-28 19:12	best-claudns-js.beer	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-28 19:12	https://cloude-js-server.beer/api/css.js	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-28 19:12	cloude-js-server.beer	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-28 19:08	core3gatehost.basaltlogicnode.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 18:48	rockmeshunit.basaltlogicnode.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 18:42	hard5logicbox.basaltlogicnode.garden	ClearFake	ClearFake	Anonymous
2026-04-28 18:36	mist4wavepath.tundraflowunit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 18:00	https://dlh.jornaltribunadearaxa.com.br/	Vidar	Vidar	crep1x
2026-04-28 18:00	dlh.trbombom.com	Vidar	Vidar	crep1x
2026-04-28 18:00	https://dlh.trbombom.com/	Vidar	Vidar	crep1x
2026-04-28 18:00	dlh.jornaltribunadearaxa.com.br	Vidar	Vidar	crep1x
2026-04-28 17:56	chillmeshsite.tundraflowunit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 17:51	storm8taskhub.tundraflowunit.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 17:45	shinenetview.quartzprismcloud.garden	ClearFake	ClearFake	Anonymous
2026-04-28 17:28	sparklogicway.quartzprismcloud.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 17:24	63efwnh.leafspring.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 17:22	glaze3meshnode.quartzprismcloud.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 17:15	opalview4site.quartzprismcloud.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 17:03	deepsurve.leafspring.garden	ClearFake	ClearFake	Anonymous
2026-04-28 17:02	64.190.113.73:80	MintsLoader	dropped-by-KongTuke MintsLoader	abuse_ch
2026-04-28 17:02	https://2n1ksf4h0va.com/api/v1/telemetry	MintsLoader	dropped-by-KongTuke MintsLoader	abuse_ch
2026-04-28 17:02	http://w3xasv14culvnqj.top/1.php	MintsLoader	dropped-by-KongTuke MintsLoader	abuse_ch
2026-04-28 17:00	w3xasv14culvnqj.top	MintsLoader	dropped-by-KongTuke MintsLoader	abuse_ch
2026-04-28 17:00	2n1ksf4h0va.com	MintsLoader	dropped-by-KongTuke MintsLoader	abuse_ch
2026-04-28 16:58	37dmj.leafspring.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 16:52	quor-draet.leafspring.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 16:50	23.95.62.25:7070	Remcos	remcos	abuse_ch
2026-04-28 16:45	sub-5ound.leafspring.garden	ClearFake	ClearFake	Anonymous
2026-04-28 16:42	https://gccsinc.com/file.js	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	gccsinc.com	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	https://gccsinc.com/t	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	https://gccsinc.com/g	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	https://gccsinc.com/c	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	https://2n1ksf4h0va.com/d	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	2n1ksf4h0va.com	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	solforgeal3.lightforge.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	https://truecorehub.top/handler/status-partial.js	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:42	truecorehub.top	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:42	https://truecorehub.top/handler/redirect-server.php	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:42	https://truecorehub.top/handler/realm-component.js	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:42	http://185.93.221.129	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:42	http://103.20.235.207	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:42	https://solidnexio.com/software/python	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:42	https://hx1.bounceme.net:4433/victim.dll	Unknown malware	AppDomainManager bounceme-net commodity-rev-shell JscLoader	Lenny_3BO
2026-04-28 16:42	154.240.183.11:4433	Unknown malware	AppDomainManager bounceme-net commodity-rev-shell JscLoader	Lenny_3BO
2026-04-28 16:42	ba6d68bbb99c6237c983d491abf42245e8a0d7a993ca3d27e59907288fd836c5	Unknown malware	AppDomainManager bounceme-net commodity-rev-shell JscLoader	Lenny_3BO
2026-04-28 16:42	http://hx1.bounceme.net:8080/trigger	Unknown malware	AppDomainManager bounceme-net commodity-rev-shell JscLoader	Lenny_3BO
2026-04-28 16:42	hx1.bounceme.net	Unknown malware	AppDomainManager bounceme-net commodity-rev-shell DDNS JscLoader	Lenny_3BO
2026-04-28 16:42	154.240.183.11:53	Unknown malware	AppDomainManager bounceme-net commodity-rev-shell JscLoader	Lenny_3BO
2026-04-28 16:42	154.240.183.11:8080	Unknown malware	AppDomainManager bounceme-net commodity-rev-shell JscLoader	Lenny_3BO
2026-04-28 16:42	nor-meshix.mossgrove.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	https://vtcircuits.com/file.js	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	vtcircuits.com	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	https://vtcircuits.com/t	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	https://vtcircuits.com/g	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	https://vtcircuits.com/c	KongTuke	Kongtuke	monitorsg
2026-04-28 16:42	hillwest.mossgrove.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	solidnexio.com	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:42	rlkz.stoneflare.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	rqhk6he.stoneflare.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	ivorystorage.stoneflare.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	104.105.69.73:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	104.105.69.51:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	104.105.69.37:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	104.105.69.71:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	kelcrestet.frosthaven.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	jicinvestments.monster	Unknown malware	ClickFix ErrTraffic	netgrain
2026-04-28 16:42	megustacoaching.monster	Unknown malware	ClickFix ErrTraffic	netgrain
2026-04-28 16:42	respondmeasure.monster	Unknown malware	ClickFix ErrTraffic	netgrain
2026-04-28 16:42	vhyip.monster	Unknown malware	ClickFix ErrTraffic	netgrain
2026-04-28 16:42	vosart.monster	Unknown malware	ClickFix ErrTraffic	netgrain
