ThreatFox IOC Database

You are browsing the Indicator Of Compromise (IOC) database of ThreatFox. If you would like to contribute IOCs to the corpuse, you can do so through either the web form or the API.

501

IOCs shared (past 24 hours)

ClearFake

Most seen malware family (past 24 hours)

1'656'779

IOCs in corpus

Using the form below, you can search for malware samples by a hash (MD5, SHA256, SHA1), imphash, tlsh hash, ClamAV signature, tag or malware family.

Browse Database

Search syntax is as follow: keyword:search_term

Following is a list of accepted keywords along with an example search_term

ioc:ms-debug-services.com ( run)
malware:CobaltStrike ( run)
tag:TA505 ( run)
threat_type:cc_skimming ( run)
uuid:87f310f3-540b-11eb-922c-42010aa4000a ( run)

Date (UTC)	IOC	Malware	Tags	Reporter
2026-04-11 13:01	http://a1156871.xsph.ru/c693e2aa.php	DCRat	dcrat RAT	abuse_ch
2026-04-11 12:59	qyfx7uy.awry-pause.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 12:56	https://dreff-nsdns.beer/api/css.js	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-11 12:54	dreff-nsdns.beer	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-11 12:54	majofres.awry-pause.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 12:48	fixthicket.awry-pause.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 12:43	0blj.di5honorman.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 12:37	vvi1d-line.di5honorman.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 12:31	bundleser.di5honorman.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 12:26	crateeast.di5honorman.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 12:13	bwglxvk.di5honorman.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 12:10	45.74.244.142:18433	AsyncRAT	asyncrat RAT	abuse_ch
2026-04-11 12:07	d3ns-sheet.identify-celebrate.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 12:03	fdg.kozow.com	SpyNote	Android c2 domain Spynote triage	DonPasci
2026-04-11 12:03	47.237.23.250:31002	ValleyRAT	AS45102 c2 RAT triage ValleyRAT	DonPasci
2026-04-11 12:03	16.163.74.23:22012	ValleyRAT	AS16509 c2 RAT triage ValleyRAT	DonPasci
2026-04-11 12:03	16.163.74.23:22011	ValleyRAT	AS16509 c2 RAT triage ValleyRAT	DonPasci
2026-04-11 12:01	servicecareindore.in.net	Quasar RAT	c2 domain quasar RAT triage	DonPasci
2026-04-11 12:01	6789.jp.net	Quasar RAT	c2 domain quasar RAT triage	DonPasci
2026-04-11 12:01	03wc5c.identify-celebrate.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 12:00	pionernastoyashi-51662.portmap.host	XWorm	c2 domain triage XWorm	DonPasci
2026-04-11 12:00	mh0-44853.portmap.host	XWorm	c2 domain triage XWorm	DonPasci
2026-04-11 11:55	narr-que.identify-celebrate.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 11:50	npcmrc.identify-celebrate.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 11:44	qbknlas.identify-celebrate.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 11:39	cdr35.identify-celebrate.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 11:36	vvorke-core.halturitmel7ed.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 11:30	geyseropen.halturitmel7ed.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 11:23	fjordvine.halturitmel7ed.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 11:16	reportmeadow.halturitmel7ed.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 11:16	154.36.188.194:6688	ValleyRAT	RAT ValleyRAT	abuse_ch
2026-04-11 11:10	wb9g.halturitmel7ed.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 11:03	alt-5hip.accentol-federat.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 11:00	http://a1155181.xsph.ru/0b4a9acb.php	DCRat	dcrat RAT	abuse_ch
2026-04-11 10:56	epgl608r.accentol-federat.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 10:50	tokencouri.accentol-federat.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 10:43	lqwstnf.accentol-federat.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 10:37	51tcb.accentol-federat.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 10:30	fjor-dis.accentol-federat.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 10:24	rive-wag.particu1silomer.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 10:19	tawg.particu1silomer.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 10:13	c34pp.particu1silomer.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 10:07	f3rn-dock.particu1silomer.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 10:01	156.238.239.253:7000	XWorm	XWorm	dyingbreeds_
2026-04-11 10:00	bastes.ru.com	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	darshafresh.in.net	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	tmufrk.za.com	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	e2bet.mobile	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	jjibmj.za.com	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	xikus.ru.com	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	mnsancarlos.com.mx	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	s868vip.com	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	westboundagency.gb.net	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	stigp.sa.com	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	touju.jpn.com	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	yik.uk.com	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	olxxdn.ru.com	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	ga88.cool	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	ga888.mobile	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	ga888vn.codes	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	nce.de.com	Quasar RAT	quasar	dyingbreeds_
