ThreatFox IOC Database

You are browsing the Indicator Of Compromise (IOC) database of ThreatFox. If you would like to contribute IOCs to the corpuse, you can do so through either the web form or the API.

407

IOCs shared (past 24 hours)

ClearFake

Most seen malware family (past 24 hours)

1'669'815

IOCs in corpus

Using the form below, you can search for malware samples by a hash (MD5, SHA256, SHA1), imphash, tlsh hash, ClamAV signature, tag or malware family.

Browse Database

Search syntax is as follow: keyword:search_term

Following is a list of accepted keywords along with an example search_term

ioc:ms-debug-services.com ( run)
malware:CobaltStrike ( run)
tag:TA505 ( run)
threat_type:cc_skimming ( run)
uuid:87f310f3-540b-11eb-922c-42010aa4000a ( run)

Date (UTC)	IOC	Malware	Tags	Reporter
2026-04-25 15:11	ernbe-leaf.to2varon.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 15:11	Unknown8482-51453.portmap.host	Quasar RAT	QusarRAT RAT	abuse_ch
2026-04-25 15:07	80njj90.sylo8mer.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 15:07	theorypin.sylo8mer.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 15:07	wfamakg.to2varon.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 15:05	35.184.9.17:443	MetaStealer	MetaStealer	abuse_ch
2026-04-25 15:01	https://gon.gessoflex.com.br/	Vidar	Vidar	crep1x
2026-04-25 15:01	gon.gessoflex.com.br	Vidar	Vidar	crep1x
2026-04-25 14:59	91.92.241.102:443	SectopRAT	Arechclient2 RAT SectopRAT	abuse_ch
2026-04-25 14:58	vitalpur.sylo8mer.in.net	ClearFake	ClearFake	Anonymous
2026-04-25 14:57	163.61.183.112:9999	Quasar RAT	QusarRAT RAT	abuse_ch
2026-04-25 14:52	ba5ic0-spark.sylo8mer.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 14:45	absshop-ping.xyz	Unknown RAT		tanner
2026-04-25 14:45	acre-sagahill.xyz	Unknown RAT		tanner
2026-04-25 14:45	http://sonra.eutialyson.com/inst24.msi	ClearFake		tanner
2026-04-25 14:41	206.238.115.191:10086	Ghost RAT	Gh0stRAT RAT	abuse_ch
2026-04-25 14:41	talvaleet.histori-pneumonia.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:41	binaryboost.histori-pneumonia.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:41	cl.distritovagas.com	ClearFake		tanner
2026-04-25 14:41	cryst0-core.histori-pneumonia.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:41	sprdec.histori-pneumonia.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	shirela.pitifrube1la.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	zfvhht.pitifrube1la.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	tbfnru68.arapnik-nosog.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	nivo.arapnik-nosog.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	176.65.139.59:1337	Mirai	Mirai	seckle
2026-04-25 14:40	lbwtqscv.arapnik-nosog.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	nuevaprodeciencia.club	Unknown malware	agenteV2	johannes
2026-04-25 14:40	vmi3003111.contaboserver.net	Unknown malware	agenteV2	johannes
2026-04-25 14:40	https://pastebin.com/raw/0RmxqY57	Unknown malware	agenteV2	johannes
2026-04-25 14:40	https://nuevaprodeciencia.club/br77b/iayjaskyeiagds.php	Unknown malware	agenteV2	johannes
2026-04-25 14:40	dark-star-4.limbe7revolut.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	http://45.77.60.153/%2BU2QpCWLB0TeEK0Y%2BTHl1Q%3D%3D	GlassWorm	glassworm Wave3	tipo_deincognito
2026-04-25 14:40	http://217.69.8.40/63RbXCmTBoPZhfyuqUsNdA%3D%3D	GlassWorm	glassworm Wave3	tipo_deincognito
2026-04-25 14:40	http://45.77.60.153/get_arhive_npm/zi2WMapzCnO8eV9QY%2BQQXQ%3D%3D	GlassWorm	glassworm Wave3	tipo_deincognito
2026-04-25 14:40	http://45.77.60.153/darwin-universal/s4%2BECczuPY7jRKr7qbsMng%3D%3D?wallet=trezor	GlassWorm	glassworm wallet-trojan Wave3	tipo_deincognito
2026-04-25 14:40	http://217.69.8.40/get_arhive_npm/jCbp9cVu%2B%2B%2FczOTwvXfJbQ%3D%3D	GlassWorm	glassworm Wave3	tipo_deincognito
2026-04-25 14:40	http://45.77.60.153/darwin-universal/s4%2BECczuPY7jRKr7qbsMng%3D%3D?wallet=ledger	GlassWorm	glassworm wallet-trojan Wave3	tipo_deincognito
2026-04-25 14:40	http://217.69.8.40/darwin-universal/WJcjmFcy4f4SxNGlL5o0cQ%3D%3D?wallet=trezor	GlassWorm	glassworm wallet-trojan Wave3	tipo_deincognito
2026-04-25 14:40	http://217.69.8.40/darwin-universal/WJcjmFcy4f4SxNGlL5o0cQ%3D%3D?wallet=ledger	GlassWorm	glassworm wallet-trojan Wave3	tipo_deincognito
2026-04-25 14:40	http://45.32.150.251/g/63RbXCmTBoPZhfyuqUsNdA%3D%3D	GlassWorm	calendar-c2 glassworm Wave3	tipo_deincognito
2026-04-25 14:40	noir-8.limbe7revolut.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	holz-berg-5.presidium-spike.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	petit-fire-6.presidium-spike.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	https://quiglgy.com/file.js	KongTuke	Kongtuke	monitorsg
2026-04-25 14:40	quiglgy.com	KongTuke	Kongtuke	monitorsg
2026-04-25 14:40	https://quiglgy.com/t	KongTuke	Kongtuke	monitorsg
