ThreatFox IOC Database

You are viewing the ThreatFox database entry for domain cabriofocus.com.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1775228
IOC: cabriofocus.com
IOC Type :domain
Threat Type :payload_delivery
Malware: IClickFix
Confidence Level : Confidence level is elevated (75%)
Is compromised? : False
ASN:AS41745 FORTIS-AS
Country:- RU
First seen:2026-03-25 06:41:39 UTC
Last seen:never
UUID:08476c47-27f7-11f1-9af6-42010aa4000a
Reporter Lenny_3BO
Reward 5 credits from ThreatFox
Tags:ClickFix IClickFix
Reference: https://app.any.run/tasks/5bacfb68-1eef-45fb-905d-ac97bd600fe9

Avatar
Lenny_3BO
IClickFix overlay server. Purpose-registered domain on Ultahost (85.209.132.130). Serves fake captcha HTML fetched by injector on compromised sites. Russian-language injector toolkit. Server returning 500 as of 2026-03-25 (campaign may be dormant).