2026-04-11 10:00	formazione.eu.com	Quasar RAT	quasar	dyingbreeds_
2026-04-11 09:54	agentsca.particu1silomer.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 09:48	svc5y.prime-media-gate.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 09:45	http://a1070666.xsph.ru/7825d1d5.php	DCRat	dcrat RAT	abuse_ch
2026-04-11 09:21	active.solid-build-trace.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 09:14	gate7.solid-build-trace.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 08:45	http://a1137286.xsph.ru/d43cbf2e.php	DCRat	dcrat RAT	abuse_ch
2026-04-11 08:33	38.49.208.124:7889	PureRAT	PureHVNC PureRAT RAT	abuse_ch
2026-04-11 08:23	gate6-way.solid-build-trace.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 08:18	svc5-relay.solid-build-trace.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 08:12	vault4-root.solid-build-trace.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 08:07	api3-arch.solid-build-trace.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 08:01	node2-draw.solid-build-trace.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 07:59	204.76.203.165:421	Tofsee	tofsee	abuse_ch
2026-04-11 07:55	plan1-data.solid-build-trace.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 07:50	hub6-main.prime-media-gate.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 07:45	svc5-relay.prime-media-gate.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 07:42	18.162.212.102:8880	ValleyRAT	RAT ValleyRAT	abuse_ch
2026-04-11 07:41	qqdsbnmkloi.cn	ValleyRAT	RAT ValleyRAT	abuse_ch
2026-04-11 07:40	xzcgtffdlmn.cc	ValleyRAT	RAT ValleyRAT	abuse_ch
2026-04-11 07:39	iopytbvgg.cn	ValleyRAT	RAT ValleyRAT	abuse_ch
2026-04-11 07:39	vault4-file.prime-media-gate.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 07:37	206.238.180.118:6666	ValleyRAT	RAT ValleyRAT	abuse_ch
2026-04-11 07:37	xcicvio.cn	ValleyRAT	RAT ValleyRAT	abuse_ch
2026-04-11 07:33	shaoxlsmpp.cn	ValleyRAT	RAT ValleyRAT	abuse_ch
2026-04-11 07:33	api3-gate.prime-media-gate.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 07:28	node2-sync.prime-media-gate.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 07:22	198.46.243.118:8041	Unknown RAT	ConnectWise rmm ScreenConncet	abuse_ch
2026-04-11 07:22	web1-media.prime-media-gate.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 07:20	162.33.179.72:4444	Unknown malware	rmm	abuse_ch
2026-04-11 07:16	hub6-gate.global-health-check.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 07:15	https://ap7.supportly.au/log.php	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-11 07:15	https://ap7.supportly.au/api/index.php	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-11 07:14	https://ap7.supportly.au/cf.js	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-11 07:14	ap7.supportly.au	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-11 07:11	svc5-relay.global-health-check.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 07:07	windlrr.com	KongTuke		rmceoin
2026-04-11 07:07	156.234.202.149:4993	Cobalt Strike	Agentemis Beacon c2 Cobalt Strike CobaltStrike cobeacon	whoamix302
2026-04-11 07:07	110.37.13.228:50050	Mozi	Mozi	whoamix302
2026-04-11 07:07	hxxps://test-dummy-validation-99999.com/test	Lumma Stealer	test	Lenny_3BO
2026-04-11 07:07	hxxps://download-version.1-5-8.com/claude.msixbundle	DarkGate	AI-lure claude ClickFix HTA msixbundle	Lenny_3BO
2026-04-11 07:07	sfu2.ontofabric.in.net	ClearFake	9April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-11 07:07	mist-sub.ontofabric.in.net	ClearFake	9April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-11 07:07	draft-ree.axiocorex.in.net	ClearFake	9April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-11 07:07	geo-4zur.axiocorex.in.net	ClearFake	9April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-11 07:07	maybedontbanplease.com	CASTLELOADER	CastleLoader	SquiblydooBlog
2026-04-11 07:07	googlemt.xyz	Unknown malware	Fake Google Meet	varysz
2026-04-11 07:07	googlemeets.us	Unknown malware	Fake Google Meet	varysz
2026-04-11 07:07	googlemeetingview.com	Unknown malware	Fake Google Meet	varysz
2026-04-11 07:07	googlemeetingginterview.live	Unknown malware	Fake Google Meet	varysz
2026-04-11 07:07	www.googglemeetts.live	Unknown malware	Fake Google Meet	varysz
2026-04-11 07:07	googglemeetinglnterviiew.live	Unknown malware	Fake Google Meet	varysz
2026-04-11 07:07	54.37.70.249:22	Unknown malware	cryptominer malkey mdrfckr outlaw ssh	isaac1
2026-04-11 07:07	world-new-iope.cc	SantaStealer	c2 SantaStealer	burger
2026-04-11 07:07	http://77.91.97.186/login.html	Unknown malware	AS205775 NEON CORE NETWORK LLC stub	antiphishorg
2026-04-11 07:07	https://zellvaro.top/rate/gateway-xml.php	SmartApeSG	SmartApeSG	monitorsg
2026-04-11 07:07	zellvaro.top	SmartApeSG	SmartApeSG	monitorsg
2026-04-11 07:07	https://zellvaro.top/rate/throttle-component.js	SmartApeSG	SmartApeSG	monitorsg