2026-04-25 14:40	https://quiglgy.com/g	KongTuke	Kongtuke	monitorsg
2026-04-25 14:40	https://quiglgy.com/c	KongTuke	Kongtuke	monitorsg
2026-04-25 14:40	bleu-5.dua1ismmatron.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	rouge-4.fixt-turbine.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	dark-berg-2.fixt-turbine.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	vert-3.ales1ine.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	zenmetrics-software.com	Unknown malware	ClickFix FastAPI Python-embed RAT rmm zm_agent	Lenny_3BO
2026-04-25 14:40	198.251.88.136:443	Unknown malware	ClickFix FastAPI Python-embed RAT rmm zm_agent	Lenny_3BO
2026-04-25 14:40	144.31.215.205:443	Unknown malware	ClickFix FastAPI Python-embed RAT rmm zm_agent	Lenny_3BO
2026-04-25 14:40	https://zenmetrics-software.com/api/devices/register	Unknown malware	ClickFix FastAPI Python-embed RAT rmm zm_agent	Lenny_3BO
2026-04-25 14:40	https://zenmetrics-software.com/api/ws/monitor/	Unknown malware	ClickFix FastAPI Python-embed RAT rmm zm_agent	Lenny_3BO
2026-04-25 14:40	https://zenmetrics-software.com/api/telegram-loggers/mine	Unknown malware	ClickFix FastAPI Python-embed RAT rmm zm_agent	Lenny_3BO
2026-04-25 14:40	zenmetrics.io	Unknown malware	ClickFix FastAPI Python-embed RAT rmm zm_agent	Lenny_3BO
2026-04-25 14:40	holz-baum-8.ales1ine.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	windows-telemetry.cc	CountLoader	CountLoader	aachum
2026-04-25 14:40	https://windows-telemetry.cc/api/submit	CountLoader	CountLoader	aachum
2026-04-25 14:40	adverbrequire.com	FAKEUPDATES	SocGholish	varysz
2026-04-25 14:40	zeit-9.ales1ine.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	api.uioplerixtem.com	FAKEUPDATES	SocGholish	varysz
2026-04-25 14:40	pa-portal.benningtonspringsmhp.com	FAKEUPDATES	SocGholish	varysz
2026-04-25 14:40	fast-berg-4.archit-physiol.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	gold-5.archit-physiol.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	soft-fire-6q.archit-physiol.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	haus-2.archit-physiol.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	rouge-8.slanikt7ay.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	noir-6.slanikt7ay.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	vert-2.cicada-tkacki.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	gold-mond-9z.cicada-tkacki.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	iron-star-2n.caissonnarc0m.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	176.65.139.141:1024	Mirai	Mirai	seckle
2026-04-25 14:40	edaciousedacioussewcomfortless.com	FAKEUPDATES	SocGholish	varysz
2026-04-25 14:40	soft-land-4.caissonnarc0m.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	noir-7.caissonnarc0m.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	holz-baum-4.excavat-toponym.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	blue-fire-8x.excavat-toponym.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	https://deepnoxa.com/update.zip	Unknown malware	ClickFix drawio-sideload electron-loader	Lenny_3BO
2026-04-25 14:40	https://deepnoxa.com/q	Unknown malware	ClickFix drawio-sideload electron-loader	Lenny_3BO
2026-04-25 14:40	deepnoxa.com	Unknown malware	ClickFix drawio-sideload electron-loader	Lenny_3BO
2026-04-25 14:40	https://chimefusion.com/u/	Unknown malware	ClickFix drawio-sideload electron-loader	Lenny_3BO
2026-04-25 14:40	chimefusion.com	Unknown malware	ClickFix drawio-sideload electron-loader	Lenny_3BO
2026-04-25 14:40	0642708ec7c25dec3168f1ab275a29bfd3cf69fe3afc3d5c6eadfa6750102883	Unknown malware	ClickFix drawio-sideload electron-loader	Lenny_3BO
2026-04-25 14:40	d942e9cfc0ca32a3d66ec690090ee22dca74953efed6889fb2292de36f5e39fd	Unknown malware	ClickFix drawio-sideload electron-loader	Lenny_3BO
2026-04-25 14:40	dark-6.excavat-toponym.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	gold-2.excavat-toponym.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	dsf2.excavat-toponym.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	jz8ef5.dex3lavan.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	svvift5-trace.dex3lavan.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	publish2-mount.bexla9rin.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	canopystor.bexla9rin.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	passiv-reage.qiv2moren.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	cultureengine.qiv2moren.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	audittiny.qiv2moren.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	starwinter.rax4pavel.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	argrs.sylo6mer.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	falforma.rax4pavel.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	25eap9f.sylo6mer.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	atomicextract.to9varon.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	rntfvps.to9varon.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	ash-leaf.to9varon.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	inkraven.kymle1rax.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	tercheck.kymle1rax.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	auto-update.tx-wealth.com	FAKEUPDATES	SocGholish	monitorsg
