ThreatFox IOC Database

You are viewing the ThreatFox database entry for url https://rentry.co/dyz665rb/raw.

Database Entry

This IOC expired

This IOC is an old IOC and hence has expired on 2025-12-04 01:15:01 UTC. We therefore refrain from exporting it into our datasets. As a result, this database entry is purely informational and has no impact.

IOC ID:	1338516
IOC:	https://rentry.co/dyz665rb/raw
IOC Type :	url
Threat Type :	payload_delivery
Malware:	ClearFake
Confidence Level :	Confidence level is high (100%)
ASN:	AS13335 CLOUDFLARENET
Country:	US
First seen:	2024-10-22 06:01:09 UTC
Last seen:	never
UUID:	75e47a86-8ff7-11ef-9009-42010aa4000a
Reporter	monitorsg
Reward	5 credits from ThreatFox
Tags:	ClickFix
Reference:	https://infosec.exchange/@monitorsg/113347647018885249

monitorsg

hXXps://bsc-dataseed1.binance[.]org (Binance 0xa6165Aa33ac710AD5dCd4F4d6379466825476FDE) --> hXXps://dareka4te[.]shop/endpoint --> hXXps://rentry[.]co/dyz665rb/raw --> hXXps://lakadmakatdg[.]shop/home.tar