2026-04-11 07:07	http://147.45.42.200/ce3cbfc887?force=1	Unknown malware	ClickFix	brettfitz_
2026-04-11 07:07	https://windlrr.com/file.js	Unknown malware		GoldGoldGold
2026-04-11 07:07	http://2.26.97.61/Sayipem	AMOS		sheikheddy
2026-04-11 07:07	mix-vault.ontostreamix.in.net	ClearFake	10April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-11 07:07	http://64.188.98.250/Hevida	AMOS		sheikheddy
2026-04-11 07:07	hostname.domain.tld	Cobalt Strike		duggusa
2026-04-11 07:07	176.65.139.25:9931	Mirai	Mirai	seckle
2026-04-11 07:07	158.94.208.131:4433	Unknown malware		ClearlyNotB
2026-04-11 07:07	http://114.132.251.233:8888/supershell/login/	Unknown malware	AS45090 Supershell	antiphishorg
2026-04-11 07:06	114.132.251.233:8888	Unknown malware	AS45090 Supershell	antiphishorg
2026-04-11 07:06	http://117.24.4.124:8888/supershell/login/	Unknown malware	AS133776 Quanzhou Supershell	antiphishorg
2026-04-11 07:06	http://8.137.155.113:8888/supershell/login/	Unknown malware	AS37963 Supershell	antiphishorg
2026-04-11 07:06	120.48.18.226:81	Cobalt Strike	Agentemis Beacon c2 Cobalt Strike CobaltStrike cobeacon	whoamix302
2026-04-11 07:06	42.233.105.79:52869	Mozi	Mozi	whoamix302
2026-04-11 07:06	47.76.181.146:8443	GobRAT	GobRAT	whoamix302
2026-04-11 07:06	118.122.8.220:47001	NetSupportManager RAT	NetSupport NetSupportManager RAT RAT	whoamix302
2026-04-11 07:06	211.192.42.213:6000	NetSupportManager RAT	NetSupport NetSupportManager RAT RAT	whoamix302
2026-04-11 07:06	146.19.56.226:80	Stealc	Stealc	whoamix302
2026-04-11 07:06	45.205.2.56:8888	Unknown malware	Supershell	whoamix302
2026-04-11 07:06	etokrol.lol	IClickFix	ClickFix	Anonymous
2026-04-11 07:06	memorycour.gnosiflux.in.net	ClearFake	10April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-11 07:06	159.65.198.121:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	174.138.14.61:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	167.99.36.10:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	167.99.40.72:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	146.190.233.68:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	https://xoera.top/metrics/identity-validator.php	SmartApeSG	SmartApeSG	monitorsg
2026-04-11 07:06	xoera.top	SmartApeSG	SmartApeSG	monitorsg
2026-04-11 07:06	https://xoera.top/metrics/permission-css.js	SmartApeSG	SmartApeSG	monitorsg
2026-04-11 07:06	sync-service.system-telemetry.workers.dev	Unknown malware	c2 SilentStealer	burger
2026-04-11 07:06	newdatasync.onrender.com	Unknown malware	c2 SilentStealer	burger
2026-04-11 07:06	85.11.167.129:18129	Mirai	Mirai	elfdigest
2026-04-11 07:06	toerken.whreceiverrrrrrrrr.ru	Unknown malware	c2 WeedHack	burger
2026-04-11 07:06	104.225.129.77:80	SmartApeSG	ClickFix powershell SmartApeSG	Lenny_3BO
2026-04-11 07:06	frescoporter.app	SmartApeSG	ClickFix SmartApeSG	Lenny_3BO
2026-04-11 07:06	https://zarrvilo.top/metrics/identity-validator.php	SmartApeSG	SmartApeSG	monitorsg
2026-04-11 07:06	zarrvilo.top	SmartApeSG	SmartApeSG	monitorsg
2026-04-11 07:06	https://zarrvilo.top/metrics/permission-css.js	SmartApeSG	SmartApeSG	monitorsg
2026-04-11 07:06	96.126.176.104:8443	Unknown malware	c2 PureHVNC	burger
2026-04-11 07:06	https://96.176.176.104:8443/finish	Unknown malware	c2 PureHVNC	burger
2026-04-11 07:06	https://96.176.176.104:8443/application	Unknown malware	c2 PureHVNC	burger
2026-04-11 07:06	https://96.176.176.104:8443/filesearch/req	Unknown malware	c2 PureHVNC	burger
2026-04-11 07:06	https://96.176.176.104:8443/userinfo	Unknown malware	c2 PureHVNC	burger
2026-04-11 07:06	https://96.176.176.104:8443/plugin	Unknown malware	c2 PureHVNC	burger
2026-04-11 07:06	https://96.176.176.104:8443/discord	Unknown malware	c2 PureHVNC	burger
2026-04-11 07:06	https://96.176.176.104:8443/browser	Unknown malware	c2 PureHVNC	burger
2026-04-11 07:06	https://96.176.176.104:8443/ping	Unknown malware	c2 PureHVNC	burger
2026-04-11 07:06	https://cdn.mensualgeneratr.com/	SmokeLoader	c2 smokeloader	Bitsight
2026-04-11 07:06	finger.linked-people.com	IClickFix	ClickFix finger LOLBin python	Lenny_3BO
2026-04-11 07:06	meeting-live.site	Unknown malware	Fake Google Meet	varysz
2026-04-11 07:06	dapala.net	IClickFix	c2 ClickFix python shellcode	Lenny_3BO
2026-04-11 07:06	162.243.87.175:79	IClickFix	ClickFix finger LOLBin	Lenny_3BO
2026-04-11 07:06	us2meetingpoint.tirex.sbs	Unknown malware	Fake Google Meet	varysz
2026-04-11 07:06	welcome.supp0v3.com	Unknown malware	c2	burger
2026-04-11 07:06	cloud04meet.com	Unknown malware	Fake Google Meet	varysz
2026-04-11 07:06	invite.natalieplay.xyz	Unknown RAT	Fake Zoom	varysz
2026-04-11 07:06	http://45.76.156.222:8888/supershell/login/	Unknown malware	AS20473 Supershell The Constant Company LLC	antiphishorg
2026-04-11 07:06	45.76.156.222:8888	Unknown malware	AS20473 Supershell The Constant Company LLC	antiphishorg
2026-04-11 07:06	update.tompsettsportslaw.com	FAKEUPDATES	SocGholish	monitorsg
2026-04-11 07:06	43.153.76.24:8866	Xtreme RAT	ExtRat Xtreme RAT	whoamix302
2026-04-11 07:06	112.87.174.192:10001	Xtreme RAT	ExtRat Xtreme RAT	whoamix302
2026-04-11 07:06	steakhomsreciple.com	CASTLELOADER	CastleLoader ClickFix finger LOLBin	Lenny_3BO
2026-04-11 07:06	37.107.170.112:32080	Xtreme RAT	ExtRat Xtreme RAT	whoamix302
2026-04-11 07:06	213.139.77.171:79	CASTLELOADER	CastleLoader ClickFix finger LOLBin port79	Lenny_3BO