2026-04-25 14:40	http://24.152.36.241:8080	Unknown malware	LofyStealer	johannes
2026-04-25 14:40	vor-spireos.nov3liren.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	serven5um.nov3liren.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	springledg.nov3liren.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:40	conv3r5-glow.dex3lavan.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	mossphoto.zex8liron.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	trigg-crest.rax4pavel.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	149.12.67.231:139	Xtreme RAT	ExtRat Xtreme RAT	whoamix302
2026-04-25 14:39	119.167.191.229:10001	Xtreme RAT	ExtRat Xtreme RAT	whoamix302
2026-04-25 14:39	151.241.88.172:443	Cobalt Strike	Agentemis Beacon Cobalt Strike cobeacon	whoamix302
2026-04-25 14:39	91.92.242.228:443	Remcos		whoamix302
2026-04-25 14:39	83.142.209.58:8081	Remcos		whoamix302
2026-04-25 14:39	173.211.46.145:9000	SectopRAT	1xxbot ArechClient SectopRAT	whoamix302
2026-04-25 14:39	valehar.nov3liren.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	hyper-inv0ice.miv4soren.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	sknrzs3z.miv4soren.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	zrkjvdly.podfdch.com	FAKEUPDATES	SocGholish	varysz
2026-04-25 14:39	sermarkos.miv4soren.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	del1v-graph.dex7lavel.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	planrec.bexla2rin.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	colocip.bexla2rin.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	kelcoreos9.dex7lavel.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	3nzy-layer.qiv9moren.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	bundleform.bexla2rin.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	publishbark.zex3liron.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	velmesh7ix.zex3liron.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	https://ledger.eu.com/ledger-live-desktop.exe	Unknown malware		ninjacatcher
2026-04-25 14:39	igotnofriendsonlineorirl-imgonnakmslmao.skyhanni.cloud	Unknown malware	DoubleFantasy Gibberish LiteLLM payload teampcp telnyx	johannes
2026-04-25 14:39	pixe2-zone.zex3liron.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	f4ct0ry-mark.zex3liron.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:39	rain-line.rax5pavel.in.net	ClearFake	25April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-25 14:35	reagentcore.sylo8mer.in.net	ClearFake	ClearFake	Anonymous
2026-04-25 14:29	dealparc.sylo8mer.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 14:23	l1ch-mesh.rax5pavel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 14:21	47.94.167.171:7777	Cobalt Strike	CobaltStrike cs-watermark-987654321	abuse_ch
2026-04-25 14:21	39.97.233.222:7777	Cobalt Strike	CobaltStrike cs-watermark-987654321	abuse_ch
2026-04-25 14:21	8.136.97.98:8081	Cobalt Strike	CobaltStrike cs-watermark-391144938	abuse_ch
2026-04-25 14:18	107.189.17.214:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	abuse_ch
2026-04-25 14:18	80.78.30.153:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	abuse_ch
2026-04-25 14:17	124.222.75.188:443	Cobalt Strike	CobaltStrike cs-watermark-100000	abuse_ch
2026-04-25 14:10	campa-fla.rax5pavel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 13:59	formtrai.rax5pavel.in.net	ClearFake	ClearFake	Anonymous
2026-04-25 13:56	suapagina1.com.br	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 13:53	m17e.rax5pavel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 13:48	quorlineex.rax5pavel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 13:30	bradley.cyber-demo-client-website1.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 13:24	tr4ck7-plate.zex3liron.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 13:17	quorforgeet6.zex3liron.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 13:13	zeermoda.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 13:05	zakateksmaku.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 13:00	4wjh4hoo.qiv9moren.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 12:54	quormesh1os.qiv9moren.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 12:48	sng2kb.qiv9moren.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 12:41	www.tabaccheriadavino.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 12:37	6z3dyra.qiv9moren.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 12:31	https://wgw.gessoflex.com.br/	Vidar	Vidar	crep1x
