ThreatFox IOC Database

You are viewing the ThreatFox database entry for url https://ytz.gca.mybluehost.me/.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1790155
IOC: https://ytz.gca.mybluehost.me/
IOC Type :url
Threat Type :payload_delivery
Malware: Vidar
Confidence Level : Confidence level is elevated (75%)
Is compromised? : True
ASN:AS31898 ORACLE-BMC-31898
Country:- US
First seen:2026-04-14 13:19:07 UTC
Last seen:2026-05-04 06:50:18 UTC
UUID:84285ef7-3804-11f1-8759-42010aa4000a
Reporter Anonymous
Reward 5 credits from ThreatFox
Tags:ClickFix compromised etherhiding Polygon Vidar WordPress

Avatar
Anonymous
Compromised WordPress site distributing Vidar Stealer via Polygon ClickFix campaign.