2026-04-11 07:06	tridontoq.com	CASTLELOADER	CastleLoader ClickFix HijackLoader	Lenny_3BO
2026-04-11 07:06	rorkery.com	KongTuke	ClickFix Kongtuke TDS	Lenny_3BO
2026-04-11 07:06	collsns.com	KongTuke	ClickFix Kongtuke TDS	Lenny_3BO
2026-04-11 07:06	198.13.159.44:443	KongTuke	BOF ClickFix Kongtuke	Lenny_3BO
2026-04-11 07:06	thomphon.com	KongTuke	ClickFix Kongtuke msi	Lenny_3BO
2026-04-11 07:06	foxcross.org	KongTuke	ClickFix Kongtuke	Lenny_3BO
2026-04-11 07:06	164.92.211.223:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	104.248.198.229:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	164.92.212.237:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	164.92.151.197:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	134.209.207.120:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	209.38.109.250:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	159.65.205.15:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	159.65.200.39:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	159.223.212.160:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	167.71.68.44:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	165.22.203.62:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	choice.mybigbeautifullife.com	FAKEUPDATES	SocGholish	monitorsg
2026-04-11 07:06	104.248.94.131:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	209.38.110.161:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:06	20977e3f485f2e39b6af9c472903651a09768d869d0f4e6fe068ac0b59c98bde	IClickFix	CastleLoader ClickFix finger shellcode	Lenny_3BO
2026-04-11 07:06	https://dapala.net/95126aeb-4120-56b1-8c9e-63fdf0c0b6f9/v3	IClickFix	CastleLoader ClickFix shellcode	Lenny_3BO
2026-04-11 07:05	zerdium.com	Unknown malware	c2 NovaShadow	burger
2026-04-11 07:05	https://dapala.net/c26bfdb7-9d8d-5112-b0ca-52773be2ed3b	IClickFix	c2 CastleLoader ClickFix	Lenny_3BO
2026-04-11 07:05	http://45.32.150.251/XKyC3JX9eluVo5oGMEXLwA%3D%3D	GlassWorm	glassworm Wave3	tipo_deincognito
2026-04-11 07:05	http://45.32.150.251/get_arhive_npm/Z10KcBFWoM6mkfsrhxFK0Q%3D%3D	GlassWorm	glassworm Wave3	tipo_deincognito
2026-04-11 07:05	http://45.32.150.251/darwin-universal/SBR1JxtWvuFVrHEtLeRDLA%3D%3D?wallet=trezor	GlassWorm	glassworm wallet-trojan Wave3	tipo_deincognito
2026-04-11 07:05	http://45.32.150.251/darwin-universal/SBR1JxtWvuFVrHEtLeRDLA%3D%3D?wallet=ledger	GlassWorm	glassworm wallet-trojan Wave3	tipo_deincognito
2026-04-11 07:05	206.189.104.13:25001	Kimwolf	c2 kimwolf	Bitsight
2026-04-11 07:05	help1-sync.quick-support-portal.in.net	ClearFake	11April2026 ClearFake Commandline Windows	Gi7w0rm
2026-04-11 07:05	vault4-safe.global-health-check.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 07:00	api3-audit.global-health-check.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 06:54	node2-info.global-health-check.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 06:49	test1-api.global-health-check.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 06:43	gate6-main.urban-growth-data.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 06:37	svc5-relay.urban-growth-data.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 06:36	47.94.168.149:443	Cobalt Strike	CobaltStrike cs-watermark-987654321	abuse_ch
2026-04-11 06:36	101.35.214.58:80	Cobalt Strike	CobaltStrike cs-watermark-305419896	abuse_ch
2026-04-11 06:33	118.107.45.189:8088	Cobalt Strike	CobaltStrike cs-watermark-666666666	abuse_ch
2026-04-11 06:32	vault4-sync.urban-growth-data.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 06:31	122.51.22.147:8000	Cobalt Strike	CobaltStrike cs-watermark-987654321	abuse_ch
2026-04-11 06:31	113.45.255.206:80	Cobalt Strike	CobaltStrike cs-watermark-987654321	abuse_ch
2026-04-11 06:31	180.97.221.220:9100	Cobalt Strike	CobaltStrike cs-watermark-391144938	abuse_ch
2026-04-11 06:26	api3-chart.urban-growth-data.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 06:20	node2-area.urban-growth-data.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 06:15	city1-data.urban-growth-data.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 06:09	hub6-gate.office-task-sync.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 06:04	svc5-relay.office-task-sync.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 06:01	https://poxzxin.cyou	Lumma Stealer	c2 Lumma stealer triage	DonPasci
2026-04-11 06:00	www.wre.uk.net	Quasar RAT	quasar	dyingbreeds_
2026-04-11 06:00	luckywin.it.com	Quasar RAT	quasar	dyingbreeds_
2026-04-11 06:00	eyeenvy.in.net	Quasar RAT	quasar	dyingbreeds_
2026-04-11 06:00	neotechbangladesh.com	Quasar RAT	quasar	dyingbreeds_
2026-04-11 06:00	shiynt.ru.com	Quasar RAT	quasar	dyingbreeds_
2026-04-11 06:00	xn--0ck0d7bw166ajkwa.jpn.com	Quasar RAT	quasar	dyingbreeds_
2026-04-11 05:58	vault4-file.office-task-sync.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 05:52	api3-work.office-task-sync.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 05:47	node2-task.office-task-sync.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 05:41	job1-sync.office-task-sync.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 05:35	gate6-way.travel-point-trace.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 05:30	svc5-relay.travel-point-trace.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 05:24	vault4-sync.travel-point-trace.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 05:20	47.84.22.116:7498	ValleyRAT	RAT ValleyRAT	abuse_ch