2026-04-25 12:31	wgw.gessoflex.com.br	Vidar	Vidar	crep1x
2026-04-25 12:27	boostmanifest.qiv9moren.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 12:21	eamo.bexla2rin.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 12:11	fl4rn2-phase.bexla2rin.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 12:06	bundleform.bexla2rin.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 11:53	f0cu-grid.bexla2rin.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 11:39	workersolar.dex7lavel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 11:33	kel-marken.dex7lavel.in.net	ClearFake	ClearFake	Anonymous
2026-04-25 11:20	mer-meshis.dex7lavel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 11:05	summiceda.dex7lavel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 10:59	validatorgri.miv4soren.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 10:48	gpfour4.miv4soren.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 10:29	fjtx.miv4soren.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 10:16	rockconvoy.kymle1rax.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 10:10	firmwa7-point.to9varon.in.net	ClearFake	ClearFake	Anonymous
2026-04-25 10:05	bytehard.sylo6mer.in.net	ClearFake	ClearFake	Anonymous
2026-04-25 09:46	dpcr.qiv2moren.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 09:40	focusflame.bexla9rin.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 09:25	syashop.uk.com	Nanocore RAT	NanoCore	abuse_ch
2026-04-25 09:25	bbc.in.net	Nanocore RAT	NanoCore	abuse_ch
2026-04-25 09:23	84gxvrtf.miv7sorel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 09:17	systelaun.nov3liren.in.net	ClearFake	ClearFake	Anonymous
2026-04-25 09:15	172.67.178.110:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-25 09:15	104.21.71.182:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-25 09:10	clust1-dock.nov3liren.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 08:56	techel.co.ke	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 08:55	airtellwireless.it.com	Nanocore RAT	NanoCore	abuse_ch
2026-04-25 08:51	tasheelbd.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 08:50	104.21.9.66:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-25 08:50	172.67.159.51:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-25 08:36	atom1-span.nov3liren.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 08:31	https://psy.gessoflex.com.br/	Vidar	Vidar	crep1x
2026-04-25 08:31	psy.gessoflex.com.br	Vidar	Vidar	crep1x
2026-04-25 08:29	emidb.kymle1rax.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 08:23	geo-1c3.kymle1rax.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 08:18	veltide4a.kymle1rax.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 08:10	thick8-signal.kymle1rax.in.net	ClearFake	ClearFake	Anonymous
2026-04-25 07:48	neo-cornput.to9varon.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 07:42	bytefore.to9varon.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 07:41	somandodestinos.com.br	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 07:36	smarketing.pe	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 07:25	server-scar.to9varon.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 07:24	sklep.wisen.pl	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 07:20	small-devices.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 07:20	hdf358xa.sylo6mer.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 07:18	signnscanpdf.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 07:11	amber-mon.sylo6mer.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 07:10	shaurarodgers.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 07:06	gentl-snow.sylo6mer.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 07:05	servidomestico.es	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 06:58	screenox.in	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 06:51	satavina.vn	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 06:49	vorlithen4.sylo6mer.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 06:44	saraj.ba	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 06:43	sernexor8.rax4pavel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 06:37	sales.wilderness-explorers.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 06:33	salamancacooperativa.es	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 06:28	rvbconsult.com.br	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 06:23	forrn7-panel.rax4pavel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 06:23	ru.bergstreisser.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 06:18	rosemarie.zerosoft.in	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 06:18	jkdraj.rax4pavel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 06:10	vellithal3.rax4pavel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 06:02	rightbrainiacs.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 05:58	reklamniplochytabor.cz	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 05:57	dyn-tideis.zex8liron.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 05:51	reforcelog.com.br	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 05:51	ultra-f1rmvva.zex8liron.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 05:41	sub-n3uron.zex8liron.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 05:39	raica.ind.br	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 05:35	kkdho.zex8liron.in.net	ClearFake	ClearFake	Anonymous