2026-04-28 16:42	104.105.69.76:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	104.105.69.50:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	104.105.69.40:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	swiftbann.voidstream.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	104.105.69.22:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	handlerfalc.voidstream.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:42	104.105.69.19:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:42	104.105.69.24:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-28 16:41	honestlab.voidstream.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	https://rapidforge.top/handler/redirect-server.php	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:41	rapidforge.top	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:41	https://rapidforge.top/handler/realm-component.js	SmartApeSG	SmartApeSG	monitorsg
2026-04-28 16:41	brookcano.sunmeadow.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	api-sub.jrodacooker.dev	Unknown malware	PromptMink	johannes
2026-04-28 16:41	api.bensaru.site	Unknown malware	PromptMink	johannes
2026-04-28 16:41	api.fivefingerz.dev	Unknown malware	PromptMink	johannes
2026-04-28 16:41	api.mywalletsss.store	Unknown malware	PromptMink	johannes
2026-04-28 16:41	api.soladify.fun	Unknown malware	PromptMink	johannes
2026-04-28 16:41	blxrbn.com	Unknown malware	PromptMink	johannes
2026-04-28 16:41	changelog.rest	Unknown malware	PromptMink	johannes
2026-04-28 16:41	clob-polymarket.com	Unknown malware	PromptMink	johannes
2026-04-28 16:41	ghostraper.top	Unknown malware	PromptMink	johannes
2026-04-28 16:41	ipfs-url-validator.vercel.app	Unknown malware	PromptMink	johannes
2026-04-28 16:41	log.pricesheet.ink	Unknown malware	PromptMink	johannes
2026-04-28 16:41	logger.clob.health	Unknown malware	PromptMink	johannes
2026-04-28 16:41	navigatorshub.com	Unknown malware	PromptMink	johannes
2026-04-28 16:41	polblxpnl.space	Unknown malware	PromptMink	johannes
2026-04-28 16:41	polymarket-clob.com	Unknown malware	PromptMink	johannes
2026-04-28 16:41	rpc-amoy.polygon.technology	Unknown malware	PromptMink	johannes
2026-04-28 16:41	validator.uno	Unknown malware	PromptMink	johannes
2026-04-28 16:41	winstonjs.site	Unknown malware	PromptMink	johannes
2026-04-28 16:41	meta-v0ca.sunmeadow.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	ob53rv-mesh.greenbloom.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	http://192.253.248.10:8099/pages/login.php	Unknown malware	AS213790 Limited Network LTD UNAM	antiphishorg
2026-04-28 16:41	192.253.248.10:8099	Unknown malware	AS213790 Limited Network LTD UNAM	antiphishorg
2026-04-28 16:41	ie78lu.greenbloom.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	comp-vine.greenbloom.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	o6iz.rosevale.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	culturebold.rosevale.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	betav2ryazhsky.digital	ClearFake	28April2026 ClearFake Commandline macOS	Gi7w0rm
2026-04-28 16:41	https://sites.google.com/view/claudemacos	Unknown Stealer		ineffyble
2026-04-28 16:41	sonic4wavehub.sonicwavehost.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	audiomeshbase.sonicwavehost.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	tonelogicgate7.sonicwavehost.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	echo2pathnode.sonicwavehost.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	normark3en.shadowpeak.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	stormloader.shadowpeak.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	arrayterminal.shadowpeak.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	refinesail.shadowpeak.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:41	runvva-route.lightforge.garden	ClearFake	28April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-28 16:39	alt-w1nd.leafspring.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 16:28	clisan.mossgrove.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 16:20	neo-payl0.mossgrove.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 16:15	https://effectiveguidesforexpansion.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://fixerupperdiy.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://homeinvestorhandbookoforganization.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://businessroadtogrowth.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://corporateguidebookforinnovation.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://45-76-122-23.cprapid.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://businessguidesforgrowth.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://valuefirsthome.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://everythingabouttravel.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:15	https://thebizmanualforsuccess.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 16:13	proto-hyp3r.mossgrove.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 16:00	b74fa.mossgrove.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 15:51	targ3t9-panel.rosevale.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 15:39	ggitwz7y.betav2ryazhsky.digital	ClearFake	ClearFake	Anonymous
2026-04-28 15:39	97d1n21t.betav2ryazhsky.digital	ClearFake	ClearFake	threatcat_ch
2026-04-28 15:29	kellinear1.rosevale.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 15:23	velvetlayout.rosevale.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 15:17	innerflee.rosevale.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 15:15	https://advancednewdiscoverysphere.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://homeefficiencycraft.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://businessroadtoexpansion.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://realvisionlink.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://thebizmanualforprofit.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://crowdbaron.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://daveandtom.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://strategicvisionfocus.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://strategicclarityden.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://strategicupskillingkings.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://corporatestability.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://entrepreneurmanualforsuccess.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://advancedinfoden.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://advancedlearningdomain.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://bizroadtogrowth.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://comprehensivesustainabilityfocus.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://effectiveguidesforsuccess.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://yourcompanycompanionformarketing.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 15:15	https://businessguidesforsustainability.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:57	if8drhcl.greenbloom.garden	ClearFake	ClearFake	Anonymous