2026-04-11 05:19	api3-trace.travel-point-trace.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 05:13	node2-map.travel-point-trace.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 05:07	trip1-point.travel-point-trace.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 05:05	http://a1010913.xsph.ru/L1nc0In.php	DCRat	dcrat RAT	abuse_ch
2026-04-11 05:02	hub6-gate.local-market-hub.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 04:56	svc5-relay.local-market-hub.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 04:51	vault4-root.local-market-hub.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 04:45	api3-trade.local-market-hub.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 04:39	node2-list.local-market-hub.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 04:34	shop1-data.local-market-hub.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 04:28	gate6-way.smart-home-verify.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 04:25	http://a1167511.xsph.ru/c22857bf.php	DCRat	dcrat RAT	abuse_ch
2026-04-11 04:22	svc5-relay.smart-home-verify.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 04:17	vault4-info.smart-home-verify.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 04:11	api3-safe.smart-home-verify.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 04:06	node2-check.smart-home-verify.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 04:00	home1-verify.smart-home-verify.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 03:55	95.211.43.170:55615	RedLine Stealer	RedLineStealer	abuse_ch
2026-04-11 03:55	hub6-relay.green-energy-flow.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 03:49	svc5-solar.green-energy-flow.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 03:43	vault4-data.green-energy-flow.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 03:38	api3-grid.green-energy-flow.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 03:32	node2-power.green-energy-flow.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 03:27	eco1-trace.green-energy-flow.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 03:21	hub6-main.quick-support-portal.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 03:15	svc5-relay.quick-support-portal.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 03:09	vault4-file.quick-support-portal.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 03:04	api3-auth.quick-support-portal.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 02:58	node2-desk.quick-support-portal.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 02:46	gate6-way.don2tdouching.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 02:40	hub5-base.don2tdouching.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 02:35	http://a1158201.xsph.ru/315f0279.php	DCRat	dcrat RAT	abuse_ch
2026-04-11 02:34	svc4-relay.don2tdouching.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 02:29	vault3-info.don2tdouching.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 02:23	node2-soft.don2tdouching.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 02:17	clean1-api.don2tdouching.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 02:12	gate6-hub.creep-score.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 02:06	svc5-match.creep-score.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 02:00	vault4-data.creep-score.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 02:00	7mcn.org.im	Quasar RAT	quasar	dyingbreeds_
2026-04-11 02:00	www.mexicaliblog.com.mx	Quasar RAT	quasar	dyingbreeds_
2026-04-11 01:55	node3-play.creep-score.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 01:49	api2-score.creep-score.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 01:44	game1-log.creep-score.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 01:38	point6-svc.pestte1ex.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 01:32	hub5-gate.pestte1ex.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 01:27	svc4-relay.pestte1ex.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 01:21	vault3-io.pestte1ex.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 01:15	node2-info.pestte1ex.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 01:10	test1-api.pestte1ex.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 01:05	158.160.75.185:40458	RatonRAT	RatonRAT	abuse_ch
2026-04-11 01:04	gate6-hub.consiliumundu-lat.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 00:59	svc5-base.consiliumundu-lat.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 00:54	vault4-root.consiliumundu-lat.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 00:48	node3-link.consiliumundu-lat.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 00:42	api2-unit.consiliumundu-lat.in.net	ClearFake	ClearFake	Anonymous