2026-04-25 05:32	radiationoncologycare.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 05:29	vorcrestix.zex8liron.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 05:21	72z5.zex8liron.in.net	ClearFake	ClearFake	Anonymous
2026-04-25 05:15	https://loja.lauricoco.com.br/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-25 05:15	https://sergemoulypeintre.fr/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-25 05:15	https://asoandes.org/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-25 05:15	https://leslieporterfield.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-25 05:15	https://lauricoco.com.br/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-25 05:15	https://praiahall.com.br/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-25 05:02	ollowgl.qiv2moren.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 04:56	motif4-vector.qiv2moren.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 04:45	gf2rfd.qiv2moren.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 04:30	7fsk.bexla9rin.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 04:25	theponzu.com	Nanocore RAT	NanoCore	abuse_ch
2026-04-25 04:25	sc88884.com	Nanocore RAT	NanoCore	abuse_ch
2026-04-25 04:20	172.67.208.215:443	Nanocore RAT	NanoCore RAT	abuse_ch
2026-04-25 04:15	https://cleanpoweraustralia.com.au/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-25 04:15	https://congresswcc.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-25 04:15	https://coca.com.sg/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-25 04:15	https://nutrionline.club/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-25 04:14	echoloa.bexla9rin.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 04:09	theormot.bexla9rin.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 04:03	vorforge7al.bexla9rin.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 03:52	proto-str34m.dex3lavan.in.net	ClearFake	ClearFake	Anonymous
2026-04-25 03:33	norspireos3.dex3lavan.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 03:25	tracesound.dex3lavan.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 03:20	segmentash.dex3lavan.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 03:12	growthcircui.miv7sorel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 03:06	surv3y7-plate.miv7sorel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 02:57	bark-line.miv7sorel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 02:51	basicret.miv7sorel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 02:46	tri-fluxa.miv7sorel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 02:39	solafirmw.miv7sorel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 02:31	dffer.excavat-toponym.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 02:04	fast-land-9c.excavat-toponym.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 01:45	zeit-1.excavat-toponym.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 01:34	open-3.caissonnarc0m.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 01:26	https://peafamqe.cyou	Lumma Stealer	Lumma	abuse_ch
2026-04-25 01:26	petit-berg-5p.caissonnarc0m.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 01:05	rouge-6.caissonnarc0m.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 01:04	marketingcomdende.com.br	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 00:51	haus-1.cicada-tkacki.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 00:38	bleu-4.cicada-tkacki.in.net	ClearFake	ClearFake	Anonymous
2026-04-25 00:32	kalt-wald-8.cicada-tkacki.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 00:26	letnaturehelp.co.uk	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 00:23	kacmazbilisim.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 00:21	fast-zeit-5k.cicada-tkacki.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 00:19	leapindustries.co.in	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 00:17	larrywilson.cyber-demo-client-website2.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 00:13	open-9.slanikt7ay.in.net	ClearFake	ClearFake	Anonymous