2026-04-28 14:43	l4tt1c-index.greenbloom.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 14:43	1318289497-6hwi9hel8e.ap-beijing.tencentscf.com	Cobalt Strike	CobaltStrike drb-ra	abuse_ch
2026-04-28 14:37	tal-crestis.greenbloom.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 14:32	kelcrest9ar.sunmeadow.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 14:21	ew559.sunmeadow.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 14:15	https://gadgets4guys.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://odesforbeginners.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://maagraphics.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://realgrowthhub.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://21stcenturytoys.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://corporateguidebookformarketing.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://houseownerlandscaping.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://legalterminology.co/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://advancedproficiencystation.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://advancedupskillinghub.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://choosemedsonline.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://lawformodernlife.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://sailorproject.org/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://advancedinsightvault.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://opportunityconnection.net/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://stormhosts.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://erickhoo.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://dentalvideo.net/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://legalbusinessnews.net/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://beyondboundariestravel.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://businessbasicsofgrowth.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://hertechknowledgy.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://studysmarttips.au/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://thegooddentist.net/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://entrepreneurmanualforsales.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://frugalhomeowners.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://yourbizstrategyformarketing.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://actionforrenewables.org/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://americanpersonalrights.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://avictorias.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://pcpatching.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://residentadvisorfordesign.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://houseownerguidebookforefficiency.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:15	https://health-splash.org/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 14:10	csgsuo.ru.com	Nanocore RAT	NanoCore	abuse_ch
2026-04-28 14:08	1oade4-zone.sunmeadow.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 14:05	8.222.225.32:7777	ValleyRAT	RAT ValleyRAT	abuse_ch
2026-04-28 14:05	137.220.134.149:7799	ValleyRAT	RAT ValleyRAT	abuse_ch
2026-04-28 14:05	47.237.95.113:6523	ValleyRAT	RAT ValleyRAT	abuse_ch
2026-04-28 14:05	http://52.158.47.4/javascriptPollhttpLongpoll.php	DCRat	dcrat RAT	abuse_ch
2026-04-28 14:05	172.111.232.230:29810	Remcos	RAT RemcosRAT	abuse_ch
2026-04-28 14:05	129.151.142.36:5725	NjRAT	njrat	abuse_ch
2026-04-28 14:05	64.188.64.38:6001	AsyncRAT	asyncrat RAT	abuse_ch
2026-04-28 14:05	104.21.34.127:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-28 14:05	172.67.161.64:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-28 14:02	azur3-branch.sunmeadow.garden	ClearFake	ClearFake	Anonymous
2026-04-28 13:50	triggeveri.voidstream.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 13:45	po5ter-node.voidstream.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 13:39	yxhe.voidstream.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 13:30	https://bcc.jornaltribunadearaxa.com.br/	Vidar	Vidar	crep1x
2026-04-28 13:30	bcc.trbombom.com	Vidar	Vidar	crep1x
2026-04-28 13:30	https://bcc.trbombom.com/	Vidar	Vidar	crep1x
2026-04-28 13:30	bcc.jornaltribunadearaxa.com.br	Vidar	Vidar	crep1x
2026-04-28 13:22	5un-drive.frosthaven.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 13:20	13.233.224.203:3001	Quasar RAT	quasar	abuse_ch
2026-04-28 13:17	asse4-track.frosthaven.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 13:15	https://rjayfinance.co.nz/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 13:03	whnmkwvj.frosthaven.garden	ClearFake	ClearFake	Anonymous
2026-04-28 12:56	vormarkor.frosthaven.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 12:50	serlineis.frosthaven.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 12:33	5urv3-layer.stoneflare.garden	ClearFake	ClearFake	Anonymous
2026-04-28 12:27	pastureclien.stoneflare.garden	ClearFake	ClearFake	threatcat_ch
2026-04-28 12:15	https://infobymika.fr/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 12:15	https://agrotimes.in/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-28 12:14	dock-visu.stoneflare.garden	ClearFake	ClearFake	Anonymous
2026-04-28 12:03	f4ct0-span.lightforge.garden	ClearFake	ClearFake	Anonymous
2026-04-28 11:55	tpxovsr.lightforge.garden	ClearFake	ClearFake	threatcat_ch