2026-04-11 00:36	team1-work.consiliumundu-lat.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 00:30	hub6-secure.exhib1torknot.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 00:25	svc5-mark.exhib1torknot.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 00:19	vault4-file.exhib1torknot.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 00:14	node3-view.exhib1torknot.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 00:08	api2-knot.exhib1torknot.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 00:02	show1-data.exhib1torknot.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-11 00:00	195.226.92.129:20302	NjRAT	njrat	abuse_ch
2026-04-10 23:57	gate6-point.semiunder-lear.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 23:51	svc5-hub.semiunder-lear.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 23:46	vault4-sync.semiunder-lear.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 23:40	node3-base.semiunder-lear.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 23:34	study2-api.semiunder-lear.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 23:29	learn1-app.semiunder-lear.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 23:23	main6-gate.8rivastyinfamy.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 23:18	hub5-relay.8rivastyinfamy.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 23:12	file4-svc.8rivastyinfamy.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 23:06	node3-vault.8rivastyinfamy.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 23:01	api2-cloud.8rivastyinfamy.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 22:55	track1-io.8rivastyinfamy.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 22:49	gate6-main.cesura-wate7y.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 22:44	svc5-secure.cesura-wate7y.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 22:38	info4-vault.cesura-wate7y.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 22:33	data3-node.cesura-wate7y.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 22:27	flow2-api.cesura-wate7y.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 22:22	web1-state.cesura-wate7y.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 22:16	hub6-gate.l2vashs-calpel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 22:15	http://www.gpsindia.biz/crm/kha/32/index.php	Azorult	AZORult	abuse_ch
2026-04-10 22:11	svc5-relay.l2vashs-calpel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 22:04	base4-vault.l2vashs-calpel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 21:58	tool3-node.l2vashs-calpel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 21:53	sharp2-api.l2vashs-calpel.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 21:47	cut1-point.l2vashs-calpel.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 21:42	gate6-way.p1aster-voice.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 21:36	audio-hub5.p1aster-voice.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 21:30	vault-svc4.p1aster-voice.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 21:25	node3-call.p1aster-voice.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 21:20	89.163.135.20:6353	RatonRAT	RatonRAT	abuse_ch
2026-04-10 21:20	talk-api2.p1aster-voice.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 21:14	voice1-sync.p1aster-voice.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 21:08	stoneroad.clin8company.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 21:02	8cnv5b.clin8company.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 20:57	balance-ring.clin8company.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 20:55	20.9.134.18:7211	N-W0rm	N-W0rm	abuse_ch
2026-04-10 20:51	mndchnr.clin8company.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 20:45	rpmfki.clin8company.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 20:40	pc7il3.clin8company.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 20:34	vjdxcj1y.particulscoop.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 20:29	ser-marken.particulscoop.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 20:23	vor-litha.particulscoop.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 20:18	west-reach.particulscoop.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 20:12	endpo7-port.particulscoop.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 20:06	cach-route.particulscoop.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 20:01	byte-mesh.flamesre5ent.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 19:55	vvind-frame.flamesre5ent.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 19:50	rs8ize.flamesre5ent.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 19:44	moraltest.flamesre5ent.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 19:38	unilink.flamesre5ent.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 19:32	tr4ce5-trail.flamesre5ent.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 19:30	http://test1.amanur.com/Confirme.html	Unknown Stealer	Banking Stealer Chrome Extension ClickFix	HuntYethHounds
2026-04-10 19:27	mhspcr.predestincent.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 19:22	castgrove.predestincent.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 19:16	si1ent-dock.predestincent.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 19:10	arklith0os.predestincent.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 19:10	144.126.140.33:3000	Unknown Stealer	Banking Stealer Chrome Extension ClickFix	HuntYethHounds