2026-04-25 00:10	laptoprefurbish.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-25 00:04	holz-berg-4b.slanikt7ay.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-25 00:01	koishi.rs	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 23:59	klik7tv.co.id	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 23:50	petit-land-1.slanikt7ay.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 23:48	khalsacarbazar.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 23:44	keliahealthcare.co.uk	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 23:37	dark-star-3v.slanikt7ay.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 23:36	keeninfocomm.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 23:33	kampoenghijau.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 23:25	jovilodge.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 23:25	192.169.69.25:3852	NetWire RC	NetWire RAT	abuse_ch
2026-04-24 23:18	juelsminde-tennisklub.dk	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 23:07	bleu-1.archit-physiol.in.net	ClearFake	ClearFake	Anonymous
2026-04-24 23:06	jademountains.net	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 23:02	italianmedtranslations.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 23:01	iron-mond-7x.archit-physiol.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 22:52	iptvb1g.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 22:48	blue-star-2m.ales1ine.in.net	ClearFake	ClearFake	Anonymous
2026-04-24 22:40	kalt-4.ales1ine.in.net	ClearFake	ClearFake	Anonymous
2026-04-24 22:39	info.usdatacorporation.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 22:33	impactunified.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 22:20	noir-land-5s.ales1ine.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 22:10	open-1.fixt-turbine.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 22:04	petit-wald-7k.fixt-turbine.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 22:01	https://amphibgz.cyou	Lumma Stealer	Lumma	abuse_ch
2026-04-24 21:54	soft-6.fixt-turbine.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 21:38	gold-fire-9w.fixt-turbine.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 21:32	fast-2.dua1ismmatron.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 21:25	zeit-land-8v.dua1ismmatron.in.net	ClearFake	ClearFake	Anonymous
2026-04-24 21:13	iron-star-3.dua1ismmatron.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 21:07	haus-7.dua1ismmatron.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 21:02	blue-mond-1m.dua1ismmatron.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 20:57	soft-4.presidium-spike.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 20:45	kalt-2c.presidium-spike.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 20:34	vert-9.presidium-spike.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 20:28	open-land-3x.presidium-spike.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 20:17	gold-wald-1v.limbe7revolut.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 20:11	fast-5.limbe7revolut.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 20:04	rouge-mond-7.limbe7revolut.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 19:58	zeit-2k.limbe7revolut.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 19:46	va11dat-spark.arapnik-nosog.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 19:38	p4rt3-lab.arapnik-nosog.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 19:25	http://cj597826.tw1.ru/L1nc0In.php	DCRat	dcrat RAT	abuse_ch
2026-04-24 19:06	pine2-branch.arapnik-nosog.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 18:39	51lent-route.pitifrube1la.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 18:34	english-studies.net	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 18:21	jzojka.pitifrube1la.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 18:10	talfluxor3.pitifrube1la.in.net	ClearFake	ClearFake	Anonymous
2026-04-24 18:04	musglcb.pitifrube1la.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 17:57	hiddqueue.histori-pneumonia.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 17:51	185.225.17.132:1717	Remcos	remcos	abuse_ch
2026-04-24 17:40	arkdraos4.histori-pneumonia.in.net	ClearFake	ClearFake	Anonymous
2026-04-24 17:26	wttppq.uk.com	Quasar RAT	quasar	abuse_ch
2026-04-24 17:25	dynamo.it.com	Quasar RAT	quasar	abuse_ch
2026-04-24 17:23	edyunay.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 17:22	https://hegmaen.com/file.js	KongTuke	Kongtuke	monitorsg
2026-04-24 17:22	hegmaen.com	KongTuke	Kongtuke	monitorsg
2026-04-24 17:22	https://hegmaen.com/t	KongTuke	Kongtuke	monitorsg
2026-04-24 17:22	https://hegmaen.com/g	KongTuke	Kongtuke	monitorsg
2026-04-24 17:22	images.california-wealth.com	FAKEUPDATES	SocGholish	monitorsg
2026-04-24 17:22	https://hegmaen.com/c	KongTuke	Kongtuke	monitorsg
2026-04-24 17:22	https://86hg23aljj9.com/d	KongTuke	Kongtuke	monitorsg
2026-04-24 17:22	86hg23aljj9.com	KongTuke	Kongtuke	monitorsg
2026-04-24 17:22	193.202.84.17:443	Unknown malware	ClickFix delivery-host msiexec path-traversal per-victim-token	Lenny_3BO
