################################################################
# ThreatFox IOCs: recent domains - CSV format                  #
# Last updated: 2023-02-04 19:40:03 UTC                        #
#                                                              #
# Terms Of Use: https://threatfox.abuse.ch/faq/#tos            #
# For questions please contact threatfox [at] abuse.ch         #
################################################################
#
# "first_seen_utc","ioc_id","ioc_value","ioc_type","threat_type","fk_malware","malware_alias","malware_printable","last_seen_utc","confidence_level","reference","tags","anonymous","reporter"
"2023-02-04 19:40:03", "1078201", "contentdirect-gkcpe7cwafa0f7d7.z01.azurefd.net", "domain", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,DIGITALOCEAN-ASN", "0", "drb_ra"
"2023-02-04 19:39:46", "1078198", "aspnetcenter.com", "domain", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2023-02-05 02:23:56", "100", "None", "CobaltStrike,Web Gostaran Bandar Company PJS", "0", "drb_ra"
"2023-02-04 19:38:04", "1078185", "www.microsofe.xyz", "domain", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,GIGABITBANK-AS-AP Gigabitbank Global", "0", "drb_ra"
"2023-02-04 18:42:02", "1078172", "audelr.com", "domain", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2023-02-05 17:21:02", "75", "https://threatview.io/Downloads/High-Confidence-CobaltstrikeC2_platforms.txt", "CobaltStrike,threatview-io", "0", "abuse_ch"
"2023-02-04 18:42:02", "1078173", "csou.link", "domain", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2023-02-05 17:21:02", "75", "https://threatview.io/Downloads/High-Confidence-CobaltstrikeC2_platforms.txt", "CobaltStrike,threatview-io", "0", "abuse_ch"
"2023-02-04 18:42:02", "1078174", "integrated-security.net", "domain", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2023-02-05 17:21:02", "75", "https://threatview.io/Downloads/High-Confidence-CobaltstrikeC2_platforms.txt", "CobaltStrike,threatview-io", "0", "abuse_ch"
"2023-02-04 18:42:02", "1078175", "uranustechsolution.com", "domain", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "2023-02-05 17:21:02", "75", "https://threatview.io/Downloads/High-Confidence-CobaltstrikeC2_platforms.txt", "CobaltStrike,threatview-io", "0", "abuse_ch"
"2023-02-04 13:42:28", "1078161", "kani-cn.bytedance.net.cdn.dnsv1.com.cn", "domain", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,VOLCANO-ENGINE Beijing Volcano Engine Technology Co. Ltd.", "0", "drb_ra"
"2023-02-04 01:18:33", "1078134", "ehonlionetodo.com", "domain", "botnet_cc", "win.icedid_downloader", "None", "IcedID Downloader", "", "100", "", "None", "0", "pr0xylife"
"2023-02-03 20:38:29", "1078123", "satifayban.com", "domain", "botnet_cc", "win.icedid", "BokBot,IceID", "IcedID", "", "50", "", "None", "1", "ian_kenefick"
"2023-02-03 19:52:19", "1078116", "thondorbird.com", "domain", "payload_delivery", "win.icedid", "BokBot,IceID", "IcedID", "", "100", "", "IcedID,malvertising,thunderbird", "0", "abuse_ch"
"2023-02-03 17:59:26", "1078092", "www.google-dns.cloud", "domain", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,MOACKCOLTD-AS-AP MOACK.Co.LTD", "0", "drb_ra"
"2023-02-03 17:58:29", "1078084", "d1mxovbic5u3wv.cloudfront.net", "domain", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "AMAZON-AES,CobaltStrike", "0", "drb_ra"
"2023-02-03 17:57:52", "1078082", "service-o4vr732h-1315517919.sh.apigw.tencentcs.com", "domain", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike", "0", "drb_ra"
"2023-02-03 17:57:22", "1078077", "easy-dns.lol", "domain", "botnet_cc", "win.cobalt_strike", "Agentemis,BEACON,CobaltStrike,cobeacon", "Cobalt Strike", "", "100", "None", "CobaltStrike,MOACKCOLTD-AS-AP MOACK.Co.LTD", "0", "drb_ra"
# Number of entries: 15