2026-04-10 19:09	144.126.140.33:6712	Unknown Stealer	Banking Stealer Chrome Extension ClickFix	HuntYethHounds
2026-04-10 19:08	http://144.126.140.33:3000	Unknown Stealer	Banking Stealer Chrome Extension ClickFix	HuntYethHounds
2026-04-10 19:05	finalatom.predestincent.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 19:00	xpie348.online	Unknown Stealer	Banking Stealer Chrome Extension ClickFix	HuntYethHounds
2026-04-10 18:59	exposedeep.predestincent.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 18:59	https://xpie348.online/instalador/bcb.crx	Unknown Stealer	Banking Stealer Chrome Extension ClickFix	HuntYethHounds
2026-04-10 18:56	http://xpie348.online/instalador/update.xml	Unknown Stealer	Banking Stealer Chrome Extension ClickFix	HuntYethHounds
2026-04-10 18:55	https://test1.amanur.com	Unknown Stealer	Banking Stealer Chrome Extension ClickFix	HuntYethHounds
2026-04-10 18:55	test1.amanur.com	Unknown Stealer	Banking Stealer Chrome Extension ClickFix	HuntYethHounds
2026-04-10 18:54	60moi.canone7node.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 18:48	asset5-track.canone7node.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 18:42	solcoreal5.canone7node.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 18:37	soundencode.canone7node.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 18:31	ubped.canone7node.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 18:30	82.29.96.88:1112	Quasar RAT	quasar	abuse_ch
2026-04-10 18:25	meta-5udd.canone7node.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 18:20	reef-drive.airportbude.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 18:14	ultra-gr4nit.airportbude.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 18:08	yssym17.airportbude.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 18:03	loosematrix.airportbude.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 18:01	btx.it.com	Quasar RAT	quasar	dyingbreeds_
2026-04-10 18:01	bmscentral.gb.net	Quasar RAT	quasar	dyingbreeds_
2026-04-10 18:01	qh88go.it.com	Quasar RAT	quasar	dyingbreeds_
2026-04-10 18:01	bundelbites.in.net	Quasar RAT	quasar	dyingbreeds_
2026-04-10 18:01	f1686s.ink	Quasar RAT	quasar	dyingbreeds_
2026-04-10 18:01	hpkusp.za.com	Quasar RAT	quasar	dyingbreeds_
2026-04-10 18:00	dacy-50399.portmap.host	XWorm	c2 domain triage XWorm	DonPasci
2026-04-10 18:00	migueldias111-45351.portmap.host	XWorm	c2 domain triage XWorm	DonPasci
2026-04-10 18:00	7mcn.zone	Quasar RAT	quasar	dyingbreeds_
2026-04-10 18:00	qh88vh.jp.net	Quasar RAT	quasar	dyingbreeds_
2026-04-10 18:00	sunilmilkcentre.in.net	Quasar RAT	quasar	dyingbreeds_
2026-04-10 18:00	ezege.duckdns.org	Remcos	remcos	dyingbreeds_
2026-04-10 17:58	https://web-captcha.cc/verification.google	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 17:58	web-captcha.cc	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 17:57	formatmeas.airportbude.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 17:52	impo-casc.airportbude.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 17:46	5csau02h.faultmincin8.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 17:41	suyjbrc.faultmincin8.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 17:35	0hyb.faultmincin8.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 17:30	b4rk-craft.faultmincin8.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 17:29	https://mermiston.com/g	KongTuke	ClickFix Kongtuke	HuntYethHounds
2026-04-10 17:28	https://mermiston.com/t	KongTuke	ClickFix Kongtuke	HuntYethHounds
2026-04-10 17:28	https://mermiston.com/file.js	KongTuke	ClickFix Kongtuke	HuntYethHounds
2026-04-10 17:27	mermiston.com	KongTuke	ClickFix Kongtuke	HuntYethHounds
2026-04-10 17:24	passivedusk.faultmincin8.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 17:23	j84f4g0p.quantumharbinger.digital	ClearFake	ClearFake	Anonymous
2026-04-10 17:21	8b77timf.quantumharbinger.digital	ClearFake	ClearFake	threatcat_ch
2026-04-10 17:18	freightdynam.faultmincin8.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 17:13	clear-hinge.fineon1y.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 17:07	sercrestos9.fineon1y.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 16:51	https://keymlnypin.com/985865/testT.php	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 16:51	https://keymlnypin.com/985865/dataT.php	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 16:50	https://keyzwqypin.com/83567/testG.php	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 16:50	https://keyzwqypin.com/83567/dataG.php	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 16:49	keyzwqypin.com	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 16:39	hyper-5i1ver.fineon1y.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 16:38	https://theandes.icu/ext-b.a3c809f025fb.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-10 16:37	https://theandes.icu/ext.8d9da06e2a1a.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-10 16:37	https://theandes.icu/t.188cfd3975db.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-10 16:37	https://theandes.icu/t.js?site=	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-10 16:36	theandes.icu	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-10 16:35	https://thebigs.icu/ext-b.a3c809f025fb.