2026-04-24 17:22	http://msnf.us.com/Simpletokncar	Unknown malware	ClickFix delivery-host msiexec path-traversal per-victim-token	Lenny_3BO
2026-04-24 17:22	silent-harvester.cc	Unknown malware	c2	burger
2026-04-24 17:22	89.46.237.138:443	Unknown malware	ClickFix delivery-host msiexec path-traversal per-victim-token	Lenny_3BO
2026-04-24 17:22	sol-coreis.foam-take.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-24 17:22	newproject-newworld.info	SantaStealer	c2 SantaStealer	burger
2026-04-24 17:22	http://msnf.us.com/UserID48236957	Unknown malware	ClickFix delivery-host msiexec path-traversal per-victim-token	Lenny_3BO
2026-04-24 17:22	msnf.us.com	Unknown malware	ClickFix delivery-host msiexec path-traversal per-victim-token	Lenny_3BO
2026-04-24 17:22	valleymount.foam-take.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-24 17:22	falconshift.foam-take.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-24 17:22	innercoupon.foam-take.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-24 17:22	tonecalm.clo5etterebeat.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-24 17:21	arkvale6os.foam-take.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-24 17:21	denseink.clo5etterebeat.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-24 17:21	moraltin.clo5etterebeat.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-24 17:21	draftroya.acquisit-batper.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-24 17:21	sipzix.acquisit-batper.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-24 17:21	meta-irnpor.acquisit-batper.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-24 17:21	8cq295yx.acquisit-batper.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-24 17:21	memofreigh.drumf1esh.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-24 17:21	gu1de-signal.drumf1esh.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-24 17:21	p82lmc.drumf1esh.in.net	ClearFake	24April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-24 17:19	eau-services.org	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 17:15	https://soareintl.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-24 17:15	https://pliage.ru/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-24 17:15	https://mundialpostos.com.br/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-24 17:10	easysoundhealing.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 17:05	duocphamhd.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 17:00	duandep.vn	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 16:59	secu-line.drumf1esh.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 16:53	downtownladentalcare.yoursmarthost.net	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 16:47	193.161.193.99:53890	RatonRAT	RatonRAT	abuse_ch
2026-04-24 16:41	urbanscarle.drumf1esh.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 16:36	switoken.drumf1esh.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 16:35	dominguezyasociados.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 16:26	beautylizz.com.br	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 16:21	doctoracristinachacon.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 16:19	tracfiel.acquisit-batper.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 16:15	dkmtravels.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 16:15	https://smashclubburgers.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-24 16:15	https://cuttingedgeslicers.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-24 16:13	f0rrn4-logic.acquisit-batper.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 16:08	directiontraining.com.au	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 16:02	directionchurchtx.dioramtech.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 15:50	zenvale2on.clo5etterebeat.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 15:37	dev.www.mas10.ar	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 15:35	3df7.clo5etterebeat.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 15:33	dev.tech360group.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 15:28	dev.guildfaith.ro	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 15:26	labelparc.clo5etterebeat.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-24 15:21	dev.eumeca.ro	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-24 15:18	psy.flise-mesteren.dk	Vidar	r88vry Vidar	abuse_ch
2026-04-24 15:18	https://psy.flise-mesteren.dk/	Vidar	r88vry Vidar	abuse_ch
2026-04-24 15:17	psy.dutraloc.com.br	Vidar	r88vry Vidar	abuse_ch
2026-04-24 15:17	https://psy.dutraloc.com.br/	Vidar	r88vry Vidar	abuse_ch
2026-04-24 15:15	https://cmfilms.it/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous
2026-04-24 15:15	https://lavie-spa.com/	Vidar	ClickFix compromised etherhiding Polygon Vidar WordPress	Anonymous