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-10 16:33	https://thebigs.icu/ext.8d9da06e2a1a.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-10 16:33	primpartn.fineon1y.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 16:33	https://thebigs.icu/t.188cfd3975db.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-10 16:32	https://thebigs.icu/t.js?site=	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-10 16:30	thebigs.icu	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-10 16:29	https://bowlask.icu/t.188cfd3975db.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-10 16:29	https://bowlask.icu/ext.8d9da06e2a1a.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-10 16:28	https://bowlask.icu/ext-b.a3c809f025fb.js	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-10 16:27	lab3l-node.fineon1y.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 16:27	https://bowlask.icu/t.js?site=	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-10 16:27	bowlask.icu	Unknown malware	ClickFix EXT	HuntYethHounds
2026-04-10 16:22	rh0zttub.erectreset.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 16:16	serven0ix.erectreset.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 16:12	https://mbinfras.com	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 16:12	mbinfras.com	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 16:11	importsnow.erectreset.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 16:06	https://legtaxandpartners.com	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 16:05	legtaxandpartners.com	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 16:05	zenvaleex.erectreset.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 16:04	https://laurebessiere.fr	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 16:04	laurebessiere.fr	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 16:02	https://ka-design.fr	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 16:02	ka-design.fr	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 15:59	updv1.erectreset.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 15:58	https://aukbakery.com	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 15:58	aukbakery.com	Unknown malware	ClickFix	HuntYethHounds
2026-04-10 15:53	851xsk.erectreset.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 15:46	ligfleet.bravo1nixu.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 15:40	valley-con.bravo1nixu.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 15:34	fleestrict.bravo1nixu.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 15:29	vi5u4l-branch.bravo1nixu.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 15:27	https://vsactivens.beer/api/css.js	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-10 15:27	vsactivens.beer	Unknown malware	ClickFix ErrTraffic	HuntYethHounds
2026-04-10 15:23	dynvenor.bravo1nixu.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 15:17	porter.bravo1nixu.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 15:16	kuboinvestments.com	StrelaStealer	StrelaStealer	threatcat_ch
2026-04-10 15:13	iktol.zeltorinax.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 15:07	hsp96wn.zeltorinax.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 15:01	decodebran.zeltorinax.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 14:56	289rabl.zeltorinax.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 14:51	p4rtn0-forge.zeltorinax.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 14:45	composerefine.zeltorinax.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 14:39	metri-oak.kyno4rexil.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 14:33	d1sc4-wave.kyno4rexil.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 14:28	st4bi-spool.kyno4rexil.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 14:23	lumvalea.kyno4rexil.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 14:16	equity-colum.kyno4rexil.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 14:10	ngwq.kyno4rexil.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 14:03	ultglyp.vortaqen.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 13:57	geysermars.vortaqen.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 13:52	norforge2ar.vortaqen.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 13:46	80ycuu.vortaqen.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 13:41	q6ivtu.vortaqen.in.net	ClearFake	ClearFake	Anonymous
2026-04-10 13:34	velvale7on.vortaqen.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 13:29	tradesyn.plix9anor.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 13:23	neuralvau.plix9anor.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 13:18	4zure-hold.plix9anor.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 13:12	v31vet0-sheet.plix9anor.in.net	ClearFake	ClearFake	threatcat_ch
2026-04-10 13:12	https://isgilan.com/curl/aa57429dbad42cd0c97d9d6c63c79ad0bad33811b0c5e85e583f49faa467b917	Unknown Stealer	macOS	HuntYethHounds
2026-04-10 13:11	isgilan.com	Unknown Stealer	macOS	HuntYethHounds
2026-04-10 13:11	https://us5123proj59891ksjn3419.pages.dev	Unknown Stealer	macOS	HuntYethHounds
2026-04-10 13:11	us5123proj59891ksjn3419.pages.dev	Unknown Stealer	macOS	HuntYethHounds
2026-04-10 13:07	lum-tidear.plix9anor.in.net	ClearFake	ClearFake	